Solved: Re: L2TP/IPSEC and Cisco VPN client at same time in a PIX 525 - Page 2

mserrao · ‎01-13-2011

Hi all,

My question is if it is possible to have at the same time, both L2TP/IPSEC and Cisco VPN client? I´ve tried that configuration but if the L2TP/IPSEC works the other one (Cisco VPN Client) doesn’t!

Thx in advance,

Mário

Jennifer Halim · ‎01-13-2011

OK, try to add this then:

crypto dynamic-map dyn1 20 set transform-set TRANS_ESP_3DES_SHA

mserrao · ‎01-13-2011

with that configuration, is the other way:

Tunnel OK and L2TP/IPSEC not OK

Jennifer Halim · ‎01-13-2011

Hmmm, interesting.

What about with just 1 line of dynamic-map as follows:

crypto dynamic-map dyn1 5 set transform-set TRANS_ESP_3DES_SHA vpn-tset

mserrao · ‎01-13-2011

It works! Both tunnel and L2TP/IPSEC.

Can you explain my question about the nt-cryp passw need!

Thx for you time,

Mario

Jennifer Halim · ‎01-13-2011

Yes, you are right in regards to nt-encrypted. When L2TP/IPSec is configured to use MS-CHAP authentication, you would need to use "nt-encrypted" in the username.

Good to hear that it's now working correctly for both.

Pls kindly rate useful posts and also mark the post as answered if you have no further question. Thank you.

mserrao · ‎01-13-2011

Done!

Thx for you time!

Best Regards,

Mario