一鍵搭建PPTP VPN指令碼
下載Centos6.2一鍵搭建PPTP VPN指令碼
代碼如下 |
複製代碼 |
#wget http://www.hi-vps.com/shell/vpn_centos6.sh #chmod a+x vpn_centos6.sh |
安裝Centos6.2PPTPVPN指令碼#bash vpn_centos6.sh
執行完後有1、2、3種英文,對應如下中文意思。
1. 安裝VPN服務
2. 修複VPN
3. 添加VPN使用者
我們要安裝PPTP vpn,當然輸入1,然後enter鍵了。等待安裝完成,就會出現帳號和密碼啦,預設帳號是vpn,密碼是一串隨機數字,自己用的話就不用加帳號和密碼了,複製下來備用吧。
快速配置pptp vpn的
1、PPTP使用PPP協議對使用者資料進行封裝,然後將PPP資料幀封裝在IP資料報裡,經由IP網路傳播。因此首先需要支援PPP協議
代碼如下 |
複製代碼 |
[root@chenyi ~]# yum install ppp Dependencies Resolved ================================================================================================================ Package Arch Version Repository Size ================================================================================================================ Installing: ppp i686 2.4.5-5.el6 base 319 k Transaction Summary ================================================================================================================ Install 2 Package(s) Total download size: 319 k Installed size: 715 k Is this ok [y/N]: y |
2、安裝pptpd(根據你作業系統的平台自行尋找對應安裝包)
代碼如下 |
複製代碼 |
[root@chenyi ~]# rpm -Uvh https://qiaodahai.googlecode.com/files/pptpd-1.3.4-2.el6.i686.rpm Retrieving https://qiaodahai.googlecode.com/files/pptpd-1.3.4-2.el6.i686.rpm warning: /var/tmp/rpm-tmp.HNhMX5: Header V3 DSA/SHA1 Signature, key ID 862acc42: NOKEY Preparing... ########################################### [100%] 1:pptpd ########################################### [100%] |
3、變更設定檔
代碼如下 |
複製代碼 |
[root@chenyi ~]# cat /etc/ppp/options.pptpd | egrep -v "^#|^$" name pptpd refuse-pap refuse-chap refuse-mschap require-mschap-v2 require-mppe-128 ms-dns 8.8.8.8 ms-dns 8.8.4.4 proxyarp lock nobsdcomp novj novjccomp nologfd |
4、密碼設定檔
代碼如下 |
複製代碼 |
[root@chenyi ~]# cat /etc/ppp/chap-secrets # Secrets for authentication using CHAP # client server secret IP addresses itchenyi pptpd itchenyi * |
5、PPTPD設定檔
代碼如下 |
複製代碼 |
[root@chenyi ~]# cat /etc/pptpd.conf | egrep -v "^#|^$" option /etc/ppp/options.pptpd logwtmp localip 192.168.70.1 remoteip 192.168.70.207-217 |
6、變更核心配置,開啟IP轉寄
代碼如下 |
複製代碼 |
#conf file path :/etc/sysctl.conf [root@chenyi ~]# sysctl -p net.ipv4.ip_forward = 1 net.ipv4.conf.default.rp_filter = 1 net.ipv4.conf.default.accept_source_route = 0 net.ipv4.tcp_syncookies = 1 kernel.msgmnb = 65536 kernel.msgmax = 65536 kernel.shmmax = 68719476736 kernel.shmall = 4294967296 net.ipv4.icmp_echo_ignore_broadcasts = 1 net.core.somaxconn = 1024 |
7、配置Iptables
代碼如下 |
複製代碼 |
iptables -A INPUT -p tcp -m tcp --dport 1723 -j ACCEPT iptables -A FORWARD -s 192.168.70.0/24 -j ACCEPT iptables -A FORWARD -d 192.168.70.0/24 -j ACCEPT iptables -t nat -A POSTROUTING -s 192.168.70.0/24 -j SNAT --to-source 69.85.84.209 |
8、啟動服務….
代碼如下 |
複製代碼 |
[root@chenyi ~]# service pptpd start |