Hi technet.

I have a problem and would like to ask your help.
In my company Microsoft TMG 2010 Server is used for  VPN connections with remote sites. In our company we also use d-link dfl-210 and d-link dfl-260e to connect this remote sites to HQ (TMG 2010). Most of remote sites have public ip address and they are connected using ipsec tunnel. At the same time some sites don't have public ip address and they are connected using PPTP. Taking into consideration the fact that PPTP is not secure We'd like to use L2TP/IPSec instead. Unfortunately we are facing problem while configuring dfl-210 or dfl-260e to connect to TMG using L2TP/IPSec. IPSec connection in transport mode can't be established on the Phase II. I see the following problem in terminal of d-link dfl-210:
2012-09-07 13:10:01: IkeSnoop: Received IKE packet from [ip.addrees of TMG Server]
Exchange type  : Informational
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x1f5af242f7c5bc7c -> 0xbcfb8f851f979637
Message ID     : 0xe30a85d9
Packet length  : 68 bytes
# payloads     : 2
Payloads:
  HASH (Hash)
    Payload data length : 20 bytes
  N (Notification)
    Payload data length : 12 bytes
    Protocol ID  : ESP
    Notification : Invalid ID information

Specialists from d-link said me the problem was occured because TMG works without the use of standarts RFC. Please let me know if it so and what can I do to resolve this issue.

Thanks in advance.

Update TMG to SP2 Roll up 3.

http://blog.forefront-tmg.de/?page_id=27

Update NIC drivers.

SP2 Roll up 3 is already used.

NIC drivers are up to date.