In the following how-to I will show you how to install and configure a PPTP VPN on Debian.

Step1. Install PPTPD 

apt-get install pptpd

Step2. Configure PPTP

After installing PPTPD , open the file /etc/pptpd.conf.

nano /etc/pptpd.conf

Then go to the end of the file where you can see examples of localip and remoteip.
Below them add your own values for localip and remoteip.


Now, uncomment the ms-dns lines from /etc/ppp/pptpd-options file and change them to to the dns servers provided by your ISP. Continue Reading…

Using ssh as a socks proxy

Valic —  January 5, 2012 — Leave a comment

Ssh can support forwarding traffic & act as a SOCKS proxy.

This is fantastic for encrypted browsing over unsecured wifi connections. You can setup Firefox, YM or any other SOCKS 5 compliant program to make use of the proxy. After executing the command below ssh will be listening on localhost ( and you would then point your SOCKS compliant program to this ip and port that you specify below.

The command:

ssh -qTfnN2 -D 8080 -p 22 [email protected]


-q :- be very quite, we are acting only as a tunnel.
-T :- Do not allocate a pseudo tty, we are only acting a tunnel.
-f :- move the ssh process to background, as we don?t want to interact with this ssh session directly.
-N :- Do not execute remote command.
-p :- Port to connect to on the remote host.
-n :- redirect standard input to /dev/null.
-2 :- Forces ssh to try protocol version 2 only.
-D :- Specifies a local “dynamic” application-level port forwarding.This works
by allocating a socket to listen to port on the local side,and whenever a connection
is made to this port, the connection is forwarded over the secure channel, and the application
protocol is then used to determine where to connect to from the remote machine.
Currently the SOCKS4 and SOCKS5 protocols are supported, and ssh will act as a SOCKS server.
Only root can forward privileged ports.


For providing access via PPPoE it is required a PPPoE network access server (NAS) and a subscriber’s unit (PPPoE client).
In this guide as a PPPoE network access server it is used a freeware packet rp-pppoe.

Step1. First we need intenet access and 2 network cards (eth0 – WAN, eth1 – LAN).

vim /etc/network/interfaces

auto lo
iface lo inet loopback
iface eth0 inet static
address #Your public IP address
netmask  #Your subnet mask
gateway    #Your gateway

iface eth1 inet static

Step2. Install ppp daemon:

apt-get install ppp

Step3. Get rp-pppoe from here and install it.


Extract the archive:

Continue Reading…

inadyn is a C based client used to update DNS entries. Inadyn is an IP update client for, , etc.

Why we need this? Well you don’t really need this if you are using static IP.

But if you have dynamic IP, you must keep your IP updated with the domain you choose in or  every time you restart the router. Otherwise, the visitors can’t reach to your server.


apt-get update && apt-get install inadyn

or you can download inadyn:

cd /usr/src



cp inadyn/bin/linux/inadyn /usr/bin/inadyn

Change the file permission:

chmod 755 /usr/bin/inadyn

Configuration file for inadyn:

Continue Reading…

What is ebtables? (Ethernet bridge frame table administration)

The ebtables utility enables basic Ethernet frame filtering on a Linux bridge, logging, MAC NAT and brouting. It only provides basic IP filtering, the full-fledged IP filtering on a Linux bridge is done with iptables. The so-called bridge-nf code makes iptables see the bridged IP packets and enables transparent IP NAT. The firewalling tools iptables and ebtables can be used together and are complementary. ebtables tries to provide the bridge firewalling that iptables cannot provide, namely the filtering of non-IP traffic.

What can ebtables do?

  • Ethernet protocol filtering.
  • MAC address filtering.
  • Simple IP header filtering.
  • ARP header filtering.
  • 802.1Q VLAN filtering.
  • In/Out interface filtering (logical and physical device).
  • MAC address nat.
  • Logging.
  • Frame counters.
  • Ability to add, delete and insert rules; flush chains; zero counters.
  • Brouter facility.
  • Ability to atomically load a complete table, containing the rules you made, into the kernel. See the man page and the examples section.
  • Support for user defined chains.
  • Support for marking frames and matching marked frames.

Install ebtables:

Continue Reading…

Page 1 of 512345