I was bashing my head against a wall trying to get an L2TP over IPsec connection established on Windows 10 with my security appliance. After maybe a month, I found out that setting the PFS option to None on my SA makes it work.
I do want to use PFS, if possible, but I can’t seem to find a clear answer on whether the built-in Windows 10 VPN client supports it. I read somewhere, but can’t find it now, that Windows 10 supports it if it is acting as the server for a VPN connection.
I can’t figure out if this should be a sysadmin, networking, or some other kind of post.