We are a software development firm and have highly valuable assets in development on our network.
I am looking at enabling a limited number of users on VPN and am concerned about potential security issues.
We run a 2003 domain behind a WatchGuard X550e firewall. I have an IPSec tunnel already running between ourselves and one of our development partners who run a much larger network than ours (we have ~50 users).
I have licenses for 5 IPSec tunnels I can use but I was hoping to be able to use PPTP as all our systems are Windows. I will use our DC as the authentication server.
Can anyone briefly explain any security issues I may find in enabling PPTP VPN? One thing I am concerned about is could somebody not spoof an employee's home IP (I will restrict access by users IP on the firewall). If they can spoof then the users password will be the only obstacle for a potential hacker...
Thanks in advance.