Re: Using poptop....
On Sat, 18 Oct 2003 05:52:57 +0100, in local.freebsd.questions you wrote: >It's really pretty easy. I beat my head on the wall about a year ago, >so I >don't recall where all the docs are, but this is what my configs look >like: >/etc/ppp/ppp.conf: >pptp: > set timeout 0 > set dial > set login > set ifaddr {IP address of internal interface} {IP address range >xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx} > set server /var/run/pptp_ppp_%d "" 0700 > enable mschapv2 mppe # <--- these two lines enable encryption > set mppe * *#<--- OK thanks I'll try this one. I did eventually find an example which I used and it did work but there were some errors logged. The config I used included: >enable mppe * stateful in the ppp.conf file, but that generated the following in ppp.log >Oct 20 12:52:38 field ppp[53548]: Command: loop: enable mppe * stateful >Oct 20 12:52:38 field ppp[53548]: Warning: enable *: Invalid command >Oct 20 12:52:38 field ppp[53548]: Warning: enable *: Failed 1 >Oct 20 12:52:38 field ppp[53548]: Warning: enable stateful: Invalid command >Oct 20 12:52:38 field ppp[53548]: Warning: enable stateful: Failed 1 The connection did appear to be encrypted though, at least the XP client said it was. Jim ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
It's really pretty easy. I beat my head on the wall about a year ago, so I don't recall where all the docs are, but this is what my configs look like: /etc/ppp/ppp.conf: pptp: set timeout 0 set dial set login set ifaddr {IP address of internal interface} {IP address range xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx} set server /var/run/pptp_ppp_%d "" 0700 enable mschapv2 mppe # <--- these two lines enable encryption set mppe * *#<--- enable chap disable pap disable utmp disable passwdauth enable proxy accept dns set dns 192.168.x.x set nbns 192.168.x.x /usr/local/etc/pptpd.conf: option /etc/ppp/ppp.conf localip {IP address of internal interface} remoteip {IP address range xxx.xxx.xxx.2-255} pidfile /var/run/pptpd.pid You'll have to use the ppp.secret password file or a radius server (that's a whole other story). Other than that, this works like a champ, and is encrypted. Just for a point of clarification, omit the {} I added those for readability. Hope that helps. Jerry ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
On Fri, 17 Oct 2003 16:00:00 +0100, in local.freebsd.questions you wrote: >If anyone can give me a recipe for setting up poptop >I'd be very grateful. I want to run it on a machine which >is a gateway/firewall. One NIC has a public address and the other >is on a private network, ie 192.168.1.x. I want to allow XP >clients to connect into the private network. > >I found the man pages a bit terse(!) and they seem to assume >that kernel ppp will be used whereas AIUI the port is built to >use userland ppp. Answering my own post, I know, but this: http://heyer.supranet.net/pptp/ is very useful, though it assumes that userland ppp can't do encryption, which I'm hoping is no longer true. If encryption is possible, then this: http://lab.digitol.net/openbsd-poptop.html albeit for OpenBSD, is pretty useful too. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
On Fri, 17 Oct 2003 17:11:40 +0100, in local.freebsd.questions you wrote: >> >> I would use mpd but it has problems with XP clients. >> >> > >What type of problems are you seeing with MPD (Netgraph variety) and >WinXP? >That's my VPN terminator software and all of my remote XP systems seem >to >have no problems with it. Interesting. What I see is on the XP box, the connectoid which shows the packet counters shows lots of receive errors. If I (for example) make an ftp connection to a machine on the protected network, it is OK but if I do a dir then it hangs and takes maybe 30 seconds to list a dozen files. I'm not alone, other people on the mpd-users mailing list have the same problems. My gut-feel tells me it is something to do with fragmentation but I don't know how to make XP tell me what the errors are. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Using poptop....
- Original Message - From: "Jim Hatfield" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 17, 2003 10:00 AM Subject: Using poptop > If anyone can give me a recipe for setting up poptop > I'd be very grateful. I want to run it on a machine which > is a gateway/firewall. One NIC has a public address and the other > is on a private network, ie 192.168.1.x. I want to allow XP > clients to connect into the private network. > > I found the man pages a bit terse(!) and they seem to assume > that kernel ppp will be used whereas AIUI the port is built to > use userland ppp. > > I would use mpd but it has problems with XP clients. > > What type of problems are you seeing with MPD (Netgraph variety) and WinXP? That's my VPN terminator software and all of my remote XP systems seem to have no problems with it. -- Micheal Patterson TSG Network Administration 405-917-0600 Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"