Encryption support, Encr yption suppor t -7 – Netopia R2020 User Manual

Virtual Private Networks 9-7

Ordinarily, Ping is an excellent troubleshooting tool, but it will not be effective in this circumstance. Instead, use
another TCP- or UDP-based network ser vice for troubleshooting. Since the Netopia Router is capable of ser ving
Telnet and HTTP, we recommend using these ser vices instead of Ping.

E

E

E

En

n

n

nccccrrrryyy

yp

p

p

pttttiiiio

o

o

on

n

n

n ssssu

u

u

up

p

p

pp

p

p

po

o

o

orrrrtttt

Encr yption is a method for altering user data into a form that is unusable by anyone other than the intended
recipient. The recipient must have the means to decr ypt the data to render it usable to them. The encr yption
process protects the data by making it difficult for any third par ty to get at the original data.

Netopia PPTP is fully compatible with Microsoft Point-to-Point Encr yption (MPPE) data encr yption for user data
transfer over the PPTP tunnel. Microsoft Windows NT Ser ver provides MPPE encr yption capability only when
Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) is enabled. Netopia complies with this
feature to allow MPPE only when MS-CHAP is negotiated. MS-CHAP and MPPE are user-selectable options in the
PPTP Tunnel Options screen. If either the client or the ser ver side specifies encr yption, then encr yption
becomes mandator y for both.

Netopia’s ATMP implementation suppor ts Data Encr yption Standard (DES) data encr yption for user data
transfer over the ATMP tunnel between two Netopia routers. The encr yption option, none or DES, is a selectable
option in the ATMP Tunnel Options screen.

Notes:

■

Do not set your NT Ser ver to enforce MS-CHAP V2, as the router does not currently suppor t MS-CHAP
V2.

■

Do not set your NT Ser ver to “Require strong data encr yption” in RAS Network Configuration, as the
router does not currently suppor t 128-bit encr yption.