tar xvzf rp-l2tp-0.4.tar.gz
cd rp-l2tp-0.4
./configure
make
sudo make install
2. 改l2tp的配置文件
sudo gedit /etc/l2tp/l2tp.conf
编辑内容如下:
# Global section (by default, we start in global mode)
global
# Load handlers
load-handler "sync-pppd.so"
load-handler "cmd.so"
# Bind address
listen-port 1701
# Configure the sync-pppd handler. You MUST have a "section sync-pppd" line
# even if you don't set any options.
section sync-pppd
# Be sure to replace [username] with your bras username
lac-pppd-opts "user pink@test ipcp-accept-local ipcp-accept-remote lcp-echo-interval 30 lcp-echo-failure 6"
# Peer section
section peer
peer 172.21.100.100
port 1701
lac-handler sync-pppd
hide-avps yes
# Configure the cmd handler. You MUST have a "section cmd" line
# even if you don't set any options.
section cmd
注意把pink@test改成自己的帐号,如b04567890。另外,第16行可能会百合自动换行了,看看引号的对应关系,
应该知道是不是换行了吧。^_^
3. 配置ppp
编辑/etc/ppp/options文件
内容如下:
noauth
#proxyarp
defaultroute
asyncmap 0
mru 1464
mtu 1464
南大的bras系统似乎不支持proxyarp,所以注释掉了。这里的mru和mtu要比ethernet的值
稍微小一点。ethernet的是1500,这里设置为1464。
4. 设定bras用户名和密码。编辑/etc/ppp/chap-secrets
#client hostname
$userid * $passwd *
这里的$userid和$passwd是bras的用户名和密码,自己做一下替换。
5. 安装ipsec-tools
sudo apt-get install ipsec-tools
sudo chmod 750 /etc/ipsec-tools.conf
sudo /etc/init.d/setkey start
6. 编辑拨号脚本bras-ctrl,内容如下:
#!/bin/sh
case $1 in
route)
GATEWAY=172.16.66.129
{
route del default
route add -net 172.16.0.0 netmask 255.240.0.0 gw $GATEWAY
route add -net 202.119.32.0 netmask 255.255.224.0 gw $GATEWAY
route add -net 210.29.240.0 netmask 255.255.240.0 gw $GATEWAY
route add -net 210.28.128.0 netmask 255.255.240.0 gw $GATEWAY
route add -net 219.219.112.0 netmask 255.255.240.0 gw $GATEWAY
route add -net 0.0.0.0 netmask 0.0.0.0 dev ppp0
} &> /dev/null
;;
start)
sudo /usr/local/sbin/l2tpd
sudo /usr/local/sbin/l2tp-control "start-session 172.21.100.100"
;;
stop)
sudo /usr/local/sbin/l2tp-control "exit"
;;
*)
echo "Please specify your action: route / start / stop"
;;
esac
注意把GATEWAY改成你的网关。
到此设置完成。下面的内容才是上网断网要做的了。
7. bras 拨号
sudo ./bras-ctrl start
隔一秒钟
sudo ./bras-ctrl route
正常情况下“sudo ./bras-ctrl start”后,运行sudo ifconfig应该可以看到ppp的网络连接。
如果有问题可以查看/var/log/message查找原因。如果是authentication fail,可能需要重启。
测试连接
traceroute www.google.com
8. 关闭bras拨号
sudo ./bras-ctrl stop