Penguin
Recent Changes
Diff: WirelessNetworkSecurityHowto
EditPageHistoryDiffInfoLikePages

Differences between version 6 and predecessor to the previous major change of WirelessNetworkSecurityHowto.

Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History

Newer page: version 6 Last edited on Friday, May 28, 2004 12:36:05 pm by OlavAdema Revert
Older page: version 5 Last edited on Monday, September 1, 2003 8:37:40 am by GreigMcGill Revert
@@ -93,13 +93,62 @@
  mppe-128 
  mppe-stateless 
  
 That will enable Microsofts CHAP and CHAPv2, as well as turn on 40-bit and 128-bit stateless encryption. 
+  
+!PPP user account  
+The users who are allowed to use the VPN connection can be specified in the file /etc/ppp/chap-secrets  
+  
+It looks like this:  
+# Secrets for authentication using CHAP  
+# client server secret IP addresses  
+Madcat madcatServer MyPwd *  
+  
+This will allow user "Madcat" with password "MyPwd" to gain access  
+The servername must be the same as in the options file (/etc/ppp/pptpd-options) under the name "name"  
+  
+like this:  
+## change 'servername' to whatever you specify as your server name in chap-secrets  
+name madcatServer  
+  
+!IP range of the VPN network  
+In the file /etc/pptpd.conf you can configure the IP range you would like for your tunnel  
+The localip is the ipadress of your server and the remoteip range is the ip's that can be given  
+  
+for example:  
+localip 10.0.1.1  
+remoteip 10.0.1.2-100  
+listen 300.300.100.100 (this should be your outside adress, it's set to a fake adress)  
+  
+This way the tunnel ip of the server will be 10.0.1.1 and the first user who will login on IP 300.300.100.100 with the passwd as specified in /etc/pptpd.conf will gain 10.0.1.2, the second 10.0.1.3.. etc  
+  
+!So how can i login on my Windows XP Pro machiene?  
+  
+Start -> settins -> control panel  
+goto network connections-> create a new connection  
+next -> "connect to workplace" -> vpn -> "fill your name in here " ->  
+you might get an question about automaticly connecting, fill in what you like. but i prefer not to auto connect  
+-> fill here the IP of your server in as specified in /etc/pptpd.conf as "listen" -> finisch  
+  
+If you did not got the encryption (mppe module) working do this:  
+goto properties -> security -> advanced -> check CHAP and change data encryption to optional  
+you get a warning that it might be unsafe, to fix it read the above :)  
+  
+You also might need to disable LCP to get it working  
+networking -> settings -> uncheck LCP  
+  
+Now the fun part comes, creating the connection.  
+hit connect and enter the user/pwd as specified in /etc/ppp/chap-secrets  
+  
+! Errors  
+  
+Todo  
  
 !!TODO 
  
 I still need to add information about: 
  
-* /etc/pptpd.conf and /etc/ppp/chap-secrets 
+* /etc/pptpd.conf and /etc/ppp/chap-secrets (mostly done)  
 * Configuring Windows clients 
+* Errors explanation  
  
 Until then you can find out this information at [http://www.schumann.cx/wavelan/]