Differences between version 9 and predecessor to the previous major change of WirelessNetworkSecurityHowto.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 9 | Last edited on Friday, May 28, 2004 12:43:53 pm | by OlavAdema | Revert |
| Older page: | version 5 | Last edited on Monday, September 1, 2003 8:37:40 am | by GreigMcGill | Revert |
@@ -93,13 +93,62 @@
mppe-128
mppe-stateless
That will enable Microsofts CHAP and CHAPv2, as well as turn on 40-bit and 128-bit stateless encryption.
+
+!PPP user account
+The users who are allowed to use the VPN connection can be specified in the file /etc/ppp/chap-secrets
+
+It looks like this:
+ Secrets for authentication using CHAP
+ client server secret IP addresses
+ Madcat madcatServer MyPwd *
+
+This will allow user "Madcat" with password "MyPwd" to gain access.
+The servername must be the same as in the options file (/etc/ppp/pptpd-options) under the name "name"
+
+Like this:
+ change 'servername' to whatever you specify as your server name in chap-secrets
+ name madcatServer
+
+!IP range of the VPN network
+In the file /etc/pptpd.conf you can configure the IP range you would like for your tunnel
+The localip is the ipadress of your server and the remoteip range is the ip's that can be given
+
+for example:
+ localip 10.0.1.1
+ remoteip 10.0.1.2-100
+ listen 300.300.100.100 (this should be your outside adress, it's set to a fake adress)
+
+This way the tunnel ip of the server will be 10.0.1.1 and the first user who will login on IP 300.300.100.100 with the passwd as specified in /etc/pptpd.conf will gain 10.0.1.2, the second 10.0.1.3.. etc
+
+!So how can i login on my Windows XP Pro machiene?
+
+Start -> settings -> control panel
+goto network connections-> create a new connection
+next -> "connect to workplace" -> vpn -> "fill your name in here " ->
+you might get an question about automaticly connecting, fill in what you like. but i prefer not to auto connect
+-> fill here the IP of your server in as specified in /etc/pptpd.conf as "listen" -> finisch
+
+If you did not got the encryption (mppe module) working do this:
+goto properties -> security -> advanced -> check CHAP and change data encryption to optional
+you get a warning that it might be unsafe, to fix it read the above :)
+
+You also might need to disable LCP to get it working
+networking -> settings -> uncheck LCP
+
+Now the fun part comes, creating the connection.
+hit connect and enter the user/pwd as specified in /etc/ppp/chap-secrets
+
+! Errors
+
+Todo
!!TODO
I still need to add information about:
-* /etc/pptpd.conf and /etc/ppp/chap-secrets
-* Configuring Windows clients
+* /etc/pptpd.conf and /etc/ppp/chap-secrets (mostly done)
+* Configuring Windows clients (mostly done)
+* Errors explanation
Until then you can find out this information at [http://www.schumann.cx/wavelan/]
