Should we maintain our HK server?
July 30, 2012
How Apple's and Amazon's Security Flaws led to a Gizmodo Reporter being hacked
August 7, 2012
Show all

PPTP VPN being replaced by L2TP VPN

Although most of our VPN servers use OpenVPN technology, widely regarded as one of the most secure VPN implementations out there, we offered PPTP server connectivity for iOS/mobile devices whereby installing OpenVPN would require a jailbreak. We are now replacing our PPTP servers with L2TP servers. We used PPTP in the past as it was:

1) Lightweight and had low overheads, in other words fast!
2) Easy to set-up
3) L2TP implementation on Android was and still is buggy.

However it also had the following issues:

1) PPTP is a protocol with a lot of unresolvable security vulnerabilities. However it is sufficient for casual security.
2) PPTP uses a GRE tunnel which is blocked by many mobile/wireless providers.

As Android devices now have an OpenVPN solution that does not require root (Feat VPN), we have chosen to use L2TP/IPSec instead which would work over mobile 3G connections and will be more secure.

We will also now only allow L2TP to be used by full users meaning packages of 30 days and above only and the login details will be available in the Bonus section in the Customer Portal which will be changed from time to time. Please note that the the way we implement L2TP (without the use of certificates for convenience) is still not meant for highly sensitive/confidential data but will provide a way for most users to enjoy still a pretty good level of mobile security on their iOS devices with the minimum of setup/hassle.

Over the next few hours, we will post an update on this 😀 PPTP servers will also be down until upgrade is completed.

3 Comments

  1. J says:

    Is the L2TP VPN servers working at the moment? I couldn’t connect to it using Windows. I know OpenVPN Is preferred method for Windows but still I should be able to use windows build-in client for any L2TP VPN/IPSec as well.

    • Reuben says:

      Dear J,

      They are working. Remember to use the credentials specified in the Bonus Section in portal and not your own username and password. If you have any further problems, let us know in an e-mail what servers you were trying on and the combination you tried. (please do not post this info in the comment section). Thanks!

  2. J says:

    Reuben, my bad. Seems the issue is my side. I took some time googling & reading on it even though some of the more technical stuffs gone over my head I manage to find the culprit. Seems I disabled some services using Black Viper’s Tweaks back last time. Its either the Ike & auth services being disabled or IPSec Policy on manual (but started). I set both to auto and I can finally connect.

    Cheers!

Leave a Reply

Your email address will not be published. Required fields are marked *