Сервис PPP
Создание локальной базы данных пользователей для PPP
Debian/Ubuntu pppd
root@gate:~# cat /etc/ppp/chap-secrets
user1 * password1 192.168.100+X.1
user2 * password2 *
FreeBSD
[gate:~] # cat /etc/ppp/ppp.secret
user1 password1 192.168.100+X.101
user2 password2 *
Настройка PPP для PPPoE
FreeBSD
[gate:~] # cat /etc/ppp/ppp.conf
inet:
enable mschapv2
set ifaddr 192.168.100+X.1 192.168.100+X.2-192.168.100+X.2
# set dns 192.168.X.10
# accept dns
set timeout 0
CentOS SL
[root@gate ~]# cat /etc/ppp/pppoe-server-options
require-mschap-v2
# ms-dns 192.168.X.10
Настройка PPP на использование RADIUS
Debian/Ubuntu
gate# apt install libradcli4
gate# cat /etc/ppp/pppoe-server-options
...
plugin radius.so
radius-config-file /etc/radcli/radiusclient.conf
gate# cat /etc/radcli/radiusclient.conf
seqfile /var/run/radius.seq
mapfile /etc/radcli/port-id-map
authserver server
acctserver server
servers /etc/radcli/servers
dictionary /etc/radcli/dictionary
default_realm
radius_timeout 10
radius_retries 3
bindaddr *
gate# touch /etc/radcli/port-id-map
debian12# sed -i 's/ipv4addr/ipaddr/g' /etc/radcli/dictionary
gate# cat /etc/radcli/servers
server testing123
gate# cat /etc/hosts
...
192.168.X.10 server
FreeBSD
[gate:~] # rm /etc/ppp/ppp.secret
[gate:~] # cat /etc/radius.conf
auth server.corpX.un testing123 3 2
acct server.corpX.un testing123 3 2
[gate:~] # cat /etc/ppp/ppp.conf
...
set timeout 0
set radius /etc/radius.conf