Configure pptp-client with static IP on Centos 7

/etc/sysconfig/network-scripts/ifcfg-pptpserver
ONBOOT=yes
USERCTL=yes
TYPE=Modem
PEERDNS=no
DEVICE=ppp0



/etc/ppp/peers/pptpserver
#pty "pptp 31.31.31.31 --nolaunchpppd"
name site
#require-mppe-128
#persist holdoff 10
maxfail 0
lcp-echo-interval 15
lcp-echo-failure 4
pty "/usr/sbin/pptp 31.31.31.31 --nolaunchpppd"
#usepeerdns
nodefaultroute
persist
holdoff 30
noauth
file /etc/ppp/options.pptp

/etc/ppp/option.pptp

###############################################################################
# $Id: options.pptp,v 1.3 2006/03/26 23:11:05 quozl Exp $
#
# Sample PPTP PPP options file /etc/ppp/options.pptp
# Options used by PPP when a connection is made by a PPTP client.
# This file can be referred to by an /etc/ppp/peers file for the tunnel.
# Changes are effective on the next connection.  See "man pppd".
#
# You are expected to change this file to suit your system.  As
# packaged, it requires PPP 2.4.2 or later from http://ppp.samba.org/
# and the kernel MPPE module available from the CVS repository also on
# http://ppp.samba.org/, which is packaged for DKMS as kernel_ppp_mppe.
###############################################################################
# Lock the port
lock
# Authentication
# We don't need the tunnel server to authenticate itself
noauth
# We won't do PAP, EAP, CHAP, or MSCHAP, but we will accept MSCHAP-V2
# (you may need to remove these refusals if the server is not using MPPE)
refuse-pap
refuse-eap
refuse-chap
refuse-mschap
# Compression
# Turn off compression protocols we know won't be used
nobsdcomp
nodeflate
# Encryption
# (There have been multiple versions of PPP with encryption support,
# choose which of the following sections you will use.  Note that MPPE
# requires the use of MSCHAP-V2 during authentication)
#
# Note that using PPTP with MPPE and MSCHAP-V2 should be considered
# insecure:
# http://marc.info/?l=pptpclient-devel&m=134372640219039&w=2
# https://github.com/moxie0/chapcrack/blob/master/README.md
# http://technet.microsoft.com/en-us/security/advisory/2743314
# http://ppp.samba.org/ the PPP project version of PPP by Paul Mackarras
# ppp-2.4.2 or later with MPPE only, kernel module ppp_mppe.o
# If the kernel is booted in FIPS mode (fips=1), the ppp_mppe.ko module
# is not allowed and PPTP-MPPE is not available.
# {{{
# Require MPPE 128-bit encryption
require-mppe-128
# }}}
# http://mppe-mppc.alphacron.de/ fork from PPP project by Jan Dubiec
# ppp-2.4.2 or later with MPPE and MPPC, kernel module ppp_mppe_mppc.o
# {{{
# Require MPPE 128-bit encryption
#mppe required,stateless
# }}}
192.168.1.32:192.168.1.39 

 /etc/ppp/chap-secrets


# Secrets for authentication using CHAP
# client server secret IP addresses
user  VPNSERVER password 192.168.1.32

Comments

Popular posts from this blog

Відновлення роботи роботи роутера Linksys WRT54G3G-ST після невдалого обновлення прошивки.

Docker certbor autoreNEW cert cron job

Debian 12 (Proxmox Mail Gateway) and starting mailCow mail service