Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Last revision Both sides next revision
tutorials:vpn [2012/05/02 17:51]
memnon minor formatting fixes
tutorials:vpn [2012/05/02 17:59]
memnon minor formatting fixes
Line 139: Line 139:
  
   * Install mpd4 from ports or packages.   * Install mpd4 from ports or packages.
-  * Add the following section to your /​usr/​local/​etc/​mpd4/​mpd4.conf: ​ sdfvpn: new -i ng1 sdfvpn sdfvpn set iface disable on-demand set iface idle 0 # disconnect the client after 8 hours set iface session 28800 set iface route 10.0.0.0/24 set iface route default set bundle disable multilink set auth authname "​USERNAME"​ set auth password "​PASSWORD"​ set link yes acfcomp protocomp set link no eap set link no pap set link accept chap set link mtu 1460 set link keep-alive 10 75 set ipcp yes vjcomp set ipcp ranges 0.0.0.0/​0 ​ set ipcp yes req-pri-dns req-sec-dns # # The five lines below enable Microsoft Point-to-Point encryption # (MPPE) using the ng_mppc(8) netgraph node type. # set bundle yes compression set ccp yes mppc set ccp yes mpp-compress set ccp yes mpp-e128 #set bundle accept crypt-reqd set ccp yes mpp-stateless open+  * Add the following section to your /​usr/​local/​etc/​mpd4/​mpd4.conf:​<​code>​  
 +  ​sdfvpn: ​ 
 +  ​new -i ng1 sdfvpn sdfvpn ​ 
 +  ​set iface disable on-demand ​ 
 +  ​set iface idle 0  
 +  ​# disconnect the client after 8 hours  
 +  ​set iface session 28800  
 +  ​set iface route 10.0.0.0/​24 ​ 
 +  ​set iface route default ​ 
 +  ​set bundle disable multilink ​ 
 +  ​set auth authname "​USERNAME" ​ 
 +  ​set auth password "​PASSWORD" ​ 
 +  ​set link yes acfcomp protocomp ​ 
 +  ​set link no eap  
 +  ​set link no pap  
 +  ​set link accept chap  
 +  ​set link mtu 1460  
 +  ​set link keep-alive 10 75  
 +  ​set ipcp yes vjcomp ​ 
 +  ​set ipcp ranges 0.0.0.0/​0 ​  
 +  set ipcp yes req-pri-dns req-sec-dns ​ 
 +  ​ 
 +  ​# The five lines below enable Microsoft Point-to-Point encryption ​ 
 +  ​# (MPPE) using the ng_mppc(8) netgraph node type.  
 +  ​ 
 +  ​set bundle yes compression ​ 
 +  ​set ccp yes mppc  
 +  ​set ccp yes mpp-compress ​ 
 +  ​set ccp yes mpp-e128 ​ 
 +  ​#set bundle accept crypt-reqd ​ 
 +  ​set ccp yes mpp-stateless ​ 
 +  ​open 
 +  </​code>​
   * You will have to replace three (3) things in this config:   * You will have to replace three (3) things in this config:
     - Your USERNAME     - Your USERNAME
     - Your PASSWORD     - Your PASSWORD
     - The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP.  '     - The local address of SDF's VPN host. This can be found in /etc/hosts on SDF. The local IP will start with 10.0.0, but have the same last octet as the public IP.  '
-  * Add this in your /​usr/​local/​etc/​mpd4/​mpd4.links file:  sdfvpn: set link type pptp set pptp peer  set pptp enable originate outcall set pptp disable incoming+  * Add this in your /​usr/​local/​etc/​mpd4/​mpd4.links file:<​code> ​  
 +    ​sdfvpn: ​ 
 +    ​set link type pptp  
 +    ​set pptp peer  ​ 
 +    ​set pptp enable originate outcall ​ 
 +    ​set pptp disable incoming ​</​code>​
   * You will have to replace one (1) thing in this config:   * You will have to replace one (1) thing in this config:
     - The public address of SDF's VPN host. You can get this by running setvpn at the shell.     - The public address of SDF's VPN host. You can get this by running setvpn at the shell.