Manualshelf

User`s guide

ManualsBrandsBarracuda Networks ManualsNetworkingFirewall X100
919293949596979899100
2.
3.
1.
2.
3.
1.
2.
specify a static IP address for the user.
Click .Save Changes
MS-CHAPv2/NTLM
With , you can allow access on a per-user or per-group basis. MS-CHAPv2/NTLM
Go to the page.VPN > PPTP
In the section, add the users and groups who are allowed to connect to theUser and Group Conditions (MS-CHAPv2/NTLM)
client-to-site VPN.
Click .Save Changes
Step 4. Add the Firewall Rule to Allow Traffic Between VPN Clients and LAN
Create a new firewall rule to let PPTP traffic in the VPN tunnel between the VPN clients and the trusted LAN. The pre-installedpass
VPNCLIENTS-2-LAN firewall rule does not match PPTP connections because they do not use the pvpn0 virtual interface. As a result, PPTP traffic
is blocked by default.
Create a new firewall rule that lets VPN traffic from the PPTP clients access the Trusted LAN:
Go to the FIREWALL > Firewall Rules page and add this rule:
Action Source Destination Service Connection
Allow
The network range
assigned to the PPTP
clients (configured in V
PN > PPTP > Client IP
Pool Begin/Client IP
)Pool Size
Trusted LAN Any (or the
allowed/required
services)
No SNAT (the original
source IP address is
used)
At the top of the window, click .Add Access Rule Add
Step 5. Verify the Order of the Firewall Rules
New rules are created at the bottom of the firewall rule set. Because rules are processed from top to bottom in the rule set, arrange your rules in
the correct order. You must especially ensure that your rules are placed above the BLOCKALL rule; otherwise, the rules are blocked.
After adjusting the order of rules in the rule set, click .Save Changes
How to Configure Apple iOS Devices for Client-to-Site VPN Connections
For iOS client devices such as an iPhone or an iPad, you must configure additional certificates. Due to restrictions of iOS, you must use a
certificate and XAUTH. After creating the required certificates, import them onto the Barracuda Firewall and iOS device. You must also add the
VPN connection on the iOS device. Any iOS device with version 5.2.3 and above (including iOS 7.0) is supported.
In this article:
Recommended iOS Version Upgrade
Because certificates longer than 512-bit do not work for iOS VPN clients with iOS version 6.0, it is recommended that you update to the
latest version of iOS.