Making Outbound PPTP Connections From Behind a Firebox

You may have occasions in which a user wants to make PPTP connections to a Firebox from behind another Firebox. For example, if a mobile employee travels to a customer site that has a Firebox, he or she can make PPTP connections to his or her network using PPTP. For the local Firebox to properly handle the outgoing PPTP connection, a PPTP service must be set up as follows:

Enable the PPTP service. (For information on enabling services, see Configuring Filtered Services.
Select Setup => NAT, and make sure the checkbox marked Enable Dynamic NAT is enabled. This is the default for a Firebox in routed mode.

Because the PPTP service enables a tunnel to the PPTP server and does not perform any security checks at the firewall, use of this service should be limited.

Related topics:

Starting RUVPN with PPTP

Running RUVPN and Accessing the Internet

Activating RUVPN with PPTP

Return to Top