Wake for VPN?

This is a little bit of a strange scenario. I have an iMac which I would like to set up as a VPN server to allow my iPad to access the network whilst I am away from home. I have set up the VPN network (pptp) and everything works as it should. The only problem is that I would rather not have to leave the iMac on all the time and waste power for the odd occasion when I need to join my home network from elsewhere. I have an airport express router, and the iMac is connected by wifi. Wake on Demand works for some services such as VNC, but not for VPN. Is there a way to get my iMac to wake on demand for an incoming VPN connection? The only solution I have now is to wake the iMac by initiating a VNC connection, (ports 5900 and 1723 are forwarded on the airport)  then connecting to the VPN once awoken, but this strikes me as rather inelegant!
Thanks for your help!

This is demonstrated not to be the case by the fact that the iMac can wake up and receive a VNC connection without timing out. I am aware that in a typical environment a server would never sleep or power down except for certain software/hardware maintenance, and only at a time convenient to its clients. However this is why this is such a strange scenario. This is my home computer, and as such I would rather not have it consuming power and spinning the fans 24/7 (however small the power consumption and noise are respectively) for the rare occasion when I may need it remotely. This has lead me to search for another solution using wake on demand. I have found that certain services can be advertised by bonjour by using dns-sd. I have also found the following website listing the service types supported: http://www.dns-sd.org/ServiceTypes.html. However, there is no mention of pptp. It is at this point that I am stuck, and any assistance in this matter would be greatly appreciated!

Similar Messages

  • IMac after 10.6.8 update no more Wake for network access!!

    iMac 2009 -  after 10.6.8 no more wake for network access - is a sleep issue because i tested several approached to see what is the problem. If the computer enter in sleep mode then i cannot wake remotely. Anyone with the same problem? (vnc user, etc)

    I can confirm this works also. Thanks!
    GeekyPaul wrote:
    OK. I fixed the problem, for me at least. My time capsule wasn't even showing a light on for the ethernet port, the card in my mac pro was clearly powered down which would explain why the magic packets go missing.
    10.6.8 contained a modified version of /System/Library/Extensions/IONetworkingFamily.kext, more specifically /System/Library/Extensions/IONetworkingFamily.kext/Contents/PlugIns/Intel82574L. kext.
    I replaced IONetworkingFamily.kext with the version that was present before the 10.6.8 update and my WOL now works once more.
    So I'm pretty sure right now that 10.6.8 broke my WOL and I'm also pretty sure I fixed it but I'm not sure what other issues I'm causing as a result.
    I have no idea how I get a reaction from Apple given that I have no "support credit" but surely they should support a customer with regressed software. Anyone got any ideas?

  • "Wake for network access" doesn't seem to work

    I have several Yosemite Macs.  My main Mac Energy Saver setting is set to wake for network access.  That's the only box checked (Display set to turn off after an hour). 
    I can't seem to get access to this computer on my network (get a "connection failed") after the display turns off.
    Any other settings I need to set to cure this?

    Please follow Linc Davis's advice to see if you have a Sleep Proxy server on your home network.  For example, here is what the command shows on my home network:
    dns-sd -B _sleep-proxy._udp local
    Browsing for _sleep-proxy._udp.local
    DATE: ---Sun 12 Apr 2015---
    16:34:14.530  ...STARTING...
    Timestamp     A/R    Flags  if Domain        Service Type         Instance Name
    16:34:14.531  Add        3   5 local.        _sleep-proxy._udp.   30-35-10-70.1 Pantry
    16:34:14.531  Add        2   5 local.        _sleep-proxy._udp.   50-35-10-70.1 TV_Console
    I have 2 Sleep Proxy servers active on my network (both are Apple Airport Extreme home WiFi Router base stations; the names Pantry and TV_Console are the management names I have given them).
    If you DO NOT have a Sleep Proxy server, then you MUST use a special program to wake up a sleeping Mac.  WakeOnLan is one such program.
    <http://www.readpixel.com/wakeonlan/index.html>
    The Sleep Proxy or WakeOnLan will send a specially composed network packet that the networking hardware listens for and will wake up the Mac when it is seen.
    The Sleep Proxy server pretends to be your Mac while it is asleep, and if you attempt to connect to the Advertised service, the Sleep Proxy server will send that magic network packet to wake up the Mac, and forward the connection request to the new awake Mac.
    <http://en.wikipedia.org/wiki/Bonjour_Sleep_Proxy>

  • CAS SSO not working for VPN Group

    Hello,
    I am trying to get SSO working for a CAS/CAM in a inband virtual gateway for VPN users coming in off a ASA5520. There are two VPN groups each with its own group policy and tunnel group. One group uses a Windows IAS Radius Server and the other a token based RADIUS RSA device.
    Users use the AnyConnect client to connect to the ASA where they are dumped into a vlan. SSO works for the group that uses the Winodws radius server. On the CAS the Cisco VPN Auth server has the Unauthenticated Group as the default group, and then I use mapping rules (Framed_IP_Address) to get the different vpn groups into the right roles. This works for the one group, but since SSO is not working on the second group the CAS never gets the chance to assign them into the correct role.
    The only thing I got is this from the ASA:
    AAA Marking RADIUS server billybob in aaa-server group cas_accounting as ACTIVE
    AAA Marking RADIUS server billybob in aaa-server group cas_accounting as FAILED
    I am so close but cant call this done yet....

    Hey Faisel,
    Thanks for the question.
    This is the stange thing. For days Group A (Windows Radius Server) was working and Group B (RSA Radius Server)  would not work. Then for some reason I had to reboot the CAS and BOOM...Group B started working and Group A STOPPED working.
    So on the ASA I now get these:
    AAA Marking RADIUS server cas2-hvn-3515 in aaa-server group cas_accounting2 as ACTIVE
    AAA Marking RADIUS server cas2-hvn-3515 in aaa-server group cas_accounting2 as FAILED
    Where cas_accounting2 is the AAA server group for Group A
    On the ASA I can see that the FW sends a packet to the cas:
    "send pkt cas2-hvn-3515/1813"
    but the FW never gets an answer back from the CAS for Group A whereas with Group B I can see the response from the CAS.
    "rad_vrfy() : response message verified"
    What can I look for in the CAS logs to see where the problem is. I will try and setup a packet capture on the CAS and debug it too.

  • "wake for network access" not working

    Hi guys,
    I enabled System Preferences > Energy saver > Wake for network access
    and
    System Preferences > Sharing > remote Login
    These are the exact settings I had under Snow Leopard and it used to wake my iMac via 5GHz WiFi. I use a AirPort Extreme and didn't change a thing on its side. But neither with VNC nor with my iPad app "Screens" I am able to wake it under Lion. Screens tells me "Computer in sleep mode"...
    Any help?
    Thanks in advance,
    Bado

    I've been having problems with wake for network access on Lion as well. Similarly to others, if my iMac has recently gone into sleep mode, then it will wake up for Apple TV use or for file and screen sharing from another computer. After an extended period of time, however, all such functionality disappears.
    I've been rooting around in System Profile and have found something that may be of interest. Under the Hardware section, in the Power menu, there is a parameter called 'PrioritizeNetworkReachabilityOverSleep'. On both my iMac and Macbook this is set to zero (i.e. 'no').
    Does anybody have any idea what it means? And if there is any way to change it? If I had to guess, it sounds as though there is a setting somewhere in the system configuration (thought apparently not visible from the GUI) that sets the computer to remain in sleep mode rather than briefly waking to maintain its registration with the relevant Bonjour sleep proxies.
    Hopefully we'll be able to get to the bottom of this, as over six months after Lion's release the problem has yet to be resolved by Apple through version updates, something that is especially frustrating given how excellent a feature wake on network access is when it can be reliably coupled with an Apple TV or Back to my Mac.

  • How to use ISE for VPN auth

    Hello
    looking for documenation how to setup ISE to authenticate VPN users. Right now we are usign ACS 4.2 to provide dACL and authetnication but would like to migrate this feature to ISE. Wea re using microsoft AD.
    Any good docs, white papers, field notes, how-to that can address this issue will be appreciated.
    Thanks

    We use the ISE for VPN (connection with openldap). On the authentication policy you have multiple options. We used the network access - device ip address option. On the Authorization  tab we used again the ip address option in combination with an ldap attribute where there was a definition of the status of the person (student, teacher, admin,...). On the policy elements tab we made some authorization profiles in results - authorization - authorization profiles. When you make a new profile you can select under Common tasks the asa vpn attribute. There you can  for example insert admin.
    So if you have an admin user that wants to login:
    authentication: user found in ldap (or ad)
    authorization:
    -user is coming from asa ip address
    -user attribute is admin
    = user is authorized for the admin class on your asa vpn device.

  • HT3819 homesharing stops when computer sleeps. I already checked the "wake for access". What is wrong?

    Homesharing stops when the computer sleeps. Already checked the " wake for access" and already changed the computer sleep to never.

    I have tried everything I could to fix this, but some things require actually being on Firefox, and since I cannot get on, I cannot click on the tabs to do it. I have even totally uninstalled firefox, and that has not fixed this. I still get the same message that firefox is running and I need to close it or restart (which I have also tried dozens of times). I have removed things like Java, and that has not helped either. If I cannot even get on line in firefox, how can I fix this. I am not crazy about using internet explorer, but right now, it is my only option. I even tried to start in safe mode, and the same message box pops up!

  • Wake for network access won't wake

    I have my MacPro connected wirelessly to my MacBook Pro and both are set to "Wake for network access" but neither of them wakes the other up when trying to connect to each other.
    Any ideas?
    Thanks guys!

    Check the Log Me in Client, it has an option for Wake for Network access - which enforces the option.
    I had the same issue and wanted to kill someone

  • Wake for network access doesn't wake

    I have my computer set to wake for network access, but when my other computers in the house try to access the the Itunes library stored on my Mac, it won't wake up.

    Do you have a Apple AirPort Base Station or Time Capsule?
    Mac OS X v10.6: About Wake on Demand:
    Wake on Demand requires an Apple AirPort Base Station or Time Capsule with firmware 7.4.2 or later installed.
    Is the option on the computer: Wake for network access, Wake for Ethernet network access, or Wake for AirPort network access ?
    Is the effected computer running 10.6?

  • Wake for network access while on battery?

    I want to wake for network access when my mac is not plugged in to a power source. Is there a command I can run in terminal to do this? Its not like it consumes that much battery power to do this. Heres a simular thread that was never answered. https://discussions.apple.com/thread/2519093?threadID=2519093

    OK, I got an Airport Extreme, but still having issues.
    Why would I need to plug the AppleTV into an Ethernet cable? It doesn't have any sleep issues... it just can't wake up my Macs. I thought that would be possible.
    In any case, I can't connect my AppleTV to Ethernet... no ethernet near my television....

  • Mavericks: Wake for network access

    Hello,
    I am trying to disable (uncheck) the option called "Wake for network access" from System Preference > Energy Saver in Marvericks.    The Window "Energy Saver" has a lock and it said "Click the lock to make changes".  I tried to click on it so I can uncheck the option "Wake for network access" but nothing happened.  What

    Launch the Console application in any of the following ways:
    ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
    ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
    ☞ Open LaunchPad. Click Utilities, then Console in the icon grid.
    Make sure the title of the Console window is All Messages. If it isn't, select All Messages from the SYSTEM LOG QUERIES menu on the left. If you don't see that menu, select
    View ▹ Show Log List
    from the menu bar.
    Click the Clear Display icon in the toolbar. Then try the action that you're having trouble with again. Select any messages that appear in the Console window. Copy them to the Clipboard by pressing the key combination command-C. Paste into a reply to this message by pressing command-V.
    When posting a log extract, be selective. In most cases, a few dozen lines are more than enough.
    Please do not indiscriminately dump thousands of lines from the log into this discussion.
    Important: Some private information, such as your name, may appear in the log. Anonymize before posting.

  • 10.8.4 wont wake for network

    I recently upgrade OS to 10.8.4, now if system is inactive for awhile and I want to watch a movie I have from ATV, it won't wake for network activity. I have changed the energy setting on and off back to on and still will not wake. If I just tap mouse or keyboard evething is accessible. was running 10.6.8 then went to 10.8.4 and thats when I noticed issue. I have not found anything but 3rd party app or extension to possible fix issue here. Anyone else experience this or now a fix.
    Thanks in advance.

    Please read this whole message before doing anything.
    I've tested these instructions only with the Safari web browser. If you use another browser, they may not work as described.
    This procedure is a diagnostic test. It won’t solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
    Third-party system modifications are a common cause of usability problems. By a “system modification,” I mean software that affects the operation of other software — potentially for the worse. The following procedure will help identify which such modifications you've installed. Don’t be alarmed by the complexity of these instructions — they’re easy to carry out and won’t change anything on your Mac. 
    These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing. 
    Below are instructions to enter some UNIX shell commands. The commands are harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of the procedure suggested here, search this site for other discussions in which it’s been followed without any report of ill effects. 
    Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then copy it. The headings “Step 1” and so on are not part of the commands. 
    Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply. 
    Launch the Terminal application in any of the following ways: 
    ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.) 
    ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens. 
    ☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid. 
    When you launch Terminal, a text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” and press return. You should then get a new line ending in a dollar sign. 
    Step 1 
    Triple-click the line of text below on this page to select it:
    kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}' | open -ef 
    Copy the selected text to the Clipboard by pressing the key combination command-C. Then click anywhere in the Terminal window and paste (command-V). A TextEdit window will open with the output of the command. If the command produced no output, the window will be empty. Post the contents of the TextEdit window (not the Terminal window), if any — the text, please, not a screenshot. You can then close the TextEdit window. The title of the window doesn't matter, and you don't need to post that. No typing is involved in this step.
    Step 2 
    Repeat with this line:
    { sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix\.cron)|org\.(amav|apac|cups|isc|ntp|postf|x)/{print $3}'; echo; sudo defaults read com.apple.loginwindow LoginHook; echo; sudo crontab -l; } 2> /dev/null | open -ef 
    This time you'll be prompted for your login password, which you do have to type. Nothing will be displayed when you type it. Type it carefully and then press return. You may get a one-time warning to be careful. Heed that warning, but don't post it. If you see a message that your username "is not in the sudoers file," then you're not logged in as an administrator. 
    Note: If you don’t have a login password, you’ll need to set one before taking this step. If that’s not possible, skip to the next step. 
    Step 3
    { launchctl list | sed 1d | awk '!/0x|com\.apple|org\.(x|openbsd)/{print $3}'; echo; crontab -l 2> /dev/null; } | open -ef 
    Step 4
    ls -A /e*/{cr,la,mach}* {,/}Lib*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta}* L*/Fonts .la* 2> /dev/null | open -ef  
    Important: If you formerly synchronized with a MobileMe account, your me.com email address may appear in the output of the above command. If so, anonymize it before posting. 
    Step 5
    osascript -e 'tell application "System Events" to get name of login items' | open -ef 
    Remember, steps 1-5 are all copy-and-paste — no typing, except your password. Also remember to post the output. 
    You can then quit Terminal.

  • Port forwarding not working for VPN

    Hi there,
    I am at a loss as to what I am doing wrong with regards to setting up a VPN. I admit this is all completely new territory for me, and I am learning as I go along, so may have overlooked something very obvious.
    I have openned up the VPN ports on the router (500, 1701, 4500 - UDP; 1723 - TCP), and can confirm from the logs that they are letting traffic in ok.
    So that leaves the server itself - testing using an open port checking tool confirms all ports I have open in the router firewall, and active and accessible on the server, except the VPN ports and service, are indeed open and accessible.
    The VPN service is running, and I have ensured the services are available within the firewall service for 'all', and all services available for the 192.168.1.xxx range.
    I have indicated that the VPN should use the range - 10.0.0.1 to 200
    The DNS and DHCP services on the server are running. At the domain resgitsrar, I have indicated that the subdomain I am using to access the server and its services via the web should point to the static IP I have from the ISP.
    I should mention that if I use the local IP address of the server, I can connect ok, it is only when I use the static IP that I am unable to connect.
    Every other port opens up successfully - FTP (21), Web (80/443), etc - just not the ones for the VPN, so I assume there is some sort of conflict between or within the the VPN/DHCP/DNS services or with the VPN service itself.
    Any advice and potential solutions would be greatly appreciated, as I have spent quite a bit of time trying to figure this one out by myself.
    Thanks in advance, and I hope to hear from folk soon.
    Chris

    OK - here's how my router is configured:
    NAT (Type = Destination) Public IP address to VPN Server IP address (I had a problem when I didn't have the NAT Type set properly)
    I have a separate public IP address reserved for VPN traffic, but that's not necessary if you set up the order of the rules on your router properly. It's just easier to have a separate IP address.
    These are the ports I have open:
    UDP - 500
    UDP - 1701
    TCP - 1723
    TCP - 3283
    UDP - 3283
    UDP - 4500
    TCP - 5900
    TCP - 5988
    I have these ports open to accomodate remoting in via Apple Remote Desktop.
    However, since Mavericks, I can't use ARD anymore. But I can use Back to My Mac and Screen Sharing (go figure!) to get to my server and then from the server I can use ARD within the network.
    Don't know if that helps or not, but it works for me.

  • ACS/ASA authentication for vpn access vs. console management access

    I have an ACS 4.2 Server and an ASA 5540. I have setup AnyConnect SSL VPN on the ASA and want to authenticate users using AAA tacacs+ authentication with the ACS and an external Windows AD database. I have done this successfully. I also want to use the ACS for authenticating SSH management sessions into the ASA. I have setup a group in AD and on the ACS called VPNUSERS and NETADMINS. The problem is, I want the VPN users to ONLY be able to authenticate for VPN but not have access to logging into the ASA CLI or ASDM. The NETADMINS should be able to do both. The question I have is how do I setup the VPNUSER group in ACS to have access to connect to the ASA for VPN but not for the management console? It seems that if they can authenticate for vpn, they can also ssh the firewall which is what I want to prevent.

    Try using Network Access Restrictions (NAR)where you can restrict the administrative access on per device or on NDG basis.
    By default user accounts from external database such as AD in ACS will get authenticated through telnet on network device or a AAA client which can be restricted by enabling NAR in ACS.
    In your case it should be VPNUSERS group in ACS.
    HTH
    Ahmed

  • Can I use ISE IPN without posture for VPN with Base license only?

    I'm looking at ISE licensing, and both Base and Advanced licenses have VPN listed. I could not find any document that provides guideline for VPN implementation using ISE Base license only.
    1. Can I use ISE IPN (Inline Posture Node) functionality without posture assessment with ISE Base license only? (I know it has to be ISE hardware appliance, and I know that Posture assessment requires ISE Advanced license.)
    2. Do I have to use IPN for VPN deployment using ISE as the Radius server?
    3. If I do not have to use IPN for VPN, can I use ISE for Authentication and Authorization in the same way as I use ACS?
    Thanks,
    Val Rodionov

    Val,
    There is no need to consider IPN if you are not using posturing. You can use ISE much like ACS for radius authentication for vpn users.
    If posturing is down the road and your hope is to have an architecture in place and license later, then I am sure that you can use the ipn with base licensing, however I would strongle recommend working with the PDI (for partners) for help and confirmation.
    Thanks,
    Tarik Admani
    *Please rate helpful posts*

Maybe you are looking for

  • Assigning a type (domain) to an ALV Column

    Dear All, In my scenario I have an ALV Table with two columns. Column 1 : Reporting Variable Name Column 2 : Value for the lower limit I would like to be able to assign the data type for the cell in column 2 depending on the value of column 1. For ex

  • How do I make OS X automatically take a screenshot of a self dismissing system pop up?

    I have been experiencing an intermittent system pop up message appear and then immediately disappear. I am concerned about what it is because it dismisses itself less than a second after appearance and I do not have a chance to read what it says. The

  • Help with my WRT610N

    Please help me!, i have a dual band router (WRT610N) and i am losing connection to it every day. i keep having to reset it, i have restore it to factory defaults several times and keep having the problems Any ideas?????

  • Design & Split View Unavailable

    I will apologize up front for the length of this post. I wanted to give as comprehensive a picture as possible. I am running v. 8.0.2 on a OS X (10.4.8 - "Tiger"). I'm working on an intranet site using the company's newly approved template. Until a f

  • Using Crystal Reports 2008 SP3 with the Brother 9500PC, 9700PC, and P9800PC

    We have using Crystal Reports with the Brother Label printers for years until we were forced to use Crystal 2008.  The label printers have worked in the past and we usually create a label template in the printer driver and this configuration is store