VPN on demand – does it ever work

osx-serversnow leopardvpn

We are running Snow Leopard Server and have setup VPN here and external users can pretty easily connect to it. We want to make it even easier though. The one option that I've spent several hours trying to get to work is "VPN on demand", which you of course can find in the 'Advanced' pane of the VPN network options.

We recently tried it again after one client was updated to Lion but got the same result. That is, if one tries to navigate to an address that resolves to our server, it does not automatically connect to the VPN.

Has anyone managed to get this to work? Is there a trick to it? I've seen several threads on other sites with the same problem but no answers.

Best Answer

For me, vpn-on-demand works if the following conditions are met:

use a named configuration for the VPN interface (not default)
the triggering domain must be a hostname that can NOT be resolved using public DNS
vpn connection is only triggered by Safari (and maybe Mail), but not e.g. afp, vnc, smb connections let alone cli triggered connections like ssh

Best Answer

Related Solutions

I cannot connect to the workplace VPN

MacOS – Why would Exchange account work in Lion Mail and not Snow Leopard Mail

Related Question