Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Prepare for removal of PPTP VPN before you upgrade to iOS 10 and macOS Sierra

Posted on 2016-09-30
4
Medium Priority
?
248 Views
Last Modified: 2016-09-30
Apple mentioned removing PPTP lately, details here.

Haven't been able to find in any great detail the "security risks" Apple mentions. I don't  mind Shimo VPN as an alternative however for the sake of "security risk" resonating throughout clients running MAC's would like a better answer than the extremely light reasoning Apple brings up. Can't help if the "real" issue is MAC won't support PPTP any longer and rather than just saying so use a play on words regarding security. As well, they never got into L2TP/IPSec and IKEv2/IPSec protocols.
0
Comment
Question by:WORKS2011
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 9

Accepted Solution

by:
Tim Lapin earned 2000 total points
ID: 41823818
I'm not sure what the question is here.  

If it's looking for a reason as to why PPTP is being deprecated, then the answer is fairly straightforward.  It is no longer considered a secure protocol.  The issues surrounding it have been discussed for several years now:
-  http://security.stackexchange.com/questions/45509/are-there-any-known-vulnerabilities-in-pptp-vpns-when-configured-properly
- http://www.h-online.com/security/features/A-death-blow-for-PPTP-1716768.html

Even the designers of the protocol, Microsoft, don't advise using it:
- http://pptpclient.sourceforge.net/protocol-security.phtml


If it's looking for a way to continue using it in the Mac O/S 10 & iOS 10 world, then you might have found a winner in Shimo.  I have never used it but it claims to do just what you want it to do.

If you are looking for advice on switching, I'm sure others can chime in on their favourite.  We use Cisco VPN (Any Connect) and it works quite well for us, on multiple platforms.

If you are just looking to vent, well, we get that.  I'm sure most of us hate when support for a well known and/or key infrastructure tool is removed from an O/S.  It means a huge amount of work in re-configuring many clients across an entire organization.

Hope the above helps.
0
 
LVL 17

Author Closing Comment

by:WORKS2011
ID: 41823855
Great response and appreciate it. Just needed some clarification.
0
 
LVL 17

Author Comment

by:WORKS2011
ID: 41823861
What are the costs using Cisco VPN (Any Connect)
0
 
LVL 9

Expert Comment

by:Tim Lapin
ID: 41824179
Works2011 wrote:
What are the costs using Cisco VPN (Any Connect)

I really can't say.  I am not involved in that end of things (purchasing or core network management).  I can tell you that we had invested in Cisco H/W and S/W quite heavily several years ago, so it was a fairly natural progression for us.

Glad to have helped.
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question