Hi all,

I am about to setup a LAN to LAN VPN. The router gives me 2 options: PPTP or IPSEC.

What should I choose and why?

I want the most stable and secure solution.

AgrippaSenior IT ConsultantAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

PPTP is easy to set up but is not very secure. It has known security vulnerabilities.

IPSEC is more secure so go with that.

If you Google PPTP vs IPSEC you will find plenty of sites comparing the two.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
AgrippaSenior IT ConsultantAuthor Commented:
Thank you AKB,

I always wonder why, if the best solution would work (IPSEC) then why would there even be an option like PPTP. Why would anyone choose PPTP above IPSEC?
Maybe for compatibility with legacy systems.
Virus Depot: Cyber Crime Becomes Big Business

The rising threat of malware-as-a-service is not one to be overlooked. Malware-as-a-service is growing and easily purchased from a full-service cyber-criminal store in a “Virus Depot” fashion. View our webinar recording to learn how to best defend against these attacks!

PPTP might not a good solutions or a LAN to LAN if both sides need access to the other side.

A PPTP commonly is equivalent to a remote VPN granting one directional VPN access.

The client PPTP to server PPTP where the Clint feta an IP in the server's LAN.

IPSec for site to site and bi directional traffic.
JohnBusiness Consultant (Owner)Commented:
I gave up PPTP long ago for the reasons above. IPsec is better for Site to Site tunnels and I do that with a Cisco RV325 VPN router. It gives me split tunneling as well and I like that a lot.
how about l2tp when should we use it?
L2tp is not a secure and is usually accompanied by ipsecasthe encryption tunnel..
Tankergoblin, are you using this question to answer one of your own?mor is this an attempt to suggest to the asker to consider using l2tp over IPSec.
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
If IPSec is available, and using same brand devices, there is no doubt what to prefer. IPSec needs some more settings, but exactly that makes it more secure. PPTP uses a weak encryption using the dial-in password - in general, and as said above already, it is ok for using short-term dial-in option, but always-on site-to-site with PPTP is a no-go nowadays.

Choosing a proper remote access method is always a question of balancing implementation and troubleshooting effort versus reliablilty and security. You certainly are still writing up your mails unencrypted for a similar reason :D.
AgrippaSenior IT ConsultantAuthor Commented:
Thank you all,

all clear to me now!
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.