Koozali.org: home of the SME Server

VPN IP Addresses

cc_skavenger

VPN IP Addresses
« on: July 20, 2004, 03:46:53 PM »
Is there a file that can be edited to specify the IP pool for the PPTP VPN?  I need to specify 10 IP addresses that have already been decided on. Currently, IPs start at XXX.XXX.XXX.241 and there is a client already setup on this IP.  

Thanks
Marco

Pete1

VPN IP Addresses
« Reply #1 on: August 05, 2004, 11:30:41 AM »
Marco -
Did you manage to figure this problem out with the vpn? I am trying to find the same solution to restrict the vpn connection to specified external ip addresses.

Pete.

cc_skavenger

VPN IPs
« Reply #2 on: August 05, 2004, 03:26:25 PM »
No, not yet.  In 5.5, ipchains were listed.....in 6 iptables doesn't list them.....there must be a file listing somewhere.  I will have to just keep looking.

Smeily

VPN pool
« Reply #3 on: August 06, 2004, 10:33:51 PM »
Well when you set VPN-users to 10 and
you have a mask of 255.255.255.0 and you
set the DHCP-pool from ...65 to ...250 then the
VPN-users get the last 10 leases from the pool
meaning ...241 to ...250.
But if the pool is too small you can get into trouble
so the easy way is to extend the pool by editing the
netmask.

cc_skavenger

Re: VPN pool
« Reply #4 on: August 07, 2004, 06:16:17 PM »
Quote from: "Smeily"
Well when you set VPN-users to 10 and
you have a mask of 255.255.255.0 and you
set the DHCP-pool from ...65 to ...250 then the
VPN-users get the last 10 leases from the pool
meaning ...241 to ...250.


That is true, but my netmask is set to 255.255.255.252 and the vpn ip pool is still those same IPs....still trying to find where this is specified...

cc_skavenger

VPN IP Addresses
« Reply #5 on: October 07, 2004, 08:38:04 PM »
Looked forever for this.  I now have the answer.

Steps:
1. Choose the IPs that you want.
2. Make the custom template fragments:
mkdir -p /etc/e-smith/templates-custom/etc/pptpd.conf
3. Create the template fragment needed:
touch /etc/e-smith/templates-custom/etc/pptpd.conf/remoteip
4. Edit the fragment with your favorite editor and insert these contents:
remoteip <ip-range>

ip-range will be the range of IPs that you want to use. It must be in this format:

10.0.0.230-240 would specify IPs 230 through 240 are usable

5. Save the file and expand the template:
/sbin/e-smith/expand-template /etc/pptp.conf
6. Restart the pptpd service:
service pptpd restart
7. Test the VPN by making a connection and check your IP.

That's it

gwynney

VPN IP Addresses
« Reply #6 on: October 04, 2006, 07:47:37 AM »
Could someone please explain how I edit in Step 4.  I'm new to this and am not sure how I open this up to edit.  Thanks alot!