Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 3443 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Users unable to VPN (L2TP) in OSX Mojave 10.14.6

Hyugai

We have XG310 Sophos Firewall and a few users unable to VPN (L2TP) in OSX 10.14.6.

The same users are able to VPN from windows.

The error that we getting in OSX is that VPN is not responding in a timely manner. 

We are able to ping the VPN URL. 

Is there a tools that can help me to troubleshoot in OSX?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Keyur

    Hi Keyur,

     

    The issue only affecting a few users.

    When I tried to vpn using a working user account (userA) on my macbook pro - its connected.

    But then when I put in my username/password - it said authentication failed.

    But then again I can vpn from Windows 10 using my username/pwd.

  • 0 in reply to Hyugai

    Hi  

    I understand your concern but we required logs to provide you further assistance.

    1. Replicate your scenario and open multiple sessions of SSH access of the XG device through putty and execute below given commands.

    2. Please navigate to 4. Device Console and execute console> show vpn L2TP-logs

    3. In the second putty tab 5. Device Management 3. Advanced Shell and execute debug command as below. Start the debug replicate the scenario once you got the error stop debug.

    To check Strongswan service is running or not.

    service -S | grep strong

    Output
    strongswan RUNNING
    strongswan-ctl UNTOUCHED

    To enable debug

    service strongswan:debug -ds nosync

    To verify is debug is enabled or not

    service -S | grep strong

    Output
    strongswan RUNNING,DEBUG
    strongswan-ctl UNTOUCHED

    To stop debug

    service strongswan:debug -ds nosync

    To get the output in the logfile

    cat /log/strongswan.log

    SSH using putty- https://community.sophos.com/kb/en-us/133678

    Please enable all session output in putty- https://putty.org.ru/articles/capture-putty-session-log.html