brouillon_pptp
Différences
Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentesRévision précédenteProchaine révision | Révision précédente | ||
brouillon_pptp [2010/11/14 01:06] – thierry | brouillon_pptp [2010/12/17 19:43] (Version actuelle) – thierry | ||
---|---|---|---|
Ligne 11: | Ligne 11: | ||
| ipredator.se | | ipredator.se | ||
| blackvpn.com | pptp/ | | blackvpn.com | pptp/ | ||
- | | vpntunnel.se | OpenVPN | 08/2010 | tous ouverts | OK | ping un peu lent (+120 ms). On verra mieux a l' | + | | vpntunnel.se | OpenVPN | 08/2010 | tous ouverts | OK | ping un peu lent (+120 ms). A l' |
===== Client OpenVPN ===== | ===== Client OpenVPN ===== | ||
Ligne 329: | Ligne 329: | ||
*http:// | *http:// | ||
- | ===== Active Directory ===== | + | ===== Serveur PPTP et Windows |
Serveur PPTP et active directory. | Serveur PPTP et active directory. | ||
Ligne 347: | Ligne 347: | ||
==== reseau ==== | ==== reseau ==== | ||
- | * Ip local: (elle naté via un firewall) | + | * Ip local: (elle est NATé via un firewall) |
Pas d' | Pas d' | ||
Ligne 484: | Ligne 484: | ||
aptitude -t lenny-backports install pptpd | aptitude -t lenny-backports install pptpd | ||
- | Dans **''/ | + | Dans **''/ |
... < | ... < | ||
localip 192.168.23.254 | localip 192.168.23.254 | ||
Ligne 514: | Ligne 514: | ||
* " | * " | ||
* " | * " | ||
+ | |||
+ | | :!: En pratique " | ||
+ | |||
# / | # / | ||
Ligne 535: | Ligne 538: | ||
[libdefaults] | [libdefaults] | ||
default_realm = THIERRY-JAOUEN.FR | default_realm = THIERRY-JAOUEN.FR | ||
+ | | ||
dns_lookup_realm = false | dns_lookup_realm = false | ||
dns_lookup_kdc = false | dns_lookup_kdc = false | ||
Ligne 542: | Ligne 545: | ||
... < | ... < | ||
[realms] | [realms] | ||
- | | + | |
kdc = pdc1.thierry-jaouen.fr | kdc = pdc1.thierry-jaouen.fr | ||
kdc = pdc2.thierry-jaouen.fr | kdc = pdc2.thierry-jaouen.fr | ||
Ligne 562: | Ligne 565: | ||
# klist | # klist | ||
- | ==== samba ==== | ||
- | ... enfin, juste les fichiers de base: nul besoin d' | ||
==== winbind et samba ==== | ==== winbind et samba ==== | ||
+ | |||
+ | ... nul besoin d' | ||
# aptitude -t lenny-backports install winbind | # aptitude -t lenny-backports install winbind | ||
+ | |||
+ | Domaine: (on s'en fout) | ||
+ | THIERRY-JAOUEN | ||
+ | Wins DHCP: | ||
+ | NON | ||
+ | |||
+ | Modifier **''/ | ||
+ | [global] | ||
+ | workgroup = THIERRY-JAOUEN | ||
+ | realm = THIERRY-JAOUEN.FR | ||
+ | server string = %h server | ||
+ | interfaces = 192.168.6.43, | ||
+ | bind interfaces only = Yes | ||
+ | security = ADS | ||
+ | password server = 192.168.6.44 | ||
+ | log file = / | ||
+ | max log size = 50 | ||
+ | load printers = No | ||
+ | printcap name = /dev/null | ||
+ | local master = No | ||
+ | domain master = No | ||
+ | dns proxy = No | ||
+ | # TJ ----------- | ||
+ | # 2010/11/10 | ||
+ | wins support = no | ||
+ | #wins server = 192.168.6.44 | ||
+ | # -------------- | ||
+ | panic action = / | ||
+ | idmap uid = 30000-40000 | ||
+ | idmap gid = 30000-40000 | ||
+ | template shell = /bin/bash | ||
+ | winbind separator = + | ||
+ | winbind enum users = Yes | ||
+ | winbind enum groups = Yes | ||
+ | printing = bsd | ||
+ | print command = lpr -r -P' | ||
+ | lpq command = lpq -P' | ||
+ | lprm command = lprm -P' | ||
+ | [homes] | ||
+ | comment = Home Directories | ||
+ | valid users = %S | ||
+ | create mask = 0700 | ||
+ | directory mask = 0700 | ||
+ | browseable = No | ||
+ | [printers] | ||
+ | comment = All Printers | ||
+ | path = / | ||
+ | create mask = 0700 | ||
+ | printable = Yes | ||
+ | browseable = No | ||
+ | [print$] | ||
+ | comment = Printer Drivers | ||
+ | path = / | ||
+ | |||
+ | Je crois qu'en dehors de la section " | ||
+ | |||
+ | # net rpc join -S pdc1.thierry-jaouen.fr -U administrateur | ||
+ | Enter administrateur' | ||
+ | Joined domain THIERRY-JAOUEN. | ||
+ | |||
+ | # / | ||
+ | |||
+ | # wbinfo -t | ||
+ | checking the trust secret for domain THIERRY-JAOUEN via RPC calls succeeded | ||
+ | Ok. | ||
+ | |||
+ | Ainsi que: | ||
+ | # wbinfo -u | ||
+ | ... retourne la liste des comptes presents. | ||
+ | # wbinfo -g | ||
+ | ... retourne la liste des groupes... | ||
+ | |||
+ | Nous voila pret a associer le serveur " | ||
+ | |||
+ | ==== pptpd et Active Directory ==== | ||
+ | |||
+ | Il suffit d' | ||
+ | plugin winbind.so | ||
+ | ntlm_auth-helper "/ | ||
+ | |||
+ | Pour autoriser que des utilisateurs appartenant au groupe " | ||
+ | ntlm_auth-helper "/ | ||
+ | |||
+ | ... et puis: | ||
+ | # / | ||
====== ItsHidden ====== | ====== ItsHidden ====== |
brouillon_pptp.txt · Dernière modification : 2010/12/17 19:43 de thierry