VPN (Virtual Private Network) is an extension of a Private Network. It can simulate a point-to-point Private connection through a shared Internet or public Network connection, send data between a local computer and a remote computer.
It has good confidentiality and is not subject to authorization, so that both parties can establish a free and secure point-to-point connection. The following describes how to quickly build a VPN Server.
Install software
1. Install PPP
Install PPP (Point-to-Point Protocol, Point-to-Point Protocol) 2.4.2 or later versions, can you go to the http://sourceforge.net/project/showfiles.php? Group_id = 44827 download the ppp-2.4.3-0.cvs_20040527.1.i386.rpm package.
The installation command is as follows:
# Rpm-Uvh ppp-2.4.3-0.cvs_20040527.1.i386.rpm
2. Install kernel MPPE patch
Install the kernel MPPE (Microsoft Point to Point Encryption, Microsoft Point-to-Point Encryption) patch and select the appropriate version based on the kernel. The Linux kernel I use is 2.4.20-31.9, you can go to http://pptpclient.sourceforge.ne... 4.20-31.9.i686.rpm to download the corresponding kernel-mppe-2.4.20-31.9.i686.rpm package. The installation command is as follows:
# Rpm-ivh kernel-mppe-2.4.20-31.9.i686.rpm
Run the following command to check whether the kernel MPPE patch is successfully installed:
# Modprobe ppp-compress-18
3. Check whether PPP supports MPPE.
Run the following command to check whether PPP supports MPPE:
# Strings '/usr/sbin/pppd' grep-I mppe wc -- lines
4. Install PPTPD
To http://sourceforge.net/project/showfiles.php? Group_id = 44827 download the pptpd-1.1.4-b4.i386.rpm package and install it.
# Rpm-ivh pptpd-1.1.4-b4.i386.rpm
Modify configuration file
1. Modify the modules. conf file
Edit the/etc/modules. conf configuration file and add the following content:
Alias net-pf-47 ip_gre
2. Modify the pptpd. conf file
Edit the/etc/pptpd. conf configuration file and add the following content to determine the IP address of the local VPN Server and the IP address range allocated after the client logs on.
Debug
Option/etc/ppp/options.ppt pd
Localip 192.168.0.254 # IP address of the local VPN Server
Remoteip 192.168.1.1-254 # IP address range allocated by the client
3.modify the options.ppt pd File
Edit the/etc/ppp/options.ppt pd configuration file and replace it with the following content:
Auth
Lock
Debug
Proxyarp
Lock
Name rh9vpn # name of the VPN Server
Multilink
Refuse-pap
Refuse-chap
Refuse-mschap
Refuse-eap
Refuse-mschap-v2
Require-mppe
Ms-wins 192.168.1.2 # enter the IP address of the machine you want to see in the network neighbor.
Ms-dns 192.168.1.2 # DNS server address
Dump
Logfile/var/log/pptpd. log # log storage path
4. Modify the chap-secrets File
Edit the/etc/chap-secrets configuration file and add the following content:
# Client server secret IP addresses
"Test@gd.cn" * "test "*
The four items in the second line of code correspond to the four items in the first line. "Test@gd.cn" is the VPN user name of the Client; "server" corresponds to the name of the VPN server, the name must be the same as the/etc/ppp/options.ppt pd file, or set "*" to automatically identify the server. "secret" corresponds to the logon password. "IP addresses" corresponds to the IP address of the client that can be dialed in. If you do not need to set any special restrictions, you can set it.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
