Solved: RV325, firmware v1.3.1.10, how to disable the PPTP server

gk00000001 · ‎03-25-2016

Hello community,

I have a problem with our RV325. After a reset the PPTP server comes enabled by default. Any attempt to save the form in the "PPTP Server" settings results in an error as the attached screenshot shows. I consider this a security issue. Does anybody have an idea how to disable it? Could restoring from a manually edited saved startup configuration work?

EDIT: I managed to block the PPTP connection attempts with the firewall by denying port 1723, but I would still prefer to stop the PPTP server somehow.

Jorge Obregon · ‎07-07-2016

Hello,

I hope you are doing well, I would like to let you know that there were some issues with this release so it's being enhanced. So I would advise you to wait for the updated firmware release.

Regards,

View solution in original post

Jorge Obregon · ‎07-07-2016

Hello,

I hope you are doing well, I would like to let you know that there were some issues with this release so it's being enhanced. So I would advise you to wait for the updated firmware release.

Regards,

gk00000001 · ‎08-02-2016

Thanks for the information. I have updated the firmware to v1.3.1.12, but the problem still persists there. I cannot disable PPTP for the same reason and I still need to block it.

trungh · ‎05-12-2017

Hi Jorge,

After 10 months, now I just bought a brand new RV325 this week, firmware:
v1.3.2.02 (2016-09-23, 15:17:06). I have the same problem. Can Cisco make it able to disable PPTP server function? or is there any workaround to avoid the nonsense overlap ip range error?

Thanks.

Glenn Martin · ‎05-15-2017

Hello trungh@agnav.com

In the Admin Guide (page:98)

PPTP Server

Up to 10 PPTP (Point-to-Point Tunneling Protocol) VPN tunnels can be enabled for users who are running PPTP client software. For example, in Windows XP or 2000, a user opens the Network Connections panel and creates a new connection. In the wizard, the user selects the option to create a connection to the workplace by using a Virtual Private Network connection. The user must know the WAN IP address of this device. For more information, refer to the documentation or help files for your operating system.

To open this page, select VPN > PPTP Server in the navigation tree.

To enable the PPTP server and allow PPTP VPN tunnels, check the Enable box and enter the range:

Range Start and Range End - Range of LAN address to assign to the PPTP VPN clients. The LAN IP address range for PPTP VPN clients should be outside of the normal DHCP range of the router.

The Connection Table shows the tunnels in use. PPTP user accounts are added in the User Management window (select Unassigned in the Group column).

gk00000001 · ‎08-14-2016

Alright, I seem to have solved the problem myself with the help of a javascript debugger and one can use this approach with the corresponding caution to solve similar UI related problems. Here is the approach as follows, using Safari on the version of the firmware v1.3.1.12:

Login to the web management console
Navigate to the VPN then to PPTP Server page
Open the Safari inspector, by using "View source" or some similar action
Goto the Resources tab and select pptp.htm there
In pptp.htm find the line 233 saying if (range_check_count==0 ) and set a breakpoint there (consult the attached screenshot)
Disable the "Enable" checkbox on the page and click on the save button. The javascript debugger should stop on that breakpoint.
Select the Console tab and in the input field issue the following command: range_check_count = 1
Return to the debugger tab and click the Continue Script Execution button. At this point the PPTP should change to disabled without error messages.