在网上看到一位大虾的关于redhat 7.2下面配置VPN客户端的文章如下:
1.下载ppp-mppe-2.4.0-4.tar.gz(pppd的补丁版),pptp-linux-1.0.3-1.tar.gz
(pptp客户端),假定下载文件放在/opt下
2.安装
解压缩、安装pppd2.4.0
# cd /opt
# tar zxvf ppp-mppe-2.4.0-4.tar.gz -C /opt
# cd /opt/ppp-mppe-2.4.0-4
# sh unpack.sh ;执行这个脚本,给pppd打patch
# cd ppp-2.4-0
# ./configure
# make
# mv /usr/sbin/pppd /usr/sbin/pppd.old ;原来的pppd做个备份
# cp pppd /usr/sbin/pppd ;将新的pppd放入系统路径
解压缩、安装pptp-linux
# cd /opt
# tar zxvf pptp-linux-1.0.3-1.tar.gz -C /opt
# cd /opt/pptp-linux-1.0.3-1
# cp options.pptp /etc/ppp/
# mkdir /etc/pptp.d/ ; 这一步不做也可以
# tar zxvf pptp-linux-1.0.3.tar.gz
# cd pptp-linux-1.0.3
# make
# cp pptp /usr/sbin
# cp pptp-callmgr /usr/bin
3. 设置
# cd /opt/pptp-linux-1.0.3-1
# ./pptp-command
1.) start
2.) stop
3.) setup
4.) quit
What task would you like to do?:3
选3,设置
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?:2 ;先建立一个CHAP secrets,选择2
Add a NEW CHAP secret.
NOTE: Any backslashes (\) must be doubled (\\).
Local Name:
This is the 'local' identifier for CHAP authentication.
NOTE: If the server is a Windows NT machine, the local name
should be your Windows NT username including domain.
For example:
domain\\username
Local Name:pptp ;这里填上pptp的登录用户名称,然后出现
Remote Name:
This is the 'remote' identifier for CHAP authentication.
In most cases, this can be left as the default. If must be
set if you have multiple CHAP secrets with the same local name
and different passwords. Just press ENTER to keep the default.
Remote Name [PPTP]: ;用默认的PPTP就行,所以,回车进入下一项
Password:
This is the password or CHAP secret for the account specified. The
password will not be echoed.
Password: ;在这里敲入密码,密码不回显
回到主选单
Adding secret pptp PPTP *****
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?: ;此时建立一个新的PPTP Tunnel,选择5
Add a NEW PPTP Tunnel.
1.) Other
Which configuration would you like to use?:1 ;只有这一个,选1
Tunnel Name: test ;给连接起名字test
Server IP: 10.0.0.227 ;vpn服务器的ip
What route(s) would you like to add when the tunnel comes up?
This is usually a route to your internal network behind the PPTP server.
You can use TUNNEL_DEV and DEF_GW as in /etc/pptp.d/ config file
TUNNEL_DEV is replaced by the device of the tunnel interface.
DEF_GW is replaced by the existing default gateway.
The syntax to use is the same as the route(8) command.
Enter a blank line to stop.
route: TUNNEL_DEV ;用提示的输入
route: ;一个就够了,回车结束
Local Name and Remote Name should match a configured CHAP secret.
Local Name is probably your NT domain\username.
NOTE: Any backslashes (\) must be doubled (\\).
Local Name: pptp
Remote Name [PPTP]:
Adding test - 10.0.0.227 - pptp - PPTP
Added tunnel test
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?:9
退出后再进入程序
# ./pptp-command
1.) start
2.) stop
3.) setup
4.) quit
What task would you like to do?: 1 ;选1,开始
1.) test
Start a tunnel to which server?: test ;在选择要连接的名称
注意:pptp-command这个脚本有个bug,开始连接后不能正常结束程序,并且在连接建立后给出个错误的路由,
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.0.0.227 * 255.255.255.255 UH 0 0 0 ppp0
10.0.0.0 * 255.255.255.0 U 0 0 0 eth0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 10.0.0.1 0.0.0.0 UG 0 0 0 eth0
解决方法为
先删除错误那个错误的路由
# route del 10.0.0.227
然后
# route add -net 10.3.3.0/24 dev ppp0
成天不吃饭 回复于:2002-12-05 22:07:12
首先感谢CYP110老兄,然后请问,这篇文章是不是关于架设VPN SERVER的?
521unix 回复于:2002-12-06 11:04:01
太难了,,能够看得懂。。但是做不出来
intelxt 回复于:2002-12-11 19:37:49
这个是作客户端
服务器端怎么做呀??
有区别吗
我们现在用无线网,但有时候不太稳定,想用在linux下作个vpn
有好的建议吗
用上述的方法可行吗??
yingxiongl 回复于:2002-12-31 10:16:57
我按照以上的步骤配置后出现:
Insecure dependency in open while running with -T switch at ./pptp-command line.
再start出现:no configured tunnels!
是怎么回事呢?能不能帮助我一下?谢谢!
qkboy 回复于:2003-06-16 11:50:48
这个是建立客户端的,不是服务端的。
hotboy 回复于:2003-12-19 19:52:02
可以在WIN系统上做服务端,在LINUX上做客户端吗?
|
