VPN Lion Server over Time Capsule
Hi,
well i have a small office of four iMacs and some MBooks, and one mac mini runing os x lion server, all connected with a linksys router. The point is we want to start runing VPN to get access to the intranet website when out of the office. As we checked on apple´s airport reviews it is easy to configure the vpn using a time capsule.
Any one has tried it?
You may have issues.. due to BTMM using ipsec which is hidden into the firmware of the TC and AEBS some people have issues.. PPTP should be ok.
It seems like Apple ignore things like vpn in their testing.. some firmware work and some don't.
But if you are using the Linksys router.. how does the TC come into the picture??
Similar Messages
-
Lion Server setup & Time Capsule
Greetings,
I am new to lion server so please bear with me. Some of my question me seem dumb to some of you. But to me the only dumb question is one not asked. So please bear with me.
Server and time capsule will both do NAT, DHCP. Which should I use for the network Server or Time Capsule. I am connecting with a Brighthouse cable modem with a Dynamic IP. I have the Time Capsule in Bridge Mode with a static IP 192.168.0.6. The server is Static with 192.168.0.5. Brighthouse wireless is disabled as I like the time capsule wireless. Time capsule is providing WI-FI. Brighthouse router/Modem provides the Router at 192.168.0.1.
I have a domain name abc.net. Should I set up lion server first and then set up Time Capsule after it is working? Do I set this up as a .local, .private or .net account during server setup? I want to be able to get to my computer from my domain name and handle my mail.
I set this up once and it worked for about 2 hours. After that it would never see my computer. So I am setting up server again but wanted to see if I could get a little first time guidence this time. I also signed up with DYNDNS for DNS updating and that just seemed to throw a whole new batch of problems in.
So any help would be great... Not dumb with computers, but new to apple servers. And I don't do geek well!!
I think all the IP numbers, what I need to change on Netfirms to get to my computer get me confused in the setup.
ThanksServer and time capsule will both do NAT, DHCP
Sure.
Which should I use for the network Server or Time Capsule
Why do you think you need to use either of them?
Ideally, you should have ONE device on your network running NAT, and ONE device running DHCP.
From your description it sounds like your Brighthouse router is running NAT therefore there is no need to run NAT anywhere else.
The chances are that the Brighthouse router is also running a DHCP server for your LAN, therefore there is also no need to run DHCP off the Time Capsule or the Server. You've already got those bases covered.
So, at least without more information, I'd be inclined to say: neither.
Should I set up lion server first and then set up Time Capsule after it is working?
Probably. It depends on what your plans are for the Time Capsule. If you're using the TC as a wireless base station then it doesn't need to be running until you're ready to connect wireless clients.
If you're using the TC for backup, you don't need it until your server and/or clients are setup and ready to backup.
Since the TC is not (as per the above) running either NAT or DHCP, there's not much else to do with it.
So focus on the server.
Do I set this up as a .local, .private or .net account during server setup?
That's entirely up to you, although there are a couple of options. First off, though, realize that there is no, zip, nada connection between the hostname you use on your internal LAN and any public domain. It's 100% valid for your server to be called foo.bar while serving web content for abc.net and getting email for xzy.com, all at the same time.
Personally, I tend to set them the same (e.g. abc.net in this case), but others will recommend a different approach. It's largely personal preference.
I want to be able to get to my computer from my domain name and handle my mail.
If you're talking about getting to your computer/mail from an external locale, that's 100% down to DNS and completely independent of what the server thinks its own name is. -
Have to restart Lion server every time I want to access it remotely
L.S.,
My Mac Mini Server (10.7.3) is colocated at a data center.
At this point I have to restart Lion server every time I want to access it remotely for screen sharing over the internet.
I can make the connection, so all the right ports are open, as the port scan also shows, but it just times out when I wish to connect again within the same server without rebooting.
I bought Apple Remote Desktop but that doesn't help either. I can still connect through AFP, web and VPN.
I do hope that someone can give me some more insight in this problem.
Rebooting isn't a problem by the way...
UPDATE:
If I keep the session active overnight, there is no problem whatsoever, but when I log off as a "good practice", which I've learned using Windows, screen sharing will not work any longer. Forgetting about logging off seems to be a viable workaround at this point .
regards,
MarkDouble post... https://discussions.apple.com/message/17729558#17729558
-
There was a problem connecting to the server "Max Time Capsule"
Disclaimer: Previously posted here (Ask Different) and similar to this.
I'm trying to use my MBP inside and outside my office, and having it backup to my 2TB Time Capsule when on its wireless network, or defer backups when not on the Time Capsule's wireless network.
Unfortunately, if I've been on a different wireless network for a few hours worth of backup attempts, bringing the machine back onto the Time Capsule's wireless network doesn't resume backups, and Time Machine never recovers. I can select the disk as a backup drive in the Time Machine preferences, but the disk remains unavailable from the Finder, and any backup attempts yield the standard:
There was a problem connecting to the server "Max Time Capsule"
Check the server name or IP address, and then try again. If you continue to have problems, contact your system administrator.
My WiFi connection is through the same Time Capsule that hosts the backup drive, and its name and IP address have decidedly not changed. The only thing that seems to help is restarting the Time Capsule, but that is an inconvenient workaround at best.
The problem sounds similar to Backup Disk Not Available, but the answers to that question are either to restart or change the disk name or turn off the 5 GHz network (which didn't help). I also looked at /Library/Preferences/com.apple.TimeCapsule.plist, but found nothing that seemed relevant.
Any suggestions would be greatly appreciated. My MBP is running OS X 10.7.5, and the Time Capsule firmware is 7.6.1.There was a problem connecting to the server "Airport Time Capsule".
The server may not exist or it is unavailable at this time. Check the server name or IP address, check your network connection, and then try again.
I still have internet connection, and have tried other suggestions across internet but really the only fix has been to power cycle the ATC. This unfortunately is only a temporary remedy for a day or so until it returns.
Any suggestions on how to fix this problem?
There is no fix.. I have written a bunch of suggestions to try.
https://discussions.apple.com/thread/6106750?tstart=0
It is very common on Mavericks.
How long did it take from when you set it up till it went bad?? -
There was a problem connecting to the server "AirPort Time Capsule".
I bought a new Macbook air and a 2TB Airport Time Capsule. I currently use the ATC for time machine, and external storage of Itunes & Iphoto libraries.
Everything was beautiful until the other day when I got the following :
There was a problem connecting to the server "Airport Time Capsule".
The server may not exist or it is unavailable at this time. Check the server name or IP address, check your network connection, and then try again.
I still have internet connection, and have tried other suggestions across internet but really the only fix has been to power cycle the ATC. This unfortunately is only a temporary remedy for a day or so until it returns.
Any suggestions on how to fix this problem?There was a problem connecting to the server "Airport Time Capsule".
The server may not exist or it is unavailable at this time. Check the server name or IP address, check your network connection, and then try again.
I still have internet connection, and have tried other suggestions across internet but really the only fix has been to power cycle the ATC. This unfortunately is only a temporary remedy for a day or so until it returns.
Any suggestions on how to fix this problem?
There is no fix.. I have written a bunch of suggestions to try.
https://discussions.apple.com/thread/6106750?tstart=0
It is very common on Mavericks.
How long did it take from when you set it up till it went bad?? -
What is the best N.A.S non-mirrored storage that will work on osx lion with a time-capsule
Recently bought a 4TB external network non-mirrored drive. Specifically D-Link DNS-325 2-bay sharecenter NAS because my Itune library was reaching 1.8TB. After buying and installing can't bring it all online. System sees it but won't connect and after lookin' around online it seems if your using OSX Lion with a Time-capsule it won't connect. Does anybody know if this for sure, is not posible?
Any suggestions would be greatly appreciated!Apparently the NAS will work with Lion just not with the Time-Capsule as well. As this is my router this should be the forum. If you don't then if you could forward it to the appropriate one i'd appreciate it.
-
I am using macbook air and thrying to print wireless over time capsule with a lexmark 5600/6600 series, i can print test page but only this. Anyone can help?
Check here, if this can help:
http://support.apple.com/kb/HT4670?viewlocale=en_US -
I am having problems accessing a VPN server behind a Time Capsule.
I have enabled the VPN server on a Mac Mini running 10.5.8, using iVPN. It is configured for PPTP, and to assign addresses in the range 10.0.1.21/30. The Mini has a static IP address on the local network (10.0.1.20).
Using another machine (MacBook running 10.6) on the network, I log-in to the VPN using the 10.0.1.20 address. The MacBook is configured to route all traffic through the VPN. This works without problems. I am able to access the internet and things on the local network.
Then... I change the settings to use the external IP address from my ISP. The connection establishes, but I am not able to see anything. The connection drops after ~5 mins. Looking at the vpnd log, authentication has gone well but there after it reports 0 bytes sent/received. Connecting using an iPhone over 3G gives similar results.
I suspect that Time Capsule is the cause of my problems. But I don't know what I need to change. Currently, I am directing the TCP port 1723 to the Mini. The Time Capsule is set for "Share a public IP address". The firmware version is 7.4.2.
As a diagnostic, I opened port 80 and directed it to the Mini. On the Mini I enabled the web server. I can see the test page both on the LAN, and also externally.
For completeness I also tried forwarding the UDP ports used by L2TP to the Mini. No difference.You may need to enable your OS X Server as the Default Host in AirPort Utility. Under Internet > NAT > Enable default host at:, put your server's IP address (it should be statically-assigned using DHCP Reservations in the DHCP tab). This will forward all unsolicited traffic to your server, so make sure the Firewall is up and running before you do this.
The problem is that PPTP and L2TP/IPSec VPNs require special "tunneling protocols" in addition to the standard TCP/UDP ports that are configured through AirPort Utility. PPTP requires a "GRE Protocol", and L2TP requires an "ESP Protocol", neither of which are generally routable with standard firewall configuration utilities. The way around this is to make the OS X Server the default host, which will forward all traffic -- including GRE and ESP --- to the server machine where the VPN service can receive it.
Sadly, the documentation with the AirPort Extreme / Time Capsule is sorely lacking in this department, and has been for some time. Hope this helps, though!
Peter -
VPN Server behind Time Capsule
I have a mixed environment at home, with several Macs, two Ubuntu servers and 3 Vista laptops the family uses. Recently I had the need to setup a VPN server on one of the Windows machines with standard PPTP/L2TP, nothing out of the ordinary. All my internal clients can connect to the VPN server just fine, however, I find no specific VPN passthrough option nor a port forwarding option for GRE in Time Capsule, thus, any external connection attempts have been in vain. Yes, I have tried this by dropping all firewalls, etc for a short period of time, but to no avail.
The time capsule is hooked up directly with my ADSL2+ modem, where RFC bridging is setup on the modem to allow Time Capsule to be my sole NAT devices.
Any insight into this, or has anyone else had success with this?I did extensive testing with this last night but still managed to get nowhere (did fix another NAT-PMP on IPv6 issue I had though by enabling Tunneling on the Time Capsule -- another story but my time wasn't completely wasted ).
I'm just trying to get L2TP working personally... I think this uses ESP rather than GRE but the same principle applies. I disabled all 'Back to my Mac' services too, I felt these may be interfering with IKE/NAT traversal ports (I know it's a requirement to kill these for CISCO VPN client to work).
Which ISP are you with btw? I'm on BT.. You don't think they are the root cause in my case do you? Clutching at straws now i know.
Wonder id my AEBS functions any differently.... -
Mac Mini Server and Time Capsule, File Sharing Issue
Setup:
MacMini Server, Time Capsule, 2 Macs connected.
All Macs use the time capsule to backup.
Problem:
I can't use filesharing from over the internet anymore to connect to my server.
Ports 139 and 548 seem to be reserved for the internal backupdisk of the time capsule.
The port mapping rule gets turned off.
How can i still access my files from the outside ?
If i change the filesharing ports to something else, how can i access it ?
Anybody an idea ?
Thanks in advance.Hi
+"I can connect to my server using vpn but my workgroup shortcut in the sidebar of finder doesn't work"+
That's about right. Bonjour won't work over VPN unless you work at it. AFP548 has an article on how to achieve it if you want to go to the trouble.
+"Isn't there a way without manually connect using go?"+
You could drop desired share points into the dock. Next time you initiate a VPN connection simply click on the icon in the dock. Works for me every time.
+"Perhaps some tweaking on the vpn server side?"+
None that I'm aware of. Perhaps someone else knows a way?
Tony -
Mac Mini /w Snow Leopard Server and Time Capsule: unavailable on www
Hello all,
Seeking some help with an issue that I cannot resolve and/or do not fully understand.
What I would like to achieve:
Make my newly purchased mac mini server available on the world wide web using my own web address, e.g. blabla.com.
Situation/Details:
I have installed and re-installed my mini server several times as I am doubt the correctness of the settings for the primary dns, currently set for 'blabla.com' and computer name 'miniserver'. The miniserver is connected with a network cable to my timecapsule and has been allocated the IP address 1.0.10.9 - time capsule has IP address '1.0.10.1'.
As the time capsule is connected to the internet - provided through Comcast - the following IP Address has been assigned '60.172.151.254' which seems to be my static external IP address. Furthermore I have a router address '60.172.148.1' for which I am unsure of its purpose.
Problem:
How do I 'link' my server to my www address so I can access deployed services over the internet? I have been reading about 'Port Forwarding', NAT etc but I am lost in what to do. Can someone help me out with this problem I am facing?
Thanks in advance for any comments/suggestions,
TiestThanks DaddyPaycheck for your initial response. Before I jump onto the phone with Comcast couple of questions that I have for clarification purposes:
1) Are you implying that I must link my blabla.com address to that static IP address through my Domain Provider? See following example:
Record Type Record Host Record Answer TTL
A *.blablat.com >>Static IP<< 300
2) The current IP I have been given 60.172.151.254, why is that not static or how do you know it is not static?
3) When executing the command host in terminal for this IP address it returns the following: c-60-172-151-254.hsdl.co.comcast.net which coincidentally is the same as primary DNS it recommended during the initial configuration of the Mini Server. What does this mean? When I enter this in Safari it results in 'Safari can't connect to server'.
4) Executing the same command for my domain name 'blabla.com' it results in my 'internal' IP address '1.0.10.9'.
Thanks in advance for any clarification you can provide,
Tiest. -
The server "Our Time Capsule" is available on your computer.
I cannot access my Time Capsule over the network no matter what I do (connect to server smb/afp, or in finder.) I know it's something to do with my macbook (5,1 unibody, 10.6.1) as all the other computers (win/mac) can connect just dandy. I don't want to go deleting a bunch of preferences without consulting others first.
I've verified permissions and I get this:
Verify permissions for “Macintosh HD”
Warning: SUID file "System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARDAg ent" has been modified and will not be repaired.
Warning: SUID file "System/Library/PrivateFrameworks/DesktopServicesPriv.framework/Versions/A/Reso urces/Locum" has been modified and will not be repaired.
Permissions verification complete
I'm going to end up reinstalling Snow Leopard regardless, as I enabled the 64-bit kernel, but it didn't seem to like that as a few weeks later it gave me a question mark on several consecutive boots and then reverted to the 32-bit kernel ever since. However, the TC issue didn't happen immediately following that, and I haven't had any other complaints to speak of, so I'm not sure it's at all related. However, I'd like to know if anyone has an idea of how I could fix it, as it would be quite nice to make a Time Machine backup before reinstalling 10.6, yeah?
I appreciate any input, let me know if there's any more info I could supply that may help track it down.
Thank you.Same problem.
More data: 10.5 iMac can reach 10.6.1 mini server. 10.6.1 mac Pro cannot. Server name shows up in sidebar under shared. Choosing gets "Connection failed." "Connect as..." is active. Disconnect is not shown. Trying either Connect as or Share Screen yields Connection failed The server "Name" is available on your computer. Access the volumes and files locally.
It won't connect and I can't reach a dialog screen to fill in information. 10.5 doesn't have a problem
Tried deleting keychain password items do to with the server. No change. Problem appears to be in 10.6 but useless error message and no help in help files because they presume things are working as they ought. -
Update to Mountain Lion Server kills Time Machine Backups
Okay, here's the scenario:
Client:
MacBook Pro running Mountain Lion
Server:
Mac Mini running Mountain Lion Server using an SSD boot and Promise Pegasus Thunderbolt RAID
Prior to updating the Mac Mini to Mountain Lion Server (previously just using regular Mountain Lion) I was happily backing up using Time Machine over AFP. Since the update to Server I get the Time Machine message:
"The network backup disk does not support the required AFP features."
The network drive is also no longer available for selection within Time Machine (once it's been deselected).
Any easy ideas on a fix?Time Machine won't back up to Mountain...: Apple Support Communities
-
VPN / DNS Settings on Time Capsule
Afternoon Board!
I've recently appled up after my Samsung died. Got myself a 13" Macbook Pro and a 3TB Time Capsule for the wireless. I'm based out in Abu Dhabi, UAE, and the internet is heavily censored along with not being able to download UK content for my Xbox360.
I get round the internet censorship by using a VPN (Overplay.net), however I've recently read that it's possible to sack the VPN completely if I play around with the DNS settings. The VPN also heavily throttles the internet speed (we god own from 16mb/s to around 3mb/s when using the VPN)
I'd prefer to do this on the Time Capsule itself, since then any other device using the Time Capsue (our mobiles, Ipads, Xbox, Apple TV etc), would then automatically be able to use the interweb as if based in the UK.
However, I have no idea where to start with this, and would really appreciate any help you could provide.
Thanks in advance,
BrianDid you try changing the dns directly in the aztech.. that is the easiest way.
You must be using it as a router.
Change the primary dns server for whatever dns service you want to use.
The TC is then in bridge mode.
Is your TC the latest AC wireless version?
If so you might find you are stuck.. I fixed up an earlier version TC to give the right DNS to clients for watching overseas TV but that is using the v5 utility. Since this is now not possible in the latest TC you might be stuck.. do you have a PC in the network.. you might find you can change it using the 5.6.1 utility from windows.. but I do not have latest version TC to check. -
I installed Lion on my Mac Pro laptop. Regarding Time Capsul - I get a messaage as follows: couldn't complete backup due to a network problem. Make sure your computer and back up disk are on the same network and that the backup disk is turned on. Then try again to back up. I have time capsul turned on. bill
I have exactly same problem with my MBP and MBA, after upgrading to Lion. I've tried to fix this issue while cheking key chain issues and network setup, even formating hdd and time capsule firmware upgrade (ver. 7.6.1.). Nothing can help. It is very annoying.
Maybe you are looking for
-
Get all roles from an organization
Hello, i want to get all roles 'AMRoles) from an organizations. I have Portal Server 2005Q4 on a machine and Access Manager and Directory on another and i want to extract all display profiles from all roles in different files (more than 100). I found
-
HELP, CAN"T LOGIN TO COMPUTER, USING OTHER ONE, FORGOT PASSWORD. HELP!!!
Please Help Me
-
Can't connect MacBook to a WPA
I go to this coffee house to study, and they have a wireless router that is a WPA network. When I connect to it, my connection only works about 20% of the time. I can surf the internet for maybe 2 minutes and then it wont work for seven. Then it will
-
PDF Encryption using CONTROL File in EBIZ R12 & Decrypting the PDF
Hi All, We are using BI Publisher BURSTING with R12 ebiz. We have a requirement to encrypt the file while generating to the filesystem.Then when viewing the File from OAF they went to decrypt before showing to the user. As per the Documentation , the
-
Loading of data with different granularity and its reporting
Hi gurus, Please help me with this problem. We are designing a cube based on some input requirements. Say for example, we are trying to build a infocube which will have to be drilled down by customer © & material(M). We have 3 input datasources (Flat