{"id":70,"date":"2016-08-01T14:46:58","date_gmt":"2016-08-01T14:46:58","guid":{"rendered":"http:\/\/172.23.1.43\/?p=70"},"modified":"2022-06-07T22:26:30","modified_gmt":"2022-06-07T22:26:30","slug":"vpn-l2tp-error-809","status":"publish","type":"post","link":"https:\/\/blog.n-dol.org\/2016\/08\/01\/vpn-l2tp-error-809\/","title":{"rendered":"VPN \u2013 L2TP Error 809"},"content":{"rendered":"<p>If you&#8217;re using L2TP with IPSec.<\/p>\n<p>Windows doesn&#8217;t activate NAT-T by default (Windows 10 included) you need to add a registry key:<\/p>\n<p>To create and configure the<\/p>\n<p><em>AssumeUDPEncapsulationContextOnSendRule<br \/>\n<\/em><\/p>\n<p>registry value, follow these steps:<\/p>\n<ul>\n<li>Log on to the Windows Vista client computer as a user who is a member of the Administrators group.<\/li>\n<li>Right Click <strong>Start<\/strong>, click <strong>Run<\/strong>, type <strong>regedit<\/strong>, and then click <strong>OK<\/strong>. If the <strong>User Account Control<\/strong> dialog box is displayed on the screen and prompts you to elevate your administrator token, click <strong>Continue<\/strong>.<\/li>\n<li>\n<div>Locate and then click the following registry subkey:<\/div>\n<p><strong>HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\PolicyAgent<\/strong><\/li>\n<li>On the <strong>Edit<\/strong> menu, point to <strong>New<\/strong>, and then click <strong>DWORD (32-bit) Value<\/strong>.<\/li>\n<li>Type AssumeUDPEncapsulationContextOnSendRule, and then press ENTER.<\/li>\n<li>Right-click <strong>AssumeUDPEncapsulationContextOnSendRule<\/strong>, and then click <strong>Modify<\/strong>.<\/li>\n<li>\n<div>In the <strong>Value Data<\/strong> box, type one of the following values:<\/div>\n<ul>\n<li>0<br \/>\nA value of 0 (zero) configures Windows so that it cannot establish security associations with servers that are located behind NAT devices. This is the default value.<\/li>\n<li>1<br \/>\nA value of 1 configures Windows so that it can establish security associations with servers that are located behind NAT devices.<\/li>\n<li>2<br \/>\nA value of 2 configures Windows so that it can establish security associations when both the server and the Windows Vista-based or Windows Server 2008-based VPN client computer are behind NAT devices.<\/li>\n<\/ul>\n<\/li>\n<li>Click <strong>OK<\/strong>, and then exit Registry Editor.<\/li>\n<li>Restart the computer.<\/li>\n<\/ul>\n<p>Validate that the windows service: <strong>IPSec Policy Agent is started<\/strong>.<\/p>\n<p>Source: <a href=\"https:\/\/support.microsoft.com\/en-us\/kb\/926179\">https:\/\/support.microsoft.com\/en-us\/kb\/926179<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>If you&#8217;re using L2TP with IPSec. Windows doesn&#8217;t activate NAT-T by default (Windows 10 included) you need to add a&hellip;<\/p>\n","protected":false},"author":5614970,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[27731,13847],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/posts\/70"}],"collection":[{"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/users\/5614970"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/comments?post=70"}],"version-history":[{"count":3,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/posts\/70\/revisions"}],"predecessor-version":[{"id":140,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/posts\/70\/revisions\/140"}],"wp:attachment":[{"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/media?parent=70"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/categories?post=70"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.n-dol.org\/wp-json\/wp\/v2\/tags?post=70"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}