Diff: WirelessNetworkSecurityHowto

Differences between current version and predecessor to the previous major change of WirelessNetworkSecurityHowto.

Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History

Newer page: version 10 Last edited on Friday, July 7, 2006 11:51:37 am by AristotlePagaltzis
Older page: version 5 Last edited on Monday, September 1, 2003 8:37:40 am by GreigMcGill Revert
@@ -93,13 +93,65 @@
 That will enable Microsofts CHAP and CHAPv2, as well as turn on 40-bit and 128-bit stateless encryption. 
+!PPP user account  
+The users who are allowed to use the VPN connection can be specified in the file /etc/ppp/chap-secrets  
+It looks like this:  
+ Secrets for authentication using CHAP  
+ client server secret IP addresses  
+ Madcat madcatServer MyPwd *  
+This will allow user "Madcat" with password "MyPwd" to gain access.  
+The servername must be the same as in the options file (/etc/ppp/pptpd-options) under the name "name"  
+Like this:  
+ change 'servername' to whatever you specify as your server name in chap-secrets  
+ name madcatServer  
+!IP range of the VPN network  
+In the file /etc/pptpd.conf you can configure the IP range you would like for your tunnel  
+The localip is the ipadress of your server and the remoteip range is the ip's that can be given  
+for example:  
+ localip  
+ remoteip  
+ listen 300.300.100.100 (this should be your outside adress, it's set to a fake adress)  
+This way the tunnel ip of the server will be and the first user who will login on IP 300.300.100.100 with the passwd as specified in /etc/pptpd.conf will gain, the second etc  
+!So how can i login on my Windows XP Pro machiene?  
+Start -> settings -> control panel  
+goto network connections-> create a new connection  
+next -> "connect to workplace" -> vpn -> "fill your name in here " ->  
+you might get an question about automaticly connecting, fill in what you like. but i prefer not to auto connect  
+-> fill here the IP of your server in as specified in /etc/pptpd.conf as "listen" -> finisch  
+If you did not got the encryption (mppe module) working do this:  
+goto properties -> security -> advanced -> check CHAP and change data encryption to optional  
+you get a warning that it might be unsafe, to fix it read the above :)  
+You also might need to disable LCP to get it working  
+networking -> settings -> uncheck LCP  
+Now the fun part comes, creating the connection.  
+hit connect and enter the user/pwd as specified in /etc/ppp/chap-secrets  
+! Errors  
 I still need to add information about: 
-* /etc/pptpd.conf and /etc/ppp/chap-secrets  
-* Configuring Windows clients 
+* /etc/pptpd.conf and /etc/ppp/chap-secrets (mostly done)  
+* Configuring Windows clients (mostly done)  
+* Errors explanation  
 Until then you can find out this information at []