MSM7xx Controllers Configuration Guide v6.4.0
NotesValue to setOption
7.1.1.0. This must match the value
defined in the policy on the peer
(VPN server).
Identify the remote subnet for which
you wish to filter traffic, for example,
Identify the remote subnetOnly permit outgoing...
10.0.0.0. This must match the value
defined in the policy on the peer
(VPN server).
See the online help for option descriptions.
See “Keeping user traffic out of the VPN tunnel” (page 514).
Configure PPTP client for a remote VPN server
Configure the PPTP client for the controller VPN client capability via the Controller >> VPN > PPTP
client menu.
The PPTP client enables the controller to create a secure tunnel to any device that provides a PPTP
server. All traffic sent though this tunnel is protected against eavesdropping by means of encryption.
NOTE: The PPTP tunnel should not be used to transport user traffic. To prevent user traffic from
entering the tunnel, you must define access list definitions to DENY access to all subnets on the
other side of the tunnel. The tunnel should be used to carry management traffic only (RADIUS,
SNMP, management sessions). See “Keeping user traffic out of the VPN tunnel” (page 514).
Configuration
To view and configure the PPTP client, select Controller >> VPN > PPTP client. The PPTP client
is disabled by default.
Connection
PPTP server address
Specify the domain name or IP address of the PPTP server the controller will connect to.
Domain name(s)
Specify the domain name(s) that are reachable through the tunnel. Put a space between
each name as a separator. The controller routes all traffic addressed to this domain through
the PPTP connection. If you do not want to enter a Domain name, enter private.lan
instead.
Securing controller communications to remote VPN servers 513