I have an OSX 10.10.5 computer acting as a VPN server. It sits in the office LAN and incoming VPN connections are port-forwarded to it by the firewall.
The VPN traffic is UDP port 500 and UDP port 1701 for L2TP VPNs.
Note that the computer is a VPN server and NOT a VPN client. Also, it sits on the LAN with one ethernet connection (so not acting as firewall with 2 ethernet connections).
I configured the firewall rules in the Security Policy to permit incoming UDP traffic on the two required ports.
When the SEPC client is installed onto the VPN server, the VPN server continues to receive incoming VPN connection attempts (which I can sniff on the server itself) but does not appear to respond to these. I can switch OFF the firewall element in the policy (and, actually, all other elements of the policy as well) and still no return traffic for the VPN connection attempts. Unenrolling the SEPC client caused the VPN connections to immediately be successful.
Any suggestions?
Thanks in advance.