Hi ! One more time I am hopping on the community to try and help me resolve a strange issue I have configuring L2TP/ipsec to connect from my iphone. PPtP is working fine but I would like to make the more secure L2TP over IPSec work as well 
My config :
PPP:
I have added two interfaces, one l2tp-user1 with type l2tp server and user user1, the other one pptp-user1 with type pptp server and user user1.
In secret I have my user1 defined with service any, profile default-encryption, local address 192.168.6.90. remote address 192.168.6.91 (as you have guessed I am using 192.168.6. as subnet)
In profile I have the default and default-encryption with all on default (except encyption forced to yes in the second one). For both I have Bridge set to my lan bridge (port eth2-eth5)
IPSec:
No policies defined
Peers : Address 0.0.0.0/0, port 500, auth preshared key, exchange mode aggresive, send initial contact = yes, Proposal = obey, Hash algo=sha, encrypt algo=aes-128, dh-group=modp768, generate policy=yes, dpd interval = disabled
Proposal : basically allowing everything but null and lifetime 30min with PFS group mod768
In my firewall I have allowed port 500,1701,4500 and 1723 as well as proto 50
Now the error ..
ipsec debug : not acceptable Identity Protection mode
As I mentionned PPtP is working fine (strange I did not allow gre in my firewall rules?) but no luck with L2TP β¦
A last thing, I did put the mod768 value because, from the logs, it seems that this was what the iphone was trying to use β¦ but now I am getting this identity issue β¦
Any idea ?
Thanks !!!
Pleaseeeeeeeeeeeeeeeeeeeeeeeee 