Connect To a PPTP VPN from an Ubuntu Server using command line

I ended up in handling tens of linux servers remotely and as a developer running into sysadmin tasks is quite common. That's one of the reasons which make me become a command-line lover.
Anyway, in this situation the major issue for me is to make Google understand what am I really looking for, since this kind of problem is usually faced in a Desktop or GUI-based Ubuntu environment.

As I said it was really hard to let Google find something useful for my purpose, but after some heavy digging I could figure out how I should proceed
The Ubuntu version on which I perform this setup is a 12.04 LTS, so I can not guarantee for other versions. And in addiction to that often the information retrieved belongs to old Ubuntu releases.

In any case this is how I proceeded.

Note 1: you would use your favourite text editor (nano, pico, vim) where I may refer to VIM
Note 2: All the following commands are intended to be executed as superuser (using sudo or being root)
Note 3: the following term will be used thereinafter
  • $DOMAIN: the domain (NT domain) where the server is host
  • $USER: your remote user
  • $PASSWORD: your remote secret
  • $TUNNEL_ADDRESS: the remote server IP (of course meaning public IP)
1- First install the following packages
sudo aptitude install ppp pptp-linux

2- Then edit the following file /etc/ppp/chap-secrets
# Secrets for authentication using CHAP

# client         server    secret     IP addresses
$DOMAIN\\$USER    PPTP    $PASSWORD     *
Remember that Windows backslash "\" should be escaped

3- Now you are able to define your VPN connection by creating a file with a custom name (e.g my_vpn) in /etc/ppp/peers/. Here is what it should contain
:~$ cat  /etc/ppp/peers/my_vpn
pty "pptp $TUNNEL_ADDRESS --nolaunchpppd"
name $DOMAIN\\$USER
remotename PPTP
require-mppe-128
file /etc/ppp/options.pptp
ipparam my_vpn
Again remember to escape backslashes.

4- Now we are ready to establish our PPTP VPN tunnel with the following command
pon my_vpn &
I advise background mode but also for early check it si possible to start in a more verbose mode
pon my_vpn debug dump logfd 2 nodetach

5- As usually happens if everything goes fine you should now be able to see your machine in the VPN. In order to cross check try an ifconfig. Here is my output
ppp0      Link encap:Point-to-Point Protocol
          inet addr:10.1.1.138  P-t-P:10.1.1.166  Mask:255.255.255.255
As you see now I have a new interface listed (ppp0), moreover this is assigned to a private IP, which looks fine for a VPN environment.

6- If you want to tear down the VPN here is the command.
poff my_vpn
That's it!

Che figata, keep on sharing knowledge!

References:
http://www.cyberciti.biz/tips/howto-configure-ubuntu-fedora-linux-pptp-client.html
http://pptpclient.sourceforge.net/howto-ubuntu.phtml

Comments

  1. Unknown31/10/14 08:34

    Tested on Ubuntu 14.04
    Thanks

    ReplyDelete
  2. Unknown23/2/15 06:30

    Great connection......
    vpn connection

    ReplyDelete
  3. Unknown19/9/15 14:03

    Good solution for VPN connection on Ubuntu.
    Awesome post.Thank you.
    10webhostingservice

    ReplyDelete
  4. McClintock1/5/17 00:14

    Hi. Very helpful thanks. Do you have any suggestions for the best way to monitor that the PPTP connection is up or down? I'm happy to cron a script and write to a log file. Thanks

    ReplyDelete
    Replies
    1. sw360cab2/5/17 10:51

      Well, I don't know much on that. Just a quick Google pointed me to two interesting links:

      https://github.com/boukeversteegh/pptpd-monitor
      https://community.spiceworks.com/topic/130798-monitor-users-connected-to-pptpd-vpn

      Hope it helps...

      Delete
    2. McClintock2/5/17 22:34

      thanks :)

      Delete
  5. Unknown11/10/17 18:17

    Thanks

    ReplyDelete
    Replies
    1. sw360cab12/10/17 10:11

      Always happy when few lines can help someone :)

      Delete

Post a Comment

Popular posts from this blog

Scaling Host on Amazon AWS EC2 using Ansible

It's already a long time since I started playing around with Ansible. Actually I was curious about other CM (Configuration Management) software tools like SaltStack , Chef or Puppet but as long as I started looking for them I jumped into a book which compares and explains them, giving a real taste of all of them. It turns out that Ansible was both powerful and simple to learn and without particular requested backgrounds. What captured early my attention was the possibility to deploy quickly host machines on Amazon AWS using EC2 and the corresponding Ec2 Ansible module , since I haven't a “real” set of machines to play with. Using EC2 hosts I can easily test my configuration without worrying about which machine I am using, moreover using micro-instances these tests are almost priceless (as long as you remember to stop them from time to time!). What I wanted to create is a system to deploy on Amazon AWS a scalable set of instances of Apache Tomcat container proxied vi...
Read more

Let's Encrypt: a real open certificate authority

I ran into Let's Encrypt project few months ago, after reading on the website of an independent radio that they finally solved their own issues with SSL by creating a Valid Certificate using Let's Encrypt . At the beginning I imagined that they would have created something like self-signed certificates or something that, at the end, wouldn't be valid completely or at least not useful without user's validation. Surprisingly this was not the case, they either have a valid certificate and the browser used to like it too. I was curious and I wanted to go in deep with this. The opportunity fell from the sky , when after revoking a certificate and rekeying the same for another domain, I had to leave a domain with an invalid and revoked certificate. This shouldn't represent a problem, since the domain was hosting a website quite outdated. However I forgot that someone was still embedding iframes from that domain, moreover they neither can modify easily tons ...
Read more