Working with VPNs
Securing controller communications to remote VPN servers
16-9
Note The PPTP tunnel should not be used to transport user traffic. To prevent user traffic from
entering the tunnel, you must define access list definitions to DENY access to all subnets on
the other side of the tunnel. The tunnel should be used to carry management traffic only
(RADIUS, SNMP, management sessions). See Keeping user traffic out of the VPN tunnel on
page 16-10.
Configuration
To view and configure the PPTP client, select Controller >> VPN > PPTP client. The PPTP
client is disabled by default.
Connection
PPTP server address
Specify the domain name or IP address of the PPTP server the controller will connect to.
Domain name(s)
Specify the domain name(s) that are reachable through the tunnel. Put a space between each
name as a separator. The controller routes all traffic addressed to this domain through the
PPTP connection. If you do not want to enter a Domain name, enter private.lan instead.
Auto-route discovery
Enable this option if you want the controller to automatically discover and add routes to IP
addresses on the other side of the PPTP tunnel. The addresses must be part of the specified
domain. Routes are added only when an attempt is made to access the addresses.
LCP echo requests
Certain VPN servers may terminate your connection if it is idle. If you enable this option, the
controller will send a packet from time to time to keep the connection alive.
To Next Page
Loading...
Need help?
General
