install VPN Server On debian Using PPTP
1.installing mppe support in kernel
Most people want their tunnels encrypted.check the version of your kernel,If it is below 2.6.15-rcl then you do not have MPPE support,To check further,test like this:
# modprobe ppp-compress-18 && echo success
if this fails,follow the MPPE HOWTO blow,then continue
********************************************************************************
* MPPE HOWTO
* Debian MPPE Howto,patch your own kernel
*
* a).prepare the system for kernel package building
* # apt-get install gcc bin86 libc6-dev bzip2 kernel-package kernel-patch-mppe
*
* b).install unpack and clean a kernel source package
* # apt-get install kernel-source-2.6.11.7
* # cd /usr/src
* # tar xfj kernel-source-2.6.11.7.tar.bz2
* # cd kernel-source-2.6.11.7
* # make-kpkg clean
*
* For these instructions we used a kernel-source package built from 2.6.11.7 * kernel sources from
* kernel.org,even though the latest kernel-source package from * Debian sarge 2.6.8,and on Debian
* Sid is 2.6.11.It is up to you to choose an * appropriate kernel versior.
*
* c).adopt the currently installed .config file
* # cp /boot/config- uname --kernel-release ./.config
*
* d).Build the kernel package
* # cd /usr/src/kernel-source-2.6.11.7
* # make-kpkg \
* --added-patches mppe \
* --append-to-version -mppe \
* --config oldconfig \
* --initrd \
* kernel_image
*
* Note:if the kernel version you are building for is 2.6.11.x and the kernel-* patch-mppe package
* has not been fixed,you will need to edit the file * /usr/src/kernel-patches/all/apply/mppe to
* include the kernel version number.
* well,If you are tracking debian woody,you may wish to remove --initrd
*
* When you are prompted for the CONFIG_PPP_MPPE option,type m and press Enter:
* PPP MPPE compression(encryption) (PPP_MPPE)[N/m/?](new) m
*
* e).install the kernel package
* # dpkg --install /usr/src/kernel-image-2.6.11.7-mppe_10.00.Custom_all.deb
*
* f).reboot,then test:
* # modprobe ppp-compress-18 && echo success
*
* if this works,"success" will be displayed.If you are on a console or watching
* syslog,you may see:
*
* ppp_mppe:module license 'BSD without advertisement clause'taints kernel.
* PPP MPPE Compression module registered
*
* These message do not stop it from working.
* continue:
* you have now installed MPPE support.Return to the Installation step which should
* be underside
*
**********************************************************************************
2.Installing the server Program
install the pptpd package from the Debian Project:
# apt-get install pptpd
3.Configure IP Address Range
edit the file /etc/pptpd.conf for the IP address range.
I used nano for Edit configuration files for example:
localip 10.10.11.254
remoteip 10.10.11.245-253
if The ipaddress you should distribute to remote clients just a unaided IP,You should set remoteip using "," separate it like this :10.10.11.2-234,10.10.11.243
4.Adding Users
configure /etc/ppp/chap-secrets for the accounts
for example:
# echo "vpn pptpd 123456 * " >> /etc/ppp/chap-secrets
vpn is the username 123456 is the valid password and * is set For the connection Ipaddress,* mean to any.
Either,use edit tools modify the configuration file /etc/ppp/chap-secrets directly
5.restart pptpd
# /etc/init.d/pptpd restart
6.clients Setting
I just configure the test client on Microsoft system.
When I build it and Attempt a connection to server.on successful connection and a new interface
should be created(e.g. ppp0).and the remoteIP address of the interface should be pingable,if so,
the rest of your problems are likely to be routing.
1).open control panel and click it to the network and internet connection.
2).add a new connection.the method of connection set to vpn.
3).follow the setup input your correctly username and password.
4).after build the icon of connection,set the properies of network,set the type of vpn to pptp vpn
5).set the properties of security .use custom set for high section.
modify the encryption of data type to not encryption.