硬件环境: LH3000 CPU 2*PIII1000MHZ/MEM 2*1G/2*SCSI HDD 34G(raid1)/2*Intel(R) PRO/1000
软件环境: RHEL 3
网络环境:
eth0: 192.168.1.2/255.255.255.0 gw 192.168.1.1
路由1--eth0
路由1配置 ip route 192.168.0.0 255.255.0.0 192.168.1.2 (192.168.0.0/16的网段由pppoe分配)
eth1: (用户接入口,配vlan口)
eth1---(switch1)--用户pc1
switch1定义vlan
软件环境: RHEL 3
网络环境:
eth0: 192.168.1.2/255.255.255.0 gw 192.168.1.1
路由1--eth0
路由1配置 ip route 192.168.0.0 255.255.0.0 192.168.1.2 (192.168.0.0/16的网段由pppoe分配)
eth1: (用户接入口,配vlan口)
eth1---(switch1)--用户pc1
switch1定义vlan
用到的包:
ppp-2.4.4.tar.gz 在http://ppp.samba.org/
linux-2.4.33.3.tar.bz2 在http://www.kernel.org/
ppp-2.4.3-mppe-mppc-1.1.patch.gz 和 linux-2.4.31-mppe-mppc-1.3.patch.gz 在http://mppe-mppc.alphacron.de/
(ppp-2.4.4-mppe-mppc-1.1.patch 由下文所述生成)
rp-pppoe-3.8.tar.gz 在http://www.roaringpenguin.com/penguin/open_source_rp-pppoe.php
mysql-5.0.24a.tar.gz 在http://dev.mysql.com
freeradius-1.1.3.tar.bz2 在http://www.freeradius.org
任何文档放在同一个目录下如:/root/package
ppp-2.4.4.tar.gz 在http://ppp.samba.org/
linux-2.4.33.3.tar.bz2 在http://www.kernel.org/
ppp-2.4.3-mppe-mppc-1.1.patch.gz 和 linux-2.4.31-mppe-mppc-1.3.patch.gz 在http://mppe-mppc.alphacron.de/
(ppp-2.4.4-mppe-mppc-1.1.patch 由下文所述生成)
rp-pppoe-3.8.tar.gz 在http://www.roaringpenguin.com/penguin/open_source_rp-pppoe.php
mysql-5.0.24a.tar.gz 在http://dev.mysql.com
freeradius-1.1.3.tar.bz2 在http://www.freeradius.org
任何文档放在同一个目录下如:/root/package
1、重编译内核,加入PPP和PPPOE的支持;
首先解压内核源码,
tar xjvf linux-2.4.33.3.tar.bz2 -C /usr/src
ln -s /usr/src/linux-2.4.33.3 /usr/src/linux
cd /usr/src/linux
然后把MPPC MPPE的补丁打上。
gzip -d linux-2.4.31-mppe-mppc-1.3.patch.gz
patch -p1 < linux-2.4.31-mppe-mppc-1.3.patch
之后就
cp /boot/config-2.4.21-4.ELsmp .config
make menuconfig
加入以下支持:
code maturity level options——>;
[*]prompt for development and/or incomplete code/drivers
networking options——>;
[*]packet socket
[*]packet socket:mmapped io
<M> 802.1Q VLAN Support
network device support——>;
<M> Bonding driver support (为以后着想,bonding能够增加网络带宽)
<M>;PPP (point-to-point protocol) support
[*]PPP multilink support (EXPERIMENTAL)
<M>;PPP support for async serial ports
<M>;PPP support for sync tty ports
<M>;PPP Deflate compression
<M>;PPP BSD-Compress compression
<M>;Microsoft PPP compression/encryption (MPPC/MPPE)
<M>;PPP over Ethernet (EXPERIMENTAL)
character devices——>;
[*]non-standard serial port support
[M]hdlc line discipline support
Cryptographic options--->;
[M]SHA1 digest algorithm
[M]ARC4 cipher algorithm
按照上面的配置重新编译内核,
make dep && make bzImage && make modules && make modules_install
然后安装内核,
cp arch/i386/boot/bzImage /boot/vmlinuz-2.4.33.3
cp vmlinux /boot/vmlinux-2.4.33.3
cp System.map /boot/System.map-2.4.33.3
cd /boot
rm System.map
ln -s System.map-2.4.33.3 System.map
mkinitrd initrd-2.4.33.3.img 2.4.33.3
vi grub/grub.conf
加入
title Red Hat Enterprise Linux AS (2.4.33.3)
root (hd0,0)
kernel /vmlinuz-2.4.33.3 ro root=LABEL=/
initrd /initrd-2.4.33.3.img
并用他启动完毕后,备用。
[*]prompt for development and/or incomplete code/drivers
networking options——>;
[*]packet socket
[*]packet socket:mmapped io
<M> 802.1Q VLAN Support
network device support——>;
<M> Bonding driver support (为以后着想,bonding能够增加网络带宽)
<M>;PPP (point-to-point protocol) support
[*]PPP multilink support (EXPERIMENTAL)
<M>;PPP support for async serial ports
<M>;PPP support for sync tty ports
<M>;PPP Deflate compression
<M>;PPP BSD-Compress compression
<M>;Microsoft PPP compression/encryption (MPPC/MPPE)
<M>;PPP over Ethernet (EXPERIMENTAL)
character devices——>;
[*]non-standard serial port support
[M]hdlc line discipline support
Cryptographic options--->;
[M]SHA1 digest algorithm
[M]ARC4 cipher algorithm
按照上面的配置重新编译内核,
make dep && make bzImage && make modules && make modules_install
然后安装内核,
cp arch/i386/boot/bzImage /boot/vmlinuz-2.4.33.3
cp vmlinux /boot/vmlinux-2.4.33.3
cp System.map /boot/System.map-2.4.33.3
cd /boot
rm System.map
ln -s System.map-2.4.33.3 System.map
mkinitrd initrd-2.4.33.3.img 2.4.33.3
vi grub/grub.conf
加入
title Red Hat Enterprise Linux AS (2.4.33.3)
root (hd0,0)
kernel /vmlinuz-2.4.33.3 ro root=LABEL=/
initrd /initrd-2.4.33.3.img
并用他启动完毕后,备用。
2、确信/dev/ppp设备文档存在
ls /dev/ppp
若没有创建一个/dev/ppp 设备文档,这是ppp拨号所必需的。
mknod --mode=664 /dev/ppp c 108 0
3、确保 /etc/modules.conf 里面有如下几行:
ls /dev/ppp
若没有创建一个/dev/ppp 设备文档,这是ppp拨号所必需的。
mknod --mode=664 /dev/ppp c 108 0
3、确保 /etc/modules.conf 里面有如下几行:
alias char-major-108 ppp_generic
alias tty-ldisc-3 ppp_async
alias tty-ldisc-13 n_hdlc
alias tty-ldisc-14 ppp_synctty
alias net-pf-24 pppoe
alias vlan 8021q
#alias bond0 bonding
alias tty-ldisc-3 ppp_async
alias tty-ldisc-13 n_hdlc
alias tty-ldisc-14 ppp_synctty
alias net-pf-24 pppoe
alias vlan 8021q
#alias bond0 bonding
4、安装 ppp-2.4.3.tar.gz
解压缩之后,打上ppp-2.4.3-mppe-mppc-1.1.patch.gz 补丁,然后编译安装:
tar zxvf ppp-2.4.4.tar.gz
gunzip ppp-2.4.3-mppe-mppc-1.1.patch.gz
cd ppp-2.4.4
patch -p1 < ppp-2.4.3-mppe-mppc-1.1.patch (在打补丁ccp.c时有一处错误,手动修改即可,具体位置923-1300行)
cd ..
tar zxvf ppp-2.4.4.tar.gz -C ppp-2.4.4.orig
diff -ruN ppp-2.4.4.orig ppp-2.4.4 > ppp-2.4.4-mppe-mppc-1.1.patch (以后使用)
cd ppp-2.4.4
./configure
make
make install install-etcppp
解压缩之后,打上ppp-2.4.3-mppe-mppc-1.1.patch.gz 补丁,然后编译安装:
tar zxvf ppp-2.4.4.tar.gz
gunzip ppp-2.4.3-mppe-mppc-1.1.patch.gz
cd ppp-2.4.4
patch -p1 < ppp-2.4.3-mppe-mppc-1.1.patch (在打补丁ccp.c时有一处错误,手动修改即可,具体位置923-1300行)
cd ..
tar zxvf ppp-2.4.4.tar.gz -C ppp-2.4.4.orig
diff -ruN ppp-2.4.4.orig ppp-2.4.4 > ppp-2.4.4-mppe-mppc-1.1.patch (以后使用)
cd ppp-2.4.4
./configure
make
make install install-etcppp
5、安装rp-pppoe
tar zxvf rp-pppoe-3.8.tar.gz
cd rp-pppoe-3.8/src
./configure --prefix=/usr/local --enable-plugin=../../ppp-2.4.4
make
make install
tar zxvf rp-pppoe-3.8.tar.gz
cd rp-pppoe-3.8/src
./configure --prefix=/usr/local --enable-plugin=../../ppp-2.4.4
make
make install
6、把生成的rp-pppoe.so/radius.so等模块复制到ppp的配置目录里
cp /usr/local/lib/pppd/2.4.4/* /etc/ppp/plugins
cp /usr/local/lib/pppd/2.4.4/* /etc/ppp/plugins
7、配置 /etc/ppp/options
lock
crtscts
nobsdcomp
nodeflate
nopcomp
lock
crtscts
nobsdcomp
nodeflate
nopcomp
8、配置 /etc/ppp/pppoe-server-options
auth
require-pap (由于我的用户密码在mysql中是加密的,任何只能用pap方式认证)
#require-chap (用户密码是明文的话,能够使用eap,chap等方式)
auth
require-pap (由于我的用户密码在mysql中是加密的,任何只能用pap方式认证)
#require-chap (用户密码是明文的话,能够使用eap,chap等方式)
文章整理:西部数码--专业提供域名注册、虚拟主机服务
http://www.west263.com
以上信息与文章正文是不可分割的一部分,如果您要转载本文章,请保留以上信息,谢谢!
