1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

tomato-vpn4.0

Discussion in 'Tomato Firmware' started by skiv71, Mar 5, 2010.

  1. skiv71

    skiv71 Addicted to LI Member

    hi,

    i'm a long time user of tomato but recently tried dd-wrt to gain some extra functionality (pptp server and local dns).

    i got stung with dd-wrt playing silly buggas and didnt like the basic features that were missing that i've become acustomed to.

    so tomato is is...

    anyways, i'm really struggling with getting pptp server working.

    i've trawled the forums and had it working in a fashion, but my greatest success was with copying settings etc found in dd-wrt.

    at the moment, due to my limited knowledge, i write these files from the init script..

    [options.pptpd]
    lock
    name *
    proxyarp
    ipcp-accept-local
    ipcp-accept-remote
    lcp-echo-failure 10
    lcp-echo-interval 5
    defalte 0
    auth
    -chap
    -mschap
    +mschap-v2
    mppe required,stateless
    mppc
    ms-ignore-domain
    chap-secrets /tmp/pptpd/chap-secrets
    ip-up-script /tmp/pptpd/ip-up
    ip-down-script /tmp/pptpd/ip-down
    mtu 1450
    mru 1450
    ms-dns 192.168.11.254

    [pptpd.conf]
    bcrelay br0
    localip 192.168.11.254
    remoteip 192.168.11.200-219

    [ip-up]
    #!/bin/sh
    startservice set_routes
    iptables -I FORWARD -i $1 -p tcp --tcp-flag SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
    iptables -I INPUT -i $1 -j ACCEPT
    iptables -I FORWARD -i $1 -j ACCEPT
    iptables -t nat -I PREROUTING -i $1 -p udp -m --sport 9 -j DNAT --to-destination 192.168.11.255

    [ip-down]
    #!/bin/sh
    iptables -D FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
    iptables -D INPUT -i $1 -j ACCEPT
    iptables -D FORWARD -i $1 -J ACCEPT
    iptables -t nat -D PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination 192.168.11.255

    [chap-secrets]
    username * password *

    and i've tried calling pptpd from init, firewall and wanup with

    /usr/sbin/pptpd -c /tmp/pptpd/pptpd.conf -o /tmp/pptpd/options.pptpd -C 10

    Now i have had this working but it seems eratic.

    i've had pppd errors (-1), sometimes requiring security, disconnect if none etc.

    is this because pppd and pptpd are different between tomato and dd-wrt?

    i know dnsmasq must be, because when i use cname=alias,host tomato is fine, but this crashed dd-wrt.

    can i interchange executable files within the firmware?

    just wondering if pptpd or pppd are different thats all..

    oh an is there a way i can write my pptpd config files somewhere persistant instead of scripting them in each time..?

    thanks

    Neil
     

Share This Page