MPD [was Re: VPNs]

Lou Kamenov lou.kamenov at aeye.net
Mon Nov 11 11:07:24 GMT 2002 

In some email I received from Jose Marques <noway at nohow.demon.co.uk> on
Sun, 10 Nov 2002 21:57:13 +0000 (GMT) :
> On Sun, 10 Nov 2002, Lou Kamenov wrote:
> 
> > I`d suggest to you trying again, I`m running mpd on 4.7-STABLE with
> > about 15 clients. Settings are: PPTP,forcing 128bit MPPE encryption
> > (sometimes MPP(C)ompression), and that`s not hard at all.
> > All the clients are 98/2k/XP. (98 with MS high encryption patch)
> 
> Could I have copies of your mpd.conf and mpd.links files?  I managed
> to get a Windows client to connect and authenticate but any attempt to
> send data resulted in errors (the only refrence I could find to this
> on Google suggested it was some kind of encryption problem).  I'd be
> very interested to see what you are doing that differs from my
> attempts.

Sure.
Though you can find the manual @ /usr/[local/]/share/doc/mpd. 
It`s a really good one.
Set the server and then dial-in using Windows 2k, it will work for sure.


mpd.conf
=========================================================
default:
        load pptp0
        load pptp1
	[and so on]
pptp0:
        new -i ng0 pptp0 pptp0
        set ipcp ranges ServerSide/32 ClientSide/32
        load dialin_specs #loading the specs
pptp1:	
	new -i ng1 pptp1 pptp1
	set ipcp ranges ServerSide/32 ClientSide/32
	load dialin_specs

[ and so on to pptpN ]
dialin_specs:

        set iface disable on-demand
        set iface enable proxy-arp
        set bundle enable multilink
        set link yes acfcomp protocomp
        set link yes pap chap
        set link enable chap
        set link keep-alive 0 180
        set ipcp yes vjcomp
        set ipcp dns DNSADDRESS  
        set ipcp nbns WINSADDRESS 

# encryption and compression.
	set bundle enable compression        
	set ccp yes mppc
        set ccp yes mpp-e128  

# forcing 128 encryption, dont put more than one  might crash, or force
# the lower one. for e128 you need DUN VPN patch for High encryption (on
# win98        
	
	set ccp yes mpp-stateless        
	set bundle yes

crypt-reqd=============================================================
== mpd.links pptp0:
	set link type pptp
	set pptp self 0
	set pptp enable incoming
	set pptp disable originate 

pptp1:
	set link type pptp
	set pptp self 0
	set pptp enable incoming
	set pptp disable originate

[ and so on ]
==================================================================
mpd.secret
username	userpassword	USER_DESIRED_IP

[ and so on ]

==================================================================

HTH, HAND


cheers,
-lou

----
Network Infrastructure/Security Analyst
Lou Kamenov    lou.kamenov at aeye.net	lou.kamenov at aeye-web.com
AEYE R&D - http://www.aeye.net AEYE Commercial - http://www.aeye-web.com
phone: +44 (0) 20 89469546 fax: +44 (0) 7092 129079
mobile: +44 (0) 7905 514036 PGP Key ID - 0xA297084A

AEYE(=AI) stands for Artificial Intelligence.

More information about the Ukfreebsd mailing list