06-20-2007 03:55 AM - edited 03-05-2019 04:50 PM
hi all, im currently migrating my windows vpn server to a cisco asa, my question is , does pptp use ipsec at all ?
06-20-2007 04:32 AM
PPTP is a Mocrosoft proprietary security standard and uses TCP 1723.It is supported on most security devices as an option to use. IPSEc is an open standard used by all security vendors and uses TCP ports 50 for ESP and TCP 51 for the AH header for the phases of IPSEC...
06-20-2007 05:09 AM
Phil
One correction: ESP (50) and AH (51) are not TCP ports but are IP protocols. (similar to the way that TCP and UDP are IP protocols) If you wrote an access list and matched on tcp port 50 you would get traffic for the remote mail checking protocol.
HTH
Rick
06-20-2007 05:14 AM
Thanks for the correction...My apologies....
06-20-2007 08:19 AM
so does pptp use ip sec? or is its own security protocol, as ive seen an option on my server for ipsec !!
06-20-2007 09:21 AM
Actually, I learned that PPTP uses the GRE protocol. I am not sure if it uses IPSEC....
06-20-2007 10:35 AM
Hi Carl,
Good question indeed.
Infact, PPTP doesn't user IPSec, however to authenticate it can user PAP (Password Authentication Protocol), SPAP, MS-CHAP (Microsoft Challange Handshake Authentication Protocol) , MS CHAP v2!
And Encryption is an Option over here, the encryption is done using MPPE or Microsoft Point-to-Point Encryption.
Howeve, there is a newer standard which is a mixed version of L2F and PPTP, called L2TP which could be used with IPSec.
You may visit the following URL for details:-
http://cisco.com/en/US/tech/tk827/tk369/technologies_q_and_a_item09186a00800946ef.shtml
I hope this helps,
Please rate if it helps,
Kind Regards,
Wilson Samuel
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide