所需的软件全部在:http://poptop.sourceforge.net/yum/stable/packages
dkms-2.0.17.5-1.noarch 低版本的内核需要补丁
kernel_ppp_mppe-1.0.2-3dkms.noarch 内核是否集成MPPE
ppp-2.4.4-14.1.rhel5.x86_64 PPP安装
pptpd-1.3.4.tar.gz pptpd源码
检查是否安装MPPE
modprobe ppp-compres-18 && echo MPPE is ok
pptpd 安装
tar -zxvf pptpd-1.3.4.tar.gz
cd pptpd-1.3.4
./configure --prefix=/usr/local/pptpd --enable-bcrelay --with-libwrap
make
make install
配置 PPTP
mkdir /usr/local/pptpd/etc
cp ~/setup/pptp/pptpd-1.3.4/samples/pptpd.conf /usr/local/etc/
cp ~/setup/pptp/pptpd-1.3.4/samples/optiions.pptpd /usr/local/pptpd/etc/pptpd.conf 基本配置文件
options.pptpd 扩展属性配置文件
修改配置文件 pptpd.conf
[root@private pptpd-1.3.4]# vi /usr/local/pptpd/etc/pptpd.conf
ppp /usr/sbin/pppd
option /usr/local/pptpd/etc/options.pptpd 定义扩展属性配置文件的位置
#logwtmp rhel5中与ppp相冲突,注释掉
localip 192.168.11.234 服务器ppp0的地址
remoteip 192.168.12.235-245 分配给客户机的地址,注意格式的写法
修改配置文件 options.pptpd
[root@private pptpd-1.3.4]# vi /usr/local/pptpd/etc//options.pptpd
name pptpd pptpd server名称必需与/etc/ppp/chap-secrets中的一致
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2 客户端认证方式
require-mppe-128
ms-dns 8.8.8.8
ms-dns 8.8.4.4
proxyarp
debug 增加debug log,相关信息在/var/log/message中
dump
lock
nobsdcomp
novj
novjccomp
nologfd
添加账户
[root@private etc]# vi /etc/ppp/chap-secrets
1 # Secrets for authentication using CHAP
2 # client server secret IP addresses (可以拨入的客户端地址)
3 dh pptpd password *
启动
[root@private etc]# /usr/local/pptpd/sbin/pptpd --conf /usr/local/pptpd/etc/pptpd.conf --option /usr/local/pptpd/etc/options.pptpd
[root@private etc]# netstat -ntl | grep 1723
tcp 0 0 0.0.0.0:1723 0.0.0.0:* LISTEN
客户端测试
server上的IP与日志
[root@private etc]# ifconfig
eth0 Link encap:Ethernet HWaddr 00:50:56:BA:53:77
inet addr:10.8.116.100 Bcast:10.8.116.255 Mask:255.255.255.0
inet6 addr: 2001:470:82a2:874:250:56ff:feba:5377/64 Scope:Global
inet6 addr: fe80::250:56ff:feba:5377/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:697989 errors:0 dropped:0 overruns:0 frame:0
TX packets:399525 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:121861870 (116.2 MiB) TX bytes:49777125 (47.4 MiB)
Interrupt:51 Base address:0x2000
ppp0 Link encap:Point-to-Point Protocol
inet addr:192.168.11.234 P-t-P:192.168.12.235 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1396 Metric:1
RX packets:83 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:3
RX bytes:5905 (5.7 KiB) TX bytes:92 (92.0 b)
tail -F /var/log/messages
Jan 11 19:17:48 centosx64 pptpd[27535]: CTRL: Client 10.8.116.221 control connection started
Jan 11 19:17:48 centosx64 pptpd[27535]: CTRL: Starting call (launching pppd, opening GRE)
Jan 11 19:17:48 centosx64 pppd[27536]: pppd 2.4.4 started by root, uid 0
Jan 11 19:17:48 centosx64 pppd[27536]: Using interface ppp0
Jan 11 19:17:48 centosx64 pppd[27536]: Connect: ppp0 <--> /dev/pts/3
Jan 11 19:17:51 centosx64 pptpd[27535]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jan 11 19:17:51 centosx64 pppd[27536]: MPPE 128-bit stateless compression enabled
Jan 11 19:17:52 centosx64 pppd[27536]: Cannot determine ethernet address for proxy ARP
Jan 11 19:17:52 centosx64 pppd[27536]: local IP address 192.168.11.234
Jan 11 19:17:52 centosx64 pppd[27536]: remote IP address 192.168.12.235
客户端拨号成功!!