在網上看到一位大蝦的關于redhat 7.2下面配置VPN客戶端的文章如下:
1.下載ppp-mppe-2.4.0-4.tar.gz(pppd的補丁版),pptp-linux-1.0.3-1.tar.gz
(pptp客戶端),假定下載文件放在/opt下
2.安裝
解壓縮、安裝pppd2.4.0
# cd /opt
# tar zxvf ppp-mppe-2.4.0-4.tar.gz -C /opt
# cd /opt/ppp-mppe-2.4.0-4
# sh unpack.sh ;執行這個腳本,給pppd打patch
# cd ppp-2.4-0
# ./configure
# make
# mv /usr/sbin/pppd /usr/sbin/pppd.old ;原來的pppd做個備份
# cp pppd /usr/sbin/pppd ;將新的pppd放入系統路徑
解壓縮、安裝pptp-linux
# cd /opt
# tar zxvf pptp-linux-1.0.3-1.tar.gz -C /opt
# cd /opt/pptp-linux-1.0.3-1
# cp options.pptp /etc/ppp/
# mkdir /etc/pptp.d/ ; 這一步不做也可以
# tar zxvf pptp-linux-1.0.3.tar.gz
# cd pptp-linux-1.0.3
# make
# cp pptp /usr/sbin
# cp pptp-callmgr /usr/bin
3. 設置
# cd /opt/pptp-linux-1.0.3-1
# ./pptp-command
1.) start
2.) stop
3.) setup
4.) quit
What task would you like to do?:3
選3,設置
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?:2 ;先建立一個CHAP secrets,選擇2
Add a NEW CHAP secret.
NOTE: Any backslashes () must be doubled (\).
Local Name:
This is the 'local' identifier for CHAP authentication.
NOTE: If the server is a Windows NT machine, the local name
should be your Windows NT username including domain.
For example:
domain\username
Local Name:pptp ;這里填上pptp的登錄用戶名稱,然后出現
Remote Name:
This is the 'remote' identifier for CHAP authentication.
In most cases, this can be left as the default. If must be
set if you have multiple CHAP secrets with the same local name
and different passwords. Just press ENTER to keep the default.
Remote Name [PPTP]: ;用默認的PPTP就行,所以,回車進入下一項
Password:
This is the password or CHAP secret for the account specified. The
password will not be echoed.
Password: ;在這里敲入密碼,密碼不回顯
回到主選單
Adding secret pptp PPTP *****
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?: ;此時建立一個新的PPTP Tunnel,選擇5
Add a NEW PPTP Tunnel.
1.) Other
Which configuration would you like to use?:1 ;只有這一個,選1
Tunnel Name: test ;給連接起名字test
Server IP: 10.0.0.227 ;vpn服務器的ip
What route(s) would you like to add when the tunnel comes up?
This is usually a route to your internal network behind the PPTP server.
You can use TUNNEL_DEV and DEF_GW as in /etc/pptp.d/ config file
TUNNEL_DEV is replaced by the device of the tunnel interface.
DEF_GW is replaced by the existing default gateway.
The syntax to use is the same as the route(8) command.
Enter a blank line to stop.
route: TUNNEL_DEV ;用提示的輸入
route: ;一個就夠了,回車結束
Local Name and Remote Name should match a configured CHAP secret.
Local Name is probably your NT domainusername.
NOTE: Any backslashes () must be doubled (\).
Local Name: pptp
Remote Name [PPTP]:
Adding test - 10.0.0.227 - pptp - PPTP
Added tunnel test
1.) List CHAP secrets
2.) Add a New CHAP secret
3.) Delete a CHAP secret
4.) List PPTP Tunnels
5.) Add a NEW PPTP Tunnel
6.) Delete a PPTP Tunnel
7.) Configure resolv.conf
8.) Select a default tunnel
9.) Quit
?:9
退出后再進入程序
# ./pptp-command
1.) start
2.) stop
3.) setup
4.) quit
What task would you like to do?: 1 ;選1,開始
1.) test
Start a tunnel to which server?: test ;在選擇要連接的名稱
注意:pptp-command這個腳本有個bug,開始連接后不能正常結束程序,并且在連接建立后給出個錯誤的路由,
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.0.0.227 * 255.255.255.255 UH 0 0 0 ppp0
10.0.0.0 * 255.255.255.0 U 0 0 0 eth0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 10.0.0.1 0.0.0.0 UG 0 0 0 eth0
解決方法為
先刪除錯誤那個錯誤的路由
# route del 10.0.0.227
然后
# route add -net 10.3.3.0/24 dev ppp0
