osx vpn-server behind dfl-210
Posted on 2011-05-12
I have a osx 10.6 server behind a dlink dfl-210 firewall. On the server I have vpn setup L2TP over IPsec.
I have a range from 192.168.100.40 - 90 and a PSK. There isnt much more to config on the osx server.
In the firewall I have setup 2 rules.
wan-to-lan: SAT and Allow
source interface: any source, network: all-nets detstination interface: core, destination network: wan_ip, service group: l2tp-ipsec
Only difference is on the SAT rule I have the servers ip-adress where it should be. (I guess you get what I mean.)
The l2tp-ipsec service group includes: ike, ipsec-ah, ipsec-esp, ipsec-natt, ipsec-suite and l2tp-ctl.
When I try to connect to the vpn from outside I get conn_open and then unhandled_local drop in the dfl-210 log.
So it looks to me like I get connected but the dfl-210 dont know what to do with the package.