Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN with Mac OSX

Hi Guys,

We are deploying a VPN over our

The problem we have at present is that the Mac client, which is only available on OSX does not have a built in personal firewall, there is a firewall included with OSX, but it does block the building of the encrypted tunnel between devices so this has been switched off.

The policy on my concentrators will not let a connection be established unless it can enable the firewall on the client machine, and due to the Macs not having one the connection fails.

My Question: is there any workaround to make my Macs OSX client tunnel securely with built in personal firewall enabled.

thanks in advance


Cisco Employee

Re: VPN with Mac OSX

Sorry for the delay in responding.

At this point the MAC client has no inbuilt firewall capability. If your concentrator group is set up to only allow connections with firewalls enabled, you'll have to set up a second group that has no firewall options set and have your Mac clients connect into this group. Don't allow split tunnelling within this group and that'll stop anyone on the Internet from being able to get to the Mac while the tunnel is established.

I believe a firewall option will be available for the Mac client in the future, but at this time there's nothing you can do.

New Member

Re: VPN with Mac OSX

It's now 3 months later....when will we see a Mac OsX vpn client that works with Cisco's integrated firewall push policy? Quarantining the Mac users into a subgroup is not an adequate solution for our company.