1. Home
  2. Networking Firewalls
  3. PPTP/GRE Open Port on firewall

PPTP/GRE Open Port on firewall

Hi,

We have mobile users who access the Internet using GPRS cards. They want to access their office network using a VPN connection. From the office side there is a Linux firewall which only allows users in on fixed IP addresses using PPTP (GRE) protocol. What are the dangers of opening up this port (1723 I think?) to allow anyone in (as long as they have a userid and password). This would then allow the mobile users access on un-fixed IP addresses on the GPRS cards.

Is there a safer way to do this?

Thanks.

Reply to
Peter Harding
Loading thread data ...

If your RAS box is secure, and the users have a strong key, it's one of the most common VPN methods out there. With the exception of weak passwords you should not have any problems.

Reply to
Leythos

I agree. Also be sure that you're enforcing encryption and MS-CHAP version 2. Version 1 is an insecure implementation.

formatting link

-Gary

Reply to
Gary

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.