Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Last revisionBoth sides next revision
tutorials:vpn [2012/05/02 17:51] – minor formatting fixes memnontutorials:vpn [2012/05/02 17:59] – minor formatting fixes memnon
Line 139: Line 139:
  
   * Install mpd4 from ports or packages.   * Install mpd4 from ports or packages.
-  * Add the following section to your /usr/local/etc/mpd4/mpd4.conf:  sdfvpn: new -i ng1 sdfvpn sdfvpn set iface disable on-demand set iface idle 0 # disconnect the client after 8 hours set iface session 28800 set iface route 10.0.0.0/24 set iface route default set bundle disable multilink set auth authname "USERNAME" set auth password "PASSWORD" set link yes acfcomp protocomp set link no eap set link no pap set link accept chap set link mtu 1460 set link keep-alive 10 75 set ipcp yes vjcomp set ipcp ranges 0.0.0.0/ set ipcp yes req-pri-dns req-sec-dns # # The five lines below enable Microsoft Point-to-Point encryption # (MPPE) using the ng_mppc(8) netgraph node type. # set bundle yes compression set ccp yes mppc set ccp yes mpp-compress set ccp yes mpp-e128 #set bundle accept crypt-reqd set ccp yes mpp-stateless open+  * Add the following section to your /usr/local/etc/mpd4/mpd4.conf:<code>  
 +  sdfvpn:  
 +  new -i ng1 sdfvpn sdfvpn  
 +  set iface disable on-demand  
 +  set iface idle 0  
 +  # disconnect the client after 8 hours  
 +  set iface session 28800  
 +  set iface route 10.0.0.0/24  
 +  set iface route default  
 +  set bundle disable multilink  
 +  set auth authname "USERNAME"  
 +  set auth password "PASSWORD"  
 +  set link yes acfcomp protocomp  
 +  set link no eap  
 +  set link no pap  
 +  set link accept chap  
 +  set link mtu 1460  
 +  set link keep-alive 10 75  
 +  set ipcp yes vjcomp  
 +  set ipcp ranges 0.0.0.0/  
 +  set ipcp yes req-pri-dns req-sec-dns  
 +   
 +  # The five lines below enable Microsoft Point-to-Point encryption  
 +  # (MPPE) using the ng_mppc(8) netgraph node type.  
 +   
 +  set bundle yes compression  
 +  set ccp yes mppc  
 +  set ccp yes mpp-compress  
 +  set ccp yes mpp-e128  
 +  #set bundle accept crypt-reqd  
 +  set ccp yes mpp-stateless  
 +  open 
 +  </code>
   * You will have to replace three (3) things in this config:   * You will have to replace three (3) things in this config:
     - Your USERNAME     - Your USERNAME
     - Your PASSWORD     - Your PASSWORD
     - The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP.  '     - The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP.  '
-  * Add this in your /usr/local/etc/mpd4/mpd4.links file:  sdfvpn: set link type pptp set pptp peer  set pptp enable originate outcall set pptp disable incoming+  * Add this in your /usr/local/etc/mpd4/mpd4.links file:<code>   
 +    sdfvpn:  
 +    set link type pptp  
 +    set pptp peer   
 +    set pptp enable originate outcall  
 +    set pptp disable incoming </code>
   * You will have to replace one (1) thing in this config:   * You will have to replace one (1) thing in this config:
     - The public address of SDF's VPN host. You can get this by running setvpn at the shell.     - The public address of SDF's VPN host. You can get this by running setvpn at the shell.