Dialin on Fedora Core 4?

I'm trying to get FC4 dial in working. It uses mgetty+sendfax and pppd.
The first problem I have is with authentication. I'd LIKE it to allow
any user that has shell access to be able to dial in. Various tutorials
tell how this can be done, but I have not gotten any to work. In each
case, I get user not in pap-secrets. I suspect I need a specified
command line for where mgetty calls pppd and probably something for the
pppd.config. Can anyone suggest configurations that work?

Second, is there a way to have pppd go out to my DHCP server and send
the assigned IP, DNS info, etc. to the dial in client? So far I've only
seen how pppd can assign a static address. I'd like dialin clients to
be able to get out to the internet. Do I need to set up IP Forwarding
for that, or is there something I can do in the pppd configuration that
just makes the dialin user look like another DHCP assigned computer on
the LAN?

THANKS!!!

Harold

> I can do in the pppd configuration that
> just makes the dialin user look like another DHCP > > assigned computer on the LAN?

<snip>

Well, everything can be done but let me understand you what you wished
for in this happy holidays ;)

You want all your users to connect to Internet thru your linux box. I
assume you have two modems for two dial-ins simulteniously. First, you
don't need dhcpd for assigning ips and DNS for your dial-in user. That
will be handled by /etc/ppp/options.server file. All you have to setup
IP Forwarding for the user to be able to use Internet.

Lets start! I assume that security is not a major issue here. This will
give you certain guidelines.

# cat /etc/ppp/options
debug
asyncmap 0
modem
crtscts
lock
require-pap
refuse-chap
login
netmask 255.255.255.0
ms-dns 192.168.0.1 < -- ISP's dns entry here, mine's local
proxyarp

# cat /etc/ppp/options.ttyS0 <--- client 1
#server:client
192.168.0.1:192.168.0.250

# cat /etc/ppp/options.ttyS1 <--- client 2
192.168.0.1:192.168.0.251


#cat /etc/ppp/pap-secrets
* * "" *

# cat /etc/mgetty+sendfax/login.config
/AutoPPP/ - a_ppp /usr/sbin/pppd -chap +pap login noauth

or

/AutoPPP/ - - /usr/sbin/pppd file /etc/ppp/options.server


# cat /etc/inittab
S0:2345:respawn:/sbin/mgetty -s 115200 -D /dev/ttyS0
S1:2345:respawn:/sbin/mgetty -s 115200 -D /dev/ttyS1

Append these two lines to your /etc/rc.local file ... for ip masq!
# assuming you have a broadband connection over eth0
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

What else?


--
Raqueeb Hassan
Bangladesh

Thanks for the responses! I never could get the pap-secretes with
"accept everything" and use of the normal linux login for authorization
working. Since I'm the only one dialing in to the system, I finally
took out the login option and put a not-too-secret password along with
my username in pap-secrets. Works great!

Again, THANKS for the help!

Harold