ppp secret add

good day
Is it possible to create a secret with the function of local-ddress from a 24 subnet that is not yet occupied?
ppp secret add name=test password=test local-address = FREE-IP

I do not want to do this unfortunately over the Profiel and a pool since the IP after a restart etc always the same must remain.

Thank you for your help

Wenger Markus

Hello,

Short answer:

No. It has to be an address.

Long answer:

Why???
A secret is used for :

• a point-to-point link, in which case you’ll use static addresses that’ll never change
• VPN connections from people on the road. In that case, you’ll want to use a “profile”. The local-address will always be (should always be) the first address, and the rest from a pool. Since you can’t use pools in secrets, that means that you can’t share a UID-PWD between many people which would be BAD from a security point of view. Not to mention that all VPN clients would have the same IP address (as defined in the secret)??? Ouch total SNAFU!!

If you MUST keep the same IP address every time, take your /24 and take two addresses for every secret you create.
EX.
Local address - Remote address: Name of Client
192.168.0.1 - 192.168.0.2: Client A
192.168.0.3 - 192.168.0.4: Client B
192.168.0.5 - 192.168.0.6: Client C

It’s a bit more work, but you’ll keep the same addresses every time the VPN clients connect, no surprises!

Regards,