Corporate VPN service with separate nets for different users/groups
Hi
We are going to host some services for customers with separate private networks for each customer. Each customer will need one or more users.
I have to put up a VPN solution, and I would like to use something that will work on "any" platform, easily, without too much installation/configuration. I feel PPTP is a good option since the "agent" is included on most platforms. We have a firewall/router on a Debian Linux server, and I'd like to extend it's services to include the VPN service. It has access to all nets, so it should be easier to get that to work.
My firewall/router has four interfaces, but only three of concern. eth0 is the outside, eth1 is the inside and eth2 is DMZ. I use proxyarp to get traffic from eth0 to eth2, with iptables filtering. eth1 has three internal nets in the 192.168.* series. The new nets I want to use for customers will be separate VLAN's on that interface with 10.20.x.* addresses. The firewall/router will of course have an IP in each of these (typically .1).
The big question is how to set this up? Can pptpd be used? Should this be done on a separate server?
Hello everybody,
I used to log in to my office via PPTP VPN, but on last October 5th I updated my installed Debian Squeeze and it caused my VPN service (client-side) to fail. After this upgrade I'm unable to log in to the VPN server. Here follows the log:
#tail -f /var/log/messages
Plugin... (0 Replies)
Hi
Could anyone please suggest how we can check in Linux if a user or a group name is already existing? In case of a user the command should also be able to specify the user with a given directory and shell. We can of course check this using a grep command but since that is just a pattern match,... (12 Replies)
Happy Thanksgiving Everyone!! I have a question about adding users to multiple groups. Thanks in advance
Using Red Hat and here are the issues:
Example:
Users:
Bob
Mark
Groups:
SystemsAnalysts
BusinessAnalysts
If I am adding a user Bob to both groups (SystemsAnalysts and... (2 Replies)
Hi
I am new to unix so hopefully someone can help. I need to list all the users I have in my unix enviroment (AIX) and the groups (primary and secondary) they belong to.
Can anyone help?
Many thanks in advance (2 Replies)
How do I remove a user from a group? I'm using the usermod command but its not working.
I have a user "abc" who is a member of the groups root and other. I'm trying to remove him from the group "other" (using CLI) which is his secondary group but it's not working.
How do I do this? Is there any... (11 Replies)
hi eveyone i've recently requested my unix admin to create a userid for 2 groups. He created the id and i can see it by grep "id" /etc/group.
But when i login with that id into unix and try to cd that group it says permission denied. something like cd /groupname -- permission denied
Can my admin... (1 Reply)
RH 7.2
I'm trying to list the users & groups on my machine. I found the lsuser & lsgroup commands but no associated man pages.
I typed: lsuser
I get --> Valid options are: -a
So I typed: lsuser -a
I get --> Valid options are: groups, home
So I typed: lsuser -a groups
I get -->... (2 Replies)
fruadm(1M) System Administration Commands fruadm(1M)NAME
fruadm - prints and updates customer data associated with FRUs
SYNOPSIS
/usr/platform/sun4u/sbin/fruadm
/usr/platform/sun4u/sbin/fruadm -l
/usr/platform/sun4u/sbin/fruadm [-r] path [text]
DESCRIPTION
fruadm prints or sets the customer data for Field-Replaceable Units (FRUs).
Without arguments, fruadm prints the paths of all FRU ID-capable FRUs (containers) in the system, along with the contents of the customer
data record, if present, for each such FRU; for FRUs without customer data, fruadm prints only the container's path.
Only a privileged user can create or update data in containers. The privileges required to perform these write operations are hardware
dependent. Typically, a default system configuration restricts write operations to the superuser or to the platform-administrator user.
OPTIONS
The following options are supported:
-l List the system's frutree paths.
-r Recursively display or update the data for all containers rooted at the argument path.
OPERANDS
The following operands are supported:
path A full or partial system frutree path for or under which to print or set the customer data. The first field of each line of output
of fruadm -l gives the valid full frutree paths for the system.
Paths can include shell meta-characters; such paths should be quoted appropriately for the user's shell. For partial paths, the
first matching full path is selected for display or update. Without the -r option, the path must be that of a container; with the
-r option, all containers (if any) under path will be selected.
text Up to 80 characters of text set as the customer data. If the text contains white space or shell metacharacters, it should be quoted
appropriately for the user's shell.
EXAMPLES
Example 1 Displaying All Customer Data
The following example prints all customer data available from FRUs on the system. For containers with no customer data, only the contain-
ers' paths will be listed.
example% fruadm
Example 2 Displaying Customer Data For a Single FRU
The following command prints the customer data, if present, for the specified FRU:
example% fruadm /frutree/chassis/system-board
Example 3 Displaying Customer Data For a Single FRU
The following command prints the customer data, if present, for the first mem-module found:
example% fruadm mem-module
Example 4 Setting Customer Data
The following example sets the customer data for a FRU:
example# fruadm system-board 'Asset Tag 123456'
Example 5 Setting Customer Data
The following command sets the customer data for all FRUs under chassis:
example# fruadm -r /frutree/chassis "Property of XYZ, Inc."
EXIT STATUS
The following exit values are returned:
0 Successful completion.
>0 An error occurred.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWfruip.u |
+-----------------------------+-----------------------------+
|Interface Stability |Unstable |
+-----------------------------+-----------------------------+
SEE ALSO prtfru(1M), attributes(5)SunOS 5.11 22 Feb 2002 fruadm(1M)