Re: Using poptop....
On Sat, 18 Oct 2003 05:52:57 +0100, in local.freebsd.questions you
wrote:
>It's really pretty easy. I beat my head on the wall about a year ago,
>so I
>don't recall where all the docs are, but this is what my configs look
>like:
>/etc/ppp/ppp.conf:
>pptp:
> set timeout 0
> set dial
> set login
> set ifaddr {IP address of internal interface} {IP address range
>xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx}
> set server /var/run/pptp_ppp_%d "" 0700
> enable mschapv2 mppe # <--- these two lines enable encryption
> set mppe * *#<---
OK thanks I'll try this one. I did eventually find an example which I
used and it did work but there were some errors logged. The
config I used included:
>enable mppe * stateful
in the ppp.conf file, but that generated the following in ppp.log
>Oct 20 12:52:38 field ppp[53548]: Command: loop: enable mppe * stateful
>Oct 20 12:52:38 field ppp[53548]: Warning: enable *: Invalid command
>Oct 20 12:52:38 field ppp[53548]: Warning: enable *: Failed 1
>Oct 20 12:52:38 field ppp[53548]: Warning: enable stateful: Invalid command
>Oct 20 12:52:38 field ppp[53548]: Warning: enable stateful: Failed 1
The connection did appear to be encrypted though, at least the XP
client said it was.
Jim
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
It's really pretty easy. I beat my head on the wall about a year ago, so I
don't recall where all the docs are, but this is what my configs look like:
/etc/ppp/ppp.conf:
pptp:
set timeout 0
set dial
set login
set ifaddr {IP address of internal interface} {IP address range
xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx}
set server /var/run/pptp_ppp_%d "" 0700
enable mschapv2 mppe # <--- these two lines enable encryption
set mppe * *#<---
enable chap
disable pap
disable utmp
disable passwdauth
enable proxy
accept dns
set dns 192.168.x.x
set nbns 192.168.x.x
/usr/local/etc/pptpd.conf:
option /etc/ppp/ppp.conf
localip {IP address of internal interface}
remoteip {IP address range xxx.xxx.xxx.2-255}
pidfile /var/run/pptpd.pid
You'll have to use the ppp.secret password file or a radius server (that's a
whole other story). Other than that, this works like a champ, and is
encrypted. Just for a point of clarification, omit the {} I added those
for readability.
Hope that helps.
Jerry
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
On Fri, 17 Oct 2003 16:00:00 +0100, in local.freebsd.questions you wrote: >If anyone can give me a recipe for setting up poptop >I'd be very grateful. I want to run it on a machine which >is a gateway/firewall. One NIC has a public address and the other >is on a private network, ie 192.168.1.x. I want to allow XP >clients to connect into the private network. > >I found the man pages a bit terse(!) and they seem to assume >that kernel ppp will be used whereas AIUI the port is built to >use userland ppp. Answering my own post, I know, but this: http://heyer.supranet.net/pptp/ is very useful, though it assumes that userland ppp can't do encryption, which I'm hoping is no longer true. If encryption is possible, then this: http://lab.digitol.net/openbsd-poptop.html albeit for OpenBSD, is pretty useful too. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
On Fri, 17 Oct 2003 17:11:40 +0100, in local.freebsd.questions you wrote: >> >> I would use mpd but it has problems with XP clients. >> >> > >What type of problems are you seeing with MPD (Netgraph variety) and >WinXP? >That's my VPN terminator software and all of my remote XP systems seem >to >have no problems with it. Interesting. What I see is on the XP box, the connectoid which shows the packet counters shows lots of receive errors. If I (for example) make an ftp connection to a machine on the protected network, it is OK but if I do a dir then it hangs and takes maybe 30 seconds to list a dozen files. I'm not alone, other people on the mpd-users mailing list have the same problems. My gut-feel tells me it is something to do with fragmentation but I don't know how to make XP tell me what the errors are. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
- Original Message - From: "Jim Hatfield" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 17, 2003 10:00 AM Subject: Using poptop > If anyone can give me a recipe for setting up poptop > I'd be very grateful. I want to run it on a machine which > is a gateway/firewall. One NIC has a public address and the other > is on a private network, ie 192.168.1.x. I want to allow XP > clients to connect into the private network. > > I found the man pages a bit terse(!) and they seem to assume > that kernel ppp will be used whereas AIUI the port is built to > use userland ppp. > > I would use mpd but it has problems with XP clients. > > What type of problems are you seeing with MPD (Netgraph variety) and WinXP? That's my VPN terminator software and all of my remote XP systems seem to have no problems with it. -- Micheal Patterson TSG Network Administration 405-917-0600 Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
