Page 1 of 2 12 LastLast
Results 1 to 25 of 30
  1. #1

    VPN Server on CPanel/WHM VPS

    Hi

    I want to setup a VPN SERVER with an accounting system
    on my VPS that users connect via Windows (PPPTP or L2TP).

    my VPS config:

    - CentOS 5
    - cPanel/WHM 11
    - Parallels Power Panel
    - 2 free dedicated IPs

    How can i do this?

  2. #2
    To make it short, you cant! With Virtuozzo / OpenVZ you cant use PPPTP or L2TP. You would need to get an XEN / VmWare VPS in order to use PPPTP or L2TP.
    Host Mist - Helping People Say Hello World
    Shared | VPS | Dedicated

  3. #3
    Join Date
    Oct 2010
    Posts
    60
    Nope, incorrect. PPTP can be enabled on OpenVZ servers. Yes I've tried on BuyVM's VPS.

  4. #4
    Quote Originally Posted by BurstVPN View Post
    Nope, incorrect. PPTP can be enabled on OpenVZ servers. Yes I've tried on BuyVM's VPS.
    You can get it working with a lot of tweaking on the Hostnode, but I personally wouldn't enable it for customers as those changes need to be removed again when the customer leaves as well and instead of having the hassle to get it to work in the first place, I would rather go with Xen.
    Host Mist - Helping People Say Hello World
    Shared | VPS | Dedicated

  5. #5
    Join Date
    Jun 2010
    Location
    Indonesia
    Posts
    473
    I've tried to install the OpenVPN under QuickWeb Supa VZ2 OpenVZ, with Tun/Tap enabled, and it works.

    My VPN can also be used for browsing the internet using the server ip.
    And also can make connections between users connected to the VPN via internet. - Works on QuickWeb Supa VZ2

    For XEN, it just as simple as running the vpsnoc openvpn installation script, and then we can start connecting to the internet trough our VPS.

    As for the 123Systems OpenVZ, I can only connect each users to the VPS, but can not connect to the internet altough it's Tun/Tap enabled. And the problem is with the iptables modules. Nat is not supported.

  6. #6
    Join Date
    Oct 2010
    Posts
    60
    You use SNAT rule in that case.

  7. #7
    Join Date
    Aug 2009
    Location
    Los Angeles
    Posts
    3,338
    Quote Originally Posted by Erawan Arif Nugroho View Post
    As for the 123/Systems OpenVZ, I can only connect each users to the VPS, but can not connect to the internet altough it's Tun/Tap enabled. And the problem is with the iptables modules. Nat is not supported.
    You can open a ticket with the support department and they can help you with that.
    QuadraNet Enterprises | Providing Secure Infrastructure Solutions to modern businesses since 2001.
    QuadraNet is a globally recognized cloud solution provider ​with the Best-in-class responsive 24x7 customer support.​
    Locations: Los Angeles, Miami, Dallas, New Jersey, Chicago, Atlanta, Seattle & Amsterdam.
    Andrew Moore andrew.moore@quadranet.com Visit https://www.QuadraNet.com

  8. #8
    Join Date
    Jun 2010
    Location
    Indonesia
    Posts
    473
    Quote Originally Posted by 123Systems-Andrew View Post
    You can open a ticket with the support department and they can help you with that.
    Thank you. I will try to send a ticket for that

  9. #9
    thanks for your replies...

    at first, I want my vps provider to enable TUN/TAP,
    and they enable it for me.

    I want this VPN Server for about 100 users that want surfing internet with server ip, they are also on Windows OS.
    although i have hosted about 10 websites on this vps under CPanel/WHM.

    i want to start installing OpenVPN with this instructions: http://yumax1012.blogspot.com/2007/0...centos-44.html
    on my vps.

    is these instructions useful for me?

  10. #10
    Join Date
    Jun 2010
    Location
    Indonesia
    Posts
    473
    That is a good tutorials for windows user. Maybe you can try to compare it with the tutorial from 123System Knowledgebase:
    https://www.123systems.net/billing/k...or-CentOS.html

    You can try to use the script, it is simple, just download the script, run it, copy the keys from /root to the windows openvpn installation directory, and run the openvpn gui.

    For creating another keys for another user, you can use the instruction at the blog you've mentioned

  11. #11
    Thanks Erawan, It's useful.

    Sorry, i'm newbie, i have a question

    I want that my clients JUST connect via my vpn server to surf the internet, by creating a VPN connection in network connections, instead using "OpenVPN Windows GUI Client",
    so i must create Key for these users?

  12. #12
    Join Date
    Jun 2010
    Location
    Indonesia
    Posts
    473
    I got some example from Indonesian based VPS provider (webcipta.net), for the configuration of VPN users. If we don't want to create each keys for each users, maybe we just can create the users instead.

    In the VPS :
    Adding the user
    # adduser pengguna -m -s /bin/false
    Changing the user password
    # passwd "username"

    And for the VPN COnfiguation in the user side, maybe like this :

    client
    dev tun
    proto udp
    remote server.ip.address
    resolv-retry infinite
    route-method exe
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    ca ca.crt
    auth-user-pass
    comp-lzo
    verb 3


    Take a notice at the line "auth-user-pass".All user who want to connect to the VPS must login using their username and password. But please set the user rights to limited, only for VPN usage. <-- this is the weakness, someone can try to put some shell script and hack your server.

    Secure way, is creating each keys for each clients.

  13. #13
    OK, i think it's not suitable for my case
    I must use another VPN service for VPN
    what do you prefer for my case?

  14. #14
    Join Date
    Jun 2010
    Location
    Indonesia
    Posts
    473
    Hm... I never go with specific VPN provider, I just go with a VPS provider. For my current VPS for VPN, I am using QuickWeb Micro (XEN), and 123System (OpenVZ)

    Maybe you can try to contact both of them

  15. #15
    ...Ok,
    Finally i have installed poptop with this tutourial:
    http://blog.doylenet.net/?p=17

    and made these change in CSF Firewall:
    Code:
    Step 1 
    Create File 
    vi /etc/csf/csfpre.sh 
    Input Text down 
    
    iptables -A INPUT -i eth0 -p tcp --dport 1723 -j ACCEPT 
    iptables -A INPUT -i eth0 -p gre -j ACCEPT 
    iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 
    iptables -A FORWARD -i ppp+ -o eth0 -j ACCEPT 
    iptables -A FORWARD -i eth0 -o ppp+ -j ACCEPT 
    
    Save File 
    chmod 777 /etc/csf/csfpre.sh 
    
    Step 2 
    Create File 
    vi /etc/csf/csfpost.sh 
    Input Text down 
    
    service pptpd stop 
    service pptpd start 
    
    Save File 
    chmod 777 /etc/csf/csfpost.sh
    every things looks ok but when i connect to vpn via windows
    i got Error 619
    log messages are:
    HTML Code:
    Oct 29 10:52:25 c156 pptpd[28131]: CTRL: Client xxx.xxx.xxx.xxx control connection started
    Oct 29 10:52:25 c156 pptpd[28131]: CTRL: Starting call (launching pppd, opening GRE)
    Oct 29 10:52:25 c156 pppd[28140]: This system lacks kernel support for PPP.  This could be because the PPP kernel module could not be loaded, or because PPP was not included in the kernel configuration.  If PPP was included as a module, try `/sbin/modprobe -v ppp'.  If that fails, check that ppp.o exists in /lib/modules/`uname -r`/net. See README.linux file in the ppp distribution for more details.
    Oct 29 10:52:25 c156 pptpd[28131]: GRE: read(fd=6,buffer=8059680,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
    Oct 29 10:52:25 c156 pptpd[28131]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
    Oct 29 10:52:25 c156 pptpd[28131]: CTRL: Client xxx.xxx.xxx.xxx control connection finished
    whats wrong?

  16. #16
    Join Date
    Feb 2010
    Posts
    260
    Hi,

    1) If this is on a Virtuozzo/OpenVz VPS, your host must update it to latest version (the HOST NODE), so you can use required modules.

    2) those iptables rules are for dedicated servers or XEN VPS servers,in Virtuozzo/OpenVz VPS ,you should replace eth0 with venet0 (if i remember correctly) and also the MASQUERADE rule won't work and you should replace it with a SNAT Rule.

  17. #17
    Hi,

    1) Yes, my vps is on Virtuozzo/OpenVz
    2) I have made these changes before, but this problem exist!

    Any other idea?

    Thanks

  18. #18
    Join Date
    Feb 2010
    Posts
    260
    Quote Originally Posted by saeidcdc View Post
    Hi,

    1) Yes, my vps is on Virtuozzo/OpenVz
    2) I have made these changes before, but this problem exist!

    Any other idea?

    Thanks
    Hi,

    if your host don't update their software to latest version and enable required modules,you have no chance to run PPTP VPN. you only can use OpenVPN.

  19. #19
    Hi,

    what are the required modules?

    thanks

  20. #20
    Join Date
    Feb 2010
    Posts
    260
    Quote Originally Posted by saeidcdc View Post
    Hi,

    what are the required modules?

    thanks
    Hi,

    most important module is ppp and you need GRE protocol Support.

  21. #21
    Quote Originally Posted by mrm2005 View Post
    Hi,

    most important module is ppp and you need GRE protocol Support.
    I followed instructions in this tutorial: http://blog.doylenet.net/?p=17
    So I have passed all steps,
    I think "ERROR 619" in my clients is for miss configuration in GRE tunneling or iptables config,
    but i don't know how to solve this problem!

  22. #22
    Join Date
    Feb 2010
    Posts
    260
    Quote Originally Posted by saeidcdc View Post
    I followed instructions in this tutorial: http://blog.doylenet.net/?p=17
    So I have passed all steps,
    I think "ERROR 619" in my clients is for miss configuration in GRE tunneling or iptables config,
    but i don't know how to solve this problem!
    Hi,

    Check you logs again, do you still have an Error message like this :
    PHP Code:
    Oct 29 10:52:25 c156 pppd[28140]: This system lacks kernel support for PPP.  This could be because the PPP kernel module could not be loaded, or because PPP was not included in the kernel configuration.  If PPP was included as a module, try `/sbin/modprobe -v ppp'.  If that fails, check that ppp.o exists in /lib/modules/`uname -r`/net. See README.linux file in the ppp distribution for more details. 
    if you do , you need to ask the host to update their node software.if you don't please post your log (error Messages).

  23. #23
    thanks dude

    I ask my provider to solve this problem now.

    I have a question...
    For solving this problem, my host provider must upgrade their VIRTUOZZO Panel or Change it to XEN ?

    Thanks

  24. #24
    Join Date
    Feb 2010
    Posts
    260
    Quote Originally Posted by saeidcdc View Post
    thanks dude

    I ask my provider to solve this problem now.

    I have a question...
    For solving this problem, my host provider must upgrade their VIRTUOZZO Panel or Change it to XEN ?

    Thanks
    Hi,

    I have little information about VIRTUOZZO/OPENVZ, but i think there is nothing to do with VIRTUOZZO Power PANEL,they should upgrade their VIRTUOZZO/OPENVZ KERNEL to latest version and compile it with PPP and GRE Support.

  25. #25
    Quote Originally Posted by mrm2005 View Post
    Hi,

    I have little information about VIRTUOZZO/OPENVZ, but i think there is nothing to do with VIRTUOZZO Power PANEL,they should upgrade their VIRTUOZZO/OPENVZ KERNEL to latest version and compile it with PPP and GRE Support.
    Ok.
    When i use "lsmod" command, modules table is empty.
    I thinks VZ is an updated version, so i decide to update kernel myself.
    I dont know it's possible or not! but i want to try this...
    with this command:
    [root@host]# yum install kernel-devel
    what do u think ?

Page 1 of 2 12 LastLast

Similar Threads

  1. cPanel/WHM VPS optimized on Dedicated Server
    By troboy in forum Hosting Software and Control Panels
    Replies: 6
    Last Post: 08-13-2010, 07:59 AM
  2. Server hardening for CentOS cPanel WHM VPS
    By bubba1356 in forum Systems Management Requests
    Replies: 14
    Last Post: 07-12-2010, 12:55 PM
  3. Replies: 18
    Last Post: 04-28-2006, 06:10 PM
  4. Replies: 3
    Last Post: 01-25-2006, 11:14 AM
  5. VPS in WHM/CPanel server
    By Aussie Bob in forum Hosting Security and Technology
    Replies: 4
    Last Post: 07-31-2002, 11:35 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •