asa 5505 + l2tp

Unanswered Question
Nov 6th, 2008
User Badges:


I was following the below doc to configure basic l2tp access for win XP default vpn network connection:

l2tp config lines:

ip local pool MS-POOL

crypto ipsec transform-set MICROSOFT esp-des esp-md5-hmac

crypto ipsec transform-set MICROSOFT mode transport

crypto isakmp enable outside1

crypto isakmp nat-traversal 20

l2tp tunnel hello 50

group-policy MS-GROUP-POLICY internal

group-policy MS-GROUP-POLICY attributes

wins-server value

dns-server value

username NAME password XXXXXXXXXXXXX nt-encrypted

username NAME attributes

vpn-tunnel-protocol l2tp-ipsec

tunnel-group WIN-VPN type ipsec-ra

tunnel-group WIN-VPN general-attributes

address-pool MS-POOL

default-group-policy MS-GROUP-POLICY

tunnel-group WIN-VPN ppp-attributes

authentication ms-chap-v2

tunnel-group WIN-VPN ipsec-attributes

pre-shared-key TESTkey


default vpn connection + security tab->advanced option:

require encrypion + protocols MS-CHAP + MS-CHAP v2

ipsec settings -> configured pre-shared key TESTkey

win xp error: 800 unable to establish vpn connection...

The question is what lines I'm missing?

I'm trying to do the simple config similar to vpdn group..., vpdn username... on PIX

Thanks & Regards,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
rajbhatt Thu, 04/02/2009 - 22:23
User Badges:


From the registry setting remove the value=1



This Discussion