1998
Comment:
|
← Revision 3 as of 2016-07-11 16:32:12 ⇥
1448
|
Deletions are marked like this. | Additions are marked like this. |
Line 13: | Line 13: |
{{{ | |
Line 15: | Line 15: |
Line 17: | Line 16: |
}}} | |
Line 19: | Line 19: |
{{{localip 172.25.1.1 remoteip 172.25.1.10-20 }}} |
|
Line 31: | Line 27: |
{{{ | |
Line 34: | Line 30: |
1 2 ms-dns 8.8.8.8 ms-dns 8.8.4.4 |
}}} |
Line 40: | Line 35: |
{{{ | |
Line 43: | Line 38: |
1 2 #帐号 服务器 密码 IP地址 user pptpd mm1234 * |
}}} |
Line 49: | Line 42: |
{{{ service pptpd restart }}} |
|
Line 50: | Line 46: |
service pptpd restart 1 service pptpd restart |
|
Line 57: | Line 50: |
{{{ | |
Line 59: | Line 52: |
1 net.ipv4.ip_forward=1 //这行的注释去掉 |
}}} |
Line 63: | Line 55: |
{{{ |
|
Line 64: | Line 58: |
1 2 #使得配置立即生效 sysctl –p |
}}} |
Line 70: | Line 62: |
{{{ | |
Line 73: | Line 65: |
1 2 iptables -t nat -A POSTROUTING -s 172.25.1.0/24 -o eth0 -j MASQUERADE iptables-save > /etc/iptables-rules |
}}} |
Line 79: | Line 69: |
{{{ | |
Line 82: | Line 72: |
1 2 #!/bin/sh iptables-restore < /etc/iptables-rules |
}}} |
Line 88: | Line 75: |
{{{ |
|
Line 89: | Line 78: |
1 2 #给予文件执行权限 chmod 0755 /etc/network/if-pre-up.d/iptables |
}}} |
Line 97: | Line 85: |
{{{ | |
Line 100: | Line 88: |
1 2 iptables -I FORWARD -p tcp --syn -i ppp+ -j TCPMSS --set-mss 1456 iptables-save > /etc/iptables-rules |
}}} |
http://www.anrip.com/post/1511
Ubuntu安装pptpd服务(PPTP VPN Server)
- 环境:Ubuntu Server 14.04 网卡:eth0 软件:pptpd
步骤:
1、 安装pptpd
sudo aptitude install pptpd sudo aptitude install pptpd
2、 设置虚拟ip,编辑 /etc/pptpd.conf
localip 172.25.1.1 remoteip 172.25.1.10-20
3、 设置dns,编辑 /etc/ppp/pptpd-options
ms-dns 8.8.8.8 ms-dns 8.8.4.4
4、 添加用户,编辑 /etc/ppp/chap-secrets
#帐号 服务器 密码 IP地址 user pptpd mm1234 *
5、 重启pptpd
service pptpd restart
以上我们完成了vpn服务配置,但不能连接到外网,接下来继续做nat转换设置
7、编辑 /etc/sysctl.conf
net.ipv4.ip_forward=1 //这行的注释去掉
#使得配置立即生效
sysctl –p
8、向iptables添加NAT规则
iptables -t nat -A POSTROUTING -s 172.25.1.0/24 -o eth0 -j MASQUERADE iptables-save > /etc/iptables-rules
9、新建 /etc/network/if-pre-up.d/iptables,添加内容
iptables-restore < /etc/iptables-rules
#给予文件执行权限
chmod 0755 /etc/network/if-pre-up.d/iptables
解决部分网站打不开的问题
10、根据实际情况设置mss
iptables -I FORWARD -p tcp --syn -i ppp+ -j TCPMSS --set-mss 1456 iptables-save > /etc/iptables-rules