General Configuration

In this section are the general configuration options that apply to all connections such as the local IP address to use, the address ranges to issue to remote clients, and what address the daemon should listen for connections on can be configured.

Verbose Debugging Messages

If this option is enabled PPTP will produce very verbose log messages in /var/log/messages. This should be disabled under normal circumstances. If you are having trouble with PPTP you should enable this option and see what messages are showing up in /var/log/messages.

Local IP Address

This is the IP address that the local PPPTP daemon will bind to. This should be the IP, or virtual IP address of the machine that your PPPTP connection will be coming from.

Remote IP Address

These are the ranges of IP addresses that the PPTP daemon will hand out to connecting clients.

You can specify single IP addresses separated by commas or you can specify ranges, or both. For example:

192.168.0.234,192.168.0.245-249,192.168.0.254 

IMPORTANT RESTRICTIONS:

1. No spaces are permitted between commas or within addresses.
2. No shortcuts in ranges! ie. 234-8 does not mean 234 to 238, you must type 234-238 if you mean this.
3. You MUST give at least one remote IP for each simultaneous client.

Address to Listen On

This is the address off an interface on the machine that will listen for connections. Leave this blank to allow all interfaces to listen.

Local WINS Server

This is the IP address of your WINS server. If you setup your EnGarde machine as a Windows File Sharing server then the IP address of the EnGarde machine can be used.

40-bit Encryption

This specifies whether the PPTP daemon should use 40-bit RC4 encryption / compression for the key. 40bit encryption will be used if the client does not support 128bit encryption, or if 128bit encryption is disabled. It is recommended this option remains enabled.

128-bit Encryption

This specifies whether the PPTP daemon should use 128-bit RC4 encryption / compression for the key. This will use 128bit encryption as opposed to 40bit encryption if the client supports it.

Stateless Encryption

This specifies whether the PPTP daemon should use stateless encryption. It is highly recommended you have this feature enabled. Stateless encryption will randomly change the key during the session which in turn greatly increases security. Without this enabled the same key is used for the entire session.