First, topology:
PPTP server is located inside the company. Address mapping through the firewall PPTP service 1723 port.
650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M02/58/CF/wKioL1S9w5jzIqWzAACBZKXprqM897.jpg "title=" Drawing 1.jpg "alt=" Wkiol1s9w5jziqwzaacbzkxprqm897.jpg "/>
Second, the Environment preparation
1. System environment
[Email protected] ~]# cat/etc/issue
Red Hat Enterprise Linux Server release 6.4 (Santiago)
2. Install RPM Package
[Email protected] ~]# Rpm-qa | grep PPP
Kernel_ppp_mppe-1.0.2-3dkms.noarch
Ppp-2.4.5-5.el6.x86_6
[Email protected] ~]# Rpm-qa | grep PPTP
Pptpd-1.4.0-3.el6.x86_64
Third, modify the configuration file
[Email protected] ~]# grep-v "^[#]"/etc/pptpd.conf | Grep-v "^$"
Option/etc/ppp/options.pptpd
Logwtmp
Localip 192.168.0.138
REMOTEIP 10.0.0.100-150 #设置VPN Client address pool
[Email protected] ~]# grep-v "^[#]"/etc/ppp/options.pptpd | Grep-v "^$"
Name PPTPD
Refuse-pap
Refuse-chap
Refuse-mschap
Require-mschap-v2
require-mppe-128
Ms-dns 8.8.8.8 #设置DNS
Proxyarp
# Secrets for authentication using CHAP
# Client Server Secret IP addresses
Fish pptpdxxxxxxx*
#设置用户名和密码
Four: Turn on the server and set the boot to start automatically
Service pptpd Restart;chkconfig pptpd on
Five: Set up a Linux firewall
Iptables-f
Iptables-t nat-a postrouting-s 10.0.0.0/24-j SNAT--to 192.168.0.138
#需要将VPN Client do address translation
Six: Do address mapping on the ASA firewall
Static (inside,outside) TCP 20.8.5.3 1721 192.168.0.138 1723 netmask 255.255.255.255
Access-list out extended permit TCP any host 20.8.5.3 eq PPTP
This article is from the "11325902" blog, please be sure to keep this source http://11325902.blog.51cto.com/673482/1606117
Linux PPTP Server Installation