Install Pptpd Vpn Service In Xen Vps
Nov 7, 2009
I have installed the pptpd vpn service on centos 5.4 in linode xen vps. Now share with you.
------------------
yum install -y ppp
wget http://poptop.sourceforge.net/yum/st...el5.1.i386.rpm
rpm -ivh pptpd-1.3.4-1.rhel5.1.i386.rpm
vi /etc/ppp/options.pptpd
ms-dns 208.67.222.222
ms-dns 208.67.220.220
vi /etc/ppp/chap-secrets
myusername pptpd mypassword *
vi /etc/pptpd.conf
localip 192.168.9.1
remoteip 192.168.9.11-30
vi /etc/sysctl.conf
net.ipv4.ip_forward = 1
/sbin/sysctl -p
/sbin/service pptpd start
chkconfig pptpd on
/sbin/service iptables start
/sbin/iptables -t nat -A POSTROUTING -o eth0 -s 192.168.9.0/24 -j MASQUERADE
service iptables save
------------------
View 1 Replies
ADVERTISEMENT
Jan 8, 2008
I'm having a problem with PPTPD.
I can connect to the server fine but after connecting I cannot access anything other then the server's ssh.
I currently tried the following:
arp --set 192.168.11.100 5A:82:AC:3D:B9:FD pub
192.168.11.100 --> Client Allocated Address by PPTPD Server
5A:82:AC:3D:B9:FD --> MAC Address of PPTPD Server
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P INPUT ACCEPT
iptables -t filter -A INPUT -i ppp+ -j ACCEPT
iptables -t filter -A FORWARD -i ppp+ -j ACCEPT
Currently no luck at all.
My /etc/pptpd.conf:
######################################
# $Id: pptpd.conf,v 1.10 2006/09/04 23:30:57 quozl Exp $
#
# Sample Poptop configuration file /etc/pptpd.conf
#
# Changes are effective when pptpd is restarted.
######################################
# TAG: ppp
# Path to the pppd program, default '/usr/sbin/pppd' on Linux
#
ppp /usr/sbin/pppd
# TAG: option
# Specifies the location of the PPP options file.
# By default PPP looks in '/etc/ppp/options'
#
option /etc/ppp/options.pptpd
# TAG: debug
# Turns on (more) debugging to syslog
#
debug
# TAG: stimeout
# Specifies timeout (in seconds) on starting ctrl connection
#
# stimeout 10
# TAG: noipparam
# Suppress the passing of the client's IP address to PPP, which is
# done by default otherwise.
#
#noipparam
# TAG: logwtmp
# Use wtmp(5) to record client connections and disconnections.
#
logwtmp
# TAG: bcrelay <if>
# Turns on broadcast relay to clients from interface <if>
#
#bcrelay eth1
# TAG: delegate
# Delegates the allocation of client IP addresses to pppd.
#
# Without this option, which is the default, pptpd manages the list of
# IP addresses for clients and passes the next free address to pppd.
# With this option, pptpd does not pass an address, and so pppd may use
# radius or chap-secrets to allocate an address.
#
# delegate
# TAG: connections
# Limits the number of client connections that may be accepted.
#
# If pptpd is allocating IP addresses (e.g. delegate is not
# used) then the number of connections is also limited by the
# remoteip option. The default is 100.
connections 100
# TAG: localip
# TAG: remoteip
# Specifies the local and remote IP address ranges.
#
# These options are ignored if delegate option is set.
#
# Any addresses work as long as the local machine takes care of the
# routing. But if you want to use MS-Windows networking, you should
# use IP addresses out of the LAN address space and use the proxyarp
# option in the pppd options file, or run bcrelay.
#
# You can specify single IP addresses seperated by commas or you can
# specify ranges, or both. For example:
#
# 192.168.0.234,192.168.0.245-249,192.168.0.254
#
# IMPORTANT RESTRICTIONS:
#
# 1. No spaces are permitted between commas or within addresses.
#
# 2. If you give more IP addresses than the value of connections,
# it will start at the beginning of the list and go until it
# gets connections IPs. Others will be ignored.
#
# 3. No shortcuts in ranges! ie. 234-8 does not mean 234 to 238,
# you must type 234-238 if you mean this.
#
# 4. If you give a single localIP, that's ok - all local IPs will
# be set to the given one. You MUST still give at least one remote
# IP for each simultaneous client.
#
# (Recommended)
localip 192.168.11.200
remoteip 192.168.11.100-199
# or
#localip 192.168.0.234-238,192.168.0.245
#remoteip 192.168.1.234-238,192.168.1.245
Code:
[root@* ~]# cat /etc/ppp/options.pptpd
##########################################
# $Id: options.pptpd,v 1.11 2005/12/29 01:21:09 quozl Exp $
#
# Sample Poptop PPP options file /etc/ppp/options.pptpd
# Options used by PPP when a connection arrives from a client.
# This file is pointed to by /etc/pptpd.conf option keyword.
# Changes are effective on the next connection. See "man pppd".
#
# You are expected to change this file to suit your system. As
# packaged, it requires PPP 2.4.2 and the kernel MPPE module.
#########################################
# Authentication
# Name of the local system for authentication purposes
# (must match the second field in /etc/ppp/chap-secrets entries)
name pptpd
# Strip the domain prefix from the username before authentication.
# (applies if you use pppd with chapms-strip-domain patch)
#chapms-strip-domain
# Encryption
# (There have been multiple versions of PPP with encryption support,
# choose with of the following sections you will use.)
# BSD licensed ppp-2.4.2 upstream with MPPE only, kernel module ppp_mppe.o
# {{{
refuse-pap
refuse-chap
refuse-mschap
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
require-mschap-v2
# Require MPPE 128-bit encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
require-mppe-128
# }}}
# OpenSSL licensed ppp-2.4.1 fork with MPPE only, kernel module mppe.o
# {{{
#-chap
#-chapms
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
#+chapms-v2
# Require MPPE encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
#mppe-40 # enable either 40-bit or 128-bit, not both
#mppe-128
#mppe-stateless
# }}}
# Network and Routing
# If pppd is acting as a server for Microsoft Windows clients, this
# option allows pppd to supply one or two DNS (Domain Name Server)
# addresses to the clients. The first instance of this option
# specifies the primary DNS address; the second instance (if given)
# specifies the secondary DNS address.
#ms-dns 10.0.0.1
#ms-dns 10.0.0.2
# If pppd is acting as a server for Microsoft Windows or "Samba"
# clients, this option allows pppd to supply one or two WINS (Windows
# Internet Name Services) server addresses to the clients. The first
# instance of this option specifies the primary WINS address; the
# second instance (if given) specifies the secondary WINS address.
#ms-wins 10.0.0.3
#ms-wins 10.0.0.4
# Add an entry to this system's ARP [Address Resolution Protocol]
# table with the IP address of the peer and the Ethernet address of this
# system. This will have the effect of making the peer appear to other
# systems to be on the local ethernet.
# (you do not need this if your PPTP server is responsible for routing
# packets to the clients -- James Cameron)
proxyarp
# Normally pptpd passes the IP address to pppd, but if pptpd has been
# given the delegate option in pptpd.conf or the --delegate command line
# option, then pppd will use chap-secrets or radius to allocate the
# client IP address. The default local IP address used at the server
# end is often the same as the address of the server. To override this,
# specify the local IP address here.
# (you must not use this unless you have used the delegate option)
#10.8.0.100
# Logging
# Enable connection debugging facilities.
# (see your syslog configuration for where pppd sends to)
#debug
# Print out all the option values which have been set.
# (often requested by mailing list to verify options)
#dump
# Miscellaneous
# Create a UUCP-style lock file for the pseudo-tty to ensure exclusive
# access.
lock
# Disable BSD-Compress compression
nobsdcomp
# Disable Van Jacobson compression
# (needed on some networks with Windows 9x/ME/XP clients, see posting to
# poptop-server on 14th April 2005 by Pawel Pokrywka and followups,
# [url]novj
novjccomp
# turn off logging to stderr, since this may be redirected to pptpd,
# which may trigger a loopback
nologfd
# put plugins here
# (putting them higher up may cause them to sent messages to the pty)
View 0 Replies
View Related
Dec 28, 2008
So I have a website that requires a service be installed on the server (Wowza media server). I'm just not sure what I need to be able to do this. The service will get little use overall, but it is required.
From what I can tell this means I need some form of dedicated server, but that is an awfully large jump in cost when I get minimal use out of the service. That said, if it is the only option I will go for it.
So my question is, are there any options aside from dedicated servers that would let me install a service? If not, how cheap do you think I could get a dedicated server for?
View 14 Replies
View Related
Jun 21, 2008
I am doing a business plan to start a Shoutcast Hosting Service,
We already decide to go with the FDC servers, and for running
the server I would like some help on these issues:
1. What system operation should I select for the server:
- Windows 2003 Web/Standard Editions
- CentOS 5
- FreeBSD 6.3
- Gentoo LiveCD.
2. How about the best control panel to use:
- Plesk
- Cpanel
3. Do I need to install on the the server just the
Shoutcast Server file or also the DSP and Transcoder
for Unix (sc_trans_lame)?
4. I also need the Cast-Control software to manage the
accounts and streams, but according to the instalation
manual I need to use a MySQL Configuration ?
Because I dont know nothing about SQL databases!
View 6 Replies
View Related
Oct 5, 2008
am going to make site for free emails for users
i saw zimbra software it's awesome
i wanna get offers for vps but i want the vps provider to install zimbra software for me and configure it
and i will pay for the installation of zimbra
View 2 Replies
View Related
Jun 15, 2015
I have a problem to install a service node. In task, I have this error:
Unable to authenticate at the host '10.252.13.197'. To resolve this issue, please follow the instructions at [URL] ....
I followed the instructions, but mysql don't display my new server.
[root@plesk000-exp-01 ~]# mysql -uadmin -p`cat /etc/psa/.psa.shadow` psa -e 'select accessKey from ServiceNodes where ipAddress="10.252.13.197";'
[root@plesk000-exp-01 ~]#
I deleted service node but the problem still remains.
View 1 Replies
View Related
Apr 27, 2015
I have a Server with Centos7 + Plesk 12 and in the service configuration say that the Bind service is not installed, from command line i have install named services and make a manual configuration the first domain, but when I return to the service page in plesk... the problem is the same, the Bind Service is not installed; then the problem is when i want create a new hosting i need to go to the ssh to make the DNS configuration...
View 1 Replies
View Related
Sep 10, 2014
Got following Problem: Unable to find service node for web service on domain with id = 0
After a Check from [URL] ....
I tried this: [URL] ....
Result:
+--------------------+--------------+---------------------------------------+------------------------------+------------+
| Domains | Service Type | IpAddressesCollections.ipCollectionId | Current value of ipAddressId | Have to be |
+--------------------+--------------+---------------------------------------+------------------------------+------------+
| XXXXXXXXXXXXX.org | mail | 30 | 0 | 1 |
+--------------------+--------------+---------------------------------------+------------------------------+------------+
Resolution:
mysql -uadmin -p`cat /etc/psa/.psa.shadow` -Dpsa -e 'Update IpAddressesCollections SET ipAddressId = 1 WHERE ipCollectionId = 30'
Result: ERROR 1062 (23000) at line 1: Duplicate entry '30-0' for key 'PRIMARY'
View 16 Replies
View Related
Jun 24, 2015
Deleted a domain workspace in Parallels Plesk and now I am getting this error when signing into the panel:Looked at the logs and been trying multiple commands (including the bootstrapper repair etc.)I found the full error from the logs:
[13-Jun-2015 16:35:33 UTC] PleskDBException: Unable to find service node for web service on domain with id=6
file: /usr/local/psa/admin/plib/PhDomain.php
line: 1404
code: 0
trace: #0 /usr/local/psa/admin/plib/Smb/Subscription/Domain.php(490): PhDomain->getWebHostingServiceNode()
[code]....
View 1 Replies
View Related
Jul 6, 2014
We are currently using Parallel Plesk 11.0 version and there is one requirement from microsoft provider to add the exact same values in SRV Records.
Priority of Service = 100
Weight of Service = 1
but these values are not available in the dropdownlist. attached are the screenshots.
View 9 Replies
View Related
Jun 15, 2014
Clean install on openSUSE 13.1
After deleting a domain, we got the following error which rendered the panel useless.
Internal error: Unable to find service node for web service on domain with id=5
Message Unable to find service node for web service on domain with id=5
File PhDomain.php
Line 1402
Type PleskDBException
Go To Previous Page
View 6 Replies
View Related
Jul 19, 2015
Is it possible to install Plesk 12 to Debian Jessie with the autoinstall script?
View 7 Replies
View Related
Nov 14, 2008
problem with install suhosin and ...
how i can install Mod_security
View 7 Replies
View Related
Aug 8, 2008
What difference between yum install php or manually install php from scrach (build, make and install)?
I know manually install could configure lots of parameters and paths, like --iconv, --mbsting, etc. I don't know anything behind yum install php. If I want to install php everything in the following:
./configure --prefix=/usr/local/webserver/php --with-config-file-path=/usr/local/webserver/php/etc --with-mysql=/usr/local/webserver/mysql --with-mysqli=/usr/local/webserver/mysql/bin/mysql_config --with-iconv-dir=/usr/local --with-freetype-dir --with-jpeg-dir --with-png-dir --with-zlib --with-libxml-dir=/usr --enable-xml --disable-debug --disable-rpath --enable-discard-path --enable-safe-mode --enable-bcmath --enable-shmop --enable-sysvsem --enable-inline-optimization --with-curl --with-curlwrappers --enable-mbregex --enable-fastcgi --enable-fpm --enable-force-cgi-redirect --enable-mbstring --with-mcrypt --with-gd --enable-gd-native-ttf --with-openssl --with-sendmail=/usr/sbin/sendmail
View 6 Replies
View Related
Jul 22, 2008
to installing linux software and have been beating my head for a couple of days. I just learned that I can use something on my CENTOS 5 - which is the same as RHEL 5 - to install the rpm and all dependencies.
Numeric-24.2-1.i586.rpm is the rpm I want to install, if that matters.
How can I do install it AND any dependencies?
View 2 Replies
View Related
May 13, 2007
I am trying to install the kernel source.
I have downloaded kernel-2.6.20-1.2948.fc6.src.rpm
I am using fedora 6 64bit.
here are my current kernels:
kernel-headers-2.6.20-1.2948.fc6
kernel-devel-2.6.20-1.2944.fc6
yum-kernel-module-1.0.3-1.fc6
kernel-2.6.20-1.2944.fc6
kernel-devel-2.6.20-1.2948.fc6
kernel-2.6.20-1.2948.fc6
here is what I seen when I installed kernel-2.6.20-1.2948.fc6.src.rpm
rpm -ivh kernel-2.6.20-1.2948.fc6.src.rpm
1:kernel warning: user brewbuilder does not exist - using root
warning: group brewbuilder does not exist - using root
warning: user brewbuilder does not exist - using root
########################################### [100%]
warning: user brewbuilder does not exist - using root
warning: group brewbuilder does not exist - using root
then when I ran:
rpmbuild -bp --target=$(uname -m) /usr/src/redhat/SPECS/kernel-2.6.spec
I seen this error:
+ Arch=x86_64
+ make ARCH=x86_64 nonint_oldconfig
In file included from /usr/include/sys/socket.h:35,
from /usr/include/netinet/in.h:24,
from /usr/include/arpa/inet.h:23,
from scripts/basic/fixdep.c:117:
/usr/include/bits/socket.h:310:24: error: asm/socket.h: No such file or directory
make[1]: *** [scripts/basic/fixdep] Error 1
make: *** [scripts_basic] Error 2
error: Bad exit status from /var/tmp/rpm-tmp.93770 (%prep)
I need to have this installed to get a app installed etc...
suggestions or ideas?
thanks
View 2 Replies
View Related
Sep 18, 2007
If i wish to start up a business with the VPN service.. do i need to install any specific software on the server side? Can it be run on Windows?
View 4 Replies
View Related
Jul 13, 2009
how to setup a Windows server to provide SSL service to other web sites. I'd like to offer a free service to my local customers and anyone who wants to secure their online operations.
can OpenSSL do the job?
View 7 Replies
View Related
Jun 13, 2009
I am trying to find the best economical solution regarding my email address but I need some advice pls.
I have a very small package with asmallorange and I have set up one of my business email in it. I didn't calculate that this business email could take so much space. I have some assistants which work in other places. One of my problems is these asistants who need to access this address too, are not allowed to access any free email provider like gmail, yahoo at their work computers because of their work policy. So I can't do forwarding and I need to have this email address under my domain.
I am thinking of these options:
1) Get more space . This will become expensive for me.
2) use a dedicated email service under my domain name.
I have no experience here and I wonder if using a gmail service under my domain will be blocked for my collaborators.
3) change host ( I am afraid to lose my data and my website database).
View 9 Replies
View Related
Aug 20, 2009
I'm going to start offering a KVMoIP service for my customers and am trying to get ideas on the pricing. What do y'all think about it? I know most places that I know about charge a setup + hourly fee, well, I like to be just a little bit better, so let's see what y'all have to say.
View 14 Replies
View Related
Jan 3, 2009
Do you use any uptime monitoring service? If so, which one do you use? Do you use a paid monitoring service, or a free one?
View 14 Replies
View Related
Mar 23, 2009
I was thinking of putting together a DB of all the IPs I block due to spam, hackers, known proxies etc... this would help cut down on malicious use of services such as spamming forums, if I catch them once, they would not have chance to spam up my other forums if each forum checks the same block list. I could also auto block proxies by having it query up online proxy lists.
But before I reinvent the wheel, does such service online already exist? Kinda like RBL, but for web services. So you can basically block IPs off your site before they get used maliciously.
To be even more advanced some special port scanners could go around scan networks for infected machines and block those too.
How it would work:
Site A has a spammer from IP 1.2.3.4 and submits it to the block service. Spammer then goes on site B to try and spam that forum, but that IP is already blocked because the owner of site A submitted it to the list and site B checks against that list.
View 2 Replies
View Related
Jul 22, 2009
The VPN service owner can he track and know all his customers activity
I mean let's say am a customer and I bought VPN subscription and then logged in with my new vpn ip and I login to my email , in that case the VPN service owner can he read know my email password or other sensitive data like if If I login to myspace.com can he know what password I used using his vpn server logs?
View 6 Replies
View Related
Apr 20, 2009
Anybody using their service? Prices are low, plans look good.
View 5 Replies
View Related
Feb 28, 2008
i ordered my server on monday,it took 80hrs to get the server,but the login panel can not be opened,then i ask them,their support is online in msn,i talk with them,but when i ask them about the login panel link can not open,they didnt reply me.it really disapointing,i ordered it one monday,but now almost friday,i still havent used it,regret to order it...
View 14 Replies
View Related
Jul 28, 2008
Iv been with steadfast for almost 6 years,
we have small vps account and 1 shared hosting account,
our vps is working very very slowly, we cant log in to direct admin, we cant do anything, i contact support personally to check this issue , the response i received was
"
We are aware of the problem with slow disk access this VPS server. We will be adding an additional VPS server and migrating some of the VPS containers to it shortly to address this issue. Under the resources we have immediately available, we are unable to get the problem corrected. Thanks, Ben Galliart Steadfast Networks Support [url]
"
WTF? unable to get the problem corrected? our clients that use our vps are going crazy, 1 client even threaten to leave us,
i don't know that to do, i was thinking of sue them, what do you think? I'm very disappointed ..
View 14 Replies
View Related
Jul 19, 2008
I am located in China and I have websites hosted in the US. Some of my sites and servers are being blocked by my ISP. Do you know of a good VPN or Proxy service that will allow me to reach my sites and managed my servers?
View 6 Replies
View Related
Apr 19, 2008
We have been trying to get our rDNS set up for 2 months with Bionhosting on our dedicated box.
and yet RDNS Entry null
Is this normal? Why would it take 2 months to set up a Reverse DNS does this somehow involve the White House and red tape?
We are really getting slammed by our clients in forums that are very important to our business. This is killing us!
What exactly is involved in setting up RDNS why is this so difficult?
View 11 Replies
View Related
Apr 13, 2008
We are hosting multiple servers for a site, web, db, media etc and all of them are in the same DC. I am getting worried that incase a server goes down, it would take DNS down along with and will also take emails out.
I was looking to use a good and reliable DNS service which would ensure that we are reliable and emails don't go out incase of an outage.
View 2 Replies
View Related
Jun 18, 2008
I want to set up a service like zoneedit.com with free name servers and branded name servers etc. Since the name servers will be authoritative I am guessing the bandwith required depends on the number of domains and their popularity. I have some questions
1) Which DNS server is the best one for the job
2) How can one provide branded name servers like instead of ns.myservice.com it would be like ns.userdomain.com. Can it be done by using a simple A record.
View 1 Replies
View Related
