| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128 | ################################################################################ $Id: options.pptpd,v 1.11 2005/12/29 01:21:09 quozl Exp $## Sample Poptop PPP options file /etc/ppp/options.pptpd# Options used by PPP when a connection arrives from a client.# This file is pointed to by /etc/pptpd.conf option keyword.# Changes are effective on the next connection.  See "man pppd".## You are expected to change this file to suit your system.  As# packaged, it requires PPP 2.4.2 and the kernel MPPE module.################################################################################ Authentication# Name of the local system for authentication purposes # (must match the second field in /etc/ppp/chap-secrets entries)name pptpd# Strip the domain prefix from the username before authentication.# (applies if you use pppd with chapms-strip-domain patch)#chapms-strip-domain# Encryption# (There have been multiple versions of PPP with encryption support,# choose with of the following sections you will use.)# BSD licensed ppp-2.4.2 upstream with MPPE only, kernel module ppp_mppe.o# {{{refuse-paprefuse-chaprefuse-mschap# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft# Challenge Handshake Authentication Protocol, Version 2] authentication.require-mschap-v2# Require MPPE 128-bit encryption# (note that MPPE requires the use of MSCHAP-V2 during authentication)require-mppe-128# }}}# OpenSSL licensed ppp-2.4.1 fork with MPPE only, kernel module mppe.o# {{{#-chap#-chapms# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft# Challenge Handshake Authentication Protocol, Version 2] authentication.#+chapms-v2# Require MPPE encryption# (note that MPPE requires the use of MSCHAP-V2 during authentication)#mppe-40	# enable either 40-bit or 128-bit, not both#mppe-128#mppe-stateless# }}}# Network and Routing# If pppd is acting as a server for Microsoft Windows clients, this# option allows pppd to supply one or two DNS (Domain Name Server)# addresses to the clients.  The first instance of this option# specifies the primary DNS address; the second instance (if given)# specifies the secondary DNS address.#ms-dns 10.0.0.1#ms-dns 10.0.0.2# If pppd is acting as a server for Microsoft Windows or "Samba"# clients, this option allows pppd to supply one or two WINS (Windows# Internet Name Services) server addresses to the clients.  The first# instance of this option specifies the primary WINS address; the# second instance (if given) specifies the secondary WINS address.#ms-wins 10.0.0.3#ms-wins 10.0.0.4# Add an entry to this system's ARP [Address Resolution Protocol]# table with the IP address of the peer and the Ethernet address of this# system.  This will have the effect of making the peer appear to other# systems to be on the local ethernet.# (you do not need this if your PPTP server is responsible for routing# packets to the clients -- James Cameron)proxyarp# Normally pptpd passes the IP address to pppd, but if pptpd has been# given the delegate option in pptpd.conf or the --delegate command line# option, then pppd will use chap-secrets or radius to allocate the# client IP address.  The default local IP address used at the server# end is often the same as the address of the server.  To override this,# specify the local IP address here.# (you must not use this unless you have used the delegate option)#10.8.0.100# Logging# Enable connection debugging facilities.# (see your syslog configuration for where pppd sends to)#debug# Print out all the option values which have been set.# (often requested by mailing list to verify options)#dump# Miscellaneous# Create a UUCP-style lock file for the pseudo-tty to ensure exclusive# access.lock# Disable BSD-Compress compressionnobsdcomp # Disable Van Jacobson compression # (needed on some networks with Windows 9x/ME/XP clients, see posting to# poptop-server on 14th April 2005 by Pawel Pokrywka and followups,# http://marc.theaimsgroup.com/?t=111343175400006&r=1&w=2 )novjnovjccomp# turn off logging to stderr, since this may be redirected to pptpd, # which may trigger a loopbacknologfd# put plugins here # (putting them higher up may cause them to sent messages to the pty)
 |