Red Hat pptpd HOWTO
by James Cameron
Packages for Yum based distributions are available from our Yum
|# rpm -Uvh http://poptop.sourceforge.net/yum/stable/fc7/pptp-release-current.noarch.rpm
# yum --enablerepo=poptop-stable install pptpd
by James Cameron
Derived from work by Richard de Vroede, this HOWTO shows the steps
required to install pptpd on a Red Hat style distribution, such as Red
Hat, Fedora Core, and Mandrake.
- if you are using a kernel version below 2.6.15-rc1, and you want
encrypted tunnels, you need to add MPPE support to the kernel. Some
distribution kernels already have MPPE. You can test by typing
modprobe ppp-compress-18 && echo ok and if that works, skip to
Otherwise, to add MPPE support to the kernel, choose either of these two methods;
- go to the PPTP Client project and
read the instructions that are the closest match to the distribution
you have, and do the parts of the instructions that cover MPPE, or;
- download and install the latest DKMS RPM and the latest
kernel_ppp_mppe RPM from the new
MPPE module builder section of our downloads,
(for more information about DKMS, see the OLS 2004 DKMS paper),
- upgrade PPP to version 2.4.3 or later, see our latest
- download and install the latest
- configure the following files;
- start the service;
- upgrade all Win9x clients using MSdun1.4 to get 128-bit encryption,
- try a connection.
Once you can ping from the client to the server using the IP address assigned within the tunnel, you know it works. You may need to configure your server to forward the packets further, but that's a routing problem that has nothing specific to do with pptpd. See our Diagnosing Forwarding
document; which boils down to;
- enable IP forwarding in /etc/sysctl.conf:
- enable IP forwarding now:
| echo 1 > /proc/sys/net/ipv4/ip_forward|
For configuration against an Active Directory service, see our Replacing a Windows
PPTP server with Linux HOWTO
, by Matt Alexander, from December
For more complex configuration, see Beyond
Samba - Integrating Windows Authentication into a wireless VPN
solution, by Andrew Bartlett, 4th January 2005.
If you have comments
on this document, please send them to the
author at quozl at laptop dot org. But if you need help
the mailing list
so that we can share the load.
Add Yum repository but did not update rest of document. Input needed.
Add text to skip step 1 if reader is on kernel 2.6.15-rc1 or later.
Remove support for SuSE because we don't have pppd packages available.
Add ip_forward hints (not specific to pptpd but usually part of the
process people go through), add link to the Active Directory HOWTO,
thanks again to Illtud Daniel.
Add links to our PPP packages, thanks to Illtud Daniel for pointing
out the omission.
Add links to DKMS and samba.org information.
First draft and minor edits following review by mailing list.