Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: cc_skavenger on July 20, 2004, 03:46:53 PM

Title: VPN IP Addresses
Post by: cc_skavenger on July 20, 2004, 03:46:53 PM

Is there a file that can be edited to specify the IP pool for the PPTP VPN?  I need to specify 10 IP addresses that have already been decided on. Currently, IPs start at XXX.XXX.XXX.241 and there is a client already setup on this IP.  

Thanks
Marco

Title: VPN IP Addresses
Post by: Pete1 on August 05, 2004, 11:30:41 AM

Marco -
Did you manage to figure this problem out with the vpn? I am trying to find the same solution to restrict the vpn connection to specified external ip addresses.

Pete.

Title: VPN IPs
Post by: cc_skavenger on August 05, 2004, 03:26:25 PM

No, not yet.  In 5.5, ipchains were listed.....in 6 iptables doesn't list them.....there must be a file listing somewhere.  I will have to just keep looking.

Title: VPN pool
Post by: Smeily on August 06, 2004, 10:33:51 PM

Well when you set VPN-users to 10 and
you have a mask of 255.255.255.0 and you
set the DHCP-pool from ...65 to ...250 then the
VPN-users get the last 10 leases from the pool
meaning ...241 to ...250.
But if the pool is too small you can get into trouble
so the easy way is to extend the pool by editing the
netmask.

Title: Re: VPN pool
Post by: cc_skavenger on August 07, 2004, 06:16:17 PM

Quote from: "Smeily"

Well when you set VPN-users to 10 and
you have a mask of 255.255.255.0 and you
set the DHCP-pool from ...65 to ...250 then the
VPN-users get the last 10 leases from the pool
meaning ...241 to ...250.


That is true, but my netmask is set to 255.255.255.252 and the vpn ip pool is still those same IPs....still trying to find where this is specified...

Title: VPN IP Addresses
Post by: cc_skavenger on October 07, 2004, 08:38:04 PM

Looked forever for this.  I now have the answer.

Steps:
1. Choose the IPs that you want.
2. Make the custom template fragments:
mkdir -p /etc/e-smith/templates-custom/etc/pptpd.conf
3. Create the template fragment needed:
touch /etc/e-smith/templates-custom/etc/pptpd.conf/remoteip
4. Edit the fragment with your favorite editor and insert these contents:
remoteip <ip-range>

ip-range will be the range of IPs that you want to use. It must be in this format:

10.0.0.230-240 would specify IPs 230 through 240 are usable

5. Save the file and expand the template:
/sbin/e-smith/expand-template /etc/pptp.conf
6. Restart the pptpd service:
service pptpd restart
7. Test the VPN by making a connection and check your IP.

That's it

Title: VPN IP Addresses
Post by: gwynney on October 04, 2006, 07:47:37 AM

Could someone please explain how I edit in Step 4.  I'm new to this and am not sure how I open this up to edit.  Thanks alot!