> >>PPTP only works on NT so your remote users will have to at least be
> >>running 4.0 workstation.
> Actually M$ just released a Dialup Networking upgrade which allows 95 to
> do PPTP.
> >>My experience hasn't been good with this protocol although I haven't
> >>tried the implementation.
> >>If your ISP doesn't used fixed IP addresses then you will have to open
> >>up PPTP to the world which means the world can attach your internal RAS
> >>server. The other problem I ran into was the inablility to access
> >>resources on the PPTP (RAS) server itself. Seems that NT server
> >>couldn't route between the tunnel IP address and it's own IP. Again
> >>this may be something that Steelhead fixed.
> > -----Original Message-----
> > From: Tim Lebrun [SMTP:tlebrun @
> > Sent: Friday, October 31, 1997 2:20 PM
> > To: firewalls @
COM; ntsecurity @
> > Subject: PPTP configuration
> > I would like some expert opinions on
> > the setup that we are looking at
> > implementing.
> > We want to eventually get
> > rid of our dial-in rack and allow
> > users to enter our network through
> > the internet. So we have a T1
> > internet connection run which (from
> > the outside) first, goes through a
> > Cisco 7000 router, then through a
> > Gauntlet firewall, and then the
> > users get logged on to a NT Ras
> > server using PPTP. And from there
> > the users can go and do anything on
> > the network, ie: Mail, Novell,
> > Tn3270, Telnet.
> > My Question is - what are the
> > possible problems with kind of
> > setup?