FreeBSD利用poptop架设vpn指南

安装poptop cd /usr/ports/net/poptop make install clean ===> SECURITY REPORT: This port has installed the following files which may act as network servers and may therefore pose a remote security risk to the system. /usr/local/sbin/pptpd

This port has installed the following startup scripts which may cause these network services to be started at boot time. /usr/local/etc/rc.d/pptpd

cd /usr/local/etc cp pptpd.conf.sample pptpd.conf vi pptpd.conf cd /usr/ports/net/poptop make install clean

三、设置/usr/local/etc/pptpd.conf cd /usr/local/etc cp pptpd.conf.sample pptpd.conf 加入以下： ###############################

debug nobsdcomp proxyarp localip 192.168.100.61 remoteip 192.168.100.62-70 pidfile /var/run/pptpd.pid +chapms-v2 mppe-40 mppe-128 mppe-stateless

###############################

四、设置/etc/ppp/ppp.conf cd /etc/ppp 加入以下： ###############################

loop: set timeout 0 set log phase chat connect lcp ipcp command set device localhost:pptp set dial set login # Server (local) IP address, Range for Clients, and Netmask # if you want to use NAT use private IP addresses set ifaddr 192.168.100.61 192.168.100.62-192.168.100.70 255.255.255.0 add default HISADDR set server /tmp/loop “” 0177

loop-in: set timeout 0 set log phase lcp ipcp command allow mode direct

pptp: load loop disable pap # Authenticate against /etc/passwd enable passwdauth disable ipv6cp enable proxy accept dns enable MSChapV2 enable mppe disable deflate pred1 deny deflate pred1 set dns 221.228.255.1 set device !/etc/ppp/secure

###############################

五、设置VPN登陆用户和密码/etc/ppp/ppp.secret

USERNAME PASSWORD

六、设置/etc/sysctl.conf 加入以下： net.inet.ip.forwarding=1 执行 sysctl net.inet.ip.forwarding=1

七、设置/etc/rc.conf 加入以下： arpproxy_all=”YES” gateway_enable=”YES” 执行 cd /etc sh rc

八、cd /usr/local/etc/rc.d cp pptpd.sh.sample pptpd.sh ./pptpd.sh start

到现在VPN服务器就启动完毕了，就可以用windows登陆 如果log里面出现configuration label not found，检查ppp.conf里面，除了loop，pptp什么的以外，其他的各行前面都是tab而不是空格

• poptop
• vpn