Sophie

Sophie

distrib > Mandriva > 8.2 > i586 > media > contrib > by-pkgid > b925ecbdbd8b3c79875000359b742194 > files > 33

vpnd-1.1.0-2mdk.i586.rpm

These initscripts are provided for informational purposes only.

initscript_dirbased is designed around a directory (/etc/vpnd) which is
expected to be securely propagated to each host in the VPN. This script is
designed for use with a Redhat 6.0 based machine.

Using this directory based approach the VPN can then be controlled from a
central host. The administrator updates the configuration files and
propagates them to each host. Vpnd is then restarted on each host and the
VPN is up and running.

Please note that you should only propagate the entire directory if you
actually trust everyone in the VPN. If you don't trust them, write a 
script to only propagate to a given host the files it needs to operate.

SSH works well for propagation. Never send your keys unencrypted.

Here is what the scripts expect in /etc/vpnd:

ls /etc/vpnd/

KEEP_HOST1_CURRENT <- A 0 file indicating which host is the config master
host1_30001.conf <- hostname_VPNport.conf
host1_30002.conf    These files indicates host1 has three PtoP connections
host1_30007.conf
host2_30001.conf
host2_30003.conf
host2_30004.conf
host2_30006.conf
host3_30002.conf
host3_30003.conf
host3_30005.conf
host4_30004.conf
host4_30005.conf
host5_30006.conf
host5_30007.conf
networklayoutpolicy.txt <- This doc could contain your network layout.
vpnd_30001.key <- These are the keys used by the various PtoP connections
vpnd_30002.key
vpnd_30003.key
vpnd_30004.key
vpnd_30005.key
vpnd_30006.key
vpnd_30007.key

N.B. networklayoutpolicy.txt & config master pointer are not required but
    they can reduce confusion.

Installation instructions (for Redhat 6.0):
1. Login as root ; Compile & install VPND.
2. Create a /etc/vpnd and fill it with necessary .conf & .key files
3. cp initscript_multi to /etc/rc.d/init.d/vpnd
4. Change the permissions and owner ship of the file to it is:
   -rwxr-xr-x   1 root root /etc/rc.d/init.d/vpnd
5. If necessary correct the path to the vpnd binary in the init script 
   The script expects the binary to be here: /usr/local/sbin/vpnd
6. Add vpnd to your run levels with: 
   chkconfig --add vpnd     
   (Type chkconfig without args for help)
7. Repeat 1-6 on each host in the VPN.
8. Start vpnd on each host in the VPN with /etc/rc.d/init.d/vpnd start

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional