ppp.8 (43364) | ppp.8 (43888) |
---|---|
1.\" $Id: ppp.8,v 1.143 1999/01/28 01:56:33 brian Exp $ | 1.\" $Id: ppp.8,v 1.144 1999/01/28 22:55:08 billf Exp $ |
2.Dd 20 September 1995 3.nr XX \w'\fC00' 4.Os FreeBSD 5.Dt PPP 8 6.Sh NAME 7.Nm ppp 8.Nd Point to Point Protocol (a.k.a. user-ppp) 9.Sh SYNOPSIS --- 2839 unchanged lines hidden (view full) --- 2849negotiated with the peer, and defaults to a value of 00000000 in hex. 2850This protocol is required to defeat hardware that depends on passing 2851certain characters from end to end (such as XON/XOFF etc). 2852.Pp 2853For the XON/XOFF scenario, use 2854.Dq set accmap 000a0000 . 2855.It set authkey|key Ar value 2856This sets the authentication key (or password) used in client mode | 2.Dd 20 September 1995 3.nr XX \w'\fC00' 4.Os FreeBSD 5.Dt PPP 8 6.Sh NAME 7.Nm ppp 8.Nd Point to Point Protocol (a.k.a. user-ppp) 9.Sh SYNOPSIS --- 2839 unchanged lines hidden (view full) --- 2849negotiated with the peer, and defaults to a value of 00000000 in hex. 2850This protocol is required to defeat hardware that depends on passing 2851certain characters from end to end (such as XON/XOFF etc). 2852.Pp 2853For the XON/XOFF scenario, use 2854.Dq set accmap 000a0000 . 2855.It set authkey|key Ar value 2856This sets the authentication key (or password) used in client mode |
2857PAP or CHAP negotiation to the given value. It can also be used to 2858specify the password to be used in the dial or login scripts in place 2859of the '\\P' sequence, preventing the actual password from being logged. If | 2857PAP or CHAP negotiation to the given value. It also specifies the 2858password to be used in the dial or login scripts in place of the 2859'\\P' sequence, preventing the actual password from being logged. If |
2860.Ar command 2861logging is in effect, 2862.Ar value 2863is logged as 2864.Sq ******** 2865for security reasons. | 2860.Ar command 2861logging is in effect, 2862.Ar value 2863is logged as 2864.Sq ******** 2865for security reasons. |
2866.Pp 2867If the first character of 2868.Ar value 2869is an exclaimation mark 2870.Pq Dq \&! , 2871.Nm 2872treats the remainder of the string as a program that must be executed 2873to determine the 2874.Dq authname 2875and 2876.Dq authkey 2877values. 2878.Pp 2879Ignoring the 2880.Dq \&! , 2881.Ar value 2882is parsed as a program to execute in the same was as the 2883.Dq !bg 2884command above, substituting special names in the same manner. Once executed, 2885.Nm 2886will feed the program three lines of input, each terminated by a newline 2887character: 2888.Bl -bullet 2889.It 2890The host name as sent in the CHAP challenge. 2891.It 2892The challenge string as sent in the CHAP challenge. 2893.It 2894The locally defined 2895.Dq authname . 2896.El 2897.Pp 2898Two lines of output are expected: 2899.Bl -bullet 2900.It 2901The 2902.Dq authname 2903to be sent with the CHAP response. 2904.It 2905The 2906.Dq authkey , 2907which is encrypted with the challenge and request id, the answer being sent 2908in the CHAP response packet. 2909.El 2910.Pp 2911When configuring 2912.Nm 2913in this manner, it's expected that the host challenge is a series of ascii 2914digits or characters. An encryption device or Secure ID card is usually 2915required to calculate the secret appropriate for the given challenge. |
|
2866.It set authname Ar id 2867This sets the authentication id used in client mode PAP or CHAP negotiation. 2868.Pp 2869If used in 2870.Fl direct | 2916.It set authname Ar id 2917This sets the authentication id used in client mode PAP or CHAP negotiation. 2918.Pp 2919If used in 2920.Fl direct |
2871mode with PAP or CHAP enabled, | 2921mode with CHAP enabled, |
2872.Ar id | 2922.Ar id |
2873is used in the initial authentication request and is normally set to | 2923is used in the initial authentication challenge and should normally be set to |
2874the local machine name. 2875.It set autoload Ar max-duration max-load [min-duration min-load] 2876These settings apply only in multi-link mode and all default to zero. 2877When more than one 2878.Ar demand-dial 2879.Pq also known as Fl auto 2880mode link is available, only the first link is made active when 2881.Nm --- 1080 unchanged lines hidden --- | 2924the local machine name. 2925.It set autoload Ar max-duration max-load [min-duration min-load] 2926These settings apply only in multi-link mode and all default to zero. 2927When more than one 2928.Ar demand-dial 2929.Pq also known as Fl auto 2930mode link is available, only the first link is made active when 2931.Nm --- 1080 unchanged lines hidden --- |