Date: Sat, 18 Oct 2003 00:52:57 -0400 From: "Jerry Bell" <jerry@syslog.org> To: "Jim Hatfield" <subscriber@insignia.com>, <freebsd-questions@freebsd.org> Subject: Re: Using poptop.... Message-ID: <068601c39533$b42aa430$1a0a0a0a@iss.net> References: <3203DF3DDE57D411AFF4009027B8C3674AF580@exchange-uk.isltd.insignia.com> <2a90pvkkm6b1c3s1k6bu94dmajh6gbbq5p@4ax.com>
next in thread | previous in thread | raw e-mail | index | archive | help
It's really pretty easy. I beat my head on the wall about a year ago, so I
don't recall where all the docs are, but this is what my configs look like:
/etc/ppp/ppp.conf:
pptp:
set timeout 0
set dial
set login
set ifaddr {IP address of internal interface} {IP address range
xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx}
set server /var/run/pptp_ppp_%d "" 0700
enable mschapv2 mppe # <--- these two lines enable encryption
set mppe * * #<---
enable chap
disable pap
disable utmp
disable passwdauth
enable proxy
accept dns
set dns 192.168.x.x
set nbns 192.168.x.x
/usr/local/etc/pptpd.conf:
option /etc/ppp/ppp.conf
localip {IP address of internal interface}
remoteip {IP address range xxx.xxx.xxx.2-255}
pidfile /var/run/pptpd.pid
You'll have to use the ppp.secret password file or a radius server (that's a
whole other story). Other than that, this works like a champ, and is
encrypted. Just for a point of clarification, omit the {} I added those
for readability.
Hope that helps.
Jerry
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?068601c39533$b42aa430$1a0a0a0a>