Hi, Many thanks for your response..
The expired accounts and passwords are removed from the server as a matter of course. However, as the VPN uses a single username and password for all access, then there is still the ability to connect into the network and explore shares, etc.
I did not install this server but took over the limited support of it. As the VPN works and they have many remote users connecting into it, I do not want to change the authentication settings. Better and easier to just restrict the IP range allowed to access it I thought.
I not aware of what poptop supports or how it works, thats why I came here to ask the experts.
I would have thought that restricting access by IP range to a Linux system VPN service was a fundamental feature, yet I have googled for hours and found nothing specific.
There must be someone with knowledge of this. Please help.