大家好,今天我要做的是一個使用linux搭建一個pptp的***服務器,使用客戶端能夠連接到***虛擬網絡來實現互連,廢話不多說了,下面是詳細的安裝步驟:(本實驗採用的linux服務器是centos5.5)
1. 準備安裝實驗包
[root@localhost Desktop]# ls
dkms-2.0.17.5-1.noarch.rpm ppp-2.4.5-15.0.rhel5.i386.rpm
kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm pptpd-1.3.4-1.rhel5.1.i386.rpm
安裝軟件
yum install gcc* -y
yum install kernel-headers -y
[root@localhost Desktop]# rpm -ivh dkms-2.0.17.5-1.noarch.rpm
warning: dkms-2.0.17.5-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 862a cc42
Preparing... ########################################### [100%]
1:dkms ########################################### [100%]
安裝dkms成功
[root@localhost Desktop]# rpm -ivh kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm
warning: kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 862acc42
error: Failed dependencies:
gcc is needed by kernel_ppp_mppe-1.0.2-3dkms.noarch
安裝kernel_ppp_mppe提示有依賴gcc軟件包,所以要先解決依賴問題
[root@localhost CentOS]# rpm -ivh gcc-4.1.2-48.el5.i386.rpm glibc-devel-2.5-49.i386.rpm libgomp-4.4.0-6.el5.i386.rpm glibc-headers-2.5-49.i386.rpm kernel-headers-2.6.18-194.el5.i386.rpm
warning: gcc-4.1.2-48.el5.i386.rpm: Header V3 DSA signature: NOKEY, key ID e8562897
Preparing... ########################################### [100%]
1:libgomp ########################################### [ 20%]
2:kernel-headers ########################################### [ 40%]
3:glibc-headers ########################################### [ 60%]
4:glibc-devel ########################################### [ 80%]
5:gcc ########################################### [100%]
[root@localhost CentOS]#
安裝gcc需要5個軟件包,安裝完畢,接下來再次安裝kernel_ppp_mppe
[root@localhost Desktop]# rpm -ivh kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm
warning: kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 862acc42
Preparing... ########################################### [100%]
1:kernel_ppp_mppe ########################################### [100%]
Creating symlink /var/lib/dkms/kernel_ppp_mppe/1.0.2/source ->
/usr/src/kernel_ppp_mppe-1.0.2
DKMS: add Completed.
Module build for the currently running kernel was skipped
since the kernel source for this kernel does not seem to be
installed.
[root@localhost Desktop]#
安裝完畢
接下來安裝ppp和pptpd服務包
[root@localhost Desktop]# rpm -ivh ppp-2.4.5-15.0.rhel5.i386.rpm
warning: ppp-2.4.5-15.0.rhel5.i386.rpm: Header V3 DSA signature: NOKEY, key ID b56a8bac
Preparing... ########################################### [100%]
file /usr/sbin/chat from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/sbin/pppd from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/sbin/pppdump from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/sbin/pppoe-discovery from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/sbin/pppstats from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/share/man/man8/chat.8.gz from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
file /usr/share/man/man8/pppd.8.gz from install of ppp-2.4.5-15.0.rhel5.i386 conflicts with file from package ppp-2.4.4-2.el5.i386
[root@localhost Desktop]# rpm -ivh pptpd-1.3.4-1.rhel5.1.i386.rpm
warning: pptpd-1.3.4-1.rhel5.1.i386.rpm: Header V3 DSA signature: NOKEY, key ID 862acc42
Preparing... ########################################### [100%]
1:pptpd ########################################### [100%]
[root@localhost Desktop]#
安裝成功。到此,所需要的軟件包已經安裝完畢
2. 下面開始修改配置文件
[root@localhost Desktop]# vi /etc/pptpd.conf
將
#localip 192.168.0.1
#remoteip 192.168.0.234-238,192.168.0.245
# or
#localip 192.168.0.234-238,192.168.0.245
#remoteip 192.168.1.234-238,192.168.1.245
修改爲
localip 172.16.4.6
remoteip 192.168.0.234-238,192.168.0.245
# or
#localip 192.168.0.234-238,192.168.0.245
#remoteip 192.168.1.234-238,192.168.1.245
Localip 後面要改爲你服務的ip
Remoteip後面改爲你分配給***用戶的ip段
使用命令開啓服務
[root@localhost Desktop]# service pptpd start
Starting pptpd: [確定]
[root@localhost Desktop]#
關閉命令:service pptpd stop
這時你編輯***用戶的密碼資料等都是實時生效的。
給服務器添加用戶
[root@localhost Desktop]# vim /etc/ppp/chap-secrets
在最下面插入新行
寫法:
用戶名 服務名 密碼 ip
例如:
wuli pptpd testpasswd 192.168.0.234
此時用戶就可以登錄***服務器了,分配的ip地址只有192.168.0.234這一個,也就是說只能一個人同時使用。
如果想多人同時使用,,可以將192.168.0.234改爲*
這樣就不限制這個帳戶的使用人數了(同時登錄的人數還取決於pptpd服務器的設置,默認40個)
現在***可以連接了
連接之後如果需要用戶上網,還需要設置NAT,ip轉發
在linux服務器上使用iptables,如下:
iptables -t nat -F
iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -j SNAT --to 172.16.4.6
上面的192.168.0.0替換成你要分配給用戶的***內網ip段,
172.16.4.6替換爲你的***服務器ip(與pptpd.conf的localip一樣)
3.測試
找一臺win7來作爲客戶端,添加一個連接