2. pptpd
上一頁 第 47 章 VPN (Virtual Private Network) 下一頁
Home | Mirror | Search

2. pptpd

過程 47.11. pptpd 安裝步驟

  1. install

    Ubuntu

    $ sudo apt-get install pptpd

    CentOS

    # yum install pptp pptp-setup

  2. $ sudo vim /etc/pptpd.conf

    localip 172.16.0.1
remoteip 172.16.0.50-100

  3. $ sudo vim /etc/ppp/pptpd-options

    ms-dns 208.67.222.222
ms-dns 208.67.220.220

  4. $ sudo vim /etc/ppp/chap-secrets

    # Secrets for authentication using CHAP
# client        server  secret                  IP addresses
neo pptpd chen *

  5. restart

    sudo /etc/init.d/pptpd restart
Restarting PPTP:
Stopping PPTP: pptpd.
Starting PPTP Daemon: pptpd.
			
  6. # ifconfig ppp0
ppp0      Link encap:Point-to-Point Protocol
          inet addr:192.168.3.9  P-t-P:192.168.3.15  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1396  Metric:1
          RX packets:1545 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1008 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3
          RX bytes:342505 (334.4 KiB)  TX bytes:239324 (233.7 KiB)

  7. $ sudo vim /etc/sysctl.conf

    # Uncomment the next line to enable packet forwarding for IPv4
net.ipv4.ip_forward=1

    refresh status

    $ sudo sysctl -p
net.ipv4.ip_forward = 1

  8. NAT

    			
$ sudo iptables -t nat -A POSTROUTING -s 172.16.0.0/24 -o eth0 -j MASQUERADE
$ sudo iptables-save > /etc/iptables-rules

    $ sudo vim /etc/network/interfaces

    				
pre-up iptables-restore < /etc/iptables-rules

  9. firewall

    $ sudo ufw allow 1723
Rules updated

MTU

$ sudo iptables -A FORWARD -s 10.100.0.0/24 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1200

還有一個最簡單的修改mtu的辦法:
$ sudo vim /etc/ppp/ip-up.local

!/bin/bash

/sbin/ifconfig $1 mtu 1496

2.1. FAQ

錯誤:800

運行 ipconfig /flushdns 後,再試

comments powered by Disqus
上一頁 上一級 下一頁
第 47 章 VPN (Virtual Private Network) 起始頁 3. l2tpd - dummy package for l2tpd to xl2tpd transition