Return to BSD News archive
#! rnews 2857 bsd Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!spool.mu.edu!howland.erols.net!newsfeed.internetmci.com!news.wco.com!news From: "Jeffery T. White" <zellion@cyberwind.com> Newsgroups: comp.unix.bsd.freebsd.misc Subject: PPP Setup Date: 13 Oct 1996 23:21:45 GMT Organization: CyberWind Lines: 51 Message-ID: <01bbb95e$bc4937c0$df6d04c7@zellion.cyberwind.com> NNTP-Posting-Host: zellion.cyberwind.com X-Newsreader: Microsoft Internet News 4.70.1155 I am trying to setup our FreeBSD box at work (2.1.5 RELEASE) to allow a dial in connection. This connection will be used by Windows 95 clients to obtain access to Lotus Notes via TCP/IP. I have tried both pppd and user ppp. With limited success (user ppp) and no success (pppd). I have several questions and also a request for opinions (everyone's got those<g>). First the opinions: I am part of a much bigger WAN and so security is a major issue. Both user ppp and pppd seem to have merits when it comes to security but also drawbacks. I'm not real keen on the way user ppp uses a login script to start itself, basically it seems if one can get past the login prompt without starting ppp they have a console login going on my server. However the packet filtering in user ppp seems easy to setup and use so once running it insures that only Notes traffic can get through. I guess I could set that up another way however I'm not sure where. So which is best User PPP or PPPD? What are people with secure networks out there using? Which works best for Win95 clients. User PPP Problems: With User PPP the only way my Win95 stations can login seems to be a clear text login by turning on the option to bring up a terminal window after dialing. The PAP/CHAP login always fails. It seems Windows 95 wants to do the LCP negotiation before authentication and I don't think(??) the getty will do that. Anyway the Win95 systems always get the "cannot negotiate a compatible set of protocols" before the login program gets spawned by getty. User ppp never gets loaded. Another thing I am totally clueless on is where I go to setup modem strings.. Does getty or user ppp read the modem file or is there some way I can put them in rc.serial? PPPD Questions: When I look at the pppd man pages it seems the way to go, however when I read that docs page that talks about kermit I don't see the reasoning there. The man pages lead me to believe that pppd can work on it's own it all I want is incoming TCP/IP traffic routed, no shell/terminal sessions. Anyway I can't see how I should load it, I would like to put it in inetd.conf so it always runs. Is this possible? Any opinions, bits of info, pointers to docs/faqs would be greatly appreciated. Thanks, Jeff -- | Jeffery T. White | email: zellion@cyberwind.com | | Cyberwind, The wind knows... | http://www.cyberwind.com