Problem with vpn connection over the internet

[Licas]

I have a win 2003 server has a vpn server with 2 nic cards
one connecting to my internal network and the other one connecting to the internet through a d-link dsl 504 adsl modem/router.
On the router i forwarded all the necessary ports for pptp/l2tp to access the ip of the vpn server wan nic.
My router allows me to pass through ipsec and pptp ip protocols.
When i connect through my lan to the vpn server using l2tp and ipsec with a pre-shared key i have no problems at all, the conneccion is authenticated and the computer registrated on to the network, and i can see and use all resources on the network.
This is done with a laptop with win xp pro.
Once i gave the vpn connection settings to remote users everytime they try, to connect allways receive the same error:

791 The L2tp connection attempt failed because security policy for the connection was not found.

Do i need to use IAS or configurate the IPSec security Policy?

Thanks in advance and i will be very grateful on any reply to this question.

 

[Licas]

Hi me again.
getting really confused, i read all the posts in this forum but no luck it looks im the only one o ever had this problem. The forum is very good , very helpfull, even saw some post that probably will be a problem to my connection in the future, but still looking for a solution to this one.

Do i have any problem with my certificates,credentials or is just a security policies issue?

Im full of doubts hope that someone out there could help me.


Thank you for all the help that you could get me.

 

[Licas]

Hello.
Just went through a funny episode that makes you wonder why do company`s advertise and implement certain functions in their products for nothing.
After reading about 150 200 threads of forums i arrive to the conclusion that probably what i need is a firmware update on my adsl modem/router.
I phone techsupport of D-Link and expouse my problem to then but the answer that i had got it was not to positive.
"Unless you put the vpn server on the DMZ you will not be able to do it if you on server side or client side even with the pass through configs on the router."
So why the point of the pass through in the router?
Don`t know im tiered and sleepless over this matter.
But anyway i have made some progress, i just followed their advise and placed the VPN server in the DMZ and it worked just fine.
This with a PPTP connection, then after tried again but this time with a L2TP connection but no luck, still the same error 791.
Did i misconfigured the security access policies?
Or is that the Remote access policies?
I will be gratefull if someone out there could give same kind of guidance in what could i prabablly be doing wrong, because i understand that L2TP is more secure than PPTP connections.
Will i need to secure the VPN server with a firewall once on the DMZ zone?
Or could i config ip filtering?
Thank you all in advance

 

[Licas]

well it looks like the problem its sorted.
I was still needing to configurate the ipsec security policies in my w23k machine
hope that its proper configurated and that the vpn connection will go through the router/firewall.