Connecting a client with L2TP

Archived from groups: microsoft.public.win2000.security (More info?)

Hello all,

I am trying to connect one of my workstation VPN clients to my server via
L2TP, I have successfully made a secure connection with my server via PPTP.
But I dont understand the concept behind it for L2TP.

This is my current infrastructure

- Server - Windows server 2003 Standard
- Workstation - Windows XP Pro

I tried searching the Knowledge Base, but all they had was Windows 2000
steps, and they wernt the right click paths, etc.

Can anyone explain to me what I need to do in order to set this up? It
would be much appreciated. I already have RRAS setup on my 2003 server, so
all I would need to know is how to setup IPSec preshared or a certificate.

Thanks,

Jordan

Archived from groups: microsoft.public.win2000.security (More info?)

L2TP will not work across NAT is you are using such without first installing
the NAT-T client on the XP Pro client and if SP2 configuring the registry to
use NAT-T. Also L2TP uses different ports and protocols if a firewall is in
the path, however it sounds as if this may be on a test lan. It would be
easiest to configure preshared key on the W2003 server and the XP Pro client
before trying certificates. However it is not that hard to install a CA and
issue certificates. Both the VPN server and VPN client would need "computer"
certificates for L2TP to work and each computer would need to trust the
certificates involved via having the issuing CA's certificates in their
trusted toot certificate folder in the certificate store available via the
certificate mmc snapins.

To configure PSK on XP Pro, open the VPN client connectoid properties and go
to the security page and open the ipsec settings box where you can check to
enable and enter the PSK. On the W2003 VPN server open the Remote Access mmc
and go to the server name - properties/security and check allow custom ipsec
policy at the bottom of the page and enter the same PSK as you did for the
XP VPN client. --- Steve


"Jordan Samulaitis" <jordan@jvsDELETEnetworks.com> wrote in message
news:%23aeIOkn$EHA.3988@TK2MSFTNGP11.phx.gbl...
> Hello all,
>
> I am trying to connect one of my workstation VPN clients to my server via
> L2TP, I have successfully made a secure connection with my server via
> PPTP.
> But I dont understand the concept behind it for L2TP.
>
> This is my current infrastructure
>
> - Server - Windows server 2003 Standard
> - Workstation - Windows XP Pro
>
> I tried searching the Knowledge Base, but all they had was Windows 2000
> steps, and they wernt the right click paths, etc.
>
> Can anyone explain to me what I need to do in order to set this up? It
> would be much appreciated. I already have RRAS setup on my 2003 server,
> so
> all I would need to know is how to setup IPSec preshared or a certificate.
>
> Thanks,
>
> Jordan
>
>