Newbie question:
I deployed a pptp server on my MT for clients/staff to VPN to the internal network.
Is there a way, (without going into RADIUS servers etc etc), how to limit the connections by MAC address?
What i need is similar to a DHCP server, but for the pptp-in interface.
I cant find a way to bind a DHCP server to a pptp-in interface.
Thanks
John
PPTP doesn’t work with MAC Addresses, it works via IP Addresses…
IPs can be firewalled at free will in the firewalls.
Thanks!
Can the firewall rules limit by MAC address then?
If yes, would this slow down traffic in any way?
no, mac filtering of any kind can only be done withen the same layer2 network segment, MAC information does not get transmitted beyond that. you can only filter by source IP. if your goal is to restrict un-authorized machines from trying to connect, use a VPN server that supports certificate based authentication. (although IPSec is more then sufficiant for anything you are ever going to do)
you cans et logins+passwd and limit ip-pool used for ppp server
Thanks guys… I still have the following question…
Maybe as another way of doing this, is it possible to use DHCP on a pptp-in interface?
(If this is the case maybe I can bind an IP to a particular MAC and get around it in that way…)
if you connect from outside - mac address that will show up in router WILL allways be the same - closes device in oter network - so i i actualy do not see ANY reason to do some mac restricions.
and f you want some authentifications PPPoE is your way - or a simple DHCP.
AND you can do some port knocking when suer connects to gain acces to your LAN. as tunneling is all about connecting to your LAN from outside and be as part of lan
OK understood… but I’m still not sure whether you can use DHCP over a pptp tunnel rather than a simple ip pool
no.
learn this, then if you still don’t understand, come back here.
http://en.wikipedia.org/wiki/OSI_model
ok understood! 
thanks all
glad to be of assistance.