On Wed, 9 Jan 2002 at 14:44, John Paul Q. Tomas wrote:
> Im new in dail in server and my boss need it so that he can connect to
> the internet at home... Any good sites so that i can start to configure
> my server right away?.. I think all i need is ppp and radius the problem
> is, I dont have any Idea how to start...
There are a LOT of sites you can read up on but I'll help you out and give
you a detailed HOWTO right here. ;>
This assumes that you know your way around your Linux distribution
already.
0. You will need mgetty and ppp.
1. mgetty configs:
a. /etc/mgetty/login.config: you need this line (and only this line
activated!):
/AutoPPP/ - a_ppp /usr/sbin/pppd auth -chap +pap login -detach
b. Optionally for each modem you have configure
/etc/mgetty/mgetty.config with sections like:
port ttyS0
init-chat "" \d\d\d+++\d\dATH0&F1E0M0 OK
modem-type cls2.0
data-only y
2. pppd configs:
a. /etc/ppp/options.XXX where XXX is the portname (ie: ttyS0). My
configs, with words in between <> to be changed:
<server hostname>:<client hostname default, ie: dialup0>
<server IP>:<client IP>
domain <domain>
-chap
+pap
login
nopersist
mru 296
mtu 296
nodefaultroute
nodetach
proxyarp
ms-dns <DNS server>
ms-wins <WINS server, if any, can omit this line entirely>
As you will see, you can use this to set the default settings for each and
every port. In my case I have two dial-in ports so connects through each
get proper local IP addresses that don't clash. Also, a lot of defaults
(ie: DNS server) can be put there.
b1. /etc/ppp/pap-secrets:
# Inbound connections
* * "" *
# Explicitly denied
guest * "*" -
master * "*" -
root * "*" -
support * "*" -
stats * "*" -
b2. /etc/ppp/pap-secrets THAT I PREFER!:
# Explicitly denied
guest * "*" -
master * "*" -
root * "*" -
support * "*" -
stats * "*" -
# Explicitly allowed
<user> * "" *
I prefer b2 because only explicitly allowed users get access via dial-up.
This uses passwords from /etc/passwd (or whatever you have set up via PAM,
in my case I use auth_ldap for everything).
3. /etc/inittab (which makes sure mgetty runs):
M0:2345:respawn:/sbin/mgetty -s 57600 -n 1 -D -m '"" ATH0&F1Q0X4L0M0' ttyS0
>From this you will see that modifications to mgetty.config aren't really
necessary. You can put the init string here.
4. Refresh init:
# kill -SIGHUP 1
:)
--> Jijo
--
Federico Sevilla III :: [EMAIL PROTECTED]
Network Administrator :: The Leather Collection, Inc.
GnuPG Key: http://jijo.leathercollection.ph/jijo.gpg
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
