Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| docs:guide-user:services:vpn:pptp:server [2020/10/16 16:48] – [VPN service] update vgaetera | docs:guide-user:services:vpn:pptp:server [2023/03/14 13:32] – consolidate variable naming vgaetera | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== PPTP server ====== | ====== PPTP server ====== | ||
| - | {{section> | + | {{section> |
| ===== Introduction ===== | ===== Introduction ===== | ||
| * This how-to describes the method for setting up [[wp> | * This how-to describes the method for setting up [[wp> | ||
| - | * Follow [[docs: | + | * Follow [[docs: |
| - | * Follow [[docs: | + | |
| ===== Goals ===== | ===== Goals ===== | ||
| - | {{section> | + | {{section> |
| - | ===== Instructions | + | ===== Command-line instructions |
| ==== 1. Preparation ==== | ==== 1. Preparation ==== | ||
| - | Set up [[docs: | + | Install the required |
| - | Install the packages | + | Specify |
| <code bash> | <code bash> | ||
| Line 21: | Line 20: | ||
| # Configuration parameters | # Configuration parameters | ||
| - | PPTP_USER=" | + | VPN_POOL=" |
| - | PPTP_PASS=" | + | VPN_USER=" |
| - | PPTP_POOL=" | + | VPN_PASS=" |
| </ | </ | ||
| ==== 2. Firewall ==== | ==== 2. Firewall ==== | ||
| Enable conntrack helper to allow related GRE traffic. | Enable conntrack helper to allow related GRE traffic. | ||
| - | Consider VPN network as private | + | Consider VPN network as private. |
| + | Assign | ||
| Allow access to VPN server from WAN zone. | Allow access to VPN server from WAN zone. | ||
| Line 54: | Line 54: | ||
| </ | </ | ||
| - | ==== VPN service ==== | + | ==== 3. VPN service ==== |
| Configure VPN service. | Configure VPN service. | ||
| <code bash> | <code bash> | ||
| # Configure VPN service | # Configure VPN service | ||
| - | while uci -q delete pptpd.@login[0]; | ||
| uci set pptpd.pptpd.enabled=" | uci set pptpd.pptpd.enabled=" | ||
| uci set pptpd.pptpd.logwtmp=" | uci set pptpd.pptpd.logwtmp=" | ||
| - | uci set pptpd.pptpd.localip=" | + | uci set pptpd.pptpd.localip=" |
| - | uci set pptpd.pptpd.remoteip=" | + | uci set pptpd.pptpd.remoteip=" |
| - | uci set pptpd.login=" | + | uci -q delete |
| - | uci set pptpd.login.username=" | + | uci set pptpd.client=" |
| - | uci set pptpd.login.password=" | + | uci set pptpd.client.username=" |
| + | uci set pptpd.client.password=" | ||
| uci commit pptpd | uci commit pptpd | ||
| / | / | ||
| Line 72: | Line 72: | ||
| ===== Testing ===== | ===== Testing ===== | ||
| - | {{section> | + | {{section> |
| ===== Troubleshooting ===== | ===== Troubleshooting ===== | ||
| Line 87: | Line 87: | ||
| pgrep -f -a pptpd | pgrep -f -a pptpd | ||
| ip address show; ip route show table all | ip address show; ip route show table all | ||
| - | ip rule show; ip -6 rule show; iptables-save; | + | ip rule show; ip -6 rule show; nft list ruleset |
| + | sysctl net.netfilter.nf_conntrack_helper | ||
| # Persistent configuration | # Persistent configuration | ||
| uci show network; uci show firewall; uci show pptpd | uci show network; uci show firewall; uci show pptpd | ||
| - | sysctl | + | grep -v -e " |
| </ | </ | ||