When you say you are connecting via the MS client and you are using vpdn command, you are actually using PPTP. PPTP uses RC4 based encryption, and with data encryption (ie MPPE), could only go 40 or 128 bit., it is a Microsoft initiated standard. IPSec on the other hand is ietf standard and could either do 56 and 168 bit encryption a bit higher. IPSec clients also has
much richer functioanality than PPTP, such mode config, split tunnel, and different modes of xauth.