Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

The L2TP connection attempt failed because the security layer (Can;t connect to VPN)

Kenn_Val18
New here
‎Apr 5 2023 6:01 PM
‎Apr 5 2023 6:01 PM

The L2TP connection attempt failed because the security layer (Can;t connect to VPN)

Hi @All ,

Can you help me or give me some ideas on how to solve this VPN error on Windows 10: 'The L2TP connection attempt failed because the security layer encountered a processing error during initial negotiations with the remote computer'? Some users in our company cannot connect to our VPN when they are on public Wi-Fi or other internet connections, but they can connect using some other networks. We are using a Cisco Meraki MX 17.10.4.

Thank you.

Labels:
0 Kudos
Subscribe
9 Replies 9
alemabrahao
Kind of a big deal
Kind of a big deal
‎Apr 5 2023 6:34 PM
‎Apr 5 2023 6:34 PM

Have you checked the logs on Windows event viewer? 

 

Take a look at the troubleshooting doc.

 

https://documentation.meraki.com/MX/Client_VPN/Guided_Client_VPN_Troubleshooting

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
Kenn_Val18
New here
‎Apr 5 2023 10:35 PM
‎Apr 5 2023 10:35 PM

I'll check this, thank you.

 

0 Kudos
Subscribe
Brash
Kind of a big deal
Kind of a big deal
‎Apr 5 2023 9:25 PM
‎Apr 5 2023 9:25 PM

The error message itself is not super helpful at pointing a cause.

However from what you've described where it commonly can't connect from public wifi, it could be that outgoing VPN ports are blocked.

A packet capture on each side would verify this.

0 Kudos
Subscribe
In response to Brash
Kenn_Val18
New here
‎Apr 5 2023 10:34 PM
‎Apr 5 2023 10:34 PM

Do you mean that you need to open the port of the router or modem on the user's side so it could not be blocked? 

0 Kudos
Subscribe
In response to Kenn_Val18
Brash
Kind of a big deal
Kind of a big deal
‎Apr 6 2023 3:02 AM
‎Apr 6 2023 3:02 AM

Yes, but I'm more talking about the internet connection that the user is on.

Public connections and even some ISP's will often block UDP 500 and 4500 used for L2TP.

0 Kudos
Subscribe
In response to Kenn_Val18
alemabrahao
Kind of a big deal
Kind of a big deal
‎Apr 6 2023 3:54 AM
‎Apr 6 2023 3:54 AM

Yes, it can be, but I find it interesting that you get the error code in the Windows event viewer.

I've seen cases that indicated port blocking and in the end, it was resolved by updating the system.

Have you thought about using Anuconnect?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
CMIT-Dub
Conversationalist
‎Jul 7 2023 12:36 PM
‎Jul 7 2023 12:36 PM

We are receiving the same error The L2TP connection attempt failed because the security layer encountered a processing error during initial negotiations with the remote computer with Error 789 in Windows application log. We seem to have exhausted every resolution provided searching the web along with those here. What is odd is that we have one computer (Acer) Win10 that is current and successfully connects, however no other computer (HP, Dell) Win10 or Win11 will connect and are receiving this error. 

0 Kudos
Subscribe
In response to CMIT-Dub
alemabrahao
Kind of a big deal
Kind of a big deal
‎Jul 7 2023 1:33 PM
‎Jul 7 2023 1:33 PM

Have you thought about using Anyconnect instead of an L2TP connection?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Subscribe
In response to alemabrahao
CMIT-Dub
Conversationalist
‎Jul 7 2023 3:40 PM
‎Jul 7 2023 3:40 PM

I had not, so I enabled and configured Anyconnect and that works for us. Thanks!

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.