Доброго день.
Не могу понять в чем дело, есть cisco3640, настроил vpn сервер на ней.
Настраивал по мануалам из интернета.
Клиент винда, соединение проходит а вот проверка логина и пароля зависает и винда
выдает ошибку 619. Что где не так не пойму.
конфиг циски.

cisco3640#sh run
Building configuration...

Current configuration : 2205 bytes
!
version 12.2
no service single-slot-reload-enable
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname cisco3640
!
logging rate-limit console 10 except errors
aaa new-model
aaa authentication login default local
aaa authentication ppp default local
aaa authorization exec default local
enable secret 5 $1$lJwT$/U126k.IPGiTuyvz3G9qk.
enable password seand75
!
username admin privilege 15 password 0 *****
username tester password 0 *****
!
ip subnet-zero
!
ip name-server 195.112.224.126
ip name-server 192.168.122.1
!
ip cef
no ip dhcp-client network-discovery
async-bootp dns-server 8.8.8.8
vpdn enable
!
vpdn-group TEST
! Default L2TP VPDN group
! Default PPTP VPDN group
accept-dialin
  protocol any
  virtual-template 1
!
interface Loopback0
ip address 192.168.10.1 255.255.255.0
!
interface Ethernet0/0
no ip address
ip nat inside
shutdown
full-duplex
no cdp enable
!
interface Ethernet0/1
no ip address
ip nat outside
shutdown
full-duplex
no cdp enable
!
interface Ethernet0/2
no ip address
ip nat outside
shutdown
full-duplex
no cdp enable
!
interface Ethernet0/3
no ip address
ip nat inside
shutdown
full-duplex
no cdp enable
!
interface FastEthernet1/0
ip address 192.168.12.55 255.255.255.0
ip nat outside
duplex auto
speed auto
no cdp enable
!
interface FastEthernet1/1
ip address 192.168.2.224 255.255.255.0
ip nat inside
duplex auto
speed auto
no cdp enable
!
interface Virtual-Template1
ip address 172.16.0.1 255.255.255.0
ip nat inside
no keepalive
autodetect encapsulation ppp
peer default ip address pool TESTPOOL
ppp authentication pap chap ms-chap callin
!
ip local pool MIKPOOL 172.16.0.2 172.16.0.10
ip nat inside source list 1 interface FastEthernet1/0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.2.1
ip http server
ip http authentication local
ip ospf name-lookup
!
access-list 1 permit 192.168.0.0 0.0.255.255
no cdp run
!
snmp-server manager
call rsvp-sync
!
mgcp profile default
!
dial-peer cor custom
!
privilege exec level 1 enable
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password *******
!
end

cisco3640#sh ver
Cisco Internetwork Operating System Software
IOS (tm) 3600 Software (C3640-JS-M), Version 12.2(2)XA4, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2001 by cisco Systems, Inc.
Compiled Tue 27-Nov-01 06:18 by hwcheng
Image text-base: 0x600089A8, data-base: 0x616BE000

ROM: System Bootstrap, Version 11.1(19)AA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
ROM: 3600 Software (C3640-JS-M), Version 12.2(2)XA4, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)

cisco3640 uptime is 38 minutes
System returned to ROM by reload
System image file is "flash:c3640-js-mz.122-2.XA4.bin"

cisco 3640 (R4700) processor (revision 0x00) with 59392K/6144K bytes of memory.
Processor board ID 10528652
R4700 CPU at 100Mhz, Implementation 33, Rev 1.0
Bridging software.
X.25 software, Version 3.0.0.
SuperLAT software (copyright 1990 by Meridian Technology Corp).
TN3270 Emulation software.
4 Ethernet/IEEE 802.3 interface(s)
2 FastEthernet/IEEE 802.3 interface(s)
DRAM configuration is 64 bits wide with parity disabled.
125K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102