From owner-freebsd-net@FreeBSD.ORG Fri Aug 11 03:39:51 2006 Return-Path: X-Original-To: net@freebsd.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 55FE016A4DA for ; Fri, 11 Aug 2006 03:39:51 +0000 (UTC) (envelope-from prvs=julian=3713ce93d@elischer.org) Received: from a50.ironport.com (a50.ironport.com [63.251.108.112]) by mx1.FreeBSD.org (Postfix) with ESMTP id D2EB143D5E for ; Fri, 11 Aug 2006 03:39:50 +0000 (GMT) (envelope-from prvs=julian=3713ce93d@elischer.org) Received: from unknown (HELO [10.251.18.229]) ([10.251.18.229]) by a50.ironport.com with ESMTP; 10 Aug 2006 20:39:51 -0700 Message-ID: <44DBFC05.6080804@elischer.org> Date: Thu, 10 Aug 2006 20:39:49 -0700 From: Julian Elischer User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.13) Gecko/20060414 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Brett Glass References: <7.0.1.0.2.20060810201735.067258b0@lariat.net> <44DBF2BB.5080202@micom.mng.net> <7.0.1.0.2.20060810212047.073f0078@lariat.net> In-Reply-To: <7.0.1.0.2.20060810212047.073f0078@lariat.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: Ganbold , net@freebsd.org Subject: Re: Big PPTP server X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Aug 2006 03:39:51 -0000 Brett Glass wrote: > At 09:00 PM 8/10/2006, Ganbold wrote: > >> It will be much easier if you can write some script to generate mpd >> config files. I'm generating config files such way for PPPoE. > > > Is there a way to avoid having to generate them at all? It seems to me > that it would be very easy for mpd to create netgraph nodes on the fly > as it needed them. mpd does all the netgraph manipulation itself. > >> Did you try Radius? > > > This company hasn't been using a RADIUS server. They have an Active > Directory server (yuck!), but I don't know if it would be useful for > this purpose. > > By the way, a related problem I'm encountering is that mpd seems to > want some options set before authentication when they need to be set > afterward based on the user's identity. For example, while the user's > IP can be set when the user is identified and authenticated (via > mpd.secret), the IP at the host end of the PPP link can't. So, you run > into situations where the IP assigned to the incoming PPP/PPTP user > isn't on the same subnet as the one assigned to the host, which seems > to cause routing problems. > > --Brett Glass > > > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"