Can't manage to connect to L2TP/IPSec VPN with built-in Windows 10 client
I've configured a L2TP/IPSec VPN tunnel (USG20W-VPN firewall), with default options. I can connect with no problem from an old Windows 7 PC, but I cannot with Windows 10.
The client configuration is the same in both cases: preshared key and PAP protocol.
I'm wondering if Windows 10 requires any additional step.
The client configuration is the same in both cases: preshared key and PAP protocol.
I'm wondering if Windows 10 requires any additional step.
0
Comments
-
Dear @carles
Can you check the properties of the vpn connection.- go to Control panel
- Network connections
- right click the l2tp connection and choose properties
- go to the security tab and tick the PAP option..(copy the below)
0 -
@carles
For VPN connect with win10<->USG,
To establishing the L2TP connection , remember to enable the “IKE service”. Please refer to attached document as your reference.
Charlie0 -
Thanks for your help! The IKE service did the trick.0
-
Further to Mark's post, we set quite a few USG's up with MacOS and FreeBSD with and without Open Directory (LDAP) authorisation via RADIUS from Windows OS 7,8, 10( inbuilt ) VPN clients.
L2TP adapter/Properties/Security/ Authentication / Encryption Types as follows:
Local Users only (maintained in USG appliance)- use CHAP and or MS-CHAP(V2)
- works fine.
Ext-Users (via RADIUS to LDAP)- use only PAP
- tech reason is that USG passes authentication to LDAP. if encrypted, LDAP can't process it and will fail.
HTH
warwick
Hong Kong
0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight