Date: Sat, 22 Sep 2001 21:35:46 +0100 From: Brian Somers <brian@freebsd-services.com> To: Lars Eggert <larse@ISI.EDU> Cc: net@FreeBSD.ORG, archie@FreeBSD.ORG, brian@freebsd-services.com Subject: Re: VPN client with mpd Message-ID: <200109222035.f8MKZkR34433@hak.lan.Awfulhak.org> In-Reply-To: Message from Lars Eggert <larse@ISI.EDU> of "Sat, 22 Sep 2001 11:33:07 PDT." <3BACD963.1DC74B9B@isi.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
> Hi,
>
> I'm trying to set up a VPN client on my FreeBSD laptop, so I can tunnel
> through to work from home. I've played with both mpd and pptpclient from
> ports, and mpd seems more robust (pptpclient likes to sometimes start
> eating all CPU time). So I'd decided to to this with mpd; please let me
> know if this was the wrong choice from the start.
>
> Here's my setup:
>
> LAPTOP <-----> NAT <--...INTERNET...--> VPN-SERVER <-----> INTRANET
>
> I started with the examples under /usr/local/etc/mpd, slightly changing
> the defaults to what I thought were the correct values for my setup.
> I've created mpd.secret with the correct login/password mapping for
> LOGIN.
>
> Here's my mpd.conf:
>
> default:
> load vpn
>
> vpn:
> new -i ng1 vpn vpn
> set iface disable on-demand
> set iface addrs 192.168.1.1 192.168.2.1
> set iface idle 0
> set iface route 192.168.2.0/24
> set bundle disable multilink
> set bundle authname <LOGIN>
> set link yes acfcomp protocomp
> set link no pap
> set link yes chap
^^^^^^^^^^^^^^^^^
I'm no mpd expert, but I believe this makes mpd insist that the peer
authenticates itself.
Try removing it.
[.....]
--
Brian <brian@freebsd-services.com> <brian@Awfulhak.org>
http://www.freebsd-services.com/ <brian@[uk.]FreeBSD.org>
Don't _EVER_ lose your sense of humour ! <brian@[uk.]OpenBSD.org>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200109222035.f8MKZkR34433>