====== Сервис PPP ====== [[http://ru.wikipedia.org/wiki/PPP_(сетевой_протокол)]] ===== Создание локальной базы данных пользователей для PPP ===== ==== Debian/Ubuntu pppd ====


root@gate:~# cat /etc/ppp/chap-secrets


user1 * password1 192.168.100+X.1
user2 * password2 *

==== FreeBSD ====


[gate:~] # cat /etc/ppp/ppp.secret


user1 password1 192.168.100+X.101
user2 password2 *

===== Настройка PPP для PPPoE ===== ==== FreeBSD ====


[gate:~] # cat /etc/ppp/ppp.conf


inet:
 enable mschapv2
 set ifaddr 192.168.100+X.1 192.168.100+X.2-192.168.100+X.2
# set dns 192.168.X.10
# accept dns
 set timeout 0

==== CentOS SL ====


[root@gate ~]# cat /etc/ppp/pppoe-server-options


require-mschap-v2
# ms-dns 192.168.X.10

===== Настройка PPP на использование RADIUS ===== [[Сервис FreeRADIUS]] ==== Debian/Ubuntu ====


gate# apt install libradcli4

gate# cat /etc/ppp/pppoe-server-options


...
plugin radius.so
radius-config-file /etc/radcli/radiusclient.conf


gate# cat /etc/radcli/radiusclient.conf


seqfile /var/run/radius.seq
mapfile /etc/radcli/port-id-map
authserver      server
acctserver      server
servers         /etc/radcli/servers
dictionary      /etc/radcli/dictionary
default_realm
radius_timeout  10
radius_retries  3
bindaddr        *


gate# touch /etc/radcli/port-id-map

debian12# sed -i 's/ipv4addr/ipaddr/g' /etc/radcli/dictionary

gate# cat /etc/radcli/servers


server testing123


gate# cat /etc/hosts


...
192.168.X.10 server

==== FreeBSD ====


[gate:~] # rm /etc/ppp/ppp.secret

[gate:~] # cat /etc/radius.conf


auth server.corpX.un testing123 3 2
acct server.corpX.un testing123 3 2


[gate:~] # cat /etc/ppp/ppp.conf


...
 set timeout 0
 set radius /etc/radius.conf