From owner-freebsd-net@FreeBSD.ORG Fri Mar 21 20:44:52 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A01831065676 for ; Fri, 21 Mar 2008 20:44:52 +0000 (UTC) (envelope-from jontheil@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.178]) by mx1.freebsd.org (Postfix) with ESMTP id 6496C8FC1B for ; Fri, 21 Mar 2008 20:44:52 +0000 (UTC) (envelope-from jontheil@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so1758583waf.3 for ; Fri, 21 Mar 2008 13:44:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=ZHj3HleavhZWWHyYjFqGCkMgWeEaLvIQqEEqP8e/mQ0=; b=CjqDkZttw9oCFKZ7kUTYay33v6c+zic1cC1sBOFE1GuhMobH2pteq/JvHub09Had6Wkmel/eocRXqCz7OQgI9JcVTJ1CS9pKe/j+x0JvOfq/a0jLUH3dTs+VjGlZHy18x6K1vpaRODdTaWiGfhwy244zt5lz1a9ro5J7TSEe28o= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=NBZprn2hePBLM89CgsT7Mhjx0HMgiOAkBOMTvAJmOgAzI/nlBVvvs4A/sgYb051vtorkA9WFaS1grbZRgJFwz1yvEeo0IlZa9Ghe5h6djUx8ZBUSN6Yxy/Py7rmrbUw/QgARi3VG67EO83bUeoYovNmNq3nqitf9m3mDnEpndY4= Received: by 10.115.106.7 with SMTP id i7mr6742012wam.18.1206132291835; Fri, 21 Mar 2008 13:44:51 -0700 (PDT) Received: by 10.114.168.6 with HTTP; Fri, 21 Mar 2008 13:44:51 -0700 (PDT) Message-ID: <8f82c35c0803211344he63903fpebe6e43d1bc73c8e@mail.gmail.com> Date: Fri, 21 Mar 2008 21:44:51 +0100 From: "Jon Theil Nielsen" To: Sin In-Reply-To: <062101c88b71$cb290e90$0200a8c0@dts> MIME-Version: 1.0 References: <8f82c35c0803202329k1aff674cgd7deee4c1a58e20b@mail.gmail.com> <062101c88b71$cb290e90$0200a8c0@dts> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: Samba PDC with VPN access X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Mar 2008 20:44:52 -0000 2008/3/21, Sin : > > I just happen to be looking into vpn stuff with FreeBSD, I was looking > at > the man page for ppp, there is a section that states passwd(5) can be used > instead of a secret file. Not sure if this entirely relates to your > setup, > but I will be trying this out > > /* > If MyAuthPasswd is a ``*'', the password is looked up in the passwd(5) > database. > */ > > > We have a Samba PDC on FreeBSD 7.0-release. The goal is to make users > home > > drrives accessible throuth a VPN connection from Windows clients. Until > > now > > I have experimented with the Poptop server without much success and now > > have > > a working configuration based on Mpd4. This is not ideal, since I have > to > > keep usernames/passwords manually updated in the mpd.secret file. And > that > > can not be combined with users changing their own Samba and UNIX > passwords > > via password sync. > > It seems that some kind of authentication via Winbind and ntml_auth > would > > be > > a way to go. > > Maybe it can be done by installing a Radius server to communicate with > > Mpd, > > but that seems to be unnessesarily complicated. > > Does anyone know the "best" solution to achieve the goal? > You migth be right about trying (again) with ppp. I just didn't make it work in the first place. So I would surely like to hear if it is something you can do. And if so, I would like to have a look at your conf files. Best regards, Jon