LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page [SOLVED] PPTP server remote IP whitelist per user
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 11-22-2013, 02:42 PM   #1
Naxiz
LQ Newbie
 
Registered: May 2012
Distribution: Debian Sid
Posts: 9

Rep: Reputation: Disabled
PPTP server remote IP whitelist per user

Hello,

I have a Debian (sid) server with pptp installed. Everything works great, but I would like to only allow some users to connect from a specific IP address.

Current /etc/ppp/chap-secrets
Code:
user server password internal-ip
What I would like:
Code:
user server password internal-ip allowed-remote-ip
I don't want to use a firewall, as I want some users to be able to connect from different IP addresses than others.

How can I do this? Is this possible?

Thanks!
 
Old 11-22-2013, 03:31 PM   #2
Ser Olmy
Senior Member
 
Registered: Jan 2012
Distribution: Slackware
Posts: 3,339

Rep: Reputation: Disabled
I don't think that's possible. AFAIK, there are only four fields in /etc/ppp/chap-secrets, and you can only specify the IP address that is to be given to the PPP interface of a specific user.

However, if you're willing to switch to using RADIUS authentication instead, you can create a Network Access Policy that includes specifying valid client addresses for certain users.

Allow me to issue my standard warning for all PPTP-related questions: PPTP is fundamentally broken and offers little to no security. An attacker sniffing the network traffic (say, on a public wireless LAN) should be able to obtain a PPTP user's login credentials in less than 48 hours.

You should switch to another VPN protocol as soon as possible.
 
1 members found this post helpful.
Old 11-22-2013, 03:47 PM   #3
Naxiz
LQ Newbie
 
Registered: May 2012
Distribution: Debian Sid
Posts: 9

Original Poster
Rep: Reputation: Disabled
Thanks for your answer. Too bad that it isn't possible without installing other software.

I know that PPTP is not secure, but I have many clients and I can't generate certificates for all of them (if I use OpenVPN).

//EDIT
I decided to install OpenVPN. Thanks.
Last edited by Naxiz; 11-23-2013 at 09:59 AM.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Set up Ubuntu 10 Server for Remote LAN PPTP Passthrough QuantumDot Linux - Server 2 03-15-2011 05:45 AM
In PPTP server, how to limit bandwidth per user, & no. of connection per account ? erv2 Linux - Networking 1 04-05-2010 08:03 AM
How to disable multiple session/logins per user PPTP-server Zurvy Linux - Networking 1 10-18-2008 07:01 PM
How can I get my PPTP Connection to connect to a Windows Remote Access Server? jamtech Linux - Networking 1 08-03-2007 07:58 PM
PPTP conection from laptop at home to Remote server linuxdawg67 Linux - Networking 2 03-15-2007 05:26 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 10:03 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration