5 pptp users, 6 pptp tunnel interfaces – Allied Telesis AT-WR4500 User Manual

182

AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers

RouterOS v3 Configuration and User Guide

Specifying MRRU means enabling MP (Multilink PPP) over single link. This protocol is used to split big
packets into smaller ones. Under Windows it can be enabled in Networking tag, Settings button,
"Negotiate multi-link for single link connections". Their MRRU is hardcoded to 1614. This setting is
usefull to overcome PathMTU discovery failures. The MP should be enabled on both peers.

Example

To enable PPTP server:

[admin@AT-WR4562] interface pptp-server server> set enabled=yes
[admin@AT-WR4562] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2,mschap1
keepalive-timeout: 30
default-profile: default
[admin@AT-WR4562] interface pptp-server server>

8.7.5

PPTP Users

Description

The PPTP users are authenticated through a RADIUS server (if configured), and if RADIUS fails, then the
local PPP user databese is used. See the respective manual sections for more information:
•

RADIUS client

•

PPP User AAA

8.7.6

PPTP Tunnel Interfaces

Submenu level: /interface pptp-server

Description

There are two types of interface (tunnel) items in PPTP server configuration - static users and dynamic
connections. An interface is created for each tunnel established to the given server. Static interfaces are
added administratively if there is a need to reference the particular interface name (in firewall rules or
elsewhere) created for the particular user. Dynamic interfaces are added to this list automatically
whenever a user is connected and its username does not match any existing static entry (or in case the
entry is active already, as there can not be two separate tunnel interfaces referenced by the same name).
Dynamic interfaces appear when a user connects and disappear once the user disconnects, so it is
impossible to reference the tunnel created for that use in router configuration (for example, in firewall),
so if you need a persistent rules for that user, create a static entry for him/her. Otherwise it is safe to use
dynamic configuration.

In both cases PPP users must be configured properly.

Property Description

client-address (read-only: IP address) - shows the IP address of the connected client
encoding (read-only: text) - encryption and encoding (if asymmetric, separated with '/') being used in this
connection
mru (read-only: integer) - client's MRU
mtu (read-only: integer) - client's MTU
name (name) - interface name
uptime (read-only: time) - shows how long the client is connected
user (name) - the name of the user that is configured statically or added dynamically