Pptpvpn
From Wiki of WFilter NG Firewall
(Difference between revisions)
(→PPTP Settings) |
|||
| Line 15: | Line 15: | ||
** When both are enabled, we will do "local auth" first. If this user is not found in "local account", then check the remote radius sever. | ** When both are enabled, we will do "local auth" first. If this user is not found in "local account", then check the remote radius sever. | ||
* Protocols: supported auth protocols, which shall be consistence with VPN client settings. | * Protocols: supported auth protocols, which shall be consistence with VPN client settings. | ||
| + | * MPPE: when enabled, PPTP server will require 128bit MPPE stateless encryption. | ||
[[File:faq_pptp001.png|650px]] | [[File:faq_pptp001.png|650px]] | ||
Revision as of 15:34, 22 April 2017
1 PPTP Server
PPTP server can provide PPTP VPN service for external users to connect.
- You can check VPN clients ip addresses and usernames in "Real-time Bandwidth".
- VPN users are not be applied by Access_Policy.
- Activity of VPN users won't be recorded by Internet Usage.
2 PPTP Settings
Description of PPTP settings:
- IP Range: the ip addresses to be assigned to VPN clients. (Must be a LAN subnet)
- Auth Type
- "Local Auth": authenticate with username and password of local accounts. This user shall enable "Web" access in Local_Account.
- "Remote Auth": send credentials to a remote radius server for authentication. For example, Configure RADIUS Server Authentication for Active Directory
- When both are enabled, we will do "local auth" first. If this user is not found in "local account", then check the remote radius sever.
- Protocols: supported auth protocols, which shall be consistence with VPN client settings.
- MPPE: when enabled, PPTP server will require 128bit MPPE stateless encryption.
