一、環(huán)境介紹

　　pptpd 經(jīng)常用來穿墻，或者是進行機房服務(wù)器管理

　　1）Centos6.4 64bit minimal

二、服務(wù)安裝

$ wget http://poptop.sourceforge.net/yum/stable/rhel6Server/pptp-release-current.noarch.rpm$ rpm -ivh pptp-release-current.noarch.rpm$ yum install pptpd ppp

三、配置

$ vi /etc/pptpd.confoption /etc/ppp/options.pptpdlocalip 172.16.7.1remoteip 172.16.7.30-100

$ vi /etc/ppp/options.pptpdname pptpdrefuse-paPRefuse-chaprefuse-mschaprequire-mschap-v2require-mppe-128proxyarplocknobsdcomp novjnovjccompnologfdms-dns 114.114.114.114ms-dns 114.114.115.115

$ vi /etc/ppp/chap-secrets# Secrets for authentication using CHAP# client        server  secret                  IP addressesdog           pptpd   pSc6Vgw55bb         172.16.7.31

四、啟動

$ /etc/init.d/pptpd start$ vi /etc/sysctl.confnet.ipv4.ip_forward = 1$ sysctl -p#iptables 轉(zhuǎn)發(fā)用來上外網(wǎng)$ iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

五、檢查

$ ps aux|grep pptpd$ netstat -ntlp|grep pptpd

六、客戶端安裝

$ yum install -y pptp ppp pptp-setup

#用pptpsetup做客戶配置是個不錯的工具，當(dāng)然也可以自己手下配置#pptpsetup --create vpn-jiao --server x.x.x.x --username dog--passWord passwd --encrypt 

#手動配置$ vi /etc/ppp/peers/vpn-testpty "pptp x.x.x.x --nolaunchpppd"locknoauthnobsdcompnodeflatename dogremotename vpn-testipparam vpn-testrequire-mppe-128#手動配置密碼$ vi /etc/ppp/chap-secrets# Secrets for authentication using CHAP# client        server  secret                  IP addressesdog vpn-test "pSc6Vgw55bb" *

#運行手動撥號$ pppd call vpn-test updetach

#檢查$ ps aux|grep pptp