How to Configure PPTP-VPN
- 1). Open the Cisco router console and start the configuration. To start the PPTP configuration, type the following in the console screen:
R1# configure terminal - 2). Enable PPTP dial-in access. The router needs to be configured for PPTP dial-in access. The following command line syntax opens a PPTP port and exits the configuration terminal:
R1(config)# vpdn enable
R1(config)# vpdn-group 1
R1(config-vpdn)# accept-dialin
R1(config-vpdn-acc-in)# protocol pptp
R1(config-vpdn-acc-in)# virtual-template 1
R1(config-vpdn-acc-in)# exit - 3). Bind the PPTP access to TCP/IP. The following lines of code tell the router that TCP/IP is used to connect to the router:
R1(config)# interface Virtual-Template1
R1(config-if)# ip unnumbered FastEthernet 0/0 - 4). Assign a TCP/IP pool. This is essential for the client computer to obtain an IP address from the network:
R1(config-if)# peer default ip address pool PPTP-Pool
R1(config-if)# no keepalive - 5). Enable encryption. The following lines of code enable encryption and tell the router the type of authentication method to use:
R1(config-if)# ppp encrypt mppe 128
R1(config-if)# ppp authentication ms-chap ms-chap-v2 - 6). Give the router IP address assignments for dial-in clients. Step 4 indicated that the router needed to use an IP pool. The following line of code sets the IP addresses that are assigned to the user:
R1(config)# ip local pool PPTP-Pool 192.168.0.100 192.168.0.150 - 7). Assign a username and password for the VPN access. This is the username and password the user needs to type to gain access to the VPN network. Once this is complete, the router is setup for VPN access through PPTP:
username myVPN_Access password myPassword123!
Source...