L2TP Server on Mac Server Not Working - Ports Not Open

Posted on 2013-01-07
Last Modified: 2013-04-15
Hi. We have a client with a MAC server running an L2Tp VPN. Since an OS update it's now not accepting VPN connections. The VPN server is running and the port forwarding is setup correctly, however if I run a port scan from outside it's telling me that port 1701 is not accessible. When i try to connect on VPN it says connection refused. I ran a port scan internally on the Mac Server through network utilities and it doesn't show port 1701 as being open.

How can i troubleshoot this further and / or open port 1701 to allow L2TP traffic again?

Question by:James Parsons
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3

Expert Comment

ID: 38754332
You need to open UDP ports 500, 1701 and 4500 for L2TP
You need to open TCP ports 1723 for PPTT
All these ports need to be opened on your router/firewall and forwarded to the server's IP address.

Author Comment

by:James Parsons
ID: 38755118
Yes. Those have already been done. All required ports are open and forwarded.

Expert Comment

ID: 38757185
Are your Service ACLs set up for this user?? Does he/she have access to this service?
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.


Author Comment

by:James Parsons
ID: 38757221
I believe so. It was working fine until an Apple OS update. Now it just says that the server isn't responding when they try to connect. I can see from the Utilities screen that the ports for L2TP are not open.

Expert Comment

ID: 38757229
Did you try connecting as an Admin user or another user just to check Authorization?

Author Comment

by:James Parsons
ID: 38757283
Yes. And when I do a port scan externally it shows the port as not being opened. I also tried connecting across the LAN rather than using the external IP to rule out port forwarding - same result. I'm convinced it's a port issue - just not sure where to look or fix it.
LVL 19

Expert Comment

ID: 38800715
what about a PPTP connection. Does that work ?

Does your router support VPN. Have you tried router to do the VPN to see if it works on that ?

What version of OS X Server are you running ?

What kind of router is it ?

Accepted Solution

James Parsons earned 0 total points
ID: 38954415
We had to setup a PPTP connection and that seemed to work ok.

Author Closing Comment

by:James Parsons
ID: 39079788
None of the suggestions worked so we setup a PPTP connection as we had no choice and needed to get it working somehow.

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Apple's Mac OS X has become an official member of the malware club. The Flashback Trojan has affected over half million Macs, worldwide. It is behavior that ultimately gets malware onto a person’s computer. Obsolete or out-of-date software helps…
Create a default user profile for Mac OS X 10.7/10.8 Create a user account on OS X that will be a template for every other user of that computer. I usually call it “profile” and make it an administrator account for the time being. 1. Install a…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question