VPN mpd on FreeBSD

Posted on Wed 27 August 2008

Install mpd:

pkg_add -r mpd
# or
cd /usr/ports/net/mpd
make && make install

If external IP:
Configuring pptp in file /usr/local/etc/mpd/mpd.links

set link type pptp
set link type pptp
set link type pptp

Adding users, password and IP addresses or any password '*' in file /usr/local/etc/mpd/mpd.secret:

test "pass"
test2 "pass2" *

Main config file /usr/local/etc/mpd/mpd.conf:

load pptp0
load pptp1
load pptp2
new -i ng0 pptp0 pptp0 # new interface
set ipcp ranges # local and remote IP should not conflict
load pptp_standart
new -i ng1 pptp1 pptp1
set ipcp ranges
load pptp_standart
new -i ng2 pptp2 pptp2
set ipcp ranges
load pptp_standart
set iface disable on-demand
set iface route default
set bundle disable multilink
set link yes acfcomp protocomp
# chap authorization
set link no pap chap
set link enable chap
set link keep-alive 60 180
set ipcp yes vjcomp
set bundle enable compression
# Enabling data compression for Microsoft clients
set ccp yes mppc
# Enabling encryption for Microsoft clients
set ccp yes mpp-e40
set ccp yes mpp-e128
set ccp yes mpp-stateless
# local IP address for incoming connections
set pptp self
# Allow incoming connections
set pptp enable incoming
set pptp disable originate

Enable autorun in file /etc/rc.conf:


Enabling logging in file /etc/syslog.conf:

*.* /var/log/mpd.log

Firewall rules:

${fwcmd} add allow tcp from any to me 1723
${fwcmd} add allow gre from any to any