Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Pass-through VPN

Posted on 2011-10-22
Medium Priority
Last Modified: 2012-05-12
Hi Guys,

I haven't had a change to test this in the lab thought I throw it at here.

If you set your adsl router as "pass-through" vpn, then installed the RRAS role in W2K8 server, configured it as VPN with PPTP security protocol, what happen if you connect your VPN client over the public network, which are following  occur:

The initial connection is not secure as the VPN client (this could be a notebook) attempts to connect to the router, then the router passes through the traffic to the VPN server then encrypt the traffic once the connection is established between the vpn client and the VPN server
Or, The initial connection is encrypted as soon as it connects to the VPN server via the router router
Question by:mcse2007
LVL 72

Accepted Solution

Qlemo earned 920 total points
ID: 37011014
The router is not part of the equation (in regard of encryption), as it just forwards packets to RRAS and back. It only transfers the traffic, and does not know of the content.

Initial connection is "secure" as far as PPTP can be called secure. That is, only MS CHAPv2 should be used, and the password should be complex - with MS CHAPv2 the password is used for getting an encryption key, so it shouldn't be chosen too short and simple.
LVL 13

Assisted Solution

by:Greg Hejl
Greg Hejl earned 80 total points
ID: 37013789
the 'VPN Passthrough' feature in a firewall is to allow port traffic unimpeded through the router, since both client and server originates in both directions.

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question