OSX Server 10.4 + VPN Tracker

Similar Messages

• Is it possible to connect my home computer to files stored on my running osx server mac via VPN

  Is it possible to connect my home computer to files stored on my running osx server mac via VPN. I have VPN set up and can access the Calendar and Contacts via a web browser, however I want to be able to access data files store on the hard drive and shared external drives connected to it. The MacPro runs OSX Server Lion. Any Ideas if this is even possible or how to do it!

  Yeah, that's what I kinda figured. Maybe there is another solution - here is my situation:
  I have internet and cable service through Telus. Telus' system consists of a modem/set-top-box that provides internet (ethernet and wifi) and TV signal (corded) for one TV and another set top box that provides internet (ethernet only) and TV signal (corded) for my other TV in the basement.
  I have an Airport Extreme connected to the modem upstairs which I am using as my home network wifi. I also have an external hard drive (USB) connected to it on which my iTunes library is shared with all Apple machines in my home network.
  My upstairs ATV, connected to my APE, works fine and streams internet (Netflix), iTunes Store and my shared iTunes drive just fine - the APE is 3 feet away with a great signal.
  My downstairs ATV, also connected to my APE via wifi, does not stream so well, particularly the media from the shared drive. I suspect that this is the case because of signal degredation.
  Any suggestions on how to reconstruct my home network to enable my downstairs ATV to work properly?

• Can't establish VPN on windows client to OSX server

  Hi everyone,
  I'm stuck for a while now with a very annoying problem.
  I can't establish a VPN connection on a windows client to a OSX Server. It worked fine while we had OSX server 10.6.
  We recently updated to 10.8 and got this problem.
  I know some of u are now thinking, the solution is: Just don't use windows... But the director of the company i am doing this for
  doesn't want to switch to mac.
  Also, this problem maybe be related to windows but i hope someone here can help me.
  Things i've done:
  I've tried PPTP ( didn't work either )
  I've tried different users
  I've tried adding a rule te regedit in windows ( according to a windows vista kb file for VPN trough NAT devices )
  I've tried different authentication rules
  In VPN log is Server admin everything goes well until:
  pppd[87435]: fatal signal 6
  vpnd[104]: --> Client with address 192.168.0.24 has hungup
  after this it goes further with some successes.
  I hope someone here knows the solution!
  Thanks in advance,
  Remy
  Mac mini server, 10.8.5
  server admin 2
  ( client ) windows 7 & 8
  ps. sorry for my bad grammer, i'm dutch..

  You could have a look at the following and see if it helps.
  http://support.apple.com/kb/HT5078

• Server side tracking on non-OSX server

  Does anyone aware of attempts of reproducing server side tracking on non-MacOSX server platform?
  Our primary storage is based on opensolaris + zfs, giving us a lot of advantages. But synchronization of mobile users always takes some serious amount of time.
  Obviously re-exporting home directories through OSX server doesn't change something, because server side tracking requires filesystem to be local on server.
  I can guess that protocol should be relatively simple and doable on other unixes (as soon you get some way to track filesystem changes).

  while part of it may be technically feasible, i've never seen or heard anything about implementing server side tracking on a non-os x server. at the very least, the server runs sshd on an alternate port for client communication. beyond that, i don't know what magic is involved.
  in practice, i haven't seen it work reliably on os x server, though i haven't done any testing with this enabled on 10.6 server yet. it may not be worth pursuing.

• Mac OSX Server VPN Not Working

  Heres how my setup is: I have an ATT DHCP Server/Router That assigns my public ip.
  I have an Apple AirPort Extreme in Bridge Mode Which hosts the main wifi connection.
  I have my Mac OSX Server connected to the AirPort Extreme
  On my ATT Router DHCP Server's Firewall I have my computer set to DMZ Plus mode which forwards all ports on the network to my mac.
  I am trying to connect to the vpn network via my MacBook Pro and iPhone5 and I cannot. However I can connect to the online wiki page on my server by going to server.djswirkmke.com if you would like to see it. My host name is server.local on the network but on the internet it is server.djswirkmke.com I also have a mail domain setup as mail.djswirkmke.com. My problem is I am not able to connect to the vpn on the client computers can you please help?

  In a moment of random frustration, I tried listing the DNS server in VPN settings three times, and it somehow fixed the problem. Even though it is the same IP all three times, it works when it is listed three times but not when it is listed just once.
  In other words, in VPN > Settings > Client Information > DNS Servers, I have:
  192.168.100.64
  192.168.100.64
  192.168.100.64
  Hope this helps someone having the same problem.

• VPN Tracker goes nuts getting to server

  There are two servers I need to connect to via VPN using VPN Tracker. One server, great. The other results in either an empty directory with the 'working' icon spinning away, or the computer hanging before that point (requiring power off).
  What settings of a PC, SMB server would cause this odd behavior?

  asdf

• OSX Server 2.21 L2TP VPN - security recommendations

  hi  folks,
  I am running OSX server 2.2.1 hosting mail,  and L2TP VPN which work great..
  I port forward  port 25
  and UDP 500, 1701 , 4500 for the VPN, from my router gateway to my mac mini.
  are there any security concerns in relation to having open access to the UDP ports 500,1701, 4500  on my mac mini?
  I had tried to put a firewall rule on my gateway  to only allow access from the public ip of my iphone over 3g, but that didnt seem to work  as i still could connect over a different public network, so it appears that the firewall rule was ignored as the traffic was automatically being natted by the gateway..
  my main question really, is should i be worried, leaving UDP ports open publically to my mac mini server?
  thanks

  i ran through those processes , and for the last one got file not found
  /System/Library/LaunchDaemons/com.apple.pfctl: file does not exist or is not readable or is not a regular file
  is there a way to verify that the adaptive firewall is running?
  thanks

• OSX Server VPN L2TP secure?

  i am using osx server v2.21  (169) and using the L2TP with shared key VPN  to connect my iphone to my home server, and browse through my home internet connection...
  i have read numerous articles on the internet, and some here on the apple support communities that say L2TP VPN on OSX Server is not secure....
  is that really the case?
  thanks

  There is no perfect security.  Ever.   A sufficiently determined attacker can and will succeed against anything you can do, given that sooner or later somebody involved will make an opsec mistake somewhere.  Or the existing attacks against MD5, RC4 and SSL/TLS security — attacks including BEAST, CRIME Lucky 13, etc — will continue to be "weaponized".
  Firewalls and VPNs only get you so far, and it's common for attackers to use a variety of attacks to try to breach those; to bypass the network security.  So-called "spearphishing" tries to get somebody on the network to breach security for the attacker.  The best VPN and the best firewall are worth nothing if you have Java lit in your web browser and the Java JVM sandbox gets breached (again), or if you receive and open a document that contains malware, for instance. 
  Facebook and other entities were recently breached using what was known as a watering hole attack, and that was only spotted based on detecting "odd" out-bound network traffic.  The attack got around the firewalls and the VPNs and the rest of the security, and was active on the organizations' internal networks.
  If you're securing nuclear secrets or large sums of money or exceedingly embarassing or sensitive data, then you definitely and certainly do need to focus on this stuff, and you're going to be spending time and effort and money on making your organization harder (emphasis on harder) to attack.  But attacks will continue.
  If you're dealing with a home network or a typical a small business network, then you just don't want to be the lowest of the low-hanging fruit around, and you want to avoid opsec mistakes such as open ports or weak passwords, and you don't want to give the good folks of the Internet reasons to attack you.   You want to be not worth attacking, or not as "fun" and not as valuable to attack. 
  Even if your security is not attacked, a DDoS can still ruin your day.
  As I've mentioned elsewhere, I much prefer using a VPN server in a gateway-firewall-router device — as VPNs and NAT don't mix very well — and I do use private certificate authority chains.    But in terms of attacks?  Keep your software and your security current, review your logs and your rules, DMZ any services you provide to "outside", maintain and verify backups — those backups can be your recovery path from a breach — and start looking at "odd" or "unexpected" outbound traffic, too.  VPNs are just part of avoiding the mess of a cleanup.

• OSX Server + Billion 5200G RC VPN Access

  Hello,
  We are a small design studio looking at setting up a VPN to access local files whilst on the road. I believe I have all the configuration setup correctly in Mac OSX server but I am a little out of my element when know which ports to forward on the router and if it is even setup to accept VPN connections.
  If anyone has experience setting up VPN access wtih the Billion 5200G RC Router I would be indebted to you.
  Thanks
  Michael
  (designer @ false behaving animals)

  i ran through those processes , and for the last one got file not found
  /System/Library/LaunchDaemons/com.apple.pfctl: file does not exist or is not readable or is not a regular file
  is there a way to verify that the adaptive firewall is running?
  thanks

• VPN on OSX server

  I want to configure VPN on OSX server so I can access my server remotely. I understand I have to open up the VPN ports on my router. I have contacted BT about this (it is a BT router) and they need to know the port numbers used by VPN to unlock them. Can

  To run a public VPN server, you need to do the following:
  1. Give the gateway either a static external address or a dynamic DNS name. In the latter case, you must run a background process to keep the DNS record up to date when your IP address changes.
  2. Give the VPN server a static address on the local network.
  3. Forward external UDP ports 500, 1701, and 4500 (for L2TP) and TCP port 1723 (for PPTP) to the corresponding ports on the VPN server.
  4. Configure any firewall in use to pass this traffic.

• Set up vpn on mac osx server

  What is the most common reason that I can connect to the newly created vpn locally but not remotely (over the wan)?

  I have had the same problem with setting up L2TP on Mavericks after upgrade.  After several failed attempts I have the following recepie.
  To test this you need to have two separate networks to connect you VPN client to.  One should be the same as where the server is running and the other needs to be different so that the incoming traffic to your router is coming from the outside.
  I'm assuming a setup with a router and behind it a local network with an OS X server running the VPN service (vpnd daemon)
  On the server
  Note the local ip-adress of your server.  This should preferably be static.
  Install the VPN fix from apple: http://support.apple.com/kb/DL1716
  In the OS X Server VPN Service create a VPN profile where VPN Host Name is local ip-adress of the VPN server.
  Restart the VPN service and save the configuration file.
  On the router
  Open ports 500, 1701 and 4500 to pass UDP traffic to the server.  Make sure to activate them in the router interface.
  Make a note of your routers public IP address. This should be static.
  If this keeps changing you can set up a dynamic domain name (http://dyndns.org)
  Optional: verify that the ports are actually open using nmap:
  sudo nmap -Pn -sU XX.XX.XX.XX -p500,1701,4500
  Password:
  Starting Nmap 6.40 ( http://nmap.org ) at 2014-02-14 14:21 CET
  Nmap scan report for ... (XX.XX.XX.XX)
  Host is up (0.012s latency).
  PORT     STATE         SERVICE
  500/udp  open          isakmp
  1701/udp open|filtered L2TP
  4500/udp open|filtered nat-t-ike
  Nmap done: 1 IP address (1 host up) scanned in 1.29 seconds
  XX.XX.XX.XX is the public IP-adress of the router.  You can also try the same on the local IP-address of the server.
  On the client
  Copy the configuration file and install it by double klicking on the file.
  Connect the client to the same local network as the vpn-server and activate the VPN connection. 
  Verify that the VPN connection comes up.
  Up to this point, smooth sailing. 
  Now change the Server address to the IP-address of the router and turn on extra logging found under Advanced. Save the new configuration.
  Bring up the VPN connection again.  Should work.  Right?
  I did not for me.  The error complains about the L2TP-VPN-server not responding.
  Digging deeper using the system logger I found the error
  2014-02-14 14:43:31,039 racoon[60284]: IKE Packet: receive failed. (Malformed or unexpected cookie).
  2014-02-14 14:43:31,039 racoon[60284]: Malformed cookie received or the initiator's cookies collide.
  2014-02-14 14:43:31,172 pppd[60283]: IPSec connection failed
  2014-02-14 14:43:31,172 racoon[60284]: vpn_control socket closed by peer.
  2014-02-14 14:43:31,173 racoon[60284]: received disconnect all command
  So it sort of works, but complains about some bad cookie.
  The simple change of the IP-address apparentely generates this error.
  Now change the network of the client so that it is not on the same networks as the server.
  Bring up the VPN again.  Now it just works.
  So apparently, when the traffic is coming in from the outside the VPN connection just works.
  If you change back to the local network of the server and the keep the router IP-address the error is back.
  Conclusion
  The conclusion is that the client used for connecting to the VPN network must be on an outside network.
  In retrospect, this makes sense since we should test using an environment that reproduces the actual use case. The crux is to ensure that the client traffic is coming in from the outside.
  Hope this helps.

• OSX Server on a Powerbook?

  I have a very small-load server need: We are two designers who want to share a common project folder from remote sites. VPN would seem to be a good approach (more on that below), so I would like to see if I can set up a cheap OSX Server using an old 500Mhz G4 Powerbook. I would attach a FireWire 400 external disk that I already have, so the hardware cost is zero. $500 for the server, and I am there. But:
  1) No PowerBooks are listed in the supported hardware requirements, although less-powerful boxes like a G3 tower are. I don't know if this is because it just didn't occur to Apple that anyone would want to use a PowerBook for this, or if there is some intrinsic hardware limitation (lack of 2 NICs? The iMac is listed, and I could probably add one on the CardBus slot anyway.)
  Has anyone run OSX Server on a PowerBook, or know of any reason you definitely can't?
  2) I have no experience managing servers of any kind, and no time to become very savvy, which is why I am looking at OSX. Hoping that if all I ever want is a simple file server with VPN, it won't become a second job for me and I can just let it run in a closet somewhere. Is this a fantasy?
  3) I don't know if the PowerBook will prove to be just too slow for even our relatively low-load needs. It is somewhat pokey running Tiger as an accounting machine now, but acceptable (and I figure a fair amount of that load is Aqua, which shouldn't be giving it a workout when used as a server). Any thoughts?
  4) Almost forgot - if there is another solution besides VPN that would require less work, it would be great. We are currently trying out FolderShare, which is kind of perfect (we each have local folders with all project files in them, and FolderShare keeps them synced between machines - like having two "masters") except for one thing - it is notoriously unreliable. Slow incremental changes seem to be working ok, but toss it a 2Gb folder with a few thousand files, and it just seems to lose track of what it is doing and quit syncing altogether, even through restarts.
  VPN would allow us to maintain a master project folder on the server, then we would need to design some kind of checkout system, which I am not looking forward to finding, setting up, or administering, either.
  Thanks in advance for any and all thoughts.
  PowerBook G4 500Mhz/1Gb Mac OS X (10.4.6) Server newbie, long-time small office Mac/Win admin

  Thanks for your helpful reply - I am going to take a look at Sharepoints and see if it might be the ticket. It looks promising.
  In response to your other questions:
  Network setup: We have two locations, one of which would be the host location. We each have simple wifi local networks each using a Qwest dsl router, with NAT, WPA Personal, MAC listing, and SSID turned off. That's about the depth of my network security ability. I hoped that Apple might have a clear walkthrough of how to set up Server for our needs. That was as much plan as I had.
  The file sharing has to be as transparent as possible, so standard Finder/Open&Save dialog operations are necessary. That's what is great about FolderShare (despite its critical reliability flaw), and why an FTP solution won't work. We just have hundreds or thousands of file operations every day, and can't take time out to manage files through another app.
  Thanks also for the heads-up on configuring the fireall to accept connections from only the standard remote site(s). It would be great to be able to access it from the road as well, but if there is no way to do that without creating a significant security risk, we can live without it. (Is there any way to do so?)
  Cheers,
  Allen

• Help for first install of macpro with osx server

  Hello to all
  it's my first message on this forum, i'm seeking for help because i'm kind of new with Mac systems.
  I'm gonna explain the problem
  So we are going to buy a mac pro and put 4*2To inside with raid 5 and osx server.
  The problem is that the cost of installation of sotwre and deployement etc is really expensive.
  I need to create a vpn too, this mac pro is gonna be a storage and multiple users must have acces to it. In fact this mac will be connected on the router and users will acces to it on local network then later we're gonna move from our base so the mac will be at the home of one of us and other users will have to access it from outside.
  I was thinking avoyding cost of install by doing it myself.
  So i've thinked that the best way to do it is by asking help to the community.
  Is anyone can help me with this or tell me where i can find tutorials to do it?
  I have skills but this is hard form me. The thing is that i learn fast. But i need help.
  Maybe my post is not really clear i write as it comes to me, english is not my langage too.
  So feel free to ask me questions or informations if you need.
  In the same time i'm reading posts on the foum about this kindof installations.
  Thank u so much
  .anto.

  Dear Marcassin
  i am happy to help to your problem .
  first i would say you must read the Documentation. and you should familier with Mac Os installation System.
  in your Mac Server DVD you will find the schedule sheet . print that and plan your server first. it will really help full. then come and list down the all the requirements.
  may be you will need more services after that.
  But again again again . read that sheet and fill all the requirements. and come back or read specific captors in the Documentation.
  if you want more details about the installing sachira.herath at gmail
   certified Pro 10.6/10.5

• Can I use OSX Server instead of Dropbox?

  We are considering buying OSX Server.  One basis for the purchase would be to replace Dropbox.  We currently use Dropbox with local sync of folders, so all oru people work directly in folders that are synced to everyone else.  Thus all docs are available locally all the time adn then they are available on everyones iPads, iPhones and Android phones.  However a downside of that is that it takes space on the local hard drive, we can have conflicts where multiple people open a file.
  Can someone please explain how remote users get access to the OSX server and the documents on it and if there is a "syncing" option similar to Dropbox?
  Thanks
  John

  Answers:
  #1 Yes, if set up correctly the server can be available to everyone with Internet access. 
  Typically this would be via a VPN connection.  One caveat–only one VPN connection can be active from a particular LAN.  In other words, if two computers on the same LAN want to connect via VPN to your server, this will not work (at least it wouldn't under earlier versions of OS X).
  WebDAV is a possibility but I have not had good results when using WebDAV.  Access is limited to apps that support WebDAV connections (such as Pages, Numbers, and Keynote).  Even then it seemed a bit problematic.
  #2 Any offline documents from the server must be managed manually.  In other, you must manually copy them back and forth.  As Linc mentioned above, OS X Server does not offer sync functionality.

• Error -36 while copying files to SMB shares but not AFP. (OSX Server APP)

  Hello,
  So far my transition to OSX server has been a sloppy one. I have had so many problems. I have problems with permissions about everyday. Anyhoos, here is my latest problem. Everytime (from any client computer) a computer tries to copy a file or folder to a share using SMB protocol to the osx server i get this message:
  The Finder can’t complete the operation because some data in “File or folder name" can’t be read or written.
  (Error code -36)
  This does NOT happen when copying the same files using AFP protocol. I using a windows box at work, (dialing in throught the VPN) it doesn't seem to have any problems dropping files either. Anyone know whats up? I have read on the site that others are experiencing problems with SMB within OSX servers. Some report that it stright doesn't work!!!!
  Anyhoos, through all my problems, you guys have been VERY helpful to help me work through it. I really appreciate it!!

  Just found a slight work around:
  http://www.macwindows.com/TIP--Workaround-to-Mavericks-file-sharing-is-to-force- SMB.html
  Several readers offered a suggestion for yesterday's report of problems with OS X 10.9 Mavericks accessing some Windows file servers and network attached storage device. Mavericks now defaults to SMB2 file sharing protocol, but a bug seems prevent OS X from using SMB1 or AFP when the server doesn't support the newer SMB2.
  A workaround is to force OS X to use the old SMB1 (also known as SMB/CIFS). To do that, instead of mounting the server using the Finder, use the Connect to Server command in the Finder's Go menu. Then type in the following:
  cifs://server_address (using the IP address or network name of the server)
  Using smb://server_address won't work, as this will use SMB2 to access the device.
  Thanks to Mario Cajina and Kevin Lepard for the suggestion.