Date: Fri, 24 May 2002 23:38:01 +0200 (CEST) From: =?iso-8859-1?q?GM=20GG?= <gimbolino@yahoo.it> To: net@freebsd.org Subject: mpd: pptp server Message-ID: <20020524213801.1982.qmail@web20701.mail.yahoo.com>
next in thread | raw e-mail | index | archive | help
Hi,
I am trying to implement a small vpn solutions with
mpd as pptp server and pptpclient from home to office.
I have setup also in other implementations and it
works fine, but I need for this situations pptp
server...
The office is connected directly to the net, while at
home I am using user ppp and a PPPoE connection.
The situations is this one:
Home : 10.254.254.1/24 pptpclient from the ports.
Office: 192.168.0.1/24 , 194.243.20.91 real ip , mpd
as pptp server
This is the config for the mpd - pptp server:
--- mpd.links ---
pptp:
set link type pptp
set pptp self 194.243.20.91
set pptp enable incoming
set pptp disable originate
--- mpd.conf ---
pptp:
new -i ng0 pptp pptp
set iface disable on-demand
set iface enable proxy-arp
set iface idle 1800
set bundle disable multilink
set link yes acfcomp protocomp
set link no pap chap
set link enable chap
set link keep-alive 10 60
set ipcp yes vjcomp
set ipcp ranges 192.168.0.1/32 192.168.0.70/32
set ipcp dns 192.168.0.1
set bundle enable compression
set ccp yes mppc
set ccp no mpp-e40
set ccp yes mpp-e128
set ccp no mpp-stateless
--- mpd.secret ---
mylogin "mypwd"
For the pptpclient I have added to my ppp.conf the
following lines:
--- ppp.conf ---
vpn-pptp-cof:
set authname mylogin
set authkey mypwd
set timeout 0
set ifaddr 0 0
add 192.168.0.1/24 HISADDR
# alias enable yes
I run on the server:
mpd pptp
and on the client:
pptp 194.243.20.91 vpn-pptp-cof
where 194.243.20.91 is the real ip of the server (like
in the links section).
I think the connections is fine because...
On the CLIENT:
a new tun device (the tun0 is the user ppp with the
PPPoE on the DSL cable) is created on the client side
with the requested ip address:
tun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu
1498
inet 192.168.0.70 --> 192.168.0.1 netmask
0xffffff00
Opened by PID 2152
and the appropriate routing added:
192.168.0 192.168.0.1 UGSc 0
0 tun1
192.168.0.1 192.168.0.70 UH 1
3 tun1
On the SERVER:
ng0:
flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST>
mtu 1496
inet 192.168.0.1 --> 192.168.0.70 netmask
0xffffffff
the netstat -rn:
[...]
192.168.0.70 192.168.0.1 UH 0
3 ng0
192.168.0.70 00:10:5a:dc:21:f6 UHLS2 0
0 xl1
But when I try to use a ping I receive:
[...]
[pptp] IPCP: state change Ack-Rcvd --> Opened
[pptp] IPCP: LayerUp
192.168.0.1 -> 192.168.0.70
[pptp] IFACE: Up event
[pptp] exec: /sbin/ifconfig ng0 192.168.0.1
192.168.0.70 netmask 0xffffffff -link0
[pptp] exec: /usr/sbin/arp -s 192.168.0.70
0:10:5a:dc:21:f6 pub
[pptp] IFACE: Up event
[pptp] CCP: rec'd Configure Request #3 link 0
(Ack-Rcvd)
MPPC
0x00000040: MPPE, 128 bit
[pptp] CCP: SendConfigAck #3
MPPC
0x00000040: MPPE, 128 bit
[pptp] CCP: state change Ack-Rcvd --> Opened
[pptp] CCP: LayerUp
Compress using: MPPE, 128 bit
Decompress using: MPPE, 128 bit
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
[pptp] LCP: protocol 0x2145 was rejected
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
[pptp] LCP: protocol 0x2145 was rejected
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
[pptp] LCP: protocol 0x2145 was rejected
and on the client:
ppp[2152]: tun1: IPCP: IPADDR[6] 192.168.0.70
ppp[2152]: tun1: IPCP: COMPPROTO[6] 16 VJ slots with
slot compression
ppp[2152]: tun1: CCP: deflink: RecvConfigNak(2) state
= Ack-Sent
ppp[2152]: tun1: CCP: MPPE[6] value 0x00000040 (128
bits, stateful)
ppp[2152]: tun1: CCP: deflink: SendConfigReq(3) state
= Ack-Sent
ppp[2152]: tun1: CCP: MPPE[6] value 0x00000040 (128
bits, stateful)
ppp[2152]: tun1: IPCP: deflink: RecvConfigAck(2) state
= Ack-Sent
ppp[2152]: tun1: IPCP: deflink: State change Ack-Sent
--> Opened
ppp[2152]: tun1: IPCP: deflink: LayerUp.
ppp[2152]: tun1: IPCP: myaddr 192.168.0.70 hisaddr =
192.168.0.1
ppp[2152]: tun1: CCP: deflink: RecvConfigAck(3) state
= Ack-Sent
ppp[2152]: tun1: CCP: deflink: State change Ack-Sent
--> Opened
ppp[2152]: tun1: CCP: deflink: LayerUp.
ppp[2152]: tun1: CCP: MPPE: Input channel initiated
ppp[2152]: tun1: CCP: MPPE: Output channel initiated
ppp[2152]: tun1: CCP: deflink: Out = MPPE[18], In =
MPPE[18]
ppp[2152]: tun1: Phase: Unknown protocol 0x2145
(unrecognised protocol)
with the ssh from the client to the server I got:
ppp[2152]: tun1: Phase: Unknown protocol 0x2145
(unrecognised protocol)
last message repeated 9 times
ppp[2152]: tun1: Phase: Unknown protocol 0x2145
(unrecognised protocol)
ppp[2152]: tun1: Phase: deflink: HDLC errors -> FCS:
0, ADDR: 0, COMD: 0, PROTO: 11
and
[pptp] LCP: protocol 0x2145 was rejected
[pptp] LCP: bad length: says 0, rec'd 65
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
[pptp] LCP: protocol 0x2145 was rejected
[pptp] LCP: bad length: says 174, rec'd 65
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
[pptp] LCP: protocol 0x2145 was rejected
[pptp] LCP: rec'd Protocol Reject #2 link 0 (Opened)
and so on...
I tried to reverse the client server hosts, so mpd
behind user ppp and pptpclient alone, but I get the
same results.
I have to say I have tried only with pptpclient from
the ports not from any windows implementation...
Any idea ?
Thanks to all for attention...
P.s.
I am sorry if I have to use this account, but
hub.freebsd.org suddendly has begin to say:
May 24 23:25:36 kirk sm-mta[24214]: g4OLPOmA024212:
to=<net@freebsd.org>, ctladdr=<gmarco@gimbo.org>
(1000/20), delay=00:00:11, xdelay=00:00:11,
mailer=esmtp, pri=30322, relay=hub.freebsd.org.
[216.136.204.18], dsn=4.2.0, stat=Deferred: 450 Client
host rejected: cannot find your hostname,
[194.184.65.4]
while this ip is correctly reversed on the net ...
______________________________________________________________________
Scommetti gratis sui Mondiali!
http://it.yahoo.com/mail_it/foot/?http://ads.unibet.com/adverts/it/yahoo/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020524213801.1982.qmail>