Hi,
i have set up L2TP VPN with PSK Today and i dont know why i cant connect.
I have Windows AD as Authentication Provider added the AD Group to L2TP. Enabled L2TP with the following config. 
Set up the client with the following Parameters after adding the Tunnel via the GUI.
Set-VpnConnectionIPsecConfiguration -ConnectionName "T40" -AuthenticationTransformConstants None -CipherTransformConstants AES256 -EncryptionMethod AES256 -IntegrityCheckMethod SHA256 -PfsGroup PFS2048 -DHGroup Group14 -PassThru -Force
Add-VpnConnectionRoute -ConnectionName "T40" -DestinationPrefix "172.17.2.0/24"
Following Logs on the FW when i try to connect.
console> show vpn IPSec-logs
2022-02-06 15:28:06Z 28[NET] <317> received packet: from 954.258.192.25[500] to 85.254.354.895[500] (256 bytes)
2022-02-06 15:28:06Z 28[ENC] <317> parsed ID_PROT request 0 [ SA V V V V V V V V ]
2022-02-06 15:28:06Z 28[ENC] <317> received unknown vendor ID: 01:52:8b:bb:c0:06:96:12:18:49:ab:9a:1c:5b:2a:51:00:00:00:01
2022-02-06 15:28:06Z 28[IKE] <317> received MS NT5 ISAKMPOAKLEY vendor ID
2022-02-06 15:28:06Z 28[IKE] <317> received NAT-T (RFC 3947) vendor ID
2022-02-06 15:28:06Z 28[IKE] <317> received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
2022-02-06 15:28:06Z 28[IKE] <317> received FRAGMENTATION vendor ID
2022-02-06 15:28:06Z 28[ENC] <317> received unknown vendor ID: fb:1d:e3:cd:f3:41:b7:ea:16:b7:e5:be:08:55:f1:20
2022-02-06 15:28:06Z 28[ENC] <317> received unknown vendor ID: 26:24:4d:38:ed:db:61:b3:17:2a:36:e3:d0:cf:b8:19
2022-02-06 15:28:06Z 28[ENC] <317> received unknown vendor ID: e3:a5:96:6a:76:37:9f:e7:07:22:82:31:e5:ce:86:52
2022-02-06 15:28:06Z 28[IKE] <317> 954.258.192.25 is initiating a Main Mode IKE_SA
2022-02-06 15:28:06Z 28[ENC] <317> generating ID_PROT response 0 [ SA V V V V V ]
2022-02-06 15:28:06Z 28[NET] <317> sending packet: from 85.254.354.895[500] to 954.258.192.25[500] (180 bytes)
2022-02-06 15:28:10Z 17[NET] <318> received packet: from 954.258.192.25[500] to 85.254.354.895[500] (256 bytes)
2022-02-06 15:28:10Z 17[ENC] <318> parsed ID_PROT request 0 [ SA V V V V V V V V ]
2022-02-06 15:28:10Z 17[ENC] <318> received unknown vendor ID: 01:52:8b:bb:c0:06:96:12:18:49:ab:9a:1c:5b:2a:51:00:00:00:01
2022-02-06 15:28:10Z 17[IKE] <318> received MS NT5 ISAKMPOAKLEY vendor ID
2022-02-06 15:28:10Z 17[IKE] <318> received NAT-T (RFC 3947) vendor ID
2022-02-06 15:28:10Z 17[IKE] <318> received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
2022-02-06 15:28:10Z 17[IKE] <318> received FRAGMENTATION vendor ID
2022-02-06 15:28:10Z 17[ENC] <318> received unknown vendor ID: fb:1d:e3:cd:f3:41:b7:ea:16:b7:e5:be:08:55:f1:20
2022-02-06 15:28:10Z 17[ENC] <318> received unknown vendor ID: 26:24:4d:38:ed:db:61:b3:17:2a:36:e3:d0:cf:b8:19
2022-02-06 15:28:10Z 17[ENC] <318> received unknown vendor ID: e3:a5:96:6a:76:37:9f:e7:07:22:82:31:e5:ce:86:52
2022-02-06 15:28:10Z 17[IKE] <318> 954.258.192.25 is initiating a Main Mode IKE_SA
2022-02-06 15:28:10Z 17[ENC] <318> generating ID_PROT response 0 [ SA V V V V V ]
2022-02-06 15:28:10Z 17[NET] <318> sending packet: from 85.254.354.895[500] to 954.258.192.25[500] (180 bytes)
ideas?
Regards
This thread was automatically locked due to age.
