Please don’t use L2TP for VPN for prod. nowadays.
Weak cryptographic standards,
Vulnerability to brute-force attacks on pre-shared keys,
Potential backdoors or compromises in IPsec, and Poor performance compared to modern protocols.
If you’re using a VPN, it’s better to opt for OpenVPN, WireGuard, or IKEv2/IPsec with strong cryptographic settings for a more secure and efficient connection.
List of L2TP-Related CVEs
CVE-2023-20227
CVE-2023-21679
CVE-2023-21757
CVE-2022-4129
CVE-2016-10200