March 31, 2008

VPN Configuration – PPTP

· Download & install source (in this method use RPM Package, but for configuration same with another distro)

· Next, edit file /etc/pptp.conf

option /etc/ppp/options.pptpd
localip [IP Interface that connect to LAN]
remoteip [IP for your client, ex:192.168.0.101-103]

· Edit file /etc/ppp/options.pptpd like this,

lock
nopcomp
noauth
debug
defaultroute
name pptpd
proxyarp
asyncmap 0
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe
lcp-echo-failure 30
lcp-echo-interval 5
ipcp-accept-local
ipcp-accept-remote
allow-ip [ip_remote_yg_boleh mengakses]

ms-dns [DNS Local Server]
ms-wins [WINS Local Server]

proxyarp
debug
dump
lock
nobsdcomp

logfile /var/log/pptp.log

· Open the Firewall for TCP port 1723 dan PROTO GRE

-A INPUT -i eth0 -p tcp --dport 1723 -j ACCEPT
-A INPUT -p gre -j ACCEPT

Use the EAP-TLS (MSCHAP2) for the authentification.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)