Unanswered Question
Jun 7th, 2007

Does anyone know of a guide to getting L2TP working with PIX 6.3x and 7.x and Windows Vista clients? I have found the Cisco official guide for 2K/XP at but nothing specific to vista.

I have the problem a lot of people have where MS Chap issues have made PIX PPTP support useless for Vista clients.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
fpineau Wed, 07/18/2007 - 09:40


I keep seeing more and more people having this compatibility issue, but no good answers. We know what the problem is (MSCHAPv2), but no L2TP guides or other solutions. Downgrading to CHAP is not a good answer.

olhcc Tue, 09/25/2007 - 10:48

If it is inside an IPSec tunnel, shouldn't PAP be OK? PAP is not encrypted and is terrible in and of itself, but if it is inside a well-encrypted IPSec (3DES/AES/etc.) tunnel, does it matter?

Every VPN client supports PAP, though they shouldn't. We may see a fix from MS on this, because this problem has to be affecting lots of people. C'mon Microsoft, why remove MSCHAPv1 and leave PAP and CHAP?


This Discussion