PPTP Security and Cisco PIX Firewall
Posted on 2005-03-23
This is probably a simple question, but I need to know a little about PPTP and PIX firewall configs.
Currently, I've inherited a PIX firewall that is allowing incoming PPTP connections. I know that is it not configured to support MPPE encryption. (Which I know how to configure on the PIX)
Now, when a remote user tries to connect to the PPTP VPN through their local machine, it will not connect unless the option 'Require Data Encryption' under the Security tab of the PPTP connection is UNCHECKED. If the box is checked, the computer will disconnect from the VPN immediately.
Now, does this mean that our users are currently sending data in the clear through the Internet when they connect with their PPTP connections? Or am I misunderstanding how this works.