How to Create a Linux VPN Server in 30 minutes

VPN (Virtual Private Network) is an extension of a Private Network. It can simulate a point-to-point Private connection through a shared Internet or public Network connection, send data between a local computer and a remote computer.

It has good confidentiality and is not subject to authorization, so that both parties can establish a free and secure point-to-point connection. The following describes how to quickly build a VPN Server.

Install software

1. Install PPP

Install PPP (Point-to-Point Protocol, Point-to-Point Protocol) 2.4.2 or later versions, can you go to the http://sourceforge.net/project/showfiles.php? Group_id = 44827 download the ppp-2.4.3-0.cvs_20040527.1.i386.rpm package.

The installation command is as follows:

# Rpm-Uvh ppp-2.4.3-0.cvs_20040527.1.i386.rpm

2. Install kernel MPPE patch

Install the kernel MPPE (Microsoft Point to Point Encryption, Microsoft Point-to-Point Encryption) patch and select the appropriate version based on the kernel. The Linux kernel I use is 2.4.20-31.9, you can go to http://pptpclient.sourceforge.ne... 4.20-31.9.i686.rpm to download the corresponding kernel-mppe-2.4.20-31.9.i686.rpm package. The installation command is as follows:

# Rpm-ivh kernel-mppe-2.4.20-31.9.i686.rpm

Run the following command to check whether the kernel MPPE patch is successfully installed:

# Modprobe ppp-compress-18

3. Check whether PPP supports MPPE.

Run the following command to check whether PPP supports MPPE:

# Strings '/usr/sbin/pppd' grep-I mppe wc -- lines

4. Install PPTPD

To http://sourceforge.net/project/showfiles.php? Group_id = 44827 download the pptpd-1.1.4-b4.i386.rpm package and install it.

# Rpm-ivh pptpd-1.1.4-b4.i386.rpm

Modify configuration file

1. Modify the modules. conf file

Edit the/etc/modules. conf configuration file and add the following content:

Alias net-pf-47 ip_gre

2. Modify the pptpd. conf file

Edit the/etc/pptpd. conf configuration file and add the following content to determine the IP address of the local VPN Server and the IP address range allocated after the client logs on.

Debug

Option/etc/ppp/options.ppt pd

Localip 192.168.0.254 # IP address of the local VPN Server

Remoteip 192.168.1.1-254 # IP address range allocated by the client

3.modify the options.ppt pd File

Edit the/etc/ppp/options.ppt pd configuration file and replace it with the following content:

Auth

Lock

Debug

Proxyarp

Lock

Name rh9vpn # name of the VPN Server

Multilink

Refuse-pap

Refuse-chap

Refuse-mschap

Refuse-eap

Refuse-mschap-v2

Require-mppe

Ms-wins 192.168.1.2 # enter the IP address of the machine you want to see in the network neighbor.

Ms-dns 192.168.1.2 # DNS server address

Dump

Logfile/var/log/pptpd. log # log storage path

4. Modify the chap-secrets File

Edit the/etc/chap-secrets configuration file and add the following content:

# Client server secret IP addresses

"Test@gd.cn" * "test "*

The four items in the second line of code correspond to the four items in the first line. "Test@gd.cn" is the VPN user name of the Client; "server" corresponds to the name of the VPN server, the name must be the same as the/etc/ppp/options.ppt pd file, or set "*" to automatically identify the server. "secret" corresponds to the logon password. "IP addresses" corresponds to the IP address of the client that can be dialed in. If you do not need to set any special restrictions, you can set it.

• 2 pages in total:
• Previous Page
• 1
• 2
• Next Page