PPPoE
From Ilianko
PPPoE Server Setup: Operating System: Ubuntu Desktop(8.04)
Contents
Installation of Softwares
Server Side
Необходими пакети
- Компилатор
apt-get install build-essential
- ppp
apt-get install ppp
- pppoe
apt-get install pppoe
- rp-pppoe, RP PPPoE може да се свали от http://www.roaringpenguin.com/files/download/rp-pppoe-3.11.tar.gz (да се провери актуалната версия)
wget http://www.roaringpenguin.com/files/download/rp-pppoe-3.11.tar.gz tar -xf rp-pppoe-3.11.tar.gz cd rp-pppoe-3.11 ./go
go e бърз скрипт за конфигуриране. Въведете исканата информация. В края трябва да види:
- "Congratulations, it should be all set up!"
Настройки
Разгледайте директория /etc/ppp
cd /etc/ppp ls
chap-secrets ip-down.d options pppoe.conf-bak
chap-secrets-bak ip-up pap-secrets pppoe_on_boot
firewall-masq ip-up.d pap-secrets-bak pppoe-server-options
firewall-masq-3.10 ipv6-down peers pppoe-server-options-example
firewall-standalone ipv6-down.d plugins pppoe-up
firewall-standalone-3.10 ipv6-up pppoe.conf resolv
ip-down ipv6-up.d pppoe.conf-3.10
Файловете, които най много ни интересеуват са:
- pppoe-server-options,
- pppoe.conf,
- options,
- pap-secrets,
- chap-secrets.
[PAP] e метода за удостоверяване по подразбиране, който ще остане. Ще се използват потребителите на операционната система.
Редактирайте файла pap-secrets:
nano pap-secrets
#
# /etc/ppp/pap-secrets
#
# INBOUND connections
# Every regular user can use PPP and has to use passwords from /etc/passwd
* hostname "" *
# UserIDs that cannot use PPP at all. Check your /etc/passwd and add any
# other accounts that should not be able to use pppd!
guest hostname "*" -
master hostname "*" -
root hostname "*" -
support hostname "*" -
stats hostname "*" -
# OUTBOUND connections
# Here you should add your userid password to connect to your providers via
# PAP. The * means that the password is to be used for ANY host you connect
# to. Thus you do not have to worry about the foreign machine name. Just
# replace password with your password.
# If you have different providers with different passwords then you better
# remove the following line.
# * password
"test" * "test"
Стартиране
скрипт за стартиране DHCP
#!/bin/bash
# Starts the PPPoE server and turns on NAT
PROV=pppoe
#maximum number of addresses your server
#MAX=5
#lowest IP address your server is allowed
BASE=10.10.220.2
PLA=10.10.220.0/8
# NAT is the set of addresses which your server will
# NAT behind it. Other addresses behind your server
NAT=10.10.220.0/8
MYIP=10.10.220.1
##########################################
# Here is where the script actually starts executing.
##########################################
# Disable IP spoofing on the external interface.
iptables -A INPUT -i eth0 -s $NAT -j DROP
#Enable NAT for the private addresses we hand out.
iptables -t nat -A POSTROUTING -s $NAT -j $NAT --to-source $MYIP
# Launch the server.
pppoe-server pty -T 60 -I eth1 -L $MYIP -N $MAX -C $PROV -S $PROV -R $PLA
echo "1" > "/proc/sys/net/ipv4/ip_forward"
За да стартирате сървъра изпълнете:
pppoe-start
За да го спрете"
pppoe-stop
За да видите състоянието:
pppoe-status
