A couple of things you need to have in place for VIA to work properly (some of these you may have already in place)
- The controller needs a public IP address allowing port UDP/4500
- make sure that the inner IP addresses is a routable network in your infrastructure (l2tp pool)
- and Zach pointed out you need L2TP enabled
- In ClearPass you need to add the Inner IP Addresses as a radius client ( Network > Devices > )
- And your service needs to allow PAP as a authentication protocol
Sent from Outlook for iPhone