| Name | PopTop |
|---|---|
| Deployed on | sown-vpn |
| Website | http://www.poptop.org/ |
PopTop is as PPTP Server for Linux
It is installed on sown-vpn so you can VPN into the sown VLAN from the ECS network and get a 10.13.2. address or VPN from the sown VLAN to the ECS network and get a 152.78.189. address (and internet access.
To start the VPN service:
pptpd -c /etc/pptpd.conf -o /etc/ppp/pptpd-options -l 10.13.0.253
pptpd is the program, listening on 10.13.0.253 (the SOWN VLAN interface of the server) with the pptpd.conf config file:
################################################ # # Poptop Config for SOWN # ################################################ option /etc/ppp/pptpd-options logwtmp localip 152.78.189.83 remoteip 152.78.189.85-99 pidfile /var/run/pptpd-sown.pid
and pptpd-options:
name sown-vpn lock auth proxyarp ipcp-accept-local ipcp-accept-remote lcp-echo-failure 10 nobsdcomp nodeflate refuse-pap refuse-chap require-mschap require-mppe ms-dns 152.78.189.83 plugin radius.so
To make the VPN work in reverse:
pptpd -c /etc/pptpd.conf_reverse -o /etc/ppp/pptpd-options_reverse -l 152.78.189.83
pptpd.conf_reverse:
################################################ # # Popop Config for SOWN # ################################################ option /etc/ppp/pptpd-options_reverse logwtmp localip 10.13.0.253 remoteip 10.13.0.50-59 pidfile /var/run/pptpd-reverse.pid
pptpd-options_reverse:
name sown-vpn lock auth proxyarp ipcp-accept-local ipcp-accept-remote lcp-echo-failure 10 nobsdcomp nodeflate refuse-pap refuse-chap require-mschap require-mppe ms-dns 10.13.0.253 plugin radius.so
This is all set up and both commands are in /root/start-vpn
User summary:
| From | To | Connect to | You will be assigned IP in the range | Internet |
|---|---|---|---|---|
| SOWN VLAN | ECS Network | vpn.sown.org.uk (10.13.0.253) | 152.78.189.85 - 99 | Yes |
| ECS DMZ | SOWN VLAN | sown-vpn.ecs.soton.ac.uk (152.78.189.83) | 10.13.0.50 - 59 | No |