Hi,
I`m testing Windows 2012 r2 in a lab environment (Hyper-V) to latter deploy it in PRD.
The server is deployed as RRAS VPN server.
I can`t make L2TP work, already tried may different configurations but (from the client side) I`m getting 789 error.
PPTP is working, SSTP is working but L2TP is not (unless I use preshared key - which I don`t want to use)... Does anyone setup L2TP successfully in Windows 2012 r2 - Windows 8.1?
THIS IS DRIVING ME CRAZY, I already spend 2 days trying to figure out what the problem is but without success,
Please help...
I have an internal PKI integrated with Active directory. From both, client and rras server I have certificates with the following Enhanced Key Usage:
Server Authentication (1.3.6.1.5.5.7.3.1)IP security IKE intermediate (1.3.6.1.5.5.8.2.2)
Client Authentication (1.3.6.1.5.5.7.3.2)
The hyper-V physical machine has 2 virtual switches (one external:192.168.1.x and one internal:10.10.10.x)
As I said before I`m testing this in a Lab so the RRAS public interface is using a private address that is different from the internal NIC - Public:192.168.1.x / Internal:10.10.10.x. each one is connected to the proper hyper-v switch.
The windows client is also a VM. The interface is DHCP and is connected to the hyper-v internal switch. WHEN I WANT to simulate external switch and change the nic to the external switch on hyper-v and I get the IP range 192.168.1.x. I`m connecting to the RRAS server using a simulated internet name e.g: "vpn.domain.com" (the client as an entry under the hosts file to map the "vpn.domain.com" to the proper RRAS "external" interface).
As I said before when I have the client machine in the "external network:192.168.1.x" I can use without problems PPTP and SSTP, but L2TP fails... with 789 error.
Any further details that you need let me know.
Thank you.