Security issue, Example network – Allied Telesis VPN User Manual
Page 3
Security issue >
Page 3 | AlliedWare™ OS How To Note: VPNs with Windows 2000 clients, without NAT-T
Security issue
Since this Windows VPN solution is usually used to allow remote access into corporate
networks, a common security concern is “what happens if the remote laptop or PC is stolen or
falls into unauthorised hands?” This is particularly a concern because the VPN connection is
enabled through the standard dial-up networking window that allows username and passwords
to be saved.
A solution to this security concern is to disable the standard behaviour that allows passwords to
be saved. VPN users will then have to enter their password each time they connect.
If you would like to implement this security measure, refer to Microsoft Knowledge Base article
172430 by following this li
.
This solution works on both Windows 2000 and Windows XP.
Example network
The following figure shows an example of a network that could use this configuration.
Of
fice PCs
Office
Windows 2000 Professional
office’s public
IP address
dial-up modem
dial-up modem
cable modem
2 MB pipe
DSL
VPN router
Internet
remote
teleworker
remote
teleworker
remote
teleworker
remote
teleworker
remote
teleworker
network.eps