Manualshelf

User manual

ManualsBrandsSecure Computing ManualsComputer equipmentSG550
181182183184185186187188189190
Virtual Private Networking
184
Check Enable PPTP Server.
Enter the IP Addresses to give to remote hosts, this must be a free IP address, or
range of free IP addresses, from the network (typically the LAN) that the remote users
are assigned while connected to the SG unit.
If you have configured several network connections, select the one that you want to
connect remote users to from the IP Address to Assign VPN Server pull down menu.
This is typically a LAN interface or alias.
Select the weakest Authentication Scheme to accept, access is denied to remote users
attempting to connect using an authentication scheme weaker than this. They are
described below, from strongest to weakest.
Encrypted Authentication (MS-CHAP v2): The strongest type of authentication to
use. This is the recommended option.
Encrypted Authentication (MS-CHAP): This is not a recommended encryption type
and should only be used for older dialin clients that do not support MS-CHAP v2.
Weakly Encrypted Authentication (CHAP): This is the weakest type of encrypted
password authentication to use. It is not recommended that clients connect using this
as it provides very little password protection. Also note that clients connecting using
CHAP are unable to encrypt traffic.
Unencrypted Authentication (PAP): This is plain text password authentication.
When using this type of authentication, the client passwords is transmitted un-
encrypted.