Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Windows L2TP to ASA5520 Trouble

Hello,

I have the following issue:

I have a client that HAS TO use the detault windows L2TP protocol to connect to our office.

He can not use the cisco client.

I am having trouble creating the VPN for L2TP.

The configuration file is attached below.

On the Windows side:

I have created a new VPN connection called DefaultRAGroup with the ip address of my host 99.43.6.16

Under the security tab i have the following selected:

Advanced (custom settings)

--> Require Encryption (disconnect if server declines)

--> Allow these protocols

---->MS-CHAP

---->MS-CHAPv2

The IPSec pre-sared key I have entered the key.

For username i have steve@DefaultRAGroup and in the password field i have steve's password.

The attached "log.txt" file are the errors that I see when I am viewing the Real-Time Log Viewer:

The Windows side error message I am getting is:

Error: 789: The L2PT connection attempt failed because the security layer encountered a processing error during initial negotiations with the remote computer.

Can someone shine a light on this situation? It's the only thing holding me back from making this router live.

Thank you in advance!

  • VPN
1 REPLY
Cisco Employee

Re: Windows L2TP to ASA5520 Trouble

Please add the following ISAKMP policy and test it again:

crypto isakmp policy 5
authentication pre-share
encryption 3des
hash sha
group 1
lifetime 86400

Hope that helps.

430
Views
0
Helpful
1
Replies
This widget could not be displayed.