VISTA L2TP over IPSEC

rasoftware · ‎06-07-2007

Does anyone know of a guide to getting L2TP working with PIX 6.3x and 7.x and Windows Vista clients? I have found the Cisco official guide for 2K/XP at http://www.cisco.com/warp/public/110/l2tp-w2kxp-pix72-pre.pdf but nothing specific to vista.

I have the problem a lot of people have where MS Chap issues have made PIX PPTP support useless for Vista clients.

Thanks.

fpineau · ‎07-18-2007

Bump.

I keep seeing more and more people having this compatibility issue, but no good answers. We know what the problem is (MSCHAPv2), but no L2TP guides or other solutions. Downgrading to CHAP is not a good answer.

olhcc · ‎09-25-2007

If it is inside an IPSec tunnel, shouldn't PAP be OK? PAP is not encrypted and is terrible in and of itself, but if it is inside a well-encrypted IPSec (3DES/AES/etc.) tunnel, does it matter?

Every VPN client supports PAP, though they shouldn't. We may see a fix from MS on this, because this problem has to be affecting lots of people. C'mon Microsoft, why remove MSCHAPv1 and leave PAP and CHAP?