PPTP Debian/Ubuntu OpenVZ Setup Script

By admin | June 21, 2011 - 11:09 PM | Debian, PPTP, Setup Scripts, Ubuntu, Uncategorized, VPN, VPS

What is PPTP?

PPTP is short for Point-to-Point Tunneling Protocol, a technology for creating Virtual Private Networks (VPNs) quickly. Support is built-in to many operating systems natively, without needing an additional client, unlike OpenVPN.

What does this script do?

This script will automatically PPTP/PoPToP on your OpenVZ VPS in a few of minutes. Port forwarding, server configuration, and authentication setup is all taken care of for you.

What if I want to do it myself?

A manual installation guide is available here for those of you who want to get down and dirty: http://www.putdispenserhere.com/pptp-vpn-setup-guide-for-a-debian-openvz-vps/

How do I install it?

1. Make sure that your VPS has its PPP module working. To check, run the following command:

cat /dev/ppp

If your VPS returns this message, then your PPP module is set correctly:

cat: /dev/ppp: No such device or address

If not, then you need to enable it in SolusVM (or disable and re-enable it).

2. Copy and paste these lines into your SSH client of choice:

wget https://raw.github.com/cwaffles/ezpptp/master/ezpptp.sh
chmod +x ezpptp.sh && ./ezpptp.sh

How can I contribute?

I’ve set up a Github repository here that you can fork and submit patches back to.

Script Source:

#!/bin/bash
# Interactive PoPToP install script for an OpenVZ VPS
# Tested on Debian 5, 6, and Ubuntu 11.04
# April 2, 2013 v1.11
# Author: Commander Waffles
# http://www.putdispenserhere.com/pptp-debian-ubuntu-openvz-setup-script/

echo "######################################################"
echo "Interactive PoPToP Install Script for an OpenVZ VPS"
echo
echo "Make sure to contact your provider and have them enable"
echo "IPtables and ppp modules prior to setting up PoPToP."
echo "PPP can also be enabled from SolusVM."
echo
echo "You need to set up the server before creating more users."
echo "A separate user is required per connection or machine."
echo "######################################################"
echo
echo
echo "######################################################"
echo "Select on option:"
echo "1) Set up new PoPToP server AND create one user"
echo "2) Create additional users"
echo "######################################################"
read x
if test $x -eq 1; then
	echo "Enter username that you want to create (eg. client1 or john):"
	read u
	echo "Specify password that you want the server to use:"
	read p

# get the VPS IP
ip=`ifconfig venet0:0 | grep 'inet addr' | awk {'print $2'} | sed s/.*://`

echo
echo "######################################################"
echo "Downloading and Installing PoPToP"
echo "######################################################"
apt-get update
apt-get -y install pptpd

echo
echo "######################################################"
echo "Creating Server Config"
echo "######################################################"
cat > /etc/ppp/pptpd-options <<END
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
ms-dns 8.8.8.8
ms-dns 8.8.4.4
proxyarp
nodefaultroute
lock
nobsdcomp
END

# setting up pptpd.conf
echo "option /etc/ppp/pptpd-options" > /etc/pptpd.conf
echo "logwtmp" >> /etc/pptpd.conf
echo "localip $ip" >> /etc/pptpd.conf
echo "remoteip 10.1.0.1-100" >> /etc/pptpd.conf

# adding new user
echo "$u	*	$p	*" >> /etc/ppp/chap-secrets

echo
echo "######################################################"
echo "Forwarding IPv4 and Enabling it on boot"
echo "######################################################"
cat >> /etc/sysctl.conf <<END
net.ipv4.ip_forward=1
END
sysctl -p

echo
echo "######################################################"
echo "Updating IPtables Routing and Enabling it on boot"
echo "######################################################"
iptables -t nat -A POSTROUTING -j SNAT --to $ip
# saves iptables routing rules and enables them on-boot
iptables-save > /etc/iptables.conf

cat > /etc/network/if-pre-up.d/iptables <<END
#!/bin/sh
iptables-restore < /etc/iptables.conf
END

chmod +x /etc/network/if-pre-up.d/iptables
cat >> /etc/ppp/ip-up <<END
ifconfig ppp0 mtu 1400
END

echo
echo "######################################################"
echo "Restarting PoPToP"
echo "######################################################"
sleep 5
/etc/init.d/pptpd restart

echo
echo "######################################################"
echo "Server setup complete!"
echo "Connect to your VPS at $ip with these credentials:"
echo "Username:$u ##### Password: $p"
echo "######################################################"

# runs this if option 2 is selected
elif test $x -eq 2; then
	echo "Enter username that you want to create (eg. client1 or john):"
	read u
	echo "Specify password that you want the server to use:"
	read p

# get the VPS IP
ip=`ifconfig venet0:0 | grep 'inet addr' | awk {'print $2'} | sed s/.*://`

# adding new user
echo "$u	*	$p	*" >> /etc/ppp/chap-secrets

echo
echo "######################################################"
echo "Addtional user added!"
echo "Connect to your VPS at $ip with these credentials:"
echo "Username:$u ##### Password: $p"
echo "######################################################"

else
echo "Invalid selection, quitting."
exit
fi

This script is built on Denis’s OpenVPN script modified for Debian support and PPTP installation. Source: http://bluemodule.com/software/openvpn-install-script-for-openvz-vps/

Bookmark the permalink.

Anonymous

Hi , thank you for this script . i installed it . now when i want to connect with vpn connection i get 734 error : The PPP link Control Protocol was terminated

can you tell me what’s reason of it ? and how can i solve it ?
- Anonymous
  
  Does your provider support PPP modules? Are you using BuyVM? Is pptpd running?
  - Anonymous
    
    Hi , i have a dedicated server with openvz and i create a vps for run pptp with this script on it . i enabled ppp for this vps . i tested it with cat /dev/ppp and recieved this message :
    cat: /dev/ppp: No such device or address
    - Anonymous
      
      Did you install this patch on your server? http://www.vpser.us/2010/09/20/openvz-and-pptp-vpn.html
Stephano

This is working perfectly on my BuyVM 15$/year VPS!!! Thank you sooooo much!!!!
- Anonymous
  
  Glad it worked for you!
christian

Is it ok for XEN aswell?
- Anonymous
  
  The IP detection won’t work right, change the line that says this: ifconfig venet0:0 | grep ‘inet addr’ | awk {‘print $2′} | sed s/.*://
  
  Change to this:
  grep address /etc/network/interfaces | grep -v 127.0.0.1 | awk ‘{print $2}’
  
  I’m not sure if the ppp modules will install though. Good luck.
aquario

Hi, thanks for your script. I used it on my BuyVM machine., but when I tried to connect, the server kept reporting error 619, saying that the connection could not be established. Any idea on this?

Many thanks
- Anonymous
  
  Which OS are you using? Also is pptpd running?
Lukas

Hello there. Thanks for very nice PPTP VPN manual. I got just one question. IS it possible to monitor users traffic on VPN ? Give users quota for VPN ? Problem is on my server is users making too mutch traffic and i need to stop this. Thanks for any help. lu
- Anonymous
  
  I do not know unfortunately. Perhaps you could check the logs. This script was designed for personal use though. Sorry if I cannot help much.
Syamsul

Thank you. This works perfectly for my RAMHost OpenVZ VPS, though I did first have to install iptables.
Syamsul

How would you suggest that iptables be setup to secure the VPS such that only the SSH, OpenVPN and PPTP ports are left open? An automated script for this would also be incredibly helpful. Thank you!
- Anonymous
  
  Unfortunately I only have basic IPtables knowledge. Google and trial & error is your friend this time.
http://pulse.yahoo.com/_TVHDAO4EUE67GRLG4R7YVEAQQY Nick T

Confirmed working on BuyVM.net / Frantech.ca
Takola28

works great on vps i purchased from vpseu.com
mehran khajavi

if you have not openvz just replace venet0:0 with your interface
it works fine
Marl

very useful script! just one question (or request) though, is it possible to have the user one active login only?
- Anonymous
  
  I don’t think so. Perhaps it’s hidden in the documentation. You can also try to use iptables to limit the amount of connections to ppp device.
Nathan

Thanks so much for the script! One question; my iPhone cannot connect to my VPN that I run on my VPS. I’ve checked my logs, it says “modem hangup”. So I then moved to my modem’s config page.

http://www.dd-wrt.com/wiki/index.php/Static_PPTP_VPN_Client#Configure_PPTP_Client <== documentation on proper config
http://i43.tinypic.com/oqlu84.png <== current config

So far my router could be the problem. But I see no more modem hangup in my error logs, as I did before I configured the router.
Feb 2 05:01:54 server1 pppd[7927]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so load$Feb 2 05:01:54 server1 pppd[7927]: pppd 2.4.5 started by root, uid 0Feb 2 05:01:54 server1 pppd[7927]: Using interface ppp0Feb 2 05:01:54 server1 pppd[7927]: Connect: ppp0 /dev/pts/1Feb 2 05:01:57 server1 pppd[7927]: Connection terminated.Feb 2 05:01:57 server1 pppd[7927]: Connect time 0.1 minutes.Feb 2 05:01:57 server1 pppd[7927]: Sent 0 bytes, received 0 bytes.Feb 2 05:01:57 server1 pppd[7927]: Exit.

So what is wrong? How can I edit it to become iPhone friendly?

Thanks again,
Nathan
KD

Thanks. Finally got it working
Cofin

i got this message at all the vps i bought

WARNING: Deprecated config file /etc/modprobe.conf, all config files belong into /etc/modprobe.d/.
FATAL: Module ip_tables not found.
iptables v1.4.10: can’t initialize iptables table `nat’: Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
- CommanderWaffles
  
  Which provider are you using? You have to ask them to enable TUN/TAP.
Robiq

I was intall your script but when i try to connect from my mac or iphone i cant and i got this error:
“pppd[1434]: Couldn’t open the /dev/ppp device: No such file or directory”Can U help me with this please? I try to start VPN on VPS with ubuntu 11.04
Pingback: Linux VPS PPTP Help
Pure

thought it was very hard to setup vpn on my vps, then i used ur script, took me like 1 minute to get everything going. thank man! no errors occurred.
- Asri
  
  Oh my – Ditto to that!
  Been struggling to get VPN to work on my VPS, following the steps here works like a charm the first time in less than 5 minutes.
  
  Awesome!
vuysun

wow perfect! thanks this worked on my buyvpn
Good reader

Thank you so much! Works perfectly on micronetvps.com’s VPS’s (They have 6 locations! perfect for vpn)
http://www.midbeam.com/ Rohit Agarwal

Worked nice with buyvm 128m VPS…
Guest

What if it says “cat: /dev/ppp: No such file or directory”. ?
- CommanderWaffles
  
  That means that PPP hasn’t been enabled yet. Try finding it in the SolusVM panel.
Pingback: How to install a pptpd VPN on Linux/Debian | tiq's tech-blog
http://www.facebook.com/dodo.mafia Omer Abbas

I am unable to use VPN over mac, can you tell me settings? and what about the forwarding ips?
- CommanderWaffles
  
  What message do you get on your mac?
Nico2706

Indeed, works perfect with Buyvm !
To have an US IP, do this:
touch /root/.usvpn
iptables -L -t nat -n (view the existing rules)
iptables -F -t nat (this is a complete flush, you can just remove or reorder the rules)
ptables -t nat -A POSTROUTING -s 10.1.0.0/24 -j SNAT –to-source
iptables -L -t nat -n
Mastersey

Hi, Thanks for this script ! Anyway, i still have a 800 error message when i try to connect to the VPN
MO

I have tried several times on different vps but never get connected, how do i find out what the error is? debug?
zbenta

I tried the script and got the folloging from the daemon.log after having chmod +x the /usr/sbin/pppd file:

Client xxx.xxx.xxx.101 control connection started

CTRL: Starting call (launching pppd, opening GRE)

GRE: read(fd=6,buffer=6075a0,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs

CTRL: PTY read or GRE write failed (pty,gre)=(6,7)

CTRL: Reaping child PPP[2585]

CTRL: Client xxx.xxx.xxx.101 control connection finished

MGR: PPP binary /usr/sbin/pppd not executable
- CommanderWaffles
  
  What OS are you using to connect?
Edmund Fisher

Amazing, you rock!
- CommanderWaffles
  
  Thank you
noahgray

404, script file not found.
- CommanderWaffles
  
  I can download it just fine. What link are you using?
http://www.facebook.com/Ruben.Gonzalez.F Ruben Gonzalez Flores

May I just say that I’ve tried SO many things before, and only with this was I able to do it properly. Thanks a bunch!
Jules D

I have the 619 error :s with the script
- CommanderWaffles
  
  Can you post a full description? Or the log?
  - Matt Davis
    
    Same problems here. “Connection to the remote computer could not be established, so the port used for this connection was closed”. Occasionally I get an 809 or an 800, but the error message is the same. Exploring Windows Logs reveal alternating “Connection could not be established” and “Remote machine actively refused connection”.
Pingback: PPTP Debian/Ubuntu OpenVZ Setup Script | Tang Labs