> PPTP is using:
> - a modified GRE tunnel which lays directly on the top
> of IP with protocol (I do not have right now the number of the
> protocol but check in /etc/protocols for the right number)
> - a TCP control session to port 5678 (on the PPTP 'server') which
> is by the way a funny number ;-)
Is it really 5678 ?? I was told that the port was really 1723. And
that if I wanted to prevent my users from establishing PPTP sessions ..
block outbound (towards the Internet) requests to TCP port 1723. Did I
get some bad info ?
Dick
>
> Also beware that PPTP is probably useful for you but do not
> trust too much its security...
>
> -eric
>
> At 11:45 1/08/97 -0500, Bertrum Carroll wrote:
> >I'm attempting to setup a FW-1 filter to support PPTP.
> >I'm using FW-1 3.0a on Solaris.
> >
> >PPTP is not defined, how do I seutp a fitler just for PPTP not all
IP?
> >
> >Thanks In Advance
> >Bert Carroll
> >
> Eric Vyncke
> Technical Consultant Cisco Systems Belgium SA/NV
> Phone: +32-2-778.4677 Fax: +32-2-778.4300
> E-mail: evyncke @
cisco .
com Mobile: +32-75-312.458
>
References:
|
|
