ASA 5505 L2TP client connect problem

Unanswered Question
Oct 30th, 2007

I am trying to connect MS l2tp clients to asa 5505 and am unsuccessful. I have tried the ASDM VPN Wizard as well as CLI and missing something. I have attached my current config. My client hits the interface and logs an error 713048 Error processing payload: Payload ID: 1. I know I am missing something simple, but I just can't see it. HELP!!!! Please

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jsivulka Mon, 11/05/2007 - 06:58

ASA configuration needs to have the following configured ...

- The preshared key needs to match the one configured in the windows client setup.

- The authentication needs to match what you have configured on the client, pap or chap ..

If chap is configured you need to readd the usernames to the ASA with the mschap keyword

at the end .. e.g

SV2-2(config)# username msclient password msclient mschap

- The DefaultRAGroup needs to be configured with the preshared key and point to a policy

that include this vpn-tunnel-protocol IPSec l2tp-ipsec webvpn

The complete config is below ... DefaultRAGroup will be used if the preshared key is

added and nothing is specified on the client..

tunnel-group DefaultRAGroup general-attributes

address-pool vpnpool

tunnel-group DefaultRAGroup ipsec-attributes

pre-shared-key *

tunnel-group DefaultRAGroup ppp-attributes

authentication pap

authentication ms-chap-v2


This Discussion