Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the '10.4: Configure a secure L2TP VPN' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.4: Configure a secure L2TP VPN
Authored by: isometry on Jun 20, '06 09:14:18AM

I've reported the dud link to robg. In the meantime, here's my current configuration:


/* Refer to http://images.apple.com/server/pdfs/Command_Line_v10.4.pdf */
{
    ActiveServers = ("com.apple.ppp.l2tp"); 
    Servers = {
        "com.apple.ppp.l2tp" = {
            Server = {
                VerboseLogging = 1;
                MaximumSessions = 128;
                Logfile = "/var/log/ppp/vpnd.log"; 
            };
            IPSec = {
                SharedSecretEncryption = "Keychain";
                SharedSecret = "com.apple.ppp.l2tp";
                LocalIdentifier = "";
                LocalCertificate = "";
                AuthenticatedMethod = "SharedSecret";
                IdentifierVerification = "None";
                RemoteIdentifier = "";
            };
            L2TP = {Transport = IPSec; }; 
            IPv4 = {
                DestAddressRanges = ("10.66.20.120", "10.66.20.129"); 
                OfferedRouteMasks = (); 
                OfferedRouteAddresses = (); 
                OfferedRouteTypes = (); 
                ConfigMethod = Manual; 
            }; 
            DNS = {
                OfferedSearchDomains = ("internal");
                OfferedServerAddresses = ("10.66.20.2");
            }; 
            Interface = {
                SubType = L2TP;
                Type = PPP;
            }; 
            PPP = {
                LCPEchoFailure = 5; 
                ACSPEnabled = 1;
                VerboseLogging = 1; 
                AuthenticatorACLPlugins = (DSACL);
                AuthenticatorEAPPlugins = (EAP-KRB);
                AuthenticatorPlugins = (DSAuth);
                LCPEchoInterval = 60; 
                LCPEchoEnabled = 1; 
                IPCPCompressionVJ = 0; 
                AuthenticatorProtocol = (MSCHAP2);
                Logfile = "/var/log/ppp/vpnd.log";
            };
            DSACL = {Group = vpn; };
        }; 
    }; 
}


[ Reply to This | # ]