Though pptp can be very secure if configured correctly and a complex password is used
with MSCAPv2, l2tp is more secure for a number of reasons. The actual authentication
exchange is not encrypted [other than that provided by the protocol itself] in pptp
while it is in l2tp. L2tp uses a more robust encryption method and probably one of
the biggest advantages is it requires certificate machine authentication in addition
to user authentication while pptp only requires user authentication for initial
connection. That means if a hacker knows the name/password for a vpn user it is no
good to them on a computer without a trusted certificate for machine authentication.
While either can be configured on Windows computers [W9X requires client upgrade],
pptp is generally easier to set up than l2tp as is will not work through NAT routers
and requires a Certificate Authority to issue machine certificates [easy enough to do
though]. There is a NAT-T update that is supposed to work through NAT routers. See
the link below for excellent and easy to read white paper on the subject. --- Steve
http://www.microsoft.com/windowsserv...w/vpnover.mspx
"Shiva" <> wrote in message news:hxC2c.2701$...
> Dear Group,
>
> T2TP is encrypted if you use IPSEC.
> PPTP is encrypted with Microsoft Encryption.
>
> Can anyone explain to use when you use L2TP or PPTP ? What are the benifits
> of each other ?
>
> Is there anyware a comparison
>
> Cheers,
> Shiva
>
>