Endpoint Protection Cloud

I have an OSX 10.10.5 computer acting as a VPN server. It sits in the office LAN and incoming VPN connections are port-forwarded to it by the firewall.

The VPN traffic is UDP port 500 and UDP port 1701 for L2TP VPNs.

Note that the computer is a VPN server and NOT a VPN client. Also, it sits on the LAN with one ethernet connection (so not acting as firewall with 2 ethernet connections).

I configured the firewall rules in the Security Policy to permit incoming UDP traffic on the two required ports.

When the SEPC client is installed onto the VPN server, the VPN server continues to receive incoming VPN connection attempts (which I can sniff on the server itself) but does not appear to respond to these. I can switch OFF the firewall element in the policy (and, actually, all other elements of the policy as well) and still no return traffic for the VPN connection attempts. Unenrolling the SEPC client caused the VPN connections to immediately be successful.

Any suggestions?

Thanks in advance.

Hello xdavid1,

You might want to check your system policy settings or configure a custom firewall rule.

For more information, please refer to below help topics -

https://help.symantec.com/cs/SEPC/SEPC/v119692823_v101064224/Configuring-system-policy-settings/?locale=EN_US

https://help.symantec.com/cs/SEPC/SEPC/v122180973_v101064224/Configuring-custom-firewall-rules/?locale=EN_US

Thanks,

Ankit Shrivastava

Hello Ankit,

I had a read of those. I don't run a web proxy so could not see anything in the system policy which would be relevant. Regarding the firewall rules, I did try adding a custom rule (see initial post) but I stll get the problem even with the firewall element switched OFF in the security policy.