安装环境:腾讯云、Centos7、Hongkong Server
一、服务端安装步骤:
1、安装ppp , pptpd 和 iptables。
yum install update
yum -y install ppp pptpd
yum install iptables2、配置pptpd.conf
去掉以下两项前面的";"
vi /etc/pptpd.conf
localip 119... #注意修改成腾讯云外网ip
remoteip 192.168.0.234-238,192.168.0.2453、配置options.pptpd中的dns
vi /etc/ppp/options.pptpd
默认dns:
ms-dns 8.8.8.8
ms-dns 8.8.4.4
其他的dns:
ms-dns 208.67.222.222
ms-dns 208.67.220.220
4、配置连接VPN客户端要用到的帐号密码
vi /etc/ppp/chap-secrets
client server secret IP addresses
用户名 pptpd 密码 *
5、配置sysctl.conf
将以下内容加入配置文件
vi /etc/sysctl.conf
vm.swappiness = 0
net.ipv4.neigh.default.gc_stale_time=120
net.ipv4.conf.all.rp_filter=0
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.all.arp_announce=2
net.ipv4.tcp_max_tw_buckets = 5000
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 1024
net.ipv4.tcp_synack_retries = 2
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
net.ipv4.conf.lo.arp_announce=2
net.ipv4.ip_forward = 16、配置iptables文件
腾讯云默认添加转发网卡为内网网卡eth0
vi /etc/sysconfig/iptables
# Generated by iptables-save v1.4.21 on Sat May 19 10:44:10 2018
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [26:3094]
-A INPUT -p gre -j ACCEPT
-A INPUT -p tcp -m tcp --dport 47 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 1723 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state ESTABLISHED -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
COMMIT
# Completed on Sat May 19 10:44:10 2018
# Generated by iptables-save v1.4.21 on Sat May 19 10:44:10 2018
*nat
:PREROUTING ACCEPT [8:660]
:INPUT ACCEPT [8:660]
:OUTPUT ACCEPT [18:1443]
:POSTROUTING ACCEPT [18:1443]
#-A POSTROUTING -s 192.168.0.0/24 -o Virtio -j MASQUERADE
-A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE
COMMIT
# Completed on Sat May 19 10:44:10 20187、内外网不能同时访问问题 在以下文件加入如下内容vi /etc/ppp/ip-up
/sbin/ifconfig $1 mtu 15008、重启服务
systemctl restart iptables
systemctl restart pptpd二、客户端windows10连接
操作步骤:开始–》设置–》VPN
如下图:
具体的配置如下:
