sbaylis
asked on
PPTP Security and Cisco PIX Firewall
This is probably a simple question, but I need to know a little about PPTP and PIX firewall configs.
Currently, I've inherited a PIX firewall that is allowing incoming PPTP connections. I know that is it not configured to support MPPE encryption. (Which I know how to configure on the PIX)
Now, when a remote user tries to connect to the PPTP VPN through their local machine, it will not connect unless the option 'Require Data Encryption' under the Security tab of the PPTP connection is UNCHECKED. If the box is checked, the computer will disconnect from the VPN immediately.
Now, does this mean that our users are currently sending data in the clear through the Internet when they connect with their PPTP connections? Or am I misunderstanding how this works.
Thanks guys!
Currently, I've inherited a PIX firewall that is allowing incoming PPTP connections. I know that is it not configured to support MPPE encryption. (Which I know how to configure on the PIX)
Now, when a remote user tries to connect to the PPTP VPN through their local machine, it will not connect unless the option 'Require Data Encryption' under the Security tab of the PPTP connection is UNCHECKED. If the box is checked, the computer will disconnect from the VPN immediately.
Now, does this mean that our users are currently sending data in the clear through the Internet when they connect with their PPTP connections? Or am I misunderstanding how this works.
Thanks guys!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
We can't use IPSEC since there are quite a few roaming people with then need for on demand remote access, so I'm going to enable MPPE (although it's not the greatest, it's better than nothing).