From patrickl at cst.ca  Fri Oct  1 06:48:26 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Fri Oct  1 06:48:26 1999
Subject: [pptp-server] PopTop and NT 4.0 (sp5 128bit)
Message-ID: <37F49F7C.4C8C496A@cst.ca>

hi,


> I havent seen any posts concerning 128bit encryption and SP5, but i'm
> pretty sure that works.

yes i post an email about this problem (subject : [pptp-server]
Unsupported protocol )
never have good answer.
someone reply , he have the same problem

> just to be sure, you mean protocol 47 and not port 47 right?
>
> ipchains -A input -p 47 -d <linux box ip> -j ACCEPT 

yes

the reference of my  mail in the mailing list is :

[pptp-server] Unsupported protocol
Patrick LIN patrickl at cst.ca
Mon, 27 Sep 1999 11:07:37 +0000 


the client is a paranoid of Update :))
NT4.0
SP5 128bits

any help

regards
patrick



From patrickl at cst.ca  Fri Oct  1 06:57:08 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Fri Oct  1 06:57:08 1999
Subject: [pptp-server] RE : v1 RPMs and 2.3.10 mppe patch
Message-ID: <37F4A183.E76DE1D4@cst.ca>

hello,


> Chris Wong sent me the PoPToP v1.0.0 RPMs. Daniel Sulley also sent me a 2.3.10
> mppe PPP patch (no RC4 -- you still have to grab that somewhere else). If
> you're interested in these files:

> http://www.moretonbay.com/vpn/download_pptp.html

on this page when i try to download the 2.3.10 patch i have : 
Error 404- Page Not Found


regards
patrick



From Steve.Cowles at gte.net  Fri Oct  1 07:54:17 1999
From: Steve.Cowles at gte.net (Cowles, Steve)
Date: Fri Oct  1 07:54:17 1999
Subject: [pptp-server] Troubles with GRE masquerading
Message-ID: <004801bf0c0b$72192f90$39478ed1@dsl.gtei.net>

Anthony,

 I am also trying to get a masq linux box to pass vpn packets. I noticed
(from your post) that you patched your 2.2.12 kernel with
ip_masq_vpn-2.2.11. Where did you find this patch? I was pointed to this WEB
site http://bmrc.berkeley.edu/people/chaffee/linux_pptp.html to obtain the
vpn patch, but only found 2.2.10. I tried to apply this patch, but got many
errors on my 2.2.12 kernel source.

 Thanks
Steve Cowles





From patrickl at cst.ca  Fri Oct  1 08:07:47 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Fri Oct  1 08:07:47 1999
Subject: [pptp-server] Cannot determine ethernet address for proxy ARP
Message-ID: <37F4B21A.A47EE449@cst.ca>

On Thu, 30 Sep 1999 10:58:26 -0700 (PDT) tmk tmk at netmagic.net wrote:

> for routing to work, the computers on the protected netowrk need to have
> the linux box as a gateway

it is true but you have in fact to solution :

1 - the computers on the proted network need to have the linux box as a
gateway

or 

2 - the routeur / default gateway for the computers on the protected
netowrk need
    to know how to route this subnet
    in a cisco  just add the add the route
	the protected netowr : 192.168.1.0
	the VPN network	: 192.168.2.0
	the vpn serveur : 192.168.1.250

	ip route 192.168.2.0 255.255.255.0 192.168.1.250

regards
patrick



From walterm at Gliatech.com  Fri Oct  1 09:11:06 1999
From: walterm at Gliatech.com (Michael Walter)
Date: Fri Oct  1 09:11:06 1999
Subject: [pptp-server] Off Subject
Message-ID: <EDA23054FDC0D1119842006008CEAB4830D743@GLIATECHUSA1>

Hello All,
This has nothing to do with this group, but if you don't mind.  Can anyone
recommend a good proxy server for a 100 user production environment that
will run on redhat6.0?

Thanks,
Michael J. Walter mcse
Gliatech, Inc.
walterm at gliatech.com
mwalter at drwalter.com




From tkil at scrye.com  Fri Oct  1 17:29:32 1999
From: tkil at scrye.com (Anthony Foiani)
Date: Fri Oct  1 17:29:32 1999
Subject: [pptp-server] Re: Troubles with GRE masquerading
In-Reply-To: <14324.15915.705730.816371@slinky.scrye.com>
References: <14324.15915.705730.816371@slinky.scrye.com>
Message-ID: <14325.13759.590438.742977@jelerak.scrye.com>

Hi again.  I experimented a little more today, and I *think* i've
gotten a bit farther.  I removed the gre MASQ entries from my
"forward" ipchain, and use "ipfwd" to forward+masq the GRE traffic.  I 
invoked it on the firewall box like so:

   ipfwd --syslog --debug --masq 192.168.1.11 47 &

where 192.168.1.11 is the internal pptp server (running pptpd).  I saw 
it transfer various bits of traffic back and forth, but the pppd
process still died with the GRE or PTE error -1.

Thanks for listening,
Tony



From meyers at vautomation.com  Mon Oct  4 00:15:05 1999
From: meyers at vautomation.com (Christopher M. Meyers)
Date: Mon Oct  4 00:15:05 1999
Subject: [pptp-server] Error with select() ???
Message-ID: <000201bf0d07$ea390200$8d627dc7@meyers>

Has anybody seen the problem shown below.  The syslog
indicates an invalid result returned from select()?

Any help would be appreciated.  Thanks!

Note : Solaris OS 2.6; pppd 2.3.10.

Chris Meyers

========================================================

Oct  2 14:38:52 vauto pptpd[22526]: MGR: Manager process started
Oct  2 14:39:01 vauto pptpd[22528]: MGR: Launching /usr/local/pptp/sbin/pptpctrl
 to handle client
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: pppd speed = 115200
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Client 10.0.0.31 control connection st
arted
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Received PPTP Control Message (type: 1
)
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Made a START CTRL CONN RPLY packet
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: I wrote 156 bytes to the client.
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Sent packet to client
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Received PPTP Control Message (type: 7
)
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Set parameters to 0 maxbps, 16 window
size
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Made a OUT CALL RPLY packet
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Starting call (launching pppd, opening
 GRE)
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Allocating pty/tty pair
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Allocated pty/tty pair (/dev/ptyp0,/de
v/ttyp0)
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: pty_fd = 4
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: tty_fd = 5
Oct  2 14:39:01 vauto pptpd[22529]: CTRL (PPPD Launcher): Connection speed = 115
200
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: I wrote 32 bytes to the client.
Oct  2 14:39:01 vauto pptpd[22528]: CTRL: Sent packet to client
Oct  2 14:39:02 vauto pppd[22529]: pppd 2.3.10 started by root, uid 0
Oct  2 14:39:02 vauto pppd[22529]: Using interface ppp1
Oct  2 14:39:02 vauto pppd[22529]: Connect: ppp1 <--> /dev/ttyp0
Oct  2 14:39:02 vauto pppd[22529]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magi
c 0x9f7707a8> <pcomp> <accomp>]
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Received PPTP Control Message (type: 1
2)
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Made a CALL DISCONNECT RPLY packet
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Received CALL CLR request (closing cal
l)
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: I wrote 148 bytes to the client.
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Sent packet to client
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Error with select(), quitting
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Client 10.0.0.31 control connection fi
nished
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Exiting with active call
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Asked to free call when no call open,
not handled well
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Made a CALL DISCONNECT RPLY packet
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: I wrote 148 bytes to the client.
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Sent packet to client
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Made a STOP CTRL REQ packet
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: I wrote 16 bytes to the client.
Oct  2 14:39:02 vauto pptpd[22528]: CTRL: Sent packet to client
Oct  2 14:39:02 vauto pppd[22529]: Modem hangup
Oct  2 14:39:02 vauto pppd[22529]: Connection terminated.
Oct  2 14:39:02 vauto pppd[22529]: Exit.
Oct  2 14:39:07 vauto pptpd[22528]: CTRL: Exiting now     


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991004/614827ea/attachment.html>

From i_d_i at solo.bg  Mon Oct  4 05:40:48 1999
From: i_d_i at solo.bg (Ivan Iliev)
Date: Mon Oct  4 05:40:48 1999
Subject: [pptp-server] PopTop can't compile on Slakware4.0
Message-ID: <37F884A0.BF6CEAEC@solo.bg>

    Hi all,
I have problems witn pptp 1.0 on my Slakware 40.
I can't compile pptp1.0.Can you help me?


getopt.o(.text+0x4dc): undefined reference to `gettext'
getopt.o(.text+0x57a): undefined reference to `gettext'
getopt.o(.text+0x5b6): undefined reference to `gettext'
getopt.o(.text+0x64a): undefined reference to `gettext'
getopt.o(.text+0x73d): undefined reference to `gettext'
getopt.o(.text+0x776): more undefined references to `gettext' follow
make: *** [pptpd] Error 1





From i_d_i at solo.bg  Mon Oct  4 06:39:08 1999
From: i_d_i at solo.bg (Ivan Iliev)
Date: Mon Oct  4 06:39:08 1999
Subject: [pptp-server] PopTop can't compile on Slakware4.0
References: <37F884A0.BF6CEAEC@solo.bg>
Message-ID: <37F89231.44151DBE@solo.bg>

Hi all,
I thing  I found the problem. configure script says:

checking for gettext in -lintl... (cached) yes
./configure: XTRALIBS_MGR: command not found

I found on 2537 in configure:
XTRALIBS_MGR = "$XTRALIBS_MGR -lintl"
I thing that it should be:
XTRALIBS_MGR="$XTRALIBS_MGR -lintl"
(without spaces around =)
After correcting this mistake compilation was successful.

Please correct then problem in next versions or write if  I am wrong

Ivan Iliev wrote:

>     Hi all,
> I have problems witn pptp 1.0 on my Slakware 40.
> I can't compile pptp1.0.Can you help me?
>
> getopt.o(.text+0x4dc): undefined reference to `gettext'
> getopt.o(.text+0x57a): undefined reference to `gettext'
> getopt.o(.text+0x5b6): undefined reference to `gettext'
> getopt.o(.text+0x64a): undefined reference to `gettext'
> getopt.o(.text+0x73d): undefined reference to `gettext'
> getopt.o(.text+0x776): more undefined references to `gettext' follow
> make: *** [pptpd] Error 1
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




From ericmh at hotmail.com  Mon Oct  4 11:21:15 1999
From: ericmh at hotmail.com (Eric MH)
Date: Mon Oct  4 11:21:15 1999
Subject: [pptp-server] Problem with freebsd & pptp 1.0.0
References: <Pine.LNX.3.96.990929093223.15659C-100000@shell.netmagic.net> <37F25E5D.33B81DDF@utcorp.com>
Message-ID: <19991004162049.17295.qmail@hotmail.com>

Please remove me from this mail list.

Thank you,

Eric Hnat






----- Original Message -----
From: Kurt Seel <kseel at utcorp.com>
To: tmk <tmk at netmagic.net>
Cc: <pptp-server at lists.schulte.org>
Sent: Wednesday, September 29, 1999 2:45 PM
Subject: Re: [pptp-server] Problem with freebsd & pptp 1.0.0


> tmk wrote:
>
> > it looks like the client is trying to use an unsupported protocol (ipx
or
> > netbeui pehaps?) your ppp server is rejecting those, and it reuses
togive
> > up.
>
>  I have them all deselected, in both the vpn 'dialler' and the modem
> dialler.
>
> >
> >
> > the bad checksum from GRE thing bothers me though. Check your modem init
> > string and ppp escape character configs
>
>  On the windows side? I don't know where. I see the checksum message
> just before all the 0x7fff thingeys, could pptpd be mangling the stream
> to ppp?
>
> >
> >
> > Kevin
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
>
> --
> "Signature file failed Preliminary Design Review.
> Feasibility of a new signature is currently being evaluated."
>
>
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>



From AndrewF at artisansw.com  Tue Oct  5 06:02:44 1999
From: AndrewF at artisansw.com (Andy Frost)
Date: Tue Oct  5 06:02:44 1999
Subject: [pptp-server] Arp / Routing problems..
Message-ID: <A0F2464B7C71D2118ACD0080C8586E7E0EA7@ARTISAN_UK_MAIL>

I have a poptop setup that works ok appart from not being able to ping
from the remote machine to the Lan machine.  I have setup the following
test network as below, and the winnt box can ping the win98 machine when
connected but not vice versa.  The linux poptop box can ping all ip
address's ok.  I know this seems very much simular to the first question
in the how/to, but I've tried all the stuff associated with arp & PPP
defaultroute on the poptop that is suggested. eg arp -s 192.168.90.89
00:00:B4:59:2A:B0 on the poptop box.  I've also tried putting the VPN
and the PPP on different subnets to 192.168.90.x but still no luck.  Are
my gateways or routes setup wrong I'm not sure?   


Remote/
Internet Win98            Linux Suse6.2 Poptop                WindowsNt/

                                                              LAN
I------------I   eth   I --------------------------I  eth
I--------------I                       
I192.168.1.4*I---------I192.168.1.5*
192.168.90.5*I----------I192.168.90.89*I    
I            I         I                           I          I
I   
IVPN  90.194 I---------I 90.193 PPP0               I          I
I       
I------------I VPN/PPP I---------------------------I
I--------------I

 

    

 

/etc/pptpd.conf
speed 115200  
localip=192.168.90.193-200
remoteip=192.168.1.6


Win 98 Settings
	Eth             VPN              PPP0
IP      192.168.1.5     192.168.90.193   192.168.1.6
Mask    255.255.255.0   255.255.255.0    255.255.255.0
G/W	 -              192.168.1.5      192.168.1.5


Poptop
	eth1             eth0            PPP0 (same as above ppp0)
IP      192.168.1.5     192.168.90.5     192.168.1.6
Mask    255.255.255.0   255.255.255.0    255.255.255.0
G/W	-               -                192.168.1.5

Windows NT
	eth1            
IP      192.168.90.89    
Mask    255.255.255.0   
G/W	192.168.90.5 
MAC     00-00-B4-59-2A-B0            


Routing on linux before PPP/VPN connection
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
192.168.1.0     *               255.255.255.0   U     0      0        0
eth1
192.168.90.0    *               255.255.255.0   U     0      0        0
eth0
loopback        *               255.0.0.0       U     0      0        0
lo


Routing on linux when connected
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
192.168.1.6     *               255.255.255.255 UH    0      0        0
ppp0
192.168.1.0     *               255.255.255.0   U     0      0        0
eth1
192.168.90.0    *               255.255.255.0   U     0      0        0
eth0
loopback        *               255.0.0.0       U     0      0        0
lo
default         192.168.1.6     0.0.0.0         UG    0      0        0
ppp0

thanks in advance
Andy Frost





 

 

 

 




From JimVanEtten at ENVISIONit.ca  Tue Oct  5 11:47:46 1999
From: JimVanEtten at ENVISIONit.ca (JimVanEtten at ENVISIONit.ca)
Date: Tue Oct  5 11:47:46 1999
Subject: [pptp-server] PPTP connection from linux to linux
Message-ID: <H000006800002ea6.0939142012.om1.envisionit.ca@MHS>

I have PoPToP running on one linux box on one network. The VPN works when
I dialin to a local ISP and connect to it using Windows 98. Now what I
want to do is connect to it from another linux box on another network. I
have downloaded pptp client for linux and compiled it but am unable to
get it going. Is there a howto to get this working or someone who can
give me some pointers on how to get it working.

Bye for now
Jim



From P.J.Reid at earthling.net  Tue Oct  5 12:36:42 1999
From: P.J.Reid at earthling.net (Patrick Reid)
Date: Tue Oct  5 12:36:42 1999
Subject: [pptp-server] createHostSocket: Address already in use
Message-ID: <000301bf0f58$1ebceda0$0200a8c0@Reid>

I downloaded the RPM for 1.0.0, tried to run pptpd (it was in /usr/sbin: I
had to execute it with ./pptpd from that directory). I got the above error
message. What did I do wrong?

I am running RedHat 6.0

Patrick Reid - mailto:P.J.Reid at earthling.net




From JimVanEtten at ENVISIONit.ca  Tue Oct  5 13:24:56 1999
From: JimVanEtten at ENVISIONit.ca (JimVanEtten at ENVISIONit.ca)
Date: Tue Oct  5 13:24:56 1999
Subject: [pptp-server] PPTP from linux to linux
Message-ID: <H000006800002ef6.0939147956.om1.envisionit.ca@MHS>

When I try to logon to the PoPToP server using this command on the client
machine [replaced last 2 octets in message with *]:

'/usr/local/src/pptp-linux-1.0.2/pptp 24.108.**.**'

I get this in return at the client prompt:

# /usr/local/src/pptp-linux-1.0.2/pptp 24.108.**.**
warn[open_unixsock:pptp_callmgr.c:308]: Call manager for 24.108.**.** is
already running.
fatal[callmgr_main:pptp_callmgr.c:124]: Could not open unix socket for
24.108.**.**
fatal[launch_callmgr:pptp.c:213]: Call manager exited with error 256
[root at CS592711-A /etc/ppp]
#         

And when I look in the server log I have these entries [once more
blocking the last 2 octets just for this message]:


Oct 5 12:08:39 toybox pptpd[1641]: CTRL: Client 24.65.***.*** control
connection started 
Oct 5 12:08:39 toybox pptpd[1641]: CTRL: EOF or bad error reading ctrl
packet length. 
Oct 5 12:08:39 toybox pptpd[1641]: CTRL: couldn't read packet header
(exit) 
Oct 5 12:08:39 toybox pptpd[1641]: CTRL: CTRL read failed
Oct 5 12:08:39 toybox pptpd[1641]: CTRL: Client 24.65.***.*** control
connection finished

Can anyone help me figure out what is going on and how to fix the
problem.

Thanks 
Jim



From gstammw at gmx.net  Tue Oct  5 16:53:53 1999
From: gstammw at gmx.net (gstammw)
Date: Tue Oct  5 16:53:53 1999
Subject: [pptp-server] german mirror is up
References: <H000006800002ef6.0939147956.om1.envisionit.ca@MHS>
Message-ID: <003201bf0f7c$75856120$c800a8c0@intern.gstammw.eu.org>

Hello guys,

I've just set up a mirror-site for this great program.
The server is located in Frankfurt, Germany and is hosted by gstammw.de
(that's me !)
You can access it via: http://www.gstammw.de/mirrors/pptpd/vpn/pptp.html

Currently I'm updating this page once a month, but if there's announced a
new version of pptpd I'll update immediately.

Cu then,
Gunther Stammwitz
www.GSTAMMW.de




From AndrewF at artisansw.com  Wed Oct  6 04:08:49 1999
From: AndrewF at artisansw.com (Andy Frost)
Date: Wed Oct  6 04:08:49 1999
Subject: [pptp-server] SuSE problems..?
Message-ID: <A0F2464B7C71D2118ACD0080C8586E7E0EB3@ARTISAN_UK_MAIL>

Yeah I was going to publish the problem I had to everyone.  
I am not a linux guru but, I could not compile to get ppp_mppe.o to
compile.  I tried changing the kernel to support PPP with make
menuconfig, make dep, etc etc and also using the YaST tool but compiling
still did not work.  Basically to solve the problem I had to edit the
makefile in /usr/src/linux/drivers/net/ and add a line CONFIG_PPP := y.
I still had a few errors in compilation but there was a ppp_mppe.o file
as expected afterwards.  After that the only real problem I have is the
routing one, which still doesnt work.

Andy.
P.S. My boss wanted it about a year ago but then he shouldnt give me so
much else to do!


-----Original Message-----
From: Ilan Bloch [mailto:ilan at bloch.org.il]
Sent: Tuesday, October 05, 1999 8:46 PM
To: Andy Frost
Subject: Re: [pptp-server] Arp / Routing problems..


Hi Andy,

sorry for this slight off topic mail but I understand you run PoPToP on
a
Suse 6.2 and as I experience the utmost difficulty with my compilations,
I'm fishing for advice.

Have you recompiled ppp2.3.8 in order to add the MPPE feature, or maybe
you
run it without MPPE ?
If so, where have you downloaded the patch, mine seems to cause some
weird
errors than ruin the vpn my boss wanted quite some time ago.
SSL, all advice welcome.

TIA

ilan



From patrickl at cst.ca  Wed Oct  6 08:32:00 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Wed Oct  6 08:32:00 1999
Subject: [pptp-server] PopTop and NT 4.0 (sp5 128bit)  (AGAIN)
Message-ID: <37FA7C56.D6166F7E@cst.ca>

I am still have problem with PPTP 1.0.0 and NT4 SP5

apparently i am not alone in this case

and no answer

regards
patrick

> hi,
> 
> 
> > I havent seen any posts concerning 128bit encryption and SP5, but i'm
> > pretty sure that works.
> 
> yes i post an email about this problem (subject : [pptp-server]
> Unsupported protocol )
> never have good answer.
> someone reply , he have the same problem
> 
> > just to be sure, you mean protocol 47 and not port 47 right?
> >
> > ipchains -A input -p 47 -d <linux box ip> -j ACCEPT 
> 
> yes
> 
> the reference of my  mail in the mailing list is :
> 
> [pptp-server] Unsupported protocol
> Patrick LIN patrickl at cst.ca
> Mon, 27 Sep 1999 11:07:37 +0000 
> 
> 
> the client is a paranoid of Update :))
> NT4.0
> SP5 128bits
> 
> any help
> 
> regards
> patrick



From AndrewF at artisansw.com  Wed Oct  6 09:14:10 1999
From: AndrewF at artisansw.com (Andy Frost)
Date: Wed Oct  6 09:14:10 1999
Subject: [pptp-server] Arp/Routing/SuSE problems..?
Message-ID: <A0F2464B7C71D2118ACD0080C8586E7E0EB9@ARTISAN_UK_MAIL>

Solved the routing/arp one.  Suse 6.2, I had to alter /etc/rc.config to
enable routing as well as in the kernel.  What a "?$%^$$.  Each time I
had a problem, seems to be SuSe specific stuff. 
Just Firewalling to do and then onlineification.
Thanks for the help 
till next time.....
Andy.

-----Original Message-----
From: Andy Frost [mailto:AndrewF at artisansw.com]
Sent: Wednesday, October 06, 1999 10:11 AM
To: 'Ilan Bloch'; pptp-server at lists.schulte.org
Subject: RE: [pptp-server] SuSE problems..?


Yeah I was going to publish the problem I had to everyone.  
I am not a linux guru but, I could not compile to get ppp_mppe.o to
compile.  I tried changing the kernel to support PPP with make
menuconfig, make dep, etc etc and also using the YaST tool but compiling
still did not work.  Basically to solve the problem I had to edit the
makefile in /usr/src/linux/drivers/net/ and add a line CONFIG_PPP := y.
I still had a few errors in compilation but there was a ppp_mppe.o file
as expected afterwards.  After that the only real problem I have is the
routing one, which still doesnt work.

Andy.
P.S. My boss wanted it about a year ago but then he shouldnt give me so
much else to do!


-----Original Message-----
From: Ilan Bloch [mailto:ilan at bloch.org.il]
Sent: Tuesday, October 05, 1999 8:46 PM
To: Andy Frost
Subject: Re: [pptp-server] Arp / Routing problems..


Hi Andy,

sorry for this slight off topic mail but I understand you run PoPToP on
a
Suse 6.2 and as I experience the utmost difficulty with my compilations,
I'm fishing for advice.

Have you recompiled ppp2.3.8 in order to add the MPPE feature, or maybe
you
run it without MPPE ?
If so, where have you downloaded the patch, mine seems to cause some
weird
errors than ruin the vpn my boss wanted quite some time ago.
SSL, all advice welcome.

TIA

ilan

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!



From meyers at vautomation.com  Wed Oct  6 16:20:42 1999
From: meyers at vautomation.com (Christopher M. Meyers)
Date: Wed Oct  6 16:20:42 1999
Subject: [pptp-server] pptpd exits after disconnect
Message-ID: <37FBBCEE.BEF816B3@vautomation.com>

Hi,

  Has any one had the pptpd die after the vpn disconnects?

   The connection comes up and works fine (finally!).  After I
"disconnect" in
windows 95, the pptpd process ends.

  Any help would be appreciated.  Thanks.

pptp - 1.0.0
win95 DUN 1.3
Solaris 2.6


--
Christopher M. Meyers                   | Vautomation, Inc.
meyers at vautomation.com                  | 402 Amherst Street
Office: +1 (603) 882-2282 x21           | Suite 100
Fax   : +1 (603) 882-1587               | Nashua, NH 03063


-------------- next part --------------
A non-text attachment was scrubbed...
Name: meyers.vcf
Type: text/x-vcard
Size: 366 bytes
Desc: Card for Christopher M. Meyers
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991006/23078a09/attachment.vcf>

From carey at itfreedom.com  Thu Oct  7 08:18:04 1999
From: carey at itfreedom.com (Carey Jung)
Date: Thu Oct  7 08:18:04 1999
Subject: [pptp-server] Minor documentation errors?
Message-ID: <NDBBKMIPMLIGJMHGCCNAOEMLCAAA.carey@itfreedom.com>

Hi all,

I just got this PPTP server working last night, and would like to report a
couple minor errors I found in the HOWTO-PoPToP.txt file.

1.  Step 5 says to unzip the ppp-2.3.8-blah-blah.diff.gz file downloaded at
Step 2.  Well, the file I got was already unzipped.  I dropped the .gz
extension, ran patch, and proceeded.

2.  Step 6 says to make modules in /usr/src/linux.  I got a compilation
error because the SSLeay*rc4* files didn't get into the modules/drivers/net
directory.  I believe kinstall.sh should have taken care of that, but it
apparently did it.  I had to copy the header and source file into the
directory manually and re-run make modules.

3.  Also in Step 6, it seems to me that you need to run insmod on a couple
additional modules, ppp_deflate and bsd_comp.  This is mentioned later on in
the document Q&A.  I'm not sure why it's not called out here.

Hope this helps.

----------------------------------------------------------------------
Carey Jung                                 IT Freedom
carey at itfreedom.com                        8127 Mesa Dr, B206, PMB 360
512.502.1171, (fax 512.349.2165)           Austin, TX 78759-8632
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Carey Jung.vcf
Type: text/x-vcard
Size: 420 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991007/a9b253e3/attachment.vcf>

From JimVanEtten at ENVISIONit.ca  Thu Oct  7 10:41:12 1999
From: JimVanEtten at ENVISIONit.ca (JimVanEtten at ENVISIONit.ca)
Date: Thu Oct  7 10:41:12 1999
Subject: [pptp-server] Piping 2 subnets over PPTP
Message-ID: <H000006800003f03.0939310625.om1.envisionit.ca@MHS>

I have a pipe from one linux firewall to another linux firewall using
PoPToP and I can ping from one (lets call it client) to the other (lets
call it homebase). I can ping from client to homebase and every computer
on the same subnet as home base. Homebase is network 172.17.1.0 and
client is 172.17.5.0. I can ping from homebase to client but when I try
to ping other systems on clients subnet I can't.

The pipe is generated on using 2 172.17.1.0 addresses. Does the reason I
can ping one way and not the other have something to do with my routing
on the client firewall?? Proxyarp maybe?? Any insight at all would be
appreciated.

Jim 



From sam at linuxtec.com  Thu Oct  7 10:57:31 1999
From: sam at linuxtec.com (Samuel Gonzalez, Jr.)
Date: Thu Oct  7 10:57:31 1999
Subject: [pptp-server] Piping 2 subnets over PPTP
References: <H000006800003f03.0939310625.om1.envisionit.ca@MHS>
Message-ID: <37FCC58B.7F59DB29@linuxtec.com>

The way I got that to work was to change the firewall forwarding policy
to accept instead of deny.

JimVanEtten at ENVISIONit.ca wrote:
> 
> I have a pipe from one linux firewall to another linux firewall using
> PoPToP and I can ping from one (lets call it client) to the other (lets
> call it homebase). I can ping from client to homebase and every computer
> on the same subnet as home base. Homebase is network 172.17.1.0 and
> client is 172.17.5.0. I can ping from homebase to client but when I try
> to ping other systems on clients subnet I can't.
> 
> The pipe is generated on using 2 172.17.1.0 addresses. Does the reason I
> can ping one way and not the other have something to do with my routing
> on the client firewall?? Proxyarp maybe?? Any insight at all would be
> appreciated.
> 
> Jim
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!

-- 
**********************************
* Samuel Gonzalez, Jr.           *
* Network Systems Engineer       *
* SGI Consulting                 *
* 281-687-9286                   *
* sam at linuxtec.com               *
**********************************



From JimVanEtten at ENVISIONit.ca  Fri Oct  8 10:22:57 1999
From: JimVanEtten at ENVISIONit.ca (JimVanEtten at ENVISIONit.ca)
Date: Fri Oct  8 10:22:57 1999
Subject: [pptp-server] Static IP's
Message-ID: <H0000068000041ae.0939396088.om1.envisionit.ca@MHS>

How do I get PoPToP to give static IP's. My pptpd.conf is setup like so:

---snip----

localip 172.17.1.190-194
remoteip 172.17.1.195-199

---snip----

And my client ALWAYS wants to use 172.17.1.193 as local and 172.17.1.198
as the remoteip. I tried and although the client thinks it got those
addresses the server just assigns the next numbers in line.

Bye for now
Jim



From cswan at connectria.com  Fri Oct  8 10:54:24 1999
From: cswan at connectria.com (Chris Swan)
Date: Fri Oct  8 10:54:24 1999
Subject: [pptp-server] Static IP's
References: <H0000068000041ae.0939396088.om1.envisionit.ca@MHS>
Message-ID: <000401bf11a5$56004ec0$6908a8c0@wustl.edu>

Add these lines to your ppp options file:

ipcp-accept-local
ipcp-accept-remote

[personally, I thought that just accept remote would work, but for
some reason accept-local seemed to be the one that worked
properly--man pppd seemed to indicate that accept-remote was what I
was looking for?]


----- Original Message -----
From: <JimVanEtten at ENVISIONit.ca>
To: <pptp-server at lists.schulte.org>
Sent: Friday, October 08, 1999 10:26 AM
Subject: [pptp-server] Static IP's


> How do I get PoPToP to give static IP's. My pptpd.conf is setup like
so:
>
> ---snip----
>
> localip 172.17.1.190-194
> remoteip 172.17.1.195-199
>
> ---snip----
>
> And my client ALWAYS wants to use 172.17.1.193 as local and
172.17.1.198
> as the remoteip. I tried and although the client thinks it got those
> addresses the server just assigns the next numbers in line.
>
> Bye for now
> Jim
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>





From SCody at Gulbrandsen.com  Fri Oct  8 14:14:04 1999
From: SCody at Gulbrandsen.com (Steve Cody)
Date: Fri Oct  8 14:14:04 1999
Subject: [pptp-server] Client unable to access anything past the host
Message-ID: <A505C3AEEAC0D2119F6800902745A52B2D5F76@obsc_pdc01.gulbrandsen.com>

I have PoPToP 1.0.0 running on a RH6.0 system.  When the client connects, it
is able to ping the host system and vice versa.  However, it cannot ping any
other system on the network, and no other system can ping it.  On the Linux
host system here is the routing table:
What else do I need to do?  Do I need to add something to my ppp/options
file???

Please help.  I have searched the archives of this mailing list and the news
groups to no avail.  Thanks in advance

Steve Cody


Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
192.168.4.1     0.0.0.0         255.255.255.255 UH    0      0        0 ppp0
12.24.136.8     0.0.0.0         255.255.255.255 UH    0      0        0 eth0
12.24.136.0     0.0.0.0         255.255.255.224 U     0      0        0 eth0
192.168.3.0     192.168.2.3     255.255.255.0   UG    0      0        0 eth0
192.168.2.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
192.168.1.0     192.168.2.3     255.255.255.0   UG    0      0        0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         192.168.4.1     0.0.0.0         UG    0      0        0 ppp0
0.0.0.0         12.24.136.1     0.0.0.0         UG    0      0        0 eth0





From lliw at pacbell.net  Sat Oct  9 16:47:48 1999
From: lliw at pacbell.net (Will)
Date: Sat Oct  9 16:47:48 1999
Subject: [pptp-server] PPTP Client connecting to Win NT server?
Message-ID: <37FFB7F8.E1483EB4@pacbell.net>

I hope the readers of this list will forgive a slightly off-topic
question.

I am trying to establish a pptp connection between my linux box
and a Win-NT server.

The Windows NT system is probably SP-3 (I can check), and works fine
for connections from my Windows systems.

What I have:

RedHat 6.0 (2.2.5-15)
PPTP-linux v1.0.2
PPP v2.3.8, patched with
http://www.moretonbay.com/vpn/releases/ppp-2.3.8-mppe-others-norc4_TH7.diff.gz
   and RC4 code from
ftp://ftp.psy.uq.oz.au/pub/Crypto/SSL/SSLeay-0.6.6b.tar.gz
   per the instuctions in
http://www.moretonbay.com/vpn/releases/HOWTO-PoPToP.txt

This is coming tantalizingly close to working.  The connection is being
made,
ifconfig shows the link to be up, but pings to the far side of the ppp
connection
fail to get replies and cause "Protocol-Reject for unsupported protocol"
messages
to appear in the logs.  (See full log printout at the end of this
message).
This seems similar to problems others have been reporting to this
mailing list,
but I never saw any resolution.

Given that the protocol numbers being rejected seem like pretty random
numbers
(Although they are the same on each attempt).  I'm guessing that
something is 
looking at the encrypted bit-stream and getting confused.

Has anyone gotten this to work?  Am I crazy to think it should work?

- 
Will McCown
lliw at pacbell.net, willmc at alumni.caltech.edu

************
Here is the except from the ppp log file -- slightly sanitized in that
some IP addresses
have been changed:
Oct  9 14:13:52 adsl-myhost (unknown)[13720]:
log[pptp_dispatch_ctrl_packet:pptp_ctrl.c:531]: Client connection
established.
Oct  9 14:13:53 adsl-myhost (unknown)[13720]:
log[pptp_dispatch_ctrl_packet:pptp_ctrl.c:637]: Outgoing call
established.
Oct  9 14:13:53 adsl-myhost pppd[13722]: pppd 2.3.8 started by root, uid
0
Oct  9 14:13:53 adsl-myhost pppd[13722]: Using interface ppp0
Oct  9 14:13:53 adsl-myhost pppd[13722]: Connect: ppp0 <--> /dev/ttya0
Oct  9 14:13:53 adsl-myhost pppd[13722]: sent [LCP ConfReq id=0x1
<asyncmap 0x0> <magic 0xfa1cf43a> <pcomp> <accomp>]
Oct  9 14:13:55 adsl-myhost pppd[13722]: rcvd [LCP ConfReq id=0x0 <auth
chap m$oft> <magic 0x330c> <pcomp> <accomp>]
Oct  9 14:13:55 adsl-myhost pppd[13722]: sent [LCP ConfAck id=0x0 <auth
chap m$oft> <magic 0x330c> <pcomp> <accomp>]
Oct  9 14:13:55 adsl-myhost pppd[13722]: rcvd [LCP ConfAck id=0x1
<asyncmap 0x0> <magic 0xfa1cf43a> <pcomp> <accomp>]
Oct  9 14:13:55 adsl-myhost pppd[13722]: rcvd [CHAP Challenge id=0xe
<6e4e5621d235b13e>, name = ""]
Oct  9 14:13:55 adsl-myhost pppd[13722]: sent [CHAP Response id=0xe
<000000000000000000000000000000000000000000000000db75ccae
d49c62d0d5e7dab840e145e540a33716d01fb04c01>, name = "pwill"]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [CHAP Success id=0xe ""]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [IPCP ConfReq id=0x1 <addr
111.222.111.222> <compress VJ 0f 01>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [CCP ConfReq id=0x1
<deflate 15> <deflate(old#) 15> <mppe 0 0 0 20> <bsd v1 15>
]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [CCP ConfReq id=0x1 <mppe
0 0 0 31>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [CCP ConfNak id=0x1 <mppe
0 0 0 20>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [IPCP ConfReq id=0x2
<compress VJ 0f 01> <addr 24.130.34.1>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [IPCP ConfAck id=0x2
<compress VJ 0f 01> <addr 24.130.34.1>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [IPCP ConfNak id=0x1 <addr
24.130.34.2>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [IPCP ConfReq id=0x2 <addr
24.130.34.2> <compress VJ 0f 01>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [CCP ConfRej id=0x1
<deflate 15> <deflate(old#) 15> <bsd v1 15>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [CCP ConfReq id=0x2 <mppe
0 0 0 20>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [CCP ConfReq id=0x3 <mppe
0 0 0 20>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: sent [CCP ConfAck id=0x3 <mppe
0 0 0 20>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [IPCP ConfAck id=0x2 <addr
24.130.34.2> <compress VJ 0f 01>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: local  IP address 24.130.34.2
Oct  9 14:13:56 adsl-myhost pppd[13722]: remote IP address 24.130.34.1
Oct  9 14:13:56 adsl-myhost pppd[13722]: Script /etc/ppp/ip-up started
(pid 13723)
Oct  9 14:13:56 adsl-myhost pppd[13722]: rcvd [CCP ConfAck id=0x2 <mppe
0 0 0 20>]
Oct  9 14:13:56 adsl-myhost pppd[13722]: MPPE 40 bit, non-stateless
compression enabled
Oct  9 14:13:58 adsl-myhost pppd[13722]: Script /etc/ppp/ip-up finished
(pid 13723), status = 0x0
Oct  9 14:14:43 adsl-myhost pppd[13722]: rcvd [LCP ProtRej id=0x4 f8 af
eb 7c f5 f2 1b 16 52 f3 a0 5b e9 cd 23 57 ba e9 34 c0
 b4 b2 50 ec 05 d1 80 ec 5b d6 06 4c e4 15 5b 78 1c 41 1e bb 46 cc c5 ad
cf 7e 22 40 0b c7 0a 73 c4 b7 cd 44 36 b0 bb ef 07 4
c 08 00 40 b8 fe 5b 45 00 b6 e0 cf 70 85 92 6d
Oct  9 14:14:43 adsl-myhost pppd[13722]: Protocol-Reject for unsupported
protocol 0xf8af
Oct  9 14:14:49 adsl-myhost pppd[13722]: rcvd [CCP ResetReq id=0x0]
Oct  9 14:14:49 adsl-myhost pppd[13722]: sent [CCP ResetAck id=0x0]
Oct  9 14:14:49 adsl-myhost pppd[13722]: rcvd [CCP CodeRej id=0x5 0f 00
00 04]
Oct  9 14:14:49 adsl-myhost pppd[13722]: CCP: Rcvd Code-Reject for code
15, id 0
Oct  9 14:14:50 adsl-myhost pppd[13722]: rcvd [LCP ProtRej id=0x6 f8 af
eb 7c f5 f2 1b 0a 52 f3 a0 5b e9 d9 23 57 ba e9 34 c0
 b4 b2 50 ec c1 d3 80 ec 52 d6 0f 4c e4 15 89 7a 1c 41 1e bb 46 cc c5 ad
cf 7e 22 40 0b c7 0a 73 c4 b7 cd 44 36 b0 bb ef 07 4
c 08 00 40 b8 fe 5b 45 00 b6 e0 cf 70 85 92 6d
Oct  9 14:14:50 adsl-myhost pppd[13722]: Protocol-Reject for unsupported
protocol 0xf8af
Oct  9 14:14:54 adsl-myhost pppd[13722]: rcvd [LCP ProtRej id=0x7 b6 fd
89 70 fc 99 87 54 f6 9e e9 3b 88 fb f9 b8 89 e7 86 c6
 36 eb 32 dd 5d b2 c2 cc de 22 bc 94 ca 60 f1 b8 fb 21 17 08 6b 9a c4 26
1b 19 5f 82 04 27 24 ba 46 bf 6a 93 21 b8 c1 a7 77 0
7 27 1e 7f d1 c5 d4 01 ec e4 ff d4 f4 7a 38 3b
Oct  9 14:14:54 adsl-myhost pppd[13722]: Protocol-Reject for unsupported
protocol 0xb6fd
Oct  9 14:14:56 adsl-myhost pppd[13722]: rcvd [LCP ProtRej id=0x8 d8 69
25 8c 2b 08 25 bf 90 56 f3 ab 67 88 8b 3d 55 e0 91 e8
 d2 a9 50 e1 40 dd a8 ac f0 9a ec e4 ed bb dd 47 41 0c cd b8 a2 79 e1 2a
82 1f 1b 9a 9e 17 87 50 0e aa d9 f6 9b 50 22 44 c8 e
d 4e 43 7a a9 be e7 20 38 80 26 1c 19 bd 41 8c
Oct  9 14:14:56 adsl-myhost pppd[13722]: Protocol-Reject for unsupported
protocol 0xd869



From nickj at coho.net  Sat Oct  9 17:34:04 1999
From: nickj at coho.net (Nick Jones)
Date: Sat Oct  9 17:34:04 1999
Subject: [pptp-server] Win98 and SuSE Linux PPTPD server problems
Message-ID: <000c01bf12a5$0248ea20$0200a8c0@PowerNetworking.com>

Hi everyone.  I just can't seem to get this to work no matter what I do...  Below is everything that gets logged when I try to connect from my Win98 machine.

Oct  9 15:45:35 Router pptpd[24634]: MGR: Launching /usr/local/sbin/pptpctrl to handle client
Oct  9 15:45:35 Router pptpd[24634]: CTRL: local address = 192.168.0.101
Oct  9 15:45:35 Router pptpd[24634]: CTRL: remote address = 192.168.0.201
Oct  9 15:45:35 Router pptpd[24634]: CTRL: pppd options file = /etc/pptpd.options
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Client 192.168.0.2 control connection started
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Received PPTP Control Message (type: 1)
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Made a START CTRL CONN RPLY packet
Oct  9 15:45:35 Router pptpd[24634]: CTRL: I wrote 156 bytes to the client.
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Sent packet to client
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Received PPTP Control Message (type: 7)
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Set parameters to 0 maxbps, 16 window size
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Made a OUT CALL RPLY packet
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Starting call (launching pppd, opening GRE)
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Allocating pty/tty pair
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Allocated pty/tty pair (/dev/ptyp4,/dev/ttyp4)
Oct  9 15:45:35 Router pptpd[24634]: CTRL: pty_fd = 6
Oct  9 15:45:35 Router pptpd[24634]: CTRL: tty_fd = 7
Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): Connection speed = 115200
Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): local address = 192.168.0.101
Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): remote address = 192.168.0.201
Oct  9 15:45:35 Router pptpd[24634]: CTRL: I wrote 32 bytes to the client.
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Sent packet to client
Oct  9 15:45:35 Router pptpd[24634]: GRE: read(fd=6,buffer=8064fb8,len=8196) from PTY failed: status = -1 error = I/O error
Oct  9 15:45:35 Router pptpd[24634]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Client 192.168.0.2 control connection finished
Oct  9 15:45:35 Router pptpd[24634]: CTRL: Exiting now
Oct  9 15:45:35 Router pptpd[4064]: MGR: Reaped child 24634
Oct  9 15:45:35 Router pppd[24636]: pppd 2.3.7 started by root, uid 0
Oct  9 15:45:35 Router pppd[24636]: tcsetattr: Invalid argument
Oct  9 15:45:35 Router pppd[24636]: Exit.


I'm not sure how to fix it or what to do first.  If someone could help that'd be great. Thanks.
-Nick
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991009/5d8aaa14/attachment.html>

From tmk at netmagic.net  Sat Oct  9 18:50:03 1999
From: tmk at netmagic.net (tmk)
Date: Sat Oct  9 18:50:03 1999
Subject: [pptp-server] Win98 and SuSE Linux PPTPD server problems
References: <000c01bf12a5$0248ea20$0200a8c0@PowerNetworking.com>
Message-ID: <001201bf12b1$78f07880$071c0fc0@lala.net>

probably pppd died. that is the most common cause of the GRE read failed. try reinstalling vpn (control panels->add remove->windows setup) and also check your pppd settings.

Kevin
  ----- Original Message ----- 
  From: Nick Jones 
  To: pptp-server at lists.schulte.org 
  Sent: Saturday, October 09, 1999 3:24 PM
  Subject: [pptp-server] Win98 and SuSE Linux PPTPD server problems


  Hi everyone.  I just can't seem to get this to work no matter what I do...  Below is everything that gets logged when I try to connect from my Win98 machine.

  Oct  9 15:45:35 Router pptpd[24634]: MGR: Launching /usr/local/sbin/pptpctrl to handle client
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: local address = 192.168.0.101
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: remote address = 192.168.0.201
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: pppd options file = /etc/pptpd.options
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Client 192.168.0.2 control connection started
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Received PPTP Control Message (type: 1)
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Made a START CTRL CONN RPLY packet
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: I wrote 156 bytes to the client.
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Sent packet to client
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Received PPTP Control Message (type: 7)
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Set parameters to 0 maxbps, 16 window size
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Made a OUT CALL RPLY packet
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Starting call (launching pppd, opening GRE)
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Allocating pty/tty pair
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Allocated pty/tty pair (/dev/ptyp4,/dev/ttyp4)
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: pty_fd = 6
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: tty_fd = 7
  Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): Connection speed = 115200
  Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): local address = 192.168.0.101
  Oct  9 15:45:35 Router pptpd[24635]: CTRL (PPPD Launcher): remote address = 192.168.0.201
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: I wrote 32 bytes to the client.
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Sent packet to client
  Oct  9 15:45:35 Router pptpd[24634]: GRE: read(fd=6,buffer=8064fb8,len=8196) from PTY failed: status = -1 error = I/O error
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Client 192.168.0.2 control connection finished
  Oct  9 15:45:35 Router pptpd[24634]: CTRL: Exiting now
  Oct  9 15:45:35 Router pptpd[4064]: MGR: Reaped child 24634
  Oct  9 15:45:35 Router pppd[24636]: pppd 2.3.7 started by root, uid 0
  Oct  9 15:45:35 Router pppd[24636]: tcsetattr: Invalid argument
  Oct  9 15:45:35 Router pppd[24636]: Exit.

   
  I'm not sure how to fix it or what to do first.  If someone could help that'd be great. Thanks.
  -Nick
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991009/4ab6be3a/attachment.html>

From simsong at vineyard.net  Sat Oct  9 18:53:12 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Sat Oct  9 18:53:12 1999
Subject: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?
Message-ID: <008901bf12b0$e7288640$0f00000a@vineyard.net>

Hi there. I'm trying to get PPTPD to run under NetBSD 1.4. The server compiled
just fine, it receives incoming connections just fine, it starts up pppd just
fine, and then I have problems.  Specifically, the pppd on the NetBSD box seems
unable to exchange packets with the ppp client on the Win95 box.

It seems that the problem is that the IP addresses being assigned to the PPTPD
process are not accessible from the NetBSD box. I've tried assigning IP
addresses both on the local subnet and off, and neither seems to work.

Here is typical trace:

Oct  9 19:35:12 walden pptpd[994]: MGR: Reaped child 995
Oct  9 19:35:23 walden pptpd[999]: MGR: Launching /usr/local/sbin/pptpctrl to
handle client
Oct  9 19:35:23 walden pptpd[999]: CTRL: local address = 192.168.0.235
Oct  9 19:35:23 walden pptpd[999]: CTRL: remote address = 192.168.1.235
Oct  9 19:35:23 walden pptpd[999]: CTRL: pppd speed = 115200
Oct  9 19:35:23 walden pptpd[999]: CTRL: Client 195.36.211.41 control
connection started
Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
1)
Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a START CTRL CONN RPLY packet
Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 156 bytes to the client.
Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
7)
Oct  9 19:35:23 walden pptpd[999]: CTRL: Set parameters to 0 maxbps, 16 window
size
Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a OUT CALL RPLY packet
Oct  9 19:35:23 walden pptpd[999]: CTRL: Starting call (launching pppd, opening
GRE)
Oct  9 19:35:23 walden pptpd[999]: CTRL: pty_fd = 4
Oct  9 19:35:23 walden pptpd[999]: CTRL: tty_fd = 5
Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 32 bytes to the client.
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): Connection speed =
115200
Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): local address =
192.168.0.235
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): remote address =
192.168.1.235
Oct  9 19:35:23 walden pppd[1000]: pppd 2.3.5 started by simsong, uid 0
Oct  9 19:35:23 walden pppd[1000]: Using interface ppp0
Oct  9 19:35:23 walden pppd[1000]: Connect: ppp0 <--> /dev/ttyp2
Oct  9 19:35:23 walden pppd[1000]: sent [LCP ConfReq id=0x1 <auth chap MD5>
<magic 0x693fecf7> <pcomp> <accomp>]
Oct  9 19:35:50 walden last message repeated 9 times
Oct  9 19:35:53 walden pppd[1000]: LCP: timeout sending Config-Requests
Oct  9 19:35:53 walden pppd[1000]: Connection terminated.
Oct  9 19:35:54 walden pppd[1000]: Exit.
Oct  9 19:35:54 walden pptpd[999]: GRE: read(fd=4,buffer=6514,len=8196) from
PTY failed: status = 0 error = No error
Oct  9 19:35:54 walden pptpd[999]: CTRL: PTY read or GRE write failed
(pty,gre)=(4,5)
Oct  9 19:35:54 walden pptpd[999]: CTRL: Client 195.36.211.41 control
connection finished
Oct  9 19:35:54 walden pptpd[999]: CTRL: Exiting now
Oct  9 19:35:54 walden pptpd[994]: MGR: Reaped child 999

As you can see, pptpd gets started up. It just seems then, though, that the LCP
packets from the local machine aren't getting sent to the client, and that
requests from the client aren't coming in. I don't know if this has anything to
do with the local and remote IP addresses assigned to pptpd or not.

I do know that I am not seeing the IP address 192.168.0.235 show up in my ARP
table. I'm not sure if I should see it show up or not.

Perhaps the problem is that the pppd doesn't like being run on the other side
of a PTY? I don't think so, but I don't have any proof.

Any thoughts?





From rfox at dls.queens.org  Sat Oct  9 20:32:40 1999
From: rfox at dls.queens.org (Ronald L Fox)
Date: Sat Oct  9 20:32:40 1999
Subject: [pptp-server] v1 RPMs and 2.3.10 mppe patch
In-Reply-To: <99100110013701.17862@gibberling.moreton.com.au>
Message-ID: <3.0.3.32.19991009153021.0563ec28@kahala.dlabs.com>

At 09:57 AM 10/01/1999 +1000, Matthew Ramsay wrote:
>Chris Wong sent me the PoPToP v1.0.0 RPMs. Daniel Sulley also sent me a
2.3.10
>mppe PPP patch (no RC4 -- you still have to grab that somewhere else). If
>you're interested in these files:
>
>http://www.moretonbay.com/vpn/download_pptp.html
>
Matt,

The link to Daniel Sulley's 2.3.10 patch is broken on the above-mentioned
page.

The correct link is
http://www.moretonbay.com/vpn/releases/ppp-2.3.10-openssl-norc4-mppe.patch.gz

Regards,
Ron



From brett-pptp at brett.nemeroff.com  Sun Oct 10 02:01:44 1999
From: brett-pptp at brett.nemeroff.com (Brett Nemeroff)
Date: Sun Oct 10 02:01:44 1999
Subject: [pptp-server] PPTP and RADIUS
Message-ID: <Pine.LNX.4.10.9910100201260.3544-100000@brett.nemeroff.com>

I was wondering if anybody knows how I can use RADIUS authentication with
pptpd??

Any help would be appreciated!
Thanks!
-Brett





From neale at lowendale.com.au  Sun Oct 10 02:19:55 1999
From: neale at lowendale.com.au (Neale Banks)
Date: Sun Oct 10 02:19:55 1999
Subject: [pptp-server] PPTP and RADIUS
In-Reply-To: <Pine.LNX.4.10.9910100201260.3544-100000@brett.nemeroff.com>
Message-ID: <Pine.LNX.4.05.9910101728480.15678-100000@marina.lowendale.com.au>

On Sun, 10 Oct 1999, Brett Nemeroff wrote:

> I was wondering if anybody knows how I can use RADIUS authentication with
> pptpd??

Seeing as the authentication is done by pppd (pptpd just sets up the
channel) then the obvious suggestion is to use a pppd with PAM support and
a RADIUS PAM module.

HTH,
Neale.




From brett-pptp at brett.nemeroff.com  Sun Oct 10 15:06:51 1999
From: brett-pptp at brett.nemeroff.com (Brett Nemeroff)
Date: Sun Oct 10 15:06:51 1999
Subject: [pptp-server] PPTP and RADIUS
In-Reply-To: <Pine.LNX.4.05.9910101728480.15678-100000@marina.lowendale.com.au>
Message-ID: <Pine.LNX.4.10.9910101504410.4169-100000@brett.nemeroff.com>

I thought that was the case.. Well I wish doing that was as easy as you
put it. Unfortunately I have another requirement. I need to support the MS
encryption. :(
So.. I need ppp with PAM support and MSCHAP80 support and radius with
PAM..

Any idea on where I can find this stuff?? I've looked around without
success. The real problem is getting ppp in that config.. Radius I don't
expect to be a problem..

well, any ideas?? 
thanks!
-Brett


On Sun, 10 Oct 1999, Neale Banks wrote:

> On Sun, 10 Oct 1999, Brett Nemeroff wrote:
> 
> > I was wondering if anybody knows how I can use RADIUS authentication with
> > pptpd??
> 
> Seeing as the authentication is done by pppd (pptpd just sets up the
> channel) then the obvious suggestion is to use a pppd with PAM support and
> a RADIUS PAM module.
> 
> HTH,
> Neale.
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 




From tmk at netmagic.net  Sun Oct 10 15:18:23 1999
From: tmk at netmagic.net (tmk)
Date: Sun Oct 10 15:18:23 1999
Subject: [pptp-server] PPTP and RADIUS
References: <Pine.LNX.4.10.9910101504410.4169-100000@brett.nemeroff.com>
Message-ID: <000701bf135d$0e0a3720$071c0fc0@lala.net>

MSCHAP80?

the encryption patch for ppp does 40/128 bit encryption..

if that's not compatible with the pam stuff, that sucks :)

Kevin
----- Original Message -----
From: Brett Nemeroff <brett-pptp at brett.nemeroff.com>
To: Neale Banks <neale at lowendale.com.au>
Cc: <pptp-server at lists.schulte.org>
Sent: Sunday, October 10, 1999 1:07 PM
Subject: Re: [pptp-server] PPTP and RADIUS


>
> I thought that was the case.. Well I wish doing that was as easy as you
> put it. Unfortunately I have another requirement. I need to support the MS
> encryption. :(
> So.. I need ppp with PAM support and MSCHAP80 support and radius with
> PAM..
>
> Any idea on where I can find this stuff?? I've looked around without
> success. The real problem is getting ppp in that config.. Radius I don't
> expect to be a problem..
>
> well, any ideas??
> thanks!
> -Brett
>
>
> On Sun, 10 Oct 1999, Neale Banks wrote:
>
> > On Sun, 10 Oct 1999, Brett Nemeroff wrote:
> >
> > > I was wondering if anybody knows how I can use RADIUS authentication
with
> > > pptpd??
> >
> > Seeing as the authentication is done by pppd (pptpd just sets up the
> > channel) then the obvious suggestion is to use a pppd with PAM support
and
> > a RADIUS PAM module.
> >
> > HTH,
> > Neale.
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From brett-pptp at brett.nemeroff.com  Sun Oct 10 15:43:50 1999
From: brett-pptp at brett.nemeroff.com (Brett Nemeroff)
Date: Sun Oct 10 15:43:50 1999
Subject: [pptp-server] PPTP and RADIUS
In-Reply-To: <000701bf135d$0e0a3720$071c0fc0@lala.net>
Message-ID: <Pine.LNX.4.10.9910101540330.4293-100000@brett.nemeroff.com>

Well, from what I've seen, the MS encryption is different. It actually
requires you to have a seperate program to do the encryption. 

I've seen patches for PPP so it will support encryption in PPP-2.3.8 and
PPP-2.3.10. However, how do I add PAM support to these modules? perhaps
this is the wrong place for THAT question.. sorry!

Well, if anyone else has any clues..
Thanks!
-Brett


On Sun, 10 Oct 1999, tmk wrote:

> MSCHAP80?
> 
> the encryption patch for ppp does 40/128 bit encryption..
> 
> if that's not compatible with the pam stuff, that sucks :)
> 
> Kevin
> ----- Original Message -----
> From: Brett Nemeroff <brett-pptp at brett.nemeroff.com>
> To: Neale Banks <neale at lowendale.com.au>
> Cc: <pptp-server at lists.schulte.org>
> Sent: Sunday, October 10, 1999 1:07 PM
> Subject: Re: [pptp-server] PPTP and RADIUS
> 
> 
> >
> > I thought that was the case.. Well I wish doing that was as easy as you
> > put it. Unfortunately I have another requirement. I need to support the MS
> > encryption. :(
> > So.. I need ppp with PAM support and MSCHAP80 support and radius with
> > PAM..
> >
> > Any idea on where I can find this stuff?? I've looked around without
> > success. The real problem is getting ppp in that config.. Radius I don't
> > expect to be a problem..
> >
> > well, any ideas??
> > thanks!
> > -Brett
> >
> >
> > On Sun, 10 Oct 1999, Neale Banks wrote:
> >
> > > On Sun, 10 Oct 1999, Brett Nemeroff wrote:
> > >
> > > > I was wondering if anybody knows how I can use RADIUS authentication
> with
> > > > pptpd??
> > >
> > > Seeing as the authentication is done by pppd (pptpd just sets up the
> > > channel) then the obvious suggestion is to use a pppd with PAM support
> and
> > > a RADIUS PAM module.
> > >
> > > HTH,
> > > Neale.
> > >
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> > >
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 




From simsong at vineyard.net  Sun Oct 10 16:29:40 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Sun Oct 10 16:29:40 1999
Subject: [pptp-server] repost: PPTPD under NetBSD: Proxy Arp not working?
Message-ID: <01b201bf1365$fb4b3d60$0f00000a@vineyard.net>

[I just joind the mailing list and posted this, but it doesn't look like it
went through. Perhaps the mailing list program wouldn't allow me to post until
I had my subscription authenticated? I'm not sure, so I'm reposting this here.]

Hi there. I'm trying to get PPTPD to run under NetBSD 1.4. The server compiled
just fine, it receives incoming connections just fine, it starts up pppd just
fine, and then I have problems.  Specifically, the pppd on the NetBSD box seems
unable to exchange packets with the ppp client on the Win95 box.

It seems that the problem is that the IP addresses being assigned to the PPTPD
process are not accessible from the NetBSD box. I've tried assigning IP
addresses both on the local subnet and off, and neither seems to work.

Here is typical trace:

Oct  9 19:35:12 walden pptpd[994]: MGR: Reaped child 995
Oct  9 19:35:23 walden pptpd[999]: MGR: Launching /usr/local/sbin/pptpctrl to
handle client
Oct  9 19:35:23 walden pptpd[999]: CTRL: local address = 192.168.0.235
Oct  9 19:35:23 walden pptpd[999]: CTRL: remote address = 192.168.1.235
Oct  9 19:35:23 walden pptpd[999]: CTRL: pppd speed = 115200
Oct  9 19:35:23 walden pptpd[999]: CTRL: Client 195.36.211.41 control
connection started
Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
1)
Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a START CTRL CONN RPLY packet
Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 156 bytes to the client.
Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
7)
Oct  9 19:35:23 walden pptpd[999]: CTRL: Set parameters to 0 maxbps, 16 window
size
Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a OUT CALL RPLY packet
Oct  9 19:35:23 walden pptpd[999]: CTRL: Starting call (launching pppd, opening
GRE)
Oct  9 19:35:23 walden pptpd[999]: CTRL: pty_fd = 4
Oct  9 19:35:23 walden pptpd[999]: CTRL: tty_fd = 5
Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 32 bytes to the client.
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): Connection speed =
115200
Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): local address =
192.168.0.235
Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): remote address =
192.168.1.235
Oct  9 19:35:23 walden pppd[1000]: pppd 2.3.5 started by simsong, uid 0
Oct  9 19:35:23 walden pppd[1000]: Using interface ppp0
Oct  9 19:35:23 walden pppd[1000]: Connect: ppp0 <--> /dev/ttyp2
Oct  9 19:35:23 walden pppd[1000]: sent [LCP ConfReq id=0x1 <auth chap MD5>
<magic 0x693fecf7> <pcomp> <accomp>]
Oct  9 19:35:50 walden last message repeated 9 times
Oct  9 19:35:53 walden pppd[1000]: LCP: timeout sending Config-Requests
Oct  9 19:35:53 walden pppd[1000]: Connection terminated.
Oct  9 19:35:54 walden pppd[1000]: Exit.
Oct  9 19:35:54 walden pptpd[999]: GRE: read(fd=4,buffer=6514,len=8196) from
PTY failed: status = 0 error = No error
Oct  9 19:35:54 walden pptpd[999]: CTRL: PTY read or GRE write failed
(pty,gre)=(4,5)
Oct  9 19:35:54 walden pptpd[999]: CTRL: Client 195.36.211.41 control
connection finished
Oct  9 19:35:54 walden pptpd[999]: CTRL: Exiting now
Oct  9 19:35:54 walden pptpd[994]: MGR: Reaped child 999

As you can see, pptpd gets started up. It just seems then, though, that the LCP
packets from the local machine aren't getting sent to the client, and that
requests from the client aren't coming in. I don't know if this has anything to
do with the local and remote IP addresses assigned to pptpd or not.

I do know that I am not seeing the IP address 192.168.0.235 show up in my ARP
table. I'm not sure if I should see it show up or not.

Perhaps the problem is that the pppd doesn't like being run on the other side
of a PTY? I don't think so, but I don't have any proof.

Any thoughts?






From nickj at coho.net  Sun Oct 10 16:49:49 1999
From: nickj at coho.net (Nick Jones)
Date: Sun Oct 10 16:49:49 1999
Subject: [pptp-server] recompile of ppp-2.3.8 w/ mppe problem
Message-ID: <000e01bf1367$fedb3000$0200a8c0@PowerNetworking.com>

Hi everyone again.  I think I skipped a step when I originally tried to setup PPTPD.  I'm now trying to recompile pppd 2.3.8 w/ mppe and it fails on me.  I've followed the directions on the pptp website and I have tried starting over at least three to four times.  Below is the error it hangs up on:


  cc -O2 -pipe -Wall -g -D_linux_=1 -DHAVE_PATHS_H -DIPX_CHANGE -I../include  -DCHAPMS=1 -DUSE_CRYPT=1 -DMPPE=1 -DHAS_SHADOW -o pppd main.o magic.o fsm.o lcp.o ipcp.o upap.o chap.o md5.o ccp.o auth.o options.o demand.o utils.o sys-linux.o ipxcp.o cbcp.o mppe.o sha1dgst.o extra_crypto.o md4.o chap_ms.o  -lcrypt
  ld: cannot open -lcrypt: No such file or directory
  make[1]: *** [pppd] Error 1
  make[1]: Leaving directory `/root/ppp-2.3.8/pppd'
  make: *** [all] Error 2


I installed SSLeay 0.6.6b and tried installing a later version of it to try and fix the problem but it didn't seem to help.  I've also tried installing OpenSSL 0.9.4 in hope it would have the library which didn't help either.  If someone could help me on this that'd be great. Thanks all.

-Nick
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991010/9a7ae44b/attachment.html>

From amacc at mailer.org  Sun Oct 10 17:14:12 1999
From: amacc at mailer.org (Andrew McRory)
Date: Sun Oct 10 17:14:12 1999
Subject: [pptp-server] PPTP and RADIUS
In-Reply-To: <Pine.LNX.4.10.9910101540330.4293-100000@brett.nemeroff.com>
Message-ID: <Pine.LNX.4.02.9910101805280.27431-100000@ns1.mailer.org>

On Sun, 10 Oct 1999, Brett Nemeroff wrote:

> Well, from what I've seen, the MS encryption is different. It actually
> requires you to have a seperate program to do the encryption. 
> 
> I've seen patches for PPP so it will support encryption in PPP-2.3.8 and
> PPP-2.3.10. However, how do I add PAM support to these modules? perhaps
> this is the wrong place for THAT question.. sorry!

You might look into the pppd that comes with the portslave package at
www.linuxrouter.org/portslave. It supports RADIUS and maybe you can figure
a way to make it work with your application.


Andrew McRory - amacc at linuxsys.com ************************************
President / Chief Technical Officer                                   *
Iron-Bridge Communications / Linux Systems Engineers / The PC Doctors *
3009-C West Tharpe Street - Tallahassee, FL 32303                     *
Voice 850.575.7213 ****************************************************




From jewell at mit.edu  Mon Oct 11 01:30:03 1999
From: jewell at mit.edu (Darrin B. Jewell)
Date: Mon Oct 11 01:30:03 1999
Subject: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?
In-Reply-To: "Simson L. Garfinkel"'s message of "Sun, 10 Oct 1999 01:46:02 +0200"
References: <008901bf12b0$e7288640$0f00000a@vineyard.net>
Message-ID: <qqvh8ejttd.fsf@dbj.ne.mediaone.net>

Do you have the gre(4) pseudo-device compiled into your kernel?
You will need to remove it for pptp to work on NetBSD.

If that doesn't solve the problem, can you send along
your /etc/ppp/options and /etc/pptpd.conf files?

Also, does 'tcpdump -v' on walden's real network interface
show both tcp packets on port 1723 and gre (ip protocol 6) packets?

Darrin

"Simson L. Garfinkel" <simsong at vineyard.net> writes:

> Hi there. I'm trying to get PPTPD to run under NetBSD 1.4. The server compiled
> just fine, it receives incoming connections just fine, it starts up pppd just
> fine, and then I have problems.  Specifically, the pppd on the NetBSD box seems
> unable to exchange packets with the ppp client on the Win95 box.
> 
> It seems that the problem is that the IP addresses being assigned to the PPTPD
> process are not accessible from the NetBSD box. I've tried assigning IP
> addresses both on the local subnet and off, and neither seems to work.
> 
> Here is typical trace:
> 
> Oct  9 19:35:12 walden pptpd[994]: MGR: Reaped child 995
> Oct  9 19:35:23 walden pptpd[999]: MGR: Launching /usr/local/sbin/pptpctrl to
> handle client
> Oct  9 19:35:23 walden pptpd[999]: CTRL: local address = 192.168.0.235
> Oct  9 19:35:23 walden pptpd[999]: CTRL: remote address = 192.168.1.235
> Oct  9 19:35:23 walden pptpd[999]: CTRL: pppd speed = 115200
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Client 195.36.211.41 control
> connection started
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
> 1)
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a START CTRL CONN RPLY packet
> Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 156 bytes to the client.
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message (type:
> 7)
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Set parameters to 0 maxbps, 16 window
> size
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a OUT CALL RPLY packet
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Starting call (launching pppd, opening
> GRE)
> Oct  9 19:35:23 walden pptpd[999]: CTRL: pty_fd = 4
> Oct  9 19:35:23 walden pptpd[999]: CTRL: tty_fd = 5
> Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 32 bytes to the client.
> Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): Connection speed =
> 115200
> Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
> Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): local address =
> 192.168.0.235
> Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): remote address =
> 192.168.1.235
> Oct  9 19:35:23 walden pppd[1000]: pppd 2.3.5 started by simsong, uid 0
> Oct  9 19:35:23 walden pppd[1000]: Using interface ppp0
> Oct  9 19:35:23 walden pppd[1000]: Connect: ppp0 <--> /dev/ttyp2
> Oct  9 19:35:23 walden pppd[1000]: sent [LCP ConfReq id=0x1 <auth chap MD5>
> <magic 0x693fecf7> <pcomp> <accomp>]
> Oct  9 19:35:50 walden last message repeated 9 times
> Oct  9 19:35:53 walden pppd[1000]: LCP: timeout sending Config-Requests
> Oct  9 19:35:53 walden pppd[1000]: Connection terminated.
> Oct  9 19:35:54 walden pppd[1000]: Exit.
> Oct  9 19:35:54 walden pptpd[999]: GRE: read(fd=4,buffer=6514,len=8196) from
> PTY failed: status = 0 error = No error
> Oct  9 19:35:54 walden pptpd[999]: CTRL: PTY read or GRE write failed
> (pty,gre)=(4,5)
> Oct  9 19:35:54 walden pptpd[999]: CTRL: Client 195.36.211.41 control
> connection finished
> Oct  9 19:35:54 walden pptpd[999]: CTRL: Exiting now
> Oct  9 19:35:54 walden pptpd[994]: MGR: Reaped child 999
> 
> As you can see, pptpd gets started up. It just seems then, though, that the LCP
> packets from the local machine aren't getting sent to the client, and that
> requests from the client aren't coming in. I don't know if this has anything to
> do with the local and remote IP addresses assigned to pptpd or not.
> 
> I do know that I am not seeing the IP address 192.168.0.235 show up in my ARP
> table. I'm not sure if I should see it show up or not.
> 
> Perhaps the problem is that the pppd doesn't like being run on the other side
> of a PTY? I don't think so, but I don't have any proof.
> 
> Any thoughts?
> 
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!



From jewell at mit.edu  Mon Oct 11 02:25:31 1999
From: jewell at mit.edu (Darrin B. Jewell)
Date: Mon Oct 11 02:25:31 1999
Subject: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?
In-Reply-To: "Darrin B. Jewell"'s message of "11 Oct 1999 02:27:26 -0400"
References: <008901bf12b0$e7288640$0f00000a@vineyard.net> <qqvh8ejttd.fsf@dbj.ne.mediaone.net>
Message-ID: <qqhfjyjr8i.fsf@dbj.ne.mediaone.net>

I have one correction and a few additional notes regarding my
earlier message.

"Darrin B. Jewell" <jewell at mit.edu> writes:
> Do you have the gre(4) pseudo-device compiled into your kernel?
> You will need to remove it for pptp to work on NetBSD.
A simple way to tell if gre(4) is included on your system is
to see if the command "ifconfig -a | grep gre" produces any output.

> Also, does 'tcpdump -v' on walden's real network interface
> show both tcp packets on port 1723 and gre (ip protocol 6) packets?
Oops.  I meant to say ip protocol 47 instead of ip protocol 6.

> "Simson L. Garfinkel" <simsong at vineyard.net> writes:
> > As you can see, pptpd gets started up. It just seems then, though, that the LCP
> > packets from the local machine aren't getting sent to the client, and that
> > requests from the client aren't coming in. I don't know if this has anything to
> > do with the local and remote IP addresses assigned to pptpd or not.
Your log message is consistent with problems caused by the gre(4)
device intercepting packets destined for pppd.

> > I do know that I am not seeing the IP address 192.168.0.235 show up in my ARP
> > table. I'm not sure if I should see it show up or not.
I don't think it should show up in your arp table, but it should show
up in your routing table.  If you try the command "netstat -nr", you
should see a line similar to:

  Internet:
  Destination        Gateway            Flags     Refs     Use    Mtu  Interface

  192.168.1.235      192.168.0.235      UH          0        0      -  ppp0

You should also see a line similar to this in the output of "ifconfig -a":

ppp0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
        inet 192.168.0.235 --> 192.168.1.235 netmask 0xffffff00 

> > Perhaps the problem is that the pppd doesn't like being run on the other side
> > of a PTY? I don't think so, but I don't have any proof.
In my experience, pppd works fine run from a PTY.

Darrin



From i_d_i at solo.bg  Mon Oct 11 02:30:31 1999
From: i_d_i at solo.bg (Ivan Iliev)
Date: Mon Oct 11 02:30:31 1999
Subject: [pptp-server] Not enough space to encrypt packet
Message-ID: <3801924E.65A34B4C@solo.bg>

Hi All,

I setup PPTPd server
with :
- ppp-2.3.10
- linux-2.2.12
- SSLeay-0.9.0b
 - ppp-2.3.10-openssl-norc4-mppe.patch
- pptpd -1.0.0
and i have this problem :
Oct 10 19:05:27 hobbit pppd[2715]: rcvd [CCP ConfReq id=0x5 <mppe 1 0 0
20>]
Oct 10 19:05:27 hobbit pppd[2715]: sent [CCP ConfAck id=0x5 <mppe 1 0 0
20>]
Oct 10 19:05:27 hobbit kernel: Not enough space to encrypt packet:
1504<1504+4!
Oct 10 19:05:27 hobbit last message repeated 7 times
Oct 10 19:05:27 hobbit pppd[2715]: sent [CCP ConfReq id=0x3 <mppe 1 0 0
60>]
Oct 10 19:05:27 hobbit pppd[2715]: Timeout 0x8050000:0x80768e8 in 3
seconds.
Oct 10 19:05:27 hobbit kernel: Not enough space to encrypt packet:
1504<1504+4!
Oct 10 19:05:29 hobbit last message repeated 110 times
Oct 10 19:05:29 hobbit kernel: Not enough space to encrypt packet:
1501<1504+4!
Oct 10 19:05:29 hobbit kernel: Not enough space to encrypt packet:
1504<1504+4!
Oct 10 19:05:30 hobbit last message repeated 60 times
Oct 10 19:05:30 hobbit kernel: Not enough space to encrypt packet:
1501<1504+4!
Oct 10 19:05:30 hobbit kernel: Not enough space to encrypt packet:
1504<1504+4!
Oct 10 19:05:30 hobbit last message repeated 35 times
Oct 10 19:05:30 hobbit pppd[2715]: rcvd [CCP ConfReq id=0x6 <mppe 1 0 0
20>]
Oct 10 19:05:30 hobbit pppd[2715]: sent [CCP ConfAck id=0x6 <mppe 1 0 0
20>]
Oct 10 19:05:30 hobbit kernel: Not enough space to encrypt packet:
1504<1504+4!

Can you help me




From rdale at digital-mission.com  Mon Oct 11 15:38:52 1999
From: rdale at digital-mission.com (Robert Dale)
Date: Mon Oct 11 15:38:52 1999
Subject: [pptp-server] PPTP and RADIUS
In-Reply-To: <Pine.LNX.4.10.9910100201260.3544-100000@brett.nemeroff.com>
Message-ID: <Pine.LNX.4.04.9910111637250.27337-100000@enterprise.phalanx.net>

On Sun, 10 Oct 1999, Brett Nemeroff wrote:

> 
> I was wondering if anybody knows how I can use RADIUS authentication with
> pptpd??

I posted some patches for portslave to do this.  You can be the first to
try it ;)  Check out the mailing list archives here for the past month.
If you can't find it, let me know.  Let us all know how it goes.


-- 
Robert Dale

                   Digital Mission
            http://www.digital-mission.com






From jfinnecy at merical.com  Mon Oct 11 18:51:07 1999
From: jfinnecy at merical.com (Jonathan Finnecy)
Date: Mon Oct 11 18:51:07 1999
Subject: [pptp-server] Still need help with PoPToP/SaMBa
In-Reply-To: <199910111700.MAA10875@snaildust.schulte.org>
Message-ID: <4.2.0.58.19991011163537.0098bda0@192.168.4.1>

Well, I first voiced this problem a few weeks ago, and only two people 
responded at all (and nothing that worked).  My question now is, has anyone 
gotten SaMBa to work over a PPTP connection?  Here is my setup:

RedHat/          Firewall                            Laptop
SaMBa

-----		   -----                               -----
|   |-------------|   |-------{Internet}----{ISP}-----|   |
|   |             |   |                               |   |
-----             -----                               -----
eth0		eth0				      DIAL-UP IP (A.B.C.D)
192.168.X.2	192.168.X.1

			G.H.I.J
			eth1

I have PoPToP v1.0.0 running on the firewall.  I am using Kernel 2.2.5-15, 
PPPd v2.3.7.

I have DUN1.3 upgrade on the laptop running under Win95.

I make a dial-up connection to my ISP (in this case Earthlink).  After that 
I make the VPN connection to G.H.I.J on the firewall.  This works great.  I 
give my laptop the address 192.168.(X+1).101.
After this I can ping the Linux/samba server at 192.168.X.2 and it can ping 
me, but it refuses to attempt to log on to the network (and consequently I 
can access no resources).  When trying to use any network-related commands 
(e.g. "net view \\server") I get an error saying "You must log on to the 
network to perform this operation."

FYI...I can dial in to another server inside the firewall over a direct PPP 
link and access SaMBa resources no problem using the same IP I am giving to 
the VPN client.

I am desperate here.  TCP/IP is working over this VPN link (telnet, ftp, 
etc), but my machine refuses to acknowledge the presence of a SaMBa 
server.  (Remote announce has been configured for the "VPN network" - I 
even tried restarting the samba process after the VPN tunnel was created 
with no luck.)  I have log files, tcpdumps, configuration listings, etc. 
but I get the feeling that I'm going down a dead-end.  I would love to hear 
from anyone who has made this work, or anyone who can help me better debug 
it...

Help!

-Jon




From martin at simpli.net  Tue Oct 12 00:35:53 1999
From: martin at simpli.net (Martin)
Date: Tue Oct 12 00:35:53 1999
Subject: [pptp-server] Info
Message-ID: <3802A6FB.5AFE3ED5@simpli.net>

Hi,

    anyone can tell me why I get this error ( I just install a new
redhat 6.0 box and the latest rpm of pptpd)

and I get : Oct 11 23:10:52 server-003 pppd[653]: Failed to open
/dev/pts/0: No such file or directory

and if I check in my /dev/pts directory I only have a file called 1 ???

and if I remember on other box pptpd was using /dev/ttyS0 ??

so where Im wrong?

Thanks

Martin





From simsong at vineyard.net  Tue Oct 12 05:57:12 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Tue Oct 12 05:57:12 1999
Subject: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?
References: <008901bf12b0$e7288640$0f00000a@vineyard.net> <qqvh8ejttd.fsf@dbj.ne.mediaone.net>
Message-ID: <01dc01bf14a0$aaa312c0$0200010a@sandstorm.net>

Darrin,

Thank you for the email. To answer your questions:

1. Yes, I have the gre pseudo-device compiled into the kernel. It's most strange
that pptp does not work with this. I guess that both the kernel and the pptp are
trying to intercept ip protocol 6 packets?

    => The documentation should probably mention this fact.
    =>  and pptp should detect it and give a reasonable error.

I'll remove it and give it a try. Thank you for your help.
----- Original Message -----
From: Darrin B. Jewell <jewell at mit.edu>
To: Simson L. Garfinkel <simsong at vineyard.net>
Cc: <pptp-server at lists.schulte.org>; Darrin B. Jewell <jewell at mit.edu>
Sent: Monday, October 11, 1999 2:27 AM
Subject: Re: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?


>
> Do you have the gre(4) pseudo-device compiled into your kernel?
> You will need to remove it for pptp to work on NetBSD.
>
> If that doesn't solve the problem, can you send along
> your /etc/ppp/options and /etc/pptpd.conf files?
>
> Also, does 'tcpdump -v' on walden's real network interface
> show both tcp packets on port 1723 and gre (ip protocol 6) packets?
>
> Darrin
>
> "Simson L. Garfinkel" <simsong at vineyard.net> writes:
>
> > Hi there. I'm trying to get PPTPD to run under NetBSD 1.4. The server
compiled
> > just fine, it receives incoming connections just fine, it starts up pppd
just
> > fine, and then I have problems.  Specifically, the pppd on the NetBSD box
seems
> > unable to exchange packets with the ppp client on the Win95 box.
> >
> > It seems that the problem is that the IP addresses being assigned to the
PPTPD
> > process are not accessible from the NetBSD box. I've tried assigning IP
> > addresses both on the local subnet and off, and neither seems to work.
> >
> > Here is typical trace:
> >
> > Oct  9 19:35:12 walden pptpd[994]: MGR: Reaped child 995
> > Oct  9 19:35:23 walden pptpd[999]: MGR: Launching /usr/local/sbin/pptpctrl
to
> > handle client
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: local address = 192.168.0.235
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: remote address = 192.168.1.235
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: pppd speed = 115200
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Client 195.36.211.41 control
> > connection started
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message
(type:
> > 1)
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a START CTRL CONN RPLY packet
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 156 bytes to the client.
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Received PPTP Control Message
(type:
> > 7)
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Set parameters to 0 maxbps, 16
window
> > size
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Made a OUT CALL RPLY packet
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Starting call (launching pppd,
opening
> > GRE)
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: pty_fd = 4
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: tty_fd = 5
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: I wrote 32 bytes to the client.
> > Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): Connection speed =
> > 115200
> > Oct  9 19:35:23 walden pptpd[999]: CTRL: Sent packet to client
> > Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): local address =
> > 192.168.0.235
> > Oct  9 19:35:23 walden pptpd[1000]: CTRL (PPPD Launcher): remote address =
> > 192.168.1.235
> > Oct  9 19:35:23 walden pppd[1000]: pppd 2.3.5 started by simsong, uid 0
> > Oct  9 19:35:23 walden pppd[1000]: Using interface ppp0
> > Oct  9 19:35:23 walden pppd[1000]: Connect: ppp0 <--> /dev/ttyp2
> > Oct  9 19:35:23 walden pppd[1000]: sent [LCP ConfReq id=0x1 <auth chap MD5>
> > <magic 0x693fecf7> <pcomp> <accomp>]
> > Oct  9 19:35:50 walden last message repeated 9 times
> > Oct  9 19:35:53 walden pppd[1000]: LCP: timeout sending Config-Requests
> > Oct  9 19:35:53 walden pppd[1000]: Connection terminated.
> > Oct  9 19:35:54 walden pppd[1000]: Exit.
> > Oct  9 19:35:54 walden pptpd[999]: GRE: read(fd=4,buffer=6514,len=8196) from
> > PTY failed: status = 0 error = No error
> > Oct  9 19:35:54 walden pptpd[999]: CTRL: PTY read or GRE write failed
> > (pty,gre)=(4,5)
> > Oct  9 19:35:54 walden pptpd[999]: CTRL: Client 195.36.211.41 control
> > connection finished
> > Oct  9 19:35:54 walden pptpd[999]: CTRL: Exiting now
> > Oct  9 19:35:54 walden pptpd[994]: MGR: Reaped child 999
> >
> > As you can see, pptpd gets started up. It just seems then, though, that the
LCP
> > packets from the local machine aren't getting sent to the client, and that
> > requests from the client aren't coming in. I don't know if this has anything
to
> > do with the local and remote IP addresses assigned to pptpd or not.
> >
> > I do know that I am not seeing the IP address 192.168.0.235 show up in my
ARP
> > table. I'm not sure if I should see it show up or not.
> >
> > Perhaps the problem is that the pppd doesn't like being run on the other
side
> > of a PTY? I don't think so, but I don't have any proof.
> >
> > Any thoughts?
> >
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
>




From jewell at mit.edu  Tue Oct 12 06:30:25 1999
From: jewell at mit.edu (Darrin B. Jewell)
Date: Tue Oct 12 06:30:25 1999
Subject: [pptp-server] PPTPD under NetBSD: Proxy Arp not working?
In-Reply-To: "Simson L. Garfinkel"'s message of "Tue, 12 Oct 1999 06:50:11 -0400"
References: <008901bf12b0$e7288640$0f00000a@vineyard.net> <qqvh8ejttd.fsf@dbj.ne.mediaone.net> <01dc01bf14a0$aaa312c0$0200010a@sandstorm.net>
Message-ID: <qqyad8izsy.fsf@dbj.ne.mediaone.net>

To correct my own error, gre is ip protocol 47.  Ip protocol 6 is tcp.
Your statement about the kernel and pptp both trying to intercept gre
packets is pretty much correct.

Thank you for the suggestions.  This problem is unique to NetBSD,
and I have been looking at ways for either pptp to use the gre
device or for kernel changes to allow pptp/pppd to get gre packets
even when there is a gre device compiled in but not turned on.

Since there is now a NetBSD pkg for pptp which I maintain, I will add
a note in the pkg documentation and at least a check at install time
for the gre device.

Thanks,
Darrin

"Simson L. Garfinkel" <simsong at vineyard.net> writes:
> Darrin,
> 
> Thank you for the email. To answer your questions:
> 
> 1. Yes, I have the gre pseudo-device compiled into the kernel. It's most strange
> that pptp does not work with this. I guess that both the kernel and the pptp are
> trying to intercept ip protocol 6 packets?
> 
>     => The documentation should probably mention this fact.
>     =>  and pptp should detect it and give a reasonable error.
> 
> I'll remove it and give it a try. Thank you for your help.



From carey at itfreedom.com  Tue Oct 12 06:41:07 1999
From: carey at itfreedom.com (Carey Jung)
Date: Tue Oct 12 06:41:07 1999
Subject: [pptp-server] Still need help with PoPToP/SaMBa
In-Reply-To: <4.2.0.58.19991011163537.0098bda0@192.168.4.1>
Message-ID: <NDBBKMIPMLIGJMHGCCNAOEPACAAA.carey@itfreedom.com>

Jonathan,

Have you added 192.168.X+1. to your 'hosts allow' settings in smb.conf?

Carey

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Jonathan
> Finnecy
> Sent: Monday, October 11, 1999 6:52 PM
> To: pptp-server at lists.schulte.org
> Subject: [pptp-server] Still need help with PoPToP/SaMBa
> 
> 
> Well, I first voiced this problem a few weeks ago, and only two people 
> responded at all (and nothing that worked).  My question now is, 
> has anyone 
> gotten SaMBa to work over a PPTP connection?  Here is my setup:
> 
> RedHat/          Firewall                            Laptop
> SaMBa
> 
> -----		   -----                               -----
> |   |-------------|   |-------{Internet}----{ISP}-----|   |
> |   |             |   |                               |   |
> -----             -----                               -----
> eth0		eth0				      DIAL-UP IP (A.B.C.D)
> 192.168.X.2	192.168.X.1
> 
> 			G.H.I.J
> 			eth1
> 
> I have PoPToP v1.0.0 running on the firewall.  I am using Kernel 
> 2.2.5-15, 
> PPPd v2.3.7.
> 
> I have DUN1.3 upgrade on the laptop running under Win95.
> 
> I make a dial-up connection to my ISP (in this case Earthlink).  
> After that 
> I make the VPN connection to G.H.I.J on the firewall.  This works 
> great.  I 
> give my laptop the address 192.168.(X+1).101.
> After this I can ping the Linux/samba server at 192.168.X.2 and 
> it can ping 
> me, but it refuses to attempt to log on to the network (and 
> consequently I 
> can access no resources).  When trying to use any network-related 
> commands 
> (e.g. "net view \\server") I get an error saying "You must log on to the 
> network to perform this operation."
> 
> FYI...I can dial in to another server inside the firewall over a 
> direct PPP 
> link and access SaMBa resources no problem using the same IP I am 
> giving to 
> the VPN client.
> 
> I am desperate here.  TCP/IP is working over this VPN link (telnet, ftp, 
> etc), but my machine refuses to acknowledge the presence of a SaMBa 
> server.  (Remote announce has been configured for the "VPN network" - I 
> even tried restarting the samba process after the VPN tunnel was created 
> with no luck.)  I have log files, tcpdumps, configuration listings, etc. 
> but I get the feeling that I'm going down a dead-end.  I would 
> love to hear 
> from anyone who has made this work, or anyone who can help me 
> better debug 
> it...
> 
> Help!
> 
> -Jon
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!



From simsong at vineyard.net  Tue Oct 12 06:41:54 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Tue Oct 12 06:41:54 1999
Subject: [pptp-server] PPTPD under NetBSD: pptpd conflicts with gre device
References: <008901bf12b0$e7288640$0f00000a@vineyard.net> <qqvh8ejttd.fsf@dbj.ne.mediaone.net>
Message-ID: <021a01bf14a6$f0ac17c0$0200010a@sandstorm.net>

Darrin,

Thanks for your help. That was the problem! When I removed the gre device, pptpd
started working properly.

Now to get Samba working over the PPTP connection, and to get CHAP-80 in place.
Shouldn't be too hard....

-Simson




From mals at home.com  Tue Oct 12 06:54:45 1999
From: mals at home.com (Malay Shah)
Date: Tue Oct 12 06:54:45 1999
Subject: [pptp-server] Still need help with PoPToP/SaMBa
References: <4.2.0.58.19991011163537.0098bda0@192.168.4.1>
Message-ID: <000e01bf14a8$c4d4b9c0$0240a8c0@mtmc1.on.wave.home.com>

Hi, try setting up your samba machine as a WINS server.  This will allow
netbios hostname lookups to be performed from win95/98/nt clients.

have you tried to type the following in the run menu in windows?
\\ipaddressofsamba
replace ipaddressofsamba with the ip address of the samba machine.  Also you
have to make sure that your primary logon for windows is the Microsoft
Client and the username and password have to correspond to the samba
machine's user and pass.  If you have setup domain authentication on the
windows machines, then you shouldn't have to worry about matching the
username and password.

Malay Shah



----- Original Message -----
From: Jonathan Finnecy <jfinnecy at merical.com>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 11, 1999 7:52 PM
Subject: [pptp-server] Still need help with PoPToP/SaMBa


> Well, I first voiced this problem a few weeks ago, and only two people
> responded at all (and nothing that worked).  My question now is, has
anyone
> gotten SaMBa to work over a PPTP connection?  Here is my setup:
>
> RedHat/          Firewall                            Laptop
> SaMBa
>
> -----    -----                               -----
> |   |-------------|   |-------{Internet}----{ISP}-----|   |
> |   |             |   |                               |   |
> -----             -----                               -----
> eth0 eth0       DIAL-UP IP (A.B.C.D)
> 192.168.X.2 192.168.X.1
>
> G.H.I.J
> eth1
>
> I have PoPToP v1.0.0 running on the firewall.  I am using Kernel 2.2.5-15,
> PPPd v2.3.7.
>
> I have DUN1.3 upgrade on the laptop running under Win95.
>
> I make a dial-up connection to my ISP (in this case Earthlink).  After
that
> I make the VPN connection to G.H.I.J on the firewall.  This works great.
I
> give my laptop the address 192.168.(X+1).101.
> After this I can ping the Linux/samba server at 192.168.X.2 and it can
ping
> me, but it refuses to attempt to log on to the network (and consequently I
> can access no resources).  When trying to use any network-related commands
> (e.g. "net view \\server") I get an error saying "You must log on to the
> network to perform this operation."
>
> FYI...I can dial in to another server inside the firewall over a direct
PPP
> link and access SaMBa resources no problem using the same IP I am giving
to
> the VPN client.
>
> I am desperate here.  TCP/IP is working over this VPN link (telnet, ftp,
> etc), but my machine refuses to acknowledge the presence of a SaMBa
> server.  (Remote announce has been configured for the "VPN network" - I
> even tried restarting the samba process after the VPN tunnel was created
> with no luck.)  I have log files, tcpdumps, configuration listings, etc.
> but I get the feeling that I'm going down a dead-end.  I would love to
hear
> from anyone who has made this work, or anyone who can help me better debug
> it...
>
> Help!
>
> -Jon
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




From jfinnecy at merical.com  Tue Oct 12 12:33:00 1999
From: jfinnecy at merical.com (Jonathan Finnecy)
Date: Tue Oct 12 12:33:00 1999
Subject: [pptp-server] Re: PoPToP/SaMBa problems
In-Reply-To: <199910091700.MAA26394@snaildust.schulte.org>
Message-ID: <4.2.0.58.19991012095353.0097f100@192.168.4.1>

Thanks for the many replies to my previous post.  They are too numerous to 
mention (and answer) here, but the gist of it is, most of the stuff people 
recommended I was already doing.  I think my problem essentially boils down 
to this:  I am not getting WINS server information to my client.  I have 
included much documentation in the efforts that someone can notice 
something that is out of whack:

The internal subnet that has the samba server I am trying to attach to is 
192.168.4.0.  The samba server is 192.168.4.2.  My smb.conf follows.  I 
have edited out any "obviously irrelevant" configs:

[global]
    workgroup = MERICAL
    security = user
    os level = 34
    preferred master = yes
    domain master = yes
    wins support = yes
    wins proxy = yes
    domain logons = yes
    logon script = login.bat

This works fine for the entire 192.168.4 subnet as well as the 192.168.2 
subnet that is served over a WAN connection.

Furthermore, I have DHCP running on the samba server, although only my 
mobile clients use it.  My desktop clients are given permanent 
addresses.  I have included one sample host config for a laptop.  My 
/etc/dhcpd.conf file:

default-lease-time 1200;
max-lease-time 1200;
option subnet-mask 255.255.255.0;
option broadcast-address 192.168.4.255;
option routers 192.168.4.1;
option domain-name "merical.com";
option netbios-name-servers 192.168.4.2;

subnet 192.168.4.0 netmask 255.255.255.0 {
         range 192.168.4.151 192.168.4.160;
}

host wksmob01 {
         hardware ethernet <address>;
         fixed-address 192.168.4.161;
         option domain-name-servers <server1>, <server2>;
}

My firewall has one interface (eth0) on the 192.168.4.0 network, and one 
interface (eth1) on the internet.

It has the following /etc/ppp/options file:

debug
name merical-1
auth
require-chap
proxyarp
ms-wins 192.168.4.2

It has the following /etc/pptpd.conf file:

speed 115200
localip 192.168.4.254
remoteip 192.168.4.101-102

I have also tried this using numbers from the 192.168.5 subnet to no 
avail.  In both cases ping and telnet work bidirectionally throughout the 
network, but I cannot log on to samba resources.

My win95 client has the following network components installed:

Client for Microsoft Networks
Dial-up Adapter
Dial-Up Adapter #2 (VPN Support)
Microsoft Virtual Private Networking Adapter
Xircom CredCard Ethernet Adapter 10/100
NDISWAN->Microsoft Virtual Private Networking Adapter
TCP/IP->Dial-Up Adapter
TCP/IP->Dial-Up Adapter #2 (VPN Support)
TCP/IP->Xircom CreditCard Ethernet Adapter 10/100

The client is identified as "WKSMOB01" and is in Workgroup 
"MERICAL".  Access Control is share-level access control.  Primary network 
logon is "Client for Microsoft Networks".  At bootup a logon dialog box is 
presented and I enter the same username and password as is reflected in 
/etc/passwd on the samba server.  The registry key 
\HKEY_CURRENT_USER\Network\Persistent\I\UserName is correct, as is the 
RemotePath key.

The configuration for each network component is as follows:

Client for Microsoft Networks:
	Log on to Windows NT Domain is checked.
	Windows NT Domain = "MERICAL"
	Set to quick network logons.

TCP/IP->Dial-up Adapter
	Obtain IP Address Automatically
	WINS Configuration is disabled (I have tried this disabled, enabled 
explicit, and DHCP assigned)
	Gateway is not listed
	DNS is enabled with host WKSMOB01 and no other information
	Bound to Client for Microsoft Networks
	Netbios over TCP/IP is enabled (and the selection is greyed out)

TCP/IP->Dial-Up Adapter #2 (VPN Support)
	Obtain IP Address Automatically
	WINS Configuration is Enabled with address 192.168.4.2 (I have tried this 
in every combination)
	Gateway is not listed
	DNS is enabled with host WKSMOB01 and no other information
	Bound to Client for Microsoft Networks
	Netbios over TCP/IP is enabled and the selection box is greyed out

The configuration for my ISP connection is:
	No Advanced options selected (I have tried it with and without "Log on to 
network" checked)
	Allowed network protocols is TCP/IP.
	TCP/IP Settings:
		Server Assigned IP Address
		Server Assigned name server address
		Use IP Header Compression On
		Use default gateway on remote network On

The configuration for my VPN connection is:
	"Log on to Network" checked.
	Allowed network protocol is TCP/IP.
	TCP/IP settings:
		Server Assigned IP Address
		Server Assigned name server addresses (I have tried explicitly WINS 
servers here)
		Use default gateway on remote network is ON

I make a connection to my ISP and get an internet IP address, and DNS 
servers for use with this connection.  I then run VPN connection and get 
the specified IP address (192.168.4.101) but no WINS server addresses, and 
the client pauses for a long time at "Status: Loggin on to network..." 
before finishing up the connection.  The strange part is that both server 
and client record that they have negotiated WINS server addresses in their 
logs, but there is no WINS server entry under winipcfg.  Here is the pptpd.log:

Oct 12 10:36:15 merical-1 pptpd[10094]: MGR: Launching /usr/local/sbin/pptpctrl
to handle client
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: local address = 192.168.4.254
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: remote address = 192.168.4.101
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: pppd speed = 115200
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Client 209.245.78.83 control 
conne
ction started
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Received PPTP Control Message 
(typ
e: 1)
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Made a START CTRL CONN RPLY 
packet
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: I wrote 156 bytes to the client.
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Sent packet to client
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Received PPTP Control Message 
(typ
e: 7)
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Set parameters to 0 maxbps, 
16 win
dow size
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Made a OUT CALL RPLY packet
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Starting call (launching 
pppd, ope
ning GRE)
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: pty_fd = 4
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: tty_fd = 5
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: I wrote 32 bytes to the client.
Oct 12 10:36:15 merical-1 pptpd[10094]: CTRL: Sent packet to client
Oct 12 10:36:15 merical-1 pptpd[10096]: CTRL (PPPD Launcher): Connection 
speed =
  115200
Oct 12 10:36:15 merical-1 pptpd[10096]: CTRL (PPPD Launcher): local address 
= 19
2.168.4.254
Oct 12 10:36:15 merical-1 pptpd[10096]: CTRL (PPPD Launcher): remote 
address = 1
92.168.4.101
Oct 12 10:36:15 merical-1 pppd[10096]: pppd 2.3.7 started by root, uid 0
Oct 12 10:36:15 merical-1 pppd[10096]: Using interface ppp0
Oct 12 10:36:15 merical-1 pppd[10096]: Connect: ppp0 <--> /dev/pts/4
Oct 12 10:36:15 merical-1 pppd[10096]: sent [LCP ConfReq id=0x1 <asyncmap 
0x0> <
auth chap MD5> <magic 0xb9adb5f8> <pcomp> <accomp>]
Oct 12 10:36:15 merical-1 pppd[10096]: rcvd [LCP ConfReq id=0x1 <magic 
0x183445>
  <pcomp> <accomp>]
Oct 12 10:36:15 merical-1 pppd[10096]: sent [LCP ConfAck id=0x1 <magic 
0x183445>
  <pcomp> <accomp>]
Oct 12 10:36:16 merical-1 pppd[10096]: rcvd [LCP ConfAck id=0x1 <asyncmap 
0x0> <
auth chap MD5> <magic 0xb9adb5f8> <pcomp> <accomp>]
Oct 12 10:36:16 merical-1 pppd[10096]: sent [CHAP Challenge id=0x1 
<063807f5dd74
43b8b8401f5da04585ba718acb120241257ae199a82cf590350a8bb7c94ae7c5e646c2b146cd 
d3>,
  name = "merical-1"]
Oct 12 10:36:16 merical-1 pppd[10096]: rcvd [CHAP Response id=0x1 
<5097d0a97bacd
f113b026e76ca620db4>, name = "jpf"]
Oct 12 10:36:16 merical-1 pppd[10096]: sent [CHAP Success id=0x1 "Welcome 
to mer
ical-1.firstworld.net."]
Oct 12 10:36:16 merical-1 pppd[10096]: sent [IPCP ConfReq id=0x1 <addr 
192.168.4
.254> <compress VJ 0f 01>]
Oct 12 10:36:16 merical-1 modprobe: can't locate module ppp-compress-21
Oct 12 10:36:16 merical-1 modprobe: can't locate module ppp-compress-26
Oct 12 10:36:17 merical-1 modprobe: can't locate module ppp-compress-24
Oct 12 10:36:17 merical-1 pppd[10096]: CHAP peer authentication succeeded 
for jp
f
Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfReq id=0x1 <addr 0.0.0.0>
<ms-dns 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns 0.0.0.0> <ms-wins 0.0.0.0>]
Oct 12 10:36:17 merical-1 pppd[10096]: sent [IPCP ConfRej id=0x1 <ms-dns 
0.0.0.0
 > <ms-dns 0.0.0.0>]
Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfRej id=0x1 <compress 
VJ 0f
  01>]
Oct 12 10:36:17 merical-1 pppd[10096]: sent [IPCP ConfReq id=0x2 <addr 
192.168.4
.254>]
Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfReq id=0x2 <addr 0.0.0.0>
<ms-wins 0.0.0.0> <ms-wins 0.0.0.0>]
Oct 12 10:36:17 merical-1 pppd[10096]: sent [IPCP ConfNak id=0x2 <addr 
192.168.4
.101> <ms-wins 192.168.4.2> <ms-wins 192.168.4.2>]
Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfAck id=0x2 <addr 
192.168.4
.254>]
Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfReq id=0x3 <addr 
192.168.4
.101> <ms-wins 192.168.4.2> <ms-wins 192.168.4.2>]
Oct 12 10:36:17 merical-1 pppd[10096]: sent [IPCP ConfAck id=0x3 <addr 
192.168.4
.101> <ms-wins 192.168.4.2> <ms-wins 192.168.4.2>]
Oct 12 10:36:17 merical-1 pppd[10096]: found interface eth0 for proxy arp
Oct 12 10:36:17 merical-1 pppd[10096]: local  IP address 192.168.4.254
Oct 12 10:36:17 merical-1 pppd[10096]: remote IP address 192.168.4.101
Oct 12 10:36:17 merical-1 pppd[10096]: Script /etc/ppp/ip-up started; pid = 
1010
0
Oct 12 10:36:18 merical-1 pppd[10096]: Script /etc/ppp/ip-up finished (pid 
10100
), status = 0x0
Oct 12 10:37:15 merical-1 pptpd[10094]: CTRL: Received PPTP Control Message 
(typ
e: 5)
Oct 12 10:37:15 merical-1 pptpd[10094]: CTRL: Made a ECHO RPLY packet
Oct 12 10:37:15 merical-1 pptpd[10094]: CTRL: I wrote 20 bytes to the client.
Oct 12 10:37:15 merical-1 pptpd[10094]: CTRL: Sent packet to client
Oct 12 10:38:15 merical-1 pptpd[10094]: CTRL: Received PPTP Control Message 
(typ
e: 5)
Oct 12 10:38:15 merical-1 pptpd[10094]: CTRL: Made a ECHO RPLY packet
Oct 12 10:38:15 merical-1 pptpd[10094]: CTRL: I wrote 20 bytes to the client.
Oct 12 10:38:15 merical-1 pptpd[10094]: CTRL: Sent packet to client


And here is ppplog.txt from the client:

10-12-1999 10:34:26.82 - Microsoft Dial Up Adapter log opened.
10-12-1999 10:34:26.82 - Server type is  PPP (Point to Point Protocol).
10-12-1999 10:34:26.82 - FSA : Software compression disabled.
10-12-1999 10:34:26.82 - FSA : Protocol not bound - skipping control 
protocol 803f (NBFCP).
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol 8021 (IPCP) to 
control protocol chain.
10-12-1999 10:34:26.82 - FSA : Protocol not bound - skipping control 
protocol 802b (IPXCP).
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol c029 (CallbackCP) to 
control protocol chain.
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol c027 (no 
description) to control protocol chain.
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol c023 (PAP) to 
control protocol chain.
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol c223 (CHAP) to 
control protocol chain.
10-12-1999 10:34:26.82 - FSA : Adding Control Protocol c021 (LCP) to 
control protocol chain.
10-12-1999 10:34:26.82 - LCP : Callback negotiation enabled.
10-12-1999 10:34:26.82 - LCP : Layer started.
10-12-1999 10:34:26.82 - PPP : Transmitting Control Packet of length: 25
10-12-1999 10:34:26.82 - Data 0000: c0 21 01 01 00 17 02 06 | .!.....
10-12-1999 10:34:26.82 - Data 0008: 00 0a 00 00 05 06 00 17 | .......
10-12-1999 10:34:26.82 - Data 0010: f4 71 07 02 08 02 0d 03 | .q......
10-12-1999 10:34:26.82 - Data 0018: 06 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:29.83 - PPP : Transmitting Control Packet of length: 25
10-12-1999 10:34:29.83 - Data 0000: c0 21 01 02 00 17 02 06 | .!.....
10-12-1999 10:34:29.83 - Data 0008: 00 0a 00 00 05 06 00 17 | .......
10-12-1999 10:34:29.83 - Data 0010: f4 71 07 02 08 02 0d 03 | .q......
10-12-1999 10:34:29.83 - Data 0018: 06 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:29.98 - PPP : Received Control Packet of length: 42
10-12-1999 10:34:29.98 - Data 0000: c0 21 01 01 00 28 00 04 | .!...(..
10-12-1999 10:34:29.98 - Data 0008: 00 00 01 04 05 f4 02 06 | ........
10-12-1999 10:34:29.98 - Data 0010: 00 00 00 00 03 05 c2 23 | .......#
10-12-1999 10:34:29.98 - Data 0018: 05 07 02 08 02 11 04 05 | ........
10-12-1999 10:34:29.98 - Data 0020: f4 13 09 03 00 c0 7b 8b | ......{.
10-12-1999 10:34:29.98 - Data 0028: 88 63 00 00 00 00 00 00 | .c......
10-12-1999 10:34:29.98 - LCP : Rejecting unknown option 0.
10-12-1999 10:34:29.98 - PPP : Transmitting Control Packet of length: 23
10-12-1999 10:34:29.98 - Data 0000: c0 21 04 01 00 15 00 04 | .!.....
10-12-1999 10:34:29.98 - Data 0008: 00 00 11 04 05 f4 13 09 | ........
10-12-1999 10:34:29.98 - Data 0010: 03 00 c0 7b 8b 88 63 00 | ...{..c.
10-12-1999 10:34:29.98 - PPP : Received Control Packet of length: 9
10-12-1999 10:34:29.98 - Data 0000: c0 21 04 02 00 07 0d 03 | .!......
10-12-1999 10:34:29.98 - Data 0008: 06 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:29.98 - LCP : Received configure reject for callback 
control protocol option.
10-12-1999 10:34:29.98 - PPP : Transmitting Control Packet of length: 22
10-12-1999 10:34:29.98 - Data 0000: c0 21 01 03 00 14 02 06 | .!......
10-12-1999 10:34:29.98 - Data 0008: 00 0a 00 00 05 06 00 17 | .......
10-12-1999 10:34:29.98 - Data 0010: f4 71 07 02 08 02 00 00 | .q......
10-12-1999 10:34:30.12 - PPP : Received Control Packet of length: 25
10-12-1999 10:34:30.12 - Data 0000: c0 21 01 02 00 17 01 04 | .!.....
10-12-1999 10:34:30.12 - Data 0008: 05 f4 02 06 00 00 00 00 | ........
10-12-1999 10:34:30.12 - Data 0010: 03 05 c2 23 05 07 02 08 | ...#....
10-12-1999 10:34:30.12 - Data 0018: 02 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:30.12 - LCP : Received and accepted MRU of 1524.
10-12-1999 10:34:30.12 - LCP : Received and accepted ACCM of 0.
10-12-1999 10:34:30.12 - LCP : Received and accepted authentication 
protocol c223 (CHAP).
10-12-1999 10:34:30.12 - LCP : Received and accepted protocol field 
compression option.
10-12-1999 10:34:30.12 - LCP : Received and accepted address+control field 
compression option.
10-12-1999 10:34:30.12 - PPP : Transmitting Control Packet of length: 25
10-12-1999 10:34:30.12 - Data 0000: c0 21 02 02 00 17 01 04 | .!.....
10-12-1999 10:34:30.12 - Data 0008: 05 f4 02 06 00 00 00 00 | ........
10-12-1999 10:34:30.12 - Data 0010: 03 05 c2 23 05 07 02 08 | ...#....
10-12-1999 10:34:30.12 - Data 0018: 02 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:30.12 - PPP : Received Control Packet of length: 22
10-12-1999 10:34:30.12 - Data 0000: c0 21 02 03 00 14 02 06 | .!......
10-12-1999 10:34:30.12 - Data 0008: 00 0a 00 00 05 06 00 17 | .......
10-12-1999 10:34:30.13 - Data 0010: f4 71 07 02 08 02 00 00 | .q......
10-12-1999 10:34:30.13 - LCP : Layer up.
10-12-1999 10:34:30.13 - CHAP : Layer started.
10-12-1999 10:34:30.24 - PPP : Received Control Packet of length: 43
10-12-1999 10:34:30.24 - Data 0000: c2 23 01 01 00 29 10 a5 | .#...)..
10-12-1999 10:34:30.24 - Data 0008: 90 ae b3 58 da 39 03 85 | ...X.9..
10-12-1999 10:34:30.24 - Data 0010: 19 6b 5a cf cf fe f4 6e | kZ....n
10-12-1999 10:34:30.24 - Data 0018: 61 73 38 2e 6c 61 78 31 | as8.lax1
10-12-1999 10:34:30.24 - Data 0020: 2e 6c 65 76 65 6c 33 2e | .level3.
10-12-1999 10:34:30.24 - Data 0028: 6e 65 74 00 00 00 00 00 | net.....
10-12-1999 10:34:30.24 - PPP : Transmitting Control Packet of length: 35
10-12-1999 10:34:30.24 - Data 0000: c2 23 02 01 00 21 10 d8 | .#...!..
10-12-1999 10:34:30.24 - Data 0008: 19 f0 40 79 5f 90 de f4 | . at y_...
10-12-1999 10:34:30.24 - Data 0010: 5a ee 4b 3e dc 26 e4 45 | Z.K>.&.E
10-12-1999 10:34:30.24 - Data 0018: 4c 4e 2f 6a 66 69 6e 6e | LN/jfinn
10-12-1999 10:34:30.24 - Data 0020: 65 63 79 00 00 00 00 00 | ecy.....
10-12-1999 10:34:35.25 - PPP : Transmitting Control Packet of length: 35
10-12-1999 10:34:35.25 - Data 0000: c2 23 02 01 00 21 10 d8 | .#...!..
10-12-1999 10:34:35.25 - Data 0008: 19 f0 40 79 5f 90 de f4 | . at y_...
10-12-1999 10:34:35.25 - Data 0010: 5a ee 4b 3e dc 26 e4 45 | Z.K>.&.E
10-12-1999 10:34:35.25 - Data 0018: 4c 4e 2f 6a 66 69 6e 6e | LN/jfinn
10-12-1999 10:34:35.25 - Data 0020: 65 63 79 00 00 00 00 00 | ecy.....
10-12-1999 10:34:38.34 - PPP : Received Control Packet of length: 7
10-12-1999 10:34:38.34 - Data 0000: c2 23 03 01 00 05 00 00 | .#......
10-12-1999 10:34:38.34 - CHAP : Login was successful.
10-12-1999 10:34:38.34 - CHAP : Layer up.
10-12-1999 10:34:38.34 - IPCP : Layer started.
10-12-1999 10:34:38.34 - IPCP : IP address is 0.
10-12-1999 10:34:38.34 - PPP : Transmitting Control Packet of length: 42
10-12-1999 10:34:38.34 - Data 0000: 80 21 01 01 00 28 02 06 | .!...(..
10-12-1999 10:34:38.34 - Data 0008: 00 2d 0f 01 03 06 00 00 | .-......
10-12-1999 10:34:38.34 - Data 0010: 00 00 81 06 00 00 00 00 | ........
10-12-1999 10:34:38.34 - Data 0018: 82 06 00 00 00 00 83 06 | ........
10-12-1999 10:34:38.34 - Data 0020: 00 00 00 00 84 06 00 00 | ........
10-12-1999 10:34:38.34 - Data 0028: 00 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:38.36 - PPP : Received Control Packet of length: 18
10-12-1999 10:34:38.36 - Data 0000: 80 21 01 01 00 10 02 06 | .!......
10-12-1999 10:34:38.36 - Data 0008: 00 2d 0f 01 03 06 d1 f4 | .-......
10-12-1999 10:34:38.36 - Data 0010: 2a 48 00 00 00 00 00 00 | *H......
10-12-1999 10:34:38.36 - IPCP : Received and accepted compression protocol 
request f 1.
10-12-1999 10:34:38.36 - IPCP : Received and accepted IP address of d1f42a48.
10-12-1999 10:34:38.36 - PPP : Transmitting Control Packet of length: 18
10-12-1999 10:34:38.36 - Data 0000: 80 21 02 01 00 10 02 06 | .!......
10-12-1999 10:34:38.36 - Data 0008: 00 2d 0f 01 03 06 d1 f4 | .-......
10-12-1999 10:34:38.36 - Data 0010: 2a 48 00 00 00 00 00 00 | *H......
10-12-1999 10:34:38.47 - PPP : Received Control Packet of length: 18
10-12-1999 10:34:38.47 - Data 0000: 80 21 04 01 00 10 82 06 | .!......
10-12-1999 10:34:38.47 - Data 0008: 00 00 00 00 84 06 00 00 | ........
10-12-1999 10:34:38.47 - Data 0010: 00 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:38.47 - PPP : Transmitting Control Packet of length: 30
10-12-1999 10:34:38.47 - Data 0000: 80 21 01 02 00 1c 02 06 | .!.....
10-12-1999 10:34:38.47 - Data 0008: 00 2d 0f 01 03 06 00 00 | .-......
10-12-1999 10:34:38.47 - Data 0010: 00 00 81 06 00 00 00 00 | ........
10-12-1999 10:34:38.47 - Data 0018: 83 06 00 00 00 00 00 00 | ........
10-12-1999 10:34:38.58 - PPP : Received Control Packet of length: 24
10-12-1999 10:34:38.58 - Data 0000: 80 21 03 02 00 16 03 06 | .!.....
10-12-1999 10:34:38.58 - Data 0008: d1 f5 4e 53 81 06 d1 f4 | ..NS....
10-12-1999 10:34:38.58 - Data 0010: 00 03 83 06 d1 f4 00 04 | ........
10-12-1999 10:34:38.58 - IPCP : Changing IP address from 0 to d1f54e53.
10-12-1999 10:34:38.58 - IPCP : Accepting primary DNS d1f40003.
10-12-1999 10:34:38.58 - IPCP : Accepting backup DNS d1f40004.
10-12-1999 10:34:38.58 - PPP : Transmitting Control Packet of length: 30
10-12-1999 10:34:38.58 - Data 0000: 80 21 01 03 00 1c 02 06 | .!.....
10-12-1999 10:34:38.58 - Data 0008: 00 2d 0f 01 03 06 d1 f5 | .-......
10-12-1999 10:34:38.58 - Data 0010: 4e 53 81 06 d1 f4 00 03 | NS......
10-12-1999 10:34:38.58 - Data 0018: 83 06 d1 f4 00 04 00 00 | ........
10-12-1999 10:34:38.69 - PPP : Received Control Packet of length: 30
10-12-1999 10:34:38.69 - Data 0000: 80 21 02 03 00 1c 02 06 | .!.....
10-12-1999 10:34:38.69 - Data 0008: 00 2d 0f 01 03 06 d1 f5 | .-......
10-12-1999 10:34:38.69 - Data 0010: 4e 53 81 06 d1 f4 00 03 | NS......
10-12-1999 10:34:38.69 - Data 0018: 83 06 d1 f4 00 04 00 00 | ........
10-12-1999 10:34:38.69 - IPCP : Layer up.
10-12-1999 10:34:38.69 - FSA : Last control protocol is up.
10-12-1999 10:34:43.16 - Microsoft Dial Up Adapter log opened.
10-12-1999 10:34:43.16 - Server type is  PPP (Point to Point Protocol).
10-12-1999 10:34:43.16 - FSA : Software compression disabled.
10-12-1999 10:34:43.16 - FSA : Protocol not bound - skipping control 
protocol 803f (NBFCP).
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol 8021 (IPCP) to 
control protocol chain.
10-12-1999 10:34:43.16 - FSA : Protocol not bound - skipping control 
protocol 802b (IPXCP).
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol c029 (CallbackCP) to 
control protocol chain.
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol c027 (no 
description) to control protocol chain.
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol c023 (PAP) to 
control protocol chain.
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol c223 (CHAP) to 
control protocol chain.
10-12-1999 10:34:43.16 - FSA : Adding Control Protocol c021 (LCP) to 
control protocol chain.
10-12-1999 10:34:43.16 - LCP : Layer started.
10-12-1999 10:34:43.16 - PPP : Transmitting Control Packet of length: 16
10-12-1999 10:34:43.16 - Data 0000: c0 21 01 01 00 0e 05 06 | .!......
10-12-1999 10:34:43.16 - Data 0008: 00 18 34 45 07 02 08 02 | .4E....
10-12-1999 10:34:43.33 - PPP : Received Control Packet of length: 27
10-12-1999 10:34:43.33 - Data 0000: c0 21 01 01 00 19 02 06 | .!.....
10-12-1999 10:34:43.33 - Data 0008: 00 00 00 00 03 05 c2 23 | .......#
10-12-1999 10:34:43.33 - Data 0010: 05 05 06 b9 ad b5 f8 07 | ........
10-12-1999 10:34:43.33 - Data 0018: 02 08 02 00 00 00 00 00 | ........
10-12-1999 10:34:43.33 - LCP : Received and accepted ACCM of 0.
10-12-1999 10:34:43.33 - LCP : Received and accepted authentication 
protocol c223 (CHAP).
10-12-1999 10:34:43.33 - LCP : Received and accepted magic number b9adb5f8.
10-12-1999 10:34:43.33 - LCP : Received and accepted protocol field 
compression option.
10-12-1999 10:34:43.33 - LCP : Received and accepted address+control field 
compression option.
10-12-1999 10:34:43.33 - PPP : Transmitting Control Packet of length: 27
10-12-1999 10:34:43.33 - Data 0000: c0 21 02 01 00 19 02 06 | .!.....
10-12-1999 10:34:43.33 - Data 0008: 00 00 00 00 03 05 c2 23 | .......#
10-12-1999 10:34:43.33 - Data 0010: 05 05 06 b9 ad b5 f8 07 | ........
10-12-1999 10:34:43.33 - Data 0018: 02 08 02 00 00 00 00 00 | ........
10-12-1999 10:34:43.33 - PPP : Received Control Packet of length: 16
10-12-1999 10:34:43.33 - Data 0000: c0 21 02 01 00 0e 05 06 | .!......
10-12-1999 10:34:43.33 - Data 0008: 00 18 34 45 07 02 08 02 | .4E....
10-12-1999 10:34:43.33 - LCP : Layer up.
10-12-1999 10:34:43.33 - CHAP : Layer started.
10-12-1999 10:34:43.52 - PPP : Received Control Packet of length: 61
10-12-1999 10:34:43.52 - Data 0000: c2 23 01 01 00 3b 2d 06 | .#...;-.
10-12-1999 10:34:43.52 - Data 0008: 38 07 f5 dd 74 43 b8 b8 | 8...tC..
10-12-1999 10:34:43.52 - Data 0010: 40 1f 5d a0 45 85 ba 71 | @].E..q
10-12-1999 10:34:43.52 - Data 0018: 8a cb 12 02 41 25 7a e1 | ....A%z.
10-12-1999 10:34:43.52 - Data 0020: 99 a8 2c f5 90 35 0a 8b | ..,..5..
10-12-1999 10:34:43.52 - Data 0028: b7 c9 4a e7 c5 e6 46 c2 | ..J...F.
10-12-1999 10:34:43.52 - Data 0030: b1 46 cd d3 6d 65 72 69 | .F..meri
10-12-1999 10:34:43.52 - Data 0038: 63 61 6c 2d 31 00 00 00 | cal-1...
10-12-1999 10:34:43.52 - PPP : Transmitting Control Packet of length: 26
10-12-1999 10:34:43.52 - Data 0000: c2 23 02 01 00 18 10 50 | .#....P
10-12-1999 10:34:43.52 - Data 0008: 97 d0 a9 7b ac df 11 3b | ...{...;
10-12-1999 10:34:43.52 - Data 0010: 02 6e 76 ca 62 0d b4 6a | .nv.b..j
10-12-1999 10:34:43.52 - Data 0018: 70 66 00 00 00 00 00 00 | pf......
10-12-1999 10:34:43.71 - PPP : Received Control Packet of length: 42
10-12-1999 10:34:43.71 - Data 0000: c2 23 03 01 00 28 57 65 | .#...(We
10-12-1999 10:34:43.71 - Data 0008: 6c 63 6f 6d 65 20 74 6f | lcome to
10-12-1999 10:34:43.71 - Data 0010: 20 6d 65 72 69 63 61 6c |  merical
10-12-1999 10:34:43.71 - Data 0018: 2d 31 2e 66 69 72 73 74 | -1.first
10-12-1999 10:34:43.71 - Data 0020: 77 6f 72 6c 64 2e 6e 65 | world.ne
10-12-1999 10:34:43.71 - Data 0028: 74 2e 00 00 00 00 00 00 | t.......
10-12-1999 10:34:43.71 - CHAP : Login was successful.
10-12-1999 10:34:43.71 - CHAP : Layer up.
10-12-1999 10:34:43.71 - IPCP : Layer started.
10-12-1999 10:34:43.71 - IPCP : IP address is 0.
10-12-1999 10:34:43.71 - PPP : Transmitting Control Packet of length: 36
10-12-1999 10:34:43.71 - Data 0000: 80 21 01 01 00 22 03 06 | .!..."..
10-12-1999 10:34:43.71 - Data 0008: 00 00 00 00 81 06 00 00 | ........
10-12-1999 10:34:43.71 - Data 0010: 00 00 82 06 00 00 00 00 | ........
10-12-1999 10:34:43.71 - Data 0018: 83 06 00 00 00 00 84 06 | ........
10-12-1999 10:34:43.71 - Data 0020: 00 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:43.71 - PPP : Received Control Packet of length: 18
10-12-1999 10:34:43.71 - Data 0000: 80 21 01 01 00 10 03 06 | .!......
10-12-1999 10:34:43.71 - Data 0008: c0 a8 04 fe 02 06 00 2d | .......-
10-12-1999 10:34:43.71 - Data 0010: 0f 01 00 00 00 00 00 00 | ........
10-12-1999 10:34:43.71 - IPCP : Received and accepted IP address of c0a804fe.
10-12-1999 10:34:43.71 - PPP : Transmitting Control Packet of length: 12
10-12-1999 10:34:43.71 - Data 0000: 80 21 04 01 00 0a 02 06 | .!......
10-12-1999 10:34:43.71 - Data 0008: 00 2d 0f 01 00 00 00 00 | .-......
10-12-1999 10:34:44.51 - PPP : Received Control Packet of length: 18
10-12-1999 10:34:44.51 - Data 0000: 80 21 04 01 00 10 81 06 | .!......
10-12-1999 10:34:44.51 - Data 0008: 00 00 00 00 83 06 00 00 | ........
10-12-1999 10:34:44.51 - Data 0010: 00 00 00 00 00 00 00 00 | ........
10-12-1999 10:34:44.51 - PPP : Transmitting Control Packet of length: 24
10-12-1999 10:34:44.51 - Data 0000: 80 21 01 02 00 16 03 06 | .!.....
10-12-1999 10:34:44.51 - Data 0008: 00 00 00 00 82 06 00 00 | ........
10-12-1999 10:34:44.51 - Data 0010: 00 00 84 06 00 00 00 00 | ........
10-12-1999 10:34:44.51 - PPP : Received Control Packet of length: 12
10-12-1999 10:34:44.51 - Data 0000: 80 21 01 02 00 0a 03 06 | .!......
10-12-1999 10:34:44.51 - Data 0008: c0 a8 04 fe 00 00 00 00 | ........
10-12-1999 10:34:44.51 - IPCP : Received and accepted IP address of c0a804fe.
10-12-1999 10:34:44.51 - PPP : Transmitting Control Packet of length: 12
10-12-1999 10:34:44.51 - Data 0000: 80 21 02 02 00 0a 03 06 | .!......
10-12-1999 10:34:44.51 - Data 0008: c0 a8 04 fe 00 00 00 00 | ........
10-12-1999 10:34:44.67 - PPP : Received Control Packet of length: 24
10-12-1999 10:34:44.67 - Data 0000: 80 21 03 02 00 16 03 06 | .!.....
10-12-1999 10:34:44.67 - Data 0008: c0 a8 04 65 82 06 c0 a8 | ...e....
10-12-1999 10:34:44.67 - Data 0010: 04 02 84 06 c0 a8 04 02 | ........
10-12-1999 10:34:44.67 - IPCP : Changing IP address from 0 to c0a80465.
10-12-1999 10:34:44.67 - IPCP : Accepting primary WINS c0a80402.
10-12-1999 10:34:44.67 - IPCP : Accepting backup WINS c0a80402.
10-12-1999 10:34:44.67 - PPP : Transmitting Control Packet of length: 24
10-12-1999 10:34:44.67 - Data 0000: 80 21 01 03 00 16 03 06 | .!.....
10-12-1999 10:34:44.67 - Data 0008: c0 a8 04 65 82 06 c0 a8 | ...e....
10-12-1999 10:34:44.67 - Data 0010: 04 02 84 06 c0 a8 04 02 | ........
10-12-1999 10:34:44.84 - PPP : Received Control Packet of length: 24
10-12-1999 10:34:44.84 - Data 0000: 80 21 02 03 00 16 03 06 | .!.....
10-12-1999 10:34:44.84 - Data 0008: c0 a8 04 65 82 06 c0 a8 | ...e....
10-12-1999 10:34:44.84 - Data 0010: 04 02 84 06 c0 a8 04 02 | ........
10-12-1999 10:34:44.84 - IPCP : Layer up.
10-12-1999 10:34:44.84 - FSA : Last control protocol is up.

Notice specifically these lines from the logs:

Oct 12 10:36:17 merical-1 pppd[10096]: rcvd [IPCP ConfReq id=0x3 <addr 
192.168.4
.101> <ms-wins 192.168.4.2> <ms-wins 192.168.4.2>]
Oct 12 10:36:17 merical-1 pppd[10096]: sent [IPCP ConfAck id=0x3 <addr 
192.168.4
.101> <ms-wins 192.168.4.2> <ms-wins 192.168.4.2>]

and

10-12-1999 10:34:44.67 - IPCP : Accepting primary WINS c0a80402.
10-12-1999 10:34:44.67 - IPCP : Accepting backup WINS c0a80402.

which would seem to indicate to me that the client is getting WINS server 
addresses, but they do not appear under winipcfg (for either the ISP or the 
VPN PPP connection). :P

All TCP/IP applications work fine over the VPN link... I can ping/telnet to 
any machine on any of my subnets.  My only problem is with SaMBa... my 
client just is not logging in.  What am I missing?  I'm sure it's something 
really simple....

By the way, I've tried using tcpdump (3.4-10) on various interface 
combinations on the firewall and on the samaba server, and I have not 
detected any traffic going to the samba server from the remote client 
during it's VPN-connection establishment period.  I have so many tcpdump 
logs that I could fill a book with them... If anyone wants to see one, let 
me know what options you want and I will run it and send you the output.

-Jon

	



From ajlill at ajlc.waterloo.on.ca  Tue Oct 12 12:57:32 1999
From: ajlill at ajlc.waterloo.on.ca (ajlill at ajlc.waterloo.on.ca)
Date: Tue Oct 12 12:57:32 1999
Subject: [pptp-server] pptpd loop
Message-ID: <199910121757.RAA07926@matrix.ajlc.waterloo.on.ca>

pptpd just went into an endless loop (filling /var in the process):

Oct 10 14:21:35 gate pptpd[24686]: CTRL: EOF or bad error reading ctrl packet length.
Oct 10 14:21:35 gate pptpd[24686]: CTRL: couldn't read packet header (exit)
Oct 10 14:21:35 gate pptpd[24686]: CTRL: Unexpected control message 0 in disconnect sequence

Here's a patch I think will fix it. In pptpctrl.c, read_pptp_packet
will return 0 for a serious read error, but this doesn't break out of the
loop.

Index: pptpctrl.c
===================================================================
RCS file: /CVSROOT/network/vpn/pptpd/pptpctrl.c,v
retrieving revision 1.1.1.1
diff -c -r1.1.1.1 pptpctrl.c
*** pptpctrl.c	1999/09/05 00:41:42	1.1.1.1
--- pptpctrl.c	1999/10/12 17:39:41
***************
*** 460,465 ****
--- 460,468 ----
  				break;
  			case STOP_CTRL_CONN_RPLY:
  				goto skip;
+ 			case 0:
+ 			    /* Read error, bail */
+ 			    break;
  			default:
  				syslog(LOG_WARNING, "CTRL: Unexpected control message %d in disconnect sequence", pkt);
  			}

--
Tony Lill,                         Tony.Lill at AJLC.Waterloo.ON.CA
President, A. J. Lill Consultants        fax/data (519) 650 3571
539 Grand Valley Dr., Cambridge, Ont. N3H 2S2     (519) 241 2461
--------------- http://www.ajlc.waterloo.on.ca/ ----------------
"Welcome to All Things UNIX, where if it's not UNIX, it's CRAP!"



From jfinnecy at merical.com  Tue Oct 12 13:09:02 1999
From: jfinnecy at merical.com (Jonathan Finnecy)
Date: Tue Oct 12 13:09:02 1999
Subject: [pptp-server] Re: POPTOP and SAMBA... IT WORKS!
In-Reply-To: <199910121758.MAA20799@snaildust.schulte.org>
Message-ID: <4.2.0.58.19991012110541.00982500@192.168.4.1>

WOO HOO it works!

You guys will never believe this (well, actually you probably will).  This 
laptop belongs to the president of the company.  And he likes to use 
AOL.  I decided to test out the direct-dialin PPP connection, and it was 
failing also.  So I removed the AOL Adapter and the direct dial-in PPP 
suddenly worked again and, even better, the VPN connection now works with 
samba no problem.

Moral of the story:  AOL Sucks.

Now, in case he wants his AOL back, does anyone have any idea why the AOL 
adapter would be interfering with other connections that theoretically 
shouldn't even be looking at the AOL stuff?  "TCP/IP->AOL" was set to be 
the default protocol... is this the real culprit?

-Jon



From rowl at earthcorp.com  Tue Oct 12 15:41:52 1999
From: rowl at earthcorp.com (Michael St. Laurent)
Date: Tue Oct 12 15:41:52 1999
Subject: [pptp-server] Only permit connections with Data Encryption?
Message-ID: <3.0.6.32.19991012133958.008e5740@guardian.hartwellcorp.com>

Is there a way for PoPToP/PPP to only accept connections from clients that
will agree to use MPPE data encryption (not chapms-v2, I've already got
that working).  This is configurable at the client end but I'd feel much
better about it if I could configure it at the server end.

--------------------
Michael St. Laurent
Hartwell Corporation




From mals at home.com  Tue Oct 12 16:45:00 1999
From: mals at home.com (Malay Shah)
Date: Tue Oct 12 16:45:00 1999
Subject: [pptp-server] Re: POPTOP and SAMBA... IT WORKS!
References: <4.2.0.58.19991012110541.00982500@192.168.4.1>
Message-ID: <000b01bf14fb$37d4c120$0240a8c0@mtmc1.on.wave.home.com>

Yup, I think that's what it was.  the default protocol option.


----- Original Message -----
From: Jonathan Finnecy <jfinnecy at merical.com>
To: <pptp-server at lists.schulte.org>
Sent: Tuesday, October 12, 1999 2:09 PM
Subject: [pptp-server] Re: POPTOP and SAMBA... IT WORKS!


> WOO HOO it works!
>
> You guys will never believe this (well, actually you probably will).  This
> laptop belongs to the president of the company.  And he likes to use
> AOL.  I decided to test out the direct-dialin PPP connection, and it was
> failing also.  So I removed the AOL Adapter and the direct dial-in PPP
> suddenly worked again and, even better, the VPN connection now works with
> samba no problem.
>
> Moral of the story:  AOL Sucks.
>
> Now, in case he wants his AOL back, does anyone have any idea why the AOL
> adapter would be interfering with other connections that theoretically
> shouldn't even be looking at the AOL stuff?  "TCP/IP->AOL" was set to be
> the default protocol... is this the real culprit?
>
> -Jon
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




From martin at simpli.net  Tue Oct 12 23:11:38 1999
From: martin at simpli.net (=?iso-8859-1?Q?Martin_H=E9bert?=)
Date: Tue Oct 12 23:11:38 1999
Subject: [pptp-server] Error 650
Message-ID: <001301bf1530$e9e3d7e0$0502a8c0@simpli.net>

Hi anyone can help, Im trying to connect to my pptpd server from a windows 98 station and I get error 650 on my windows 98 station here what I get in the log:

Oct 13 00:18:53 server-003 pppd[4993]: pppd 2.3.7 started by root, uid 0
Oct 13 00:18:53 server-003 pppd[4993]: Using interface ppp0
Oct 13 00:18:53 server-003 pppd[4993]: Connect: ppp0 <--> /dev/pts/1
Oct 13 00:19:23 server-003 pppd[4993]: LCP: timeout sending Config-Requests 
Oct 13 00:19:23 server-003 pppd[4993]: Connection terminated.
Oct 13 00:19:23 server-003 pppd[4993]: Connect time 0.5 minutes.
Oct 13 00:19:41 server-003 pptpd[4992]: CTRL: Error with select(), quitting
Oct 13 00:19:41 server-003 pptpd[4992]: CTRL: Client 192.168.2.5 control connection finished
Oct 13 00:19:53 server-003 pppd[4993]: Failed to open /dev/pts/1: No such file or directory
Oct 13 00:20:00 server-003 kernel: PPP: ppp line discipline successfully unregistered 

any clue?

Thanks 

Martin 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991012/cf5ca1f3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Martin H?bert.vcf
Type: text/x-vcard
Size: 376 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991012/cf5ca1f3/attachment.vcf>

From miorm at timon.unops.org.my  Wed Oct 13 06:55:31 1999
From: miorm at timon.unops.org.my (Mior Zaharin Mior)
Date: Wed Oct 13 06:55:31 1999
Subject: [pptp-server] Telnet doesn't work through PPTP
Message-ID: <000101bf1571$c8b50ee0$325dbbca@unops.org.my>

Hai,

I've set up a PPTP gateway on the redhat 6.0 box and it works fine for all
other applications except for TELNET.  I've been reading the archive lists
and my suspicion is either the netmask is incorrect or something as simple
as configuration in the linux box that's not allowing port 23 to come
through to the the tunnel.  I could run groupwise client which is using port
1677, VNC client viewer and web browsing but not TELNET.  What have I done
wrong ? Please advise...Thanks...

Regards,

Mior Zaharin Mior
Network Administrator
United Nations Office for Project Services Asia Office
Kuala Lumpur, Malaysia




From patrickl at cst.ca  Wed Oct 13 10:06:49 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Wed Oct 13 10:06:49 1999
Subject: [pptp-server] Still have problem with PPTPD 1.0.0  and WinNT 4  + SP5(128bits)
Message-ID: <3803CD13.3973F40E@cst.ca>

hi

if i recome compression i have no prob 
but i have't any encryption 


thanks
-------------- next part --------------
An embedded message was scrubbed...
From: Patrick LIN <patrickl at cst.ca>
Subject: Unsupported protocol
Date: Mon, 27 Sep 1999 11:07:37 +0000
Size: 7396
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991013/f21efb24/attachment.mht>

From martin at simpli.net  Wed Oct 13 15:54:07 1999
From: martin at simpli.net (=?iso-8859-1?Q?Martin_H=E9bert?=)
Date: Wed Oct 13 15:54:07 1999
Subject: [pptp-server] help please!
Message-ID: <LOBBIICDEGJOLFANJBHEIEGBCAAA.martin@simpli.net>

Hi!

	Can anyone help please? I have installed redhat 6.0 with pptpd but I can
connect from windows 98 stations I get everytime a error 650 on the windows
client and look what I have in my pptpd.log :

Oct 13 17:00:24 server-003 pptpd[7541]: MGR: Manager process started
Oct 13 17:00:31 server-003 pptpd[7543]: MGR: Launching
/usr/local/sbin/pptpctrl to handle client
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: local address = 192.168.2.2
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: remote address = 192.168.2.200
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: pppd speed = 115200
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: pppd options file =
/etc/ppp/options.pptp
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Client 192.168.2.4 control
connection started
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Received PPTP Control Message
(type: 1)
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Made a START CTRL CONN RPLY
packet
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: I wrote 156 bytes to the
client.
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Sent packet to client
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Received PPTP Control Message
(type: 7)
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Set parameters to 0 maxbps, 16
window size
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Made a OUT CALL RPLY packet
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: pty_fd = 5
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: tty_fd = 6
Oct 13 17:00:31 server-003 pptpd[7544]: CTRL (PPPD Launcher): Connection
speed = 115200
Oct 13 17:00:31 server-003 pptpd[7544]: CTRL (PPPD Launcher): local address
= 192.168.2.2
Oct 13 17:00:31 server-003 pptpd[7544]: CTRL (PPPD Launcher): remote address
= 192.168.2.200
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: I wrote 32 bytes to the
client.
Oct 13 17:00:31 server-003 pptpd[7543]: CTRL: Sent packet to client
Oct 13 17:00:31 server-003 pppd[7544]: pppd 2.3.7 started by root, uid 0
Oct 13 17:00:31 server-003 pppd[7544]: Using interface ppp0
Oct 13 17:00:31 server-003 pppd[7544]: Connect: ppp0 <--> /dev/pts/1
Oct 13 17:00:31 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:31 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 21 7d 20 7d 37 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:34 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:34 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 22 7d 20 7d 37 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:37 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:37 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 23 7d 20 7d 37 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:40 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:40 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 24 7d 20 7d 37 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:43 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:43 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 25 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:46 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:46 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 26 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:49 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:49 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 27 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:52 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:52 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 28 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:55 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:55 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 29 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:00:58 server-003 pppd[7544]: sent [LCP ConfReq id=0x1 <mru 1490>
<asyncmap 0x0> <auth chap MD5> <magic 0x898e75>]
Oct 13 17:00:58 server-003 pppd[7544]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21
7d 2a 7d 20 7d 34 7d 22 7d 26 7d 20 7d 2a 7d 20 7d 20 7d 25 7d 26 7d 20 7d
35 ...
Oct 13 17:01:01 server-003 pppd[7544]: LCP: timeout sending Config-Requests
Oct 13 17:01:01 server-003 pppd[7544]: Connection terminated.
Oct 13 17:01:01 server-003 pppd[7544]: Connect time 0.5 minutes.
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Received PPTP Control Message
(type: 12)
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Made a CALL DISCONNECT RPLY
packet
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Received CALL CLR request
(closing call)
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: I wrote 148 bytes to the
client.
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Sent packet to client
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Error with select(), quitting
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Client 192.168.2.4 control
connection finished
Oct 13 17:01:05 server-003 pptpd[7543]: CTRL: Exiting now
Oct 13 17:01:05 server-003 pptpd[7541]: MGR: Reaped child 7543

I will really appreciate if someone can help!

Thanks

Martin




From pf at sxb.bsf.alcatel.fr  Thu Oct 14 04:50:56 1999
From: pf at sxb.bsf.alcatel.fr (Pascal Fremaux)
Date: Thu Oct 14 04:50:56 1999
Subject: [pptp-server] server server connection
References: <LOBBIICDEGJOLFANJBHEIEGBCAAA.martin@simpli.net>
Message-ID: <3805C38B.9026A68A@sxb.bsf.alcatel.fr>

> Hello,

I'm new on this list and certainly my question is not new.
I've got to do a connection netween two networks via PPTP.
How can I do that with PoPtop ?
Do I have to make one way of the connection with PopTop server and the other way
with the PPTP client already existing ?

I already do that with Microsoft RRAS, there was just one soft for client to server
and server to server connection (VPN). But it seems not to be the same with this.

Pascal Fremaux




From tclick at thegallerygroup.com  Thu Oct 14 14:05:29 1999
From: tclick at thegallerygroup.com (Tony Click, Senior Principal)
Date: Thu Oct 14 14:05:29 1999
Subject: [pptp-server] Any Ideas????
Message-ID: <000001bf1676$afc46920$4bf82ad1@tclick>

I've been working on getting the PPTP VPN operational for days now and I
can't seem to get it quite right.  I may be missing something obvious, but I
thought I'd through it out and see if a few other set of eyes would help.

Where I'm at...
Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use
192.168.15.91-94 local 192.168.16.91-94 remove

Client #1 running Win 98, ethernet card @ a.b.c.d+4

Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @
w.x.y.z

Both clients appear to connect to the server via PPTP, however ping does not
appear to work.

In the case of Client #1, I can ping a.b.c.d without problem since were on
the same net, I cannot ping 192.168.15.91

In Client #2, I cannot ping a.b.c.d or 192.168.15.91

I want to have Samba work also so I know the addresses need to change.  I
don't believe there are any firewalls in place right now.

Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as
to what I'm doing wrong?



----------------------------------------------------------------------------
----

312 West Millbrook Road, Suite 237
Raleigh, NC  27609
919 844-3735  844-2926 fax


SOFTWARE SOLUTIONS GROUP

----------------------------------------------------------------------------
----


Tony Click
Senior Principal

tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991014/cdc16075/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991014/cdc16075/attachment.gif>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pptpd.log
Type: application/octet-stream
Size: 4630 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991014/cdc16075/attachment.obj>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: ppplog.txt
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991014/cdc16075/attachment.txt>

From nickj at coho.net  Thu Oct 14 22:50:52 1999
From: nickj at coho.net (Nick Jones)
Date: Thu Oct 14 22:50:52 1999
Subject: [pptp-server] New problem...
Message-ID: <000e01bf16bf$18b8ebc0$0200a8c0@PowerNetworking.com>

Hey everyone....I compiled and installed ppp-2.3.8 (a seriously large pain to get everything working after, another story by itself..) and now I get a different type of error.  I've seen this when I tried connecting my ISDN up to the internet w/ 2.3.8 (which never worked and forever will never seem to work).  I'm not sure what exactly to do about it and how to even begin to fix it.  Below is part of my messages log w/ the connect attempt in it.

Oct 14 19:56:47 Router pptpd[5658]: MGR: Launching /usr/local/sbin/pptpctrl to handle client
Oct 14 19:56:47 Router pptpd[5658]: CTRL: local address = 192.168.0.100
Oct 14 19:56:47 Router pptpd[5658]: CTRL: remote address = 192.168.0.200
Oct 14 19:56:47 Router pptpd[5658]: CTRL: pppd options file = /etc/pptpd.options
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Client 192.168.0.2 control connection started
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Received PPTP Control Message (type: 1)
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Made a START CTRL CONN RPLY packet
Oct 14 19:56:47 Router pptpd[5658]: CTRL: I wrote 156 bytes to the client.
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Sent packet to client
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Received PPTP Control Message (type: 7)
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Set parameters to 0 maxbps, 16 window size
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Made a OUT CALL RPLY packet
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Starting call (launching pppd, opening GRE)
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Allocating pty/tty pair
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Allocated pty/tty pair (/dev/ptyp1,/dev/ttyp1)
Oct 14 19:56:47 Router pptpd[5658]: CTRL: pty_fd = 6
Oct 14 19:56:47 Router pptpd[5658]: CTRL: tty_fd = 7
Oct 14 19:56:47 Router pptpd[5659]: CTRL (PPPD Launcher): Connection speed = 115200
Oct 14 19:56:47 Router pptpd[5659]: CTRL (PPPD Launcher): local address = 192.168.0.100
Oct 14 19:56:47 Router pptpd[5659]: CTRL (PPPD Launcher): remote address = 192.168.0.200
Oct 14 19:56:47 Router pptpd[5658]: CTRL: I wrote 32 bytes to the client.
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Sent packet to client
Oct 14 19:56:47 Router pppd[5659]: Couldn't stat /dev/115200: Success
Oct 14 19:56:47 Router pptpd[5658]: GRE: read(fd=6,buffer=8064fb8,len=8196) from PTY failed: status = -1 error = I/O error
Oct 14 19:56:47 Router pptpd[5658]: CTRL: PTY read or GRE write failed (pty,gre)=(6,7)
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Client 192.168.0.2 control connection finished
Oct 14 19:56:47 Router pptpd[1193]: MGR: Reaped child 5658
Oct 14 19:56:47 Router pptpd[5658]: CTRL: Exiting now

If someone could please help that'd be great, thanks!

-Nick
nickj at coho.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991014/b049903b/attachment.html>

From perry at tlogic.com  Fri Oct 15 00:31:31 1999
From: perry at tlogic.com (Perry Flinn)
Date: Fri Oct 15 00:31:31 1999
Subject: [pptp-server] Still have problem with PPTPD 1.0.0  and WinNT 4
	  + SP5(128bits)
Message-ID: <199910150531.BAA03584@smtp10.atl.mindspring.net>

In article <3803CD13.3973F40E at cst.ca> , Patrick LIN <patrickl at cst.ca>  
wrote:

> hi
>
> if i recome compression i have no prob
> but i have't any encryption
>
>
> thanks


Microsoft has acknowledged that this is a bug in SP5. There is a hotfix that
has not been generally released but that can be obtained by calling MS
support. I applied it and it did in fact fix the problem (at least for me).
See the following knowledge base article for details:

http://support.microsoft.com/support/kb/articles/q236/5/84.asp



From tmk at netmagic.net  Fri Oct 15 00:59:20 1999
From: tmk at netmagic.net (tmk)
Date: Fri Oct 15 00:59:20 1999
Subject: [pptp-server] Any Ideas????
References: <000001bf1676$afc46920$4bf82ad1@tclick>
Message-ID: <02b801bf16d2$e0b0f560$071c0fc0@lala.net>

what exactly is the problem you are having? resolving samba shares by name? getting pptp to connect?

Kevin
  ----- Original Message ----- 
  From: Tony Click, Senior Principal 
  To: pptp-server at lists.schulte.org 
  Sent: Thursday, October 14, 1999 12:02 PM
  Subject: [pptp-server] Any Ideas????


  I've been working on getting the PPTP VPN operational for days now and I can't seem to get it quite right.  I may be missing something obvious, but I thought I'd through it out and see if a few other set of eyes would help.
   
  Where I'm at...
  Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use 192.168.15.91-94 local 192.168.16.91-94 remove
   
  Client #1 running Win 98, ethernet card @ a.b.c.d+4 
   
  Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @ w.x.y.z
   
  Both clients appear to connect to the server via PPTP, however ping does not appear to work.
   
  In the case of Client #1, I can ping a.b.c.d without problem since were on the same net, I cannot ping 192.168.15.91
   
  In Client #2, I cannot ping a.b.c.d or 192.168.15.91
   
  I want to have Samba work also so I know the addresses need to change.  I don't believe there are any firewalls in place right now.
   
  Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as to what I'm doing wrong?
   
   

------------------------------------------------------------------------------

  312 West Millbrook Road, Suite 237 
  Raleigh, NC  27609 
  919 844-3735  844-2926 fax

   
  SOFTWARE SOLUTIONS GROUP 

------------------------------------------------------------------------------


  Tony Click 
  Senior Principal 

  tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/831b5e9a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/831b5e9a/attachment.gif>

From nico at sonycom.com  Fri Oct 15 01:18:01 1999
From: nico at sonycom.com (Nico De Ranter)
Date: Fri Oct 15 01:18:01 1999
Subject: [pptp-server] Any Ideas????
In-Reply-To: <02b801bf16d2$e0b0f560$071c0fc0@lala.net>
Message-ID: <Pine.GSO.4.10.9910150813000.15986-300001@magnolia.sonytel.be>


Do you have ip-forwarding enabled in the kernel?

check

  cat /proc/sys/net/ipv4/ip_forward 

this should be 1. if not doe something like;

  echo "1" >  /proc/sys/net/ipv4/ip_forward

Nico

--------------------------------------------------------
 Three things are certain: Death, taxes, and lost data.  
             Guess which has occurred.
--------------------------------------------------------
Nico De Ranter
Sony Service Center (SUPC-E/NSSE)
Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne)
1130 Brussel (Bruxelles), Belgium, Europe, Earth
Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86
e-mail: nico.deranter at sonycom.com
-------------- next part --------------
what exactly is the problem you are having? resolving samba shares by name? getting pptp to connect?

Kevin
  ----- Original Message ----- 
  From: Tony Click, Senior Principal 
  To: pptp-server at lists.schulte.org 
  Sent: Thursday, October 14, 1999 12:02 PM
  Subject: [pptp-server] Any Ideas????


  I've been working on getting the PPTP VPN operational for days now and I can't seem to get it quite right.  I may be missing something obvious, but I thought I'd through it out and see if a few other set of eyes would help.
   
  Where I'm at...
  Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use 192.168.15.91-94 local 192.168.16.91-94 remove
   
  Client #1 running Win 98, ethernet card @ a.b.c.d+4 
   
  Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @ w.x.y.z
   
  Both clients appear to connect to the server via PPTP, however ping does not appear to work.
   
  In the case of Client #1, I can ping a.b.c.d without problem since were on the same net, I cannot ping 192.168.15.91
   
  In Client #2, I cannot ping a.b.c.d or 192.168.15.91
   
  I want to have Samba work also so I know the addresses need to change.  I don't believe there are any firewalls in place right now.
   
  Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as to what I'm doing wrong?
   
   

------------------------------------------------------------------------------

  312 West Millbrook Road, Suite 237 
  Raleigh, NC  27609 
  919 844-3735  844-2926 fax

   
  SOFTWARE SOLUTIONS GROUP 

------------------------------------------------------------------------------


  Tony Click 
  Senior Principal 

  tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/01811a06/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: 
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/01811a06/attachment.gif>

From Steve.Cowles at gte.net  Fri Oct 15 02:03:52 1999
From: Steve.Cowles at gte.net (Cowles, Steve)
Date: Fri Oct 15 02:03:52 1999
Subject: [pptp-server] Still have problem with PPTPD 1.0.0  and WinNT 
	4 + SP5(128bits)
Message-ID: <31361954B2ADD2118B0900A0C90AFC3E212A@defiant.dsl.gtei.net>

Thanks Perry

At least this explains why I have not been able to get poptop to work
with all of my systems (NT4.0 SP5, 128Bit). My client systems
authenticate just fine, but thats it... In fact, I have made a couple of
posts to this list, but was still unable to get a single ping through
the vpn with all the suggestions from everyone I was beginning to think
this was a problem with poptop or the ppp patches. 

$%^$*% Microsoft!!!

Steve Cowles

> -----Original Message-----
> From:	Perry Flinn [SMTP:perry at tlogic.com]
> Sent:	Friday, October 15, 1999 12:32 AM
> To:	pptp-server at lists.schulte.org
> Subject:	Re: [pptp-server] Still have problem with PPTPD 1.0.0
> and WinNT 4 + SP5(128bits)
> 
> In article <3803CD13.3973F40E at cst.ca> , Patrick LIN <patrickl at cst.ca>
> 
> wrote:
> 
> > hi
> >
> > if i recome compression i have no prob
> > but i have't any encryption
> >
> >
> > thanks
> 
> 
> Microsoft has acknowledged that this is a bug in SP5. There is a
> hotfix that
> has not been generally released but that can be obtained by calling MS
> support. I applied it and it did in fact fix the problem (at least for
> me).
> See the following knowledge base article for details:
> 
> http://support.microsoft.com/support/kb/articles/q236/5/84.asp
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!



From patrickl at cst.ca  Fri Oct 15 07:45:58 1999
From: patrickl at cst.ca (Patrick LIN)
Date: Fri Oct 15 07:45:58 1999
Subject: [pptp-server] RE: Still have problem with PPTPD 1.0.0 and WinNT 4 + SP5(128bits)
Message-ID: <38064F08.D26ED226@cst.ca>

hi ,

i found this on microsoft web,
obtain , the hotfix, aply the hotfix 
but nothing fix
i still have the same problem
i wil today or tomorrow update the PPPD 2.3.8 to 2.3.10 
and i wil see if the problem is fix or not

if someone need the Hotfix , i can put it in a site soon


thanks 
regards 
PAtrick

> -----Original Message-----
> Microsoft has acknowledged that this is a bug in SP5. There is a hotfix that
> has not been generally released but that can be obtained by calling MS
> support. I applied it and it did in fact fix the problem (at least for me).
> See the following knowledge base article for details:
>
> http://support.microsoft.com/support/kb/articles/q236/5/84.asp



From tclick at intrex.net  Fri Oct 15 08:46:48 1999
From: tclick at intrex.net (Tony Click)
Date: Fri Oct 15 08:46:48 1999
Subject: [pptp-server] Any Ideas????
In-Reply-To: <02b801bf16d2$e0b0f560$071c0fc0@lala.net>
Message-ID: <000c01bf1713$b4f907a0$02ffa8c0@thegallerygroup.com>

Well I've tried to connect to Samba shares and that doesn't work over the VPN,
so I put that aside and simply tried to ping.  From all outward appearances, I'm
connected, but I still cannot ping either machine.  So I'm having two problems,
but I think the first to be solved is Why does it appear I have a connection,
but it doesn't work?
  -----Original Message-----
  From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
  Sent: Friday, October 15, 1999 2:03 AM
  To: tclick at thegallerygroup.com; pptp-server at lists.schulte.org
  Subject: Re: [pptp-server] Any Ideas????


  what exactly is the problem you are having? resolving samba shares by name?
getting pptp to connect?

  Kevin
    ----- Original Message -----
    From: Tony Click, Senior Principal
    To: pptp-server at lists.schulte.org
    Sent: Thursday, October 14, 1999 12:02 PM
    Subject: [pptp-server] Any Ideas????


    I've been working on getting the PPTP VPN operational for days now and I
can't seem to get it quite right.  I may be missing something obvious, but I
thought I'd through it out and see if a few other set of eyes would help.

    Where I'm at...
    Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use
192.168.15.91-94 local 192.168.16.91-94 remove

    Client #1 running Win 98, ethernet card @ a.b.c.d+4

    Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @
w.x.y.z

    Both clients appear to connect to the server via PPTP, however ping does not
appear to work.

    In the case of Client #1, I can ping a.b.c.d without problem since were on
the same net, I cannot ping 192.168.15.91

    In Client #2, I cannot ping a.b.c.d or 192.168.15.91

    I want to have Samba work also so I know the addresses need to change.  I
don't believe there are any firewalls in place right now.

    Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as
to what I'm doing wrong?



----------------------------------------------------------------------------

    312 West Millbrook Road, Suite 237
    Raleigh, NC  27609
    919 844-3735  844-2926 fax


    SOFTWARE SOLUTIONS GROUP

----------------------------------------------------------------------------


    Tony Click
    Senior Principal

    tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/4144d265/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991015/4144d265/attachment.gif>

From simsong at vineyard.net  Fri Oct 15 09:49:14 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Fri Oct 15 09:49:14 1999
Subject: [pptp-server] Any Ideas????
References: <000c01bf1713$b4f907a0$02ffa8c0@thegallerygroup.com>
Message-ID: <006701bf171c$4ddb3d00$0300010a@sandstorm.net>

I have precisely the same problem. I can bring up the PPTP VPN. I can ping
and telnet, but SAMBA doesn't work. I can't use \\ipaddr\ or \\servername\
Looking at the samba log, there's nothing there.



----- Original Message -----
From: Tony Click
To: pptp-server at lists.schulte.org
Sent: Friday, October 15, 1999 9:46 AM
Subject: RE: [pptp-server] Any Ideas????


Well I've tried to connect to Samba shares and that doesn't work over the
VPN, so I put that aside and simply tried to ping.  From all outward
appearances, I'm connected, but I still cannot ping either machine.  So I'm
having two problems, but I think the first to be solved is Why does it
appear I have a connection, but it doesn't work?
-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
Sent: Friday, October 15, 1999 2:03 AM
To: tclick at thegallerygroup.com; pptp-server at lists.schulte.org
Subject: Re: [pptp-server] Any Ideas????


what exactly is the problem you are having? resolving samba shares by name?
getting pptp to connect?

Kevin
----- Original Message -----
From: Tony Click, Senior Principal
To: pptp-server at lists.schulte.org
Sent: Thursday, October 14, 1999 12:02 PM
Subject: [pptp-server] Any Ideas????


I've been working on getting the PPTP VPN operational for days now and I
can't seem to get it quite right.  I may be missing something obvious, but I
thought I'd through it out and see if a few other set of eyes would help.

Where I'm at...
Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use
192.168.15.91-94 local 192.168.16.91-94 remove

Client #1 running Win 98, ethernet card @ a.b.c.d+4

Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @
w.x.y.z

Both clients appear to connect to the server via PPTP, however ping does not
appear to work.

In the case of Client #1, I can ping a.b.c.d without problem since were on
the same net, I cannot ping 192.168.15.91

In Client #2, I cannot ping a.b.c.d or 192.168.15.91

I want to have Samba work also so I know the addresses need to change.  I
don't believe there are any firewalls in place right now.

Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as
to what I'm doing wrong?





312 West Millbrook Road, Suite 237
Raleigh, NC  27609
919 844-3735  844-2926 fax

SOFTWARE SOLUTIONS GROUP



Tony Click
Senior Principal
tclick at thegallerygroup.com




From tmk at netmagic.net  Sat Oct 16 03:17:26 1999
From: tmk at netmagic.net (tmk)
Date: Sat Oct 16 03:17:26 1999
Subject: [pptp-server] Any Ideas????
References: <000c01bf1713$b4f907a0$02ffa8c0@thegallerygroup.com>
Message-ID: <002301bf17af$52f0ed60$071c0fc0@lala.net>

you most likely 

a) do not have ip_forwarding enabled (echo 1 > /proc/sys/net/ipv4/ip_forward)

b) have a routing problem. check your routing tables 

Kevin
  ----- Original Message ----- 
  From: Tony Click 
  To: pptp-server at lists.schulte.org 
  Sent: Friday, October 15, 1999 6:46 AM
  Subject: RE: [pptp-server] Any Ideas????


  Well I've tried to connect to Samba shares and that doesn't work over the VPN, so I put that aside and simply tried to ping.  From all outward appearances, I'm connected, but I still cannot ping either machine.  So I'm having two problems, but I think the first to be solved is Why does it appear I have a connection, but it doesn't work?
    -----Original Message-----
    From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
    Sent: Friday, October 15, 1999 2:03 AM
    To: tclick at thegallerygroup.com; pptp-server at lists.schulte.org
    Subject: Re: [pptp-server] Any Ideas????


    what exactly is the problem you are having? resolving samba shares by name? getting pptp to connect?

    Kevin
      ----- Original Message ----- 
      From: Tony Click, Senior Principal 
      To: pptp-server at lists.schulte.org 
      Sent: Thursday, October 14, 1999 12:02 PM
      Subject: [pptp-server] Any Ideas????


      I've been working on getting the PPTP VPN operational for days now and I can't seem to get it quite right.  I may be missing something obvious, but I thought I'd through it out and see if a few other set of eyes would help.
       
      Where I'm at...
      Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use 192.168.15.91-94 local 192.168.16.91-94 remove
       
      Client #1 running Win 98, ethernet card @ a.b.c.d+4 
       
      Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @ w.x.y.z
       
      Both clients appear to connect to the server via PPTP, however ping does not appear to work.
       
      In the case of Client #1, I can ping a.b.c.d without problem since were on the same net, I cannot ping 192.168.15.91
       
      In Client #2, I cannot ping a.b.c.d or 192.168.15.91
       
      I want to have Samba work also so I know the addresses need to change.  I don't believe there are any firewalls in place right now.
       
      Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as to what I'm doing wrong?
       
       

--------------------------------------------------------------------------

      312 West Millbrook Road, Suite 237 
      Raleigh, NC  27609 
      919 844-3735  844-2926 fax

       
      SOFTWARE SOLUTIONS GROUP 

--------------------------------------------------------------------------


      Tony Click 
      Senior Principal 

      tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/4c43c851/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/4c43c851/attachment.gif>

From simsong at vineyard.net  Sat Oct 16 07:28:55 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Sat Oct 16 07:28:55 1999
Subject: [pptp-server] Any Ideas????
References: <000c01bf1713$b4f907a0$02ffa8c0@thegallerygroup.com> <002301bf17af$52f0ed60$071c0fc0@lala.net>
Message-ID: <00a201bf17d1$6333b500$3d5ce8c7@vineyard.net>

I have the same problem, but I do not think that your diagnosis is correct:

1. Routing shouldn't matter, because pptp is running on the same server as the samba server. 
2. I do have ip_forwarding enabled.
3. I can "telnet" and ssh to the server that is running the samba share, I just can't samba to it. 


I'm really confused. 
  ----- Original Message ----- 
  From: tmk 
  To: pptp-server at lists.schulte.org 
  Sent: Saturday, October 16, 1999 4:20 AM
  Subject: Re: [pptp-server] Any Ideas????


  you most likely 

  a) do not have ip_forwarding enabled (echo 1 > /proc/sys/net/ipv4/ip_forward)

  b) have a routing problem. check your routing tables 

  Kevin
    ----- Original Message ----- 
    From: Tony Click 
    To: pptp-server at lists.schulte.org 
    Sent: Friday, October 15, 1999 6:46 AM
    Subject: RE: [pptp-server] Any Ideas????


    Well I've tried to connect to Samba shares and that doesn't work over the VPN, so I put that aside and simply tried to ping.  From all outward appearances, I'm connected, but I still cannot ping either machine.  So I'm having two problems, but I think the first to be solved is Why does it appear I have a connection, but it doesn't work?
      -----Original Message-----
      From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
      Sent: Friday, October 15, 1999 2:03 AM
      To: tclick at thegallerygroup.com; pptp-server at lists.schulte.org
      Subject: Re: [pptp-server] Any Ideas????


      what exactly is the problem you are having? resolving samba shares by name? getting pptp to connect?

      Kevin
        ----- Original Message ----- 
        From: Tony Click, Senior Principal 
        To: pptp-server at lists.schulte.org 
        Sent: Thursday, October 14, 1999 12:02 PM
        Subject: [pptp-server] Any Ideas????


        I've been working on getting the PPTP VPN operational for days now and I can't seem to get it quite right.  I may be missing something obvious, but I thought I'd through it out and see if a few other set of eyes would help.
         
        Where I'm at...
        Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use 192.168.15.91-94 local 192.168.16.91-94 remove
         
        Client #1 running Win 98, ethernet card @ a.b.c.d+4 
         
        Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @ w.x.y.z
         
        Both clients appear to connect to the server via PPTP, however ping does not appear to work.
         
        In the case of Client #1, I can ping a.b.c.d without problem since were on the same net, I cannot ping 192.168.15.91
         
        In Client #2, I cannot ping a.b.c.d or 192.168.15.91
         
        I want to have Samba work also so I know the addresses need to change.  I don't believe there are any firewalls in place right now.
         
        Here are the ppplog from windows and pptpd.log - Anyone got any thoughts as to what I'm doing wrong?
         
         

------------------------------------------------------------------------

        312 West Millbrook Road, Suite 237 
        Raleigh, NC  27609 
        919 844-3735  844-2926 fax

         
        SOFTWARE SOLUTIONS GROUP 

------------------------------------------------------------------------


        Tony Click 
        Senior Principal 

        tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/6c0e5017/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/6c0e5017/attachment.gif>

From tclick at intrex.net  Sat Oct 16 10:06:28 1999
From: tclick at intrex.net (Tony Click)
Date: Sat Oct 16 10:06:28 1999
Subject: [pptp-server] Any Ideas????
In-Reply-To: <00a201bf17d1$6333b500$3d5ce8c7@vineyard.net>
Message-ID: <000601bf17e7$fd141820$02ffa8c0@thegallerygroup.com>

I don't think we have the same problem.  Samba doesn't work for my either (over
the VPN).  But I also can't ping, telnet, etc.  Everything appears to be
connected, but it just isn't working.

I've checked forwarding, which is ok.  Here's where my I'm ignorant.  How do I
check routing?

I've also discovered something else which may help.  I just tried this; I can't
ping my server from the server itself.  If I ping it or telnet to it from any
client on the network, everything behaves as expected, but if I ping the server
from itself I get a "ping: sendto: Network is unreachable" error.   Any idea why
that would happen?  Could that be related to my VPN problem?

-Tony
  -----Original Message-----
  From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Simson L. Garfinkel
  Sent: Saturday, October 16, 1999 7:59 AM
  To: tmk; pptp-server at lists.schulte.org
  Subject: Re: [pptp-server] Any Ideas????


  I have the same problem, but I do not think that your diagnosis is correct:

  1. Routing shouldn't matter, because pptp is running on the same server as the
samba server.
  2. I do have ip_forwarding enabled.
  3. I can "telnet" and ssh to the server that is running the samba share, I
just can't samba to it.


  I'm really confused.
    ----- Original Message -----
    From: tmk
    To: pptp-server at lists.schulte.org
    Sent: Saturday, October 16, 1999 4:20 AM
    Subject: Re: [pptp-server] Any Ideas????


    you most likely

    a) do not have ip_forwarding enabled (echo 1 >
/proc/sys/net/ipv4/ip_forward)

    b) have a routing problem. check your routing tables

    Kevin
      ----- Original Message -----
      From: Tony Click
      To: pptp-server at lists.schulte.org
      Sent: Friday, October 15, 1999 6:46 AM
      Subject: RE: [pptp-server] Any Ideas????


      Well I've tried to connect to Samba shares and that doesn't work over the
VPN, so I put that aside and simply tried to ping.  From all outward
appearances, I'm connected, but I still cannot ping either machine.  So I'm
having two problems, but I think the first to be solved is Why does it appear I
have a connection, but it doesn't work?
        -----Original Message-----
        From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
        Sent: Friday, October 15, 1999 2:03 AM
        To: tclick at thegallerygroup.com; pptp-server at lists.schulte.org
        Subject: Re: [pptp-server] Any Ideas????


        what exactly is the problem you are having? resolving samba shares by
name? getting pptp to connect?

        Kevin
          ----- Original Message -----
          From: Tony Click, Senior Principal
          To: pptp-server at lists.schulte.org
          Sent: Thursday, October 14, 1999 12:02 PM
          Subject: [pptp-server] Any Ideas????


          I've been working on getting the PPTP VPN operational for days now and
I can't seem to get it quite right.  I may be missing something obvious, but I
thought I'd through it out and see if a few other set of eyes would help.

          Where I'm at...
          Server running pptpd, smbd, nmbd @ a.b.c.d - pppd configured to use
192.168.15.91-94 local 192.168.16.91-94 remove

          Client #1 running Win 98, ethernet card @ a.b.c.d+4

          Client #2 running Win 98, ethernet card @ 192.168.255.2 through NAT @
w.x.y.z

          Both clients appear to connect to the server via PPTP, however ping
does not appear to work.

          In the case of Client #1, I can ping a.b.c.d without problem since
were on the same net, I cannot ping 192.168.15.91

          In Client #2, I cannot ping a.b.c.d or 192.168.15.91

          I want to have Samba work also so I know the addresses need to change.
I don't believe there are any firewalls in place right now.

          Here are the ppplog from windows and pptpd.log - Anyone got any
thoughts as to what I'm doing wrong?



----------------------------------------------------------------------

          312 West Millbrook Road, Suite 237
          Raleigh, NC  27609
          919 844-3735  844-2926 fax


          SOFTWARE SOLUTIONS GROUP

----------------------------------------------------------------------


          Tony Click
          Senior Principal

          tclick at thegallerygroup.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/a1628158/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.gif
Type: image/gif
Size: 1936 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991016/a1628158/attachment.gif>

From simsong at vineyard.net  Sat Oct 16 21:44:11 1999
From: simsong at vineyard.net (Simson L. Garfinkel)
Date: Sat Oct 16 21:44:11 1999
Subject: [pptp-server] Re: PoPToP/SaMBa problems
References: <4.2.0.58.19991012095353.0097f100@192.168.4.1>
Message-ID: <026e01bf1848$b99f4cc0$3d5ce8c7@vineyard.net>

Jonathan,

You are having precisely the same problem that I was having. I have now sort-of
solved my problems.

Here is what I had to do to get SAMBA working, once I could telnet and ping
over the PPTP VPN:

1. I needed to make changes in my smb.conf file to allow access to the
interface used by the PPP daemon. My pptpd.conf file looks like this:

debug
speed 115200
localip 192.168.0.1
remoteip 192.168.1.1-255


So I needed to give access to the IP address 192.168.0.1 to samba. I did that
with this:

hosts allow = 10. 127. 192.168.
interfaces = 10.0.0.1 127.0.0.1 192.168.0.1/24


2. I needed to create valid reverse DNS for the address 192.168.0.1.

3. Browsing still doesn't work. Nor does typing \\walden\simsong (the name of
the share) in my address bar. But this did work:

    a. Open up a MSDOS command window.
    b. Net use \\walden\simsong
    c. Now, once it is mounted, you can access it.






From geoff at gnaa.net  Sun Oct 17 00:23:21 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 00:23:21 1999
Subject: [pptp-server] Not able to start PPPd
Message-ID: <001c01bf185f$d78e4c10$020a10ac@titan.gnaa.net>

Any ideas why I can't get the pppd started.  I followed the
instructions, but I must be missing something.

I am using ppp 2.3.8 with the MPPE patches.
Pptp 1.0.0
Linux 2.2.12., Redhat 6.1.

I get this error output.


Oct 16 21:54:01 saturn pptpd[637]: CTRL: Client 192.168.1.2 control
connection started
Oct 16 21:54:01 saturn pptpd[637]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 16 21:54:01 saturn pptpd[638]: CTRL (PPPD Launcher): Failed to launch
PPP daemon.
Oct 16 21:54:01 saturn pptpd[638]: CTRL: PPPD launch failed!
Oct 16 21:54:01 saturn pptpd[637]: GRE: read(fd=4,buffer=804d7c0,len=8196)
from PTY failed: status =
 -1 error = Input/output error
Oct 16 21:54:01 saturn pptpd[637]: CTRL: PTY read or GRE write failed
(pty,gre)=(4,5)
Oct 16 21:54:01 saturn pptpd[637]: CTRL: Client 192.168.1.2 control
connection finished
Oct 16 21:58:48 saturn pppd[645]: pppd 2.3.8 started by gnordli, uid 0
Oct 16 21:58:48 saturn pppd[645]: Using interface ppp0
Oct 16 21:58:48 saturn pppd[645]: Connect: ppp0 <--> /dev/pts/0
Oct 16 21:59:18 saturn pppd[645]: LCP: timeout sending Config-Requests
Oct 16 21:59:18 saturn pppd[645]: Connection terminated.
Oct 16 21:59:18 saturn pppd[645]: Receive serial link is not 8-bit clean:
Oct 16 21:59:18 saturn pppd[645]: Problem: all had bit 7 set to 0
Oct 16 21:59:18 saturn pppd[645]: Exit.
Oct 16 22:07:38 saturn pppd[657]: pppd 2.3.8 started by gnordli, uid 0
Oct 16 22:07:38 saturn pppd[657]: Using interface ppp0
Oct 16 22:07:38 saturn pppd[657]: Connect: ppp0 <--> /dev/pts/0
Oct 16 22:08:08 saturn pppd[657]: LCP: timeout sending Config-Requests
Oct 16 22:08:08 saturn pppd[657]: Connection terminated.
Oct 16 22:08:08 saturn pppd[657]: Exit.

thanks,

Geoff




From geoff at gnaa.net  Sun Oct 17 00:49:30 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 00:49:30 1999
Subject: [pptp-server] Not able to start PPPd
In-Reply-To: <001c01bf185f$d78e4c10$020a10ac@titan.gnaa.net>
Message-ID: <001d01bf1863$82d85db0$020a10ac@titan.gnaa.net>

Problem fixed.  I just need to issue a:  make; make install
in the ppp2.3.8 source directory.

I wasn't included in some of the docs that I read.

thanks,

geoff

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> Sent: Saturday, October 16, 1999 10:24 PM
> To: Pptp-Server List (E-mail)
> Subject: [pptp-server] Not able to start PPPd
> 
> 
> Any ideas why I can't get the pppd started.  I followed the
> instructions, but I must be missing something.
> 
> I am using ppp 2.3.8 with the MPPE patches.
> Pptp 1.0.0
> Linux 2.2.12., Redhat 6.1.
> 
> I get this error output.
> 
> 
> Oct 16 21:54:01 saturn pptpd[637]: CTRL: Client 192.168.1.2 control
> connection started
> Oct 16 21:54:01 saturn pptpd[637]: CTRL: Starting call 
> (launching pppd,
> opening GRE)
> Oct 16 21:54:01 saturn pptpd[638]: CTRL (PPPD Launcher): 
> Failed to launch
> PPP daemon.
> Oct 16 21:54:01 saturn pptpd[638]: CTRL: PPPD launch failed!
> Oct 16 21:54:01 saturn pptpd[637]: GRE: 
> read(fd=4,buffer=804d7c0,len=8196)
> from PTY failed: status =
>  -1 error = Input/output error
> Oct 16 21:54:01 saturn pptpd[637]: CTRL: PTY read or GRE write failed
> (pty,gre)=(4,5)
> Oct 16 21:54:01 saturn pptpd[637]: CTRL: Client 192.168.1.2 control
> connection finished
> Oct 16 21:58:48 saturn pppd[645]: pppd 2.3.8 started by gnordli, uid 0
> Oct 16 21:58:48 saturn pppd[645]: Using interface ppp0
> Oct 16 21:58:48 saturn pppd[645]: Connect: ppp0 <--> /dev/pts/0
> Oct 16 21:59:18 saturn pppd[645]: LCP: timeout sending Config-Requests
> Oct 16 21:59:18 saturn pppd[645]: Connection terminated.
> Oct 16 21:59:18 saturn pppd[645]: Receive serial link is not 
> 8-bit clean:
> Oct 16 21:59:18 saturn pppd[645]: Problem: all had bit 7 set to 0
> Oct 16 21:59:18 saturn pppd[645]: Exit.
> Oct 16 22:07:38 saturn pppd[657]: pppd 2.3.8 started by gnordli, uid 0
> Oct 16 22:07:38 saturn pppd[657]: Using interface ppp0
> Oct 16 22:07:38 saturn pppd[657]: Connect: ppp0 <--> /dev/pts/0
> Oct 16 22:08:08 saturn pppd[657]: LCP: timeout sending Config-Requests
> Oct 16 22:08:08 saturn pppd[657]: Connection terminated.
> Oct 16 22:08:08 saturn pppd[657]: Exit.
> 
> thanks,
> 
> Geoff
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 



From geoff at gnaa.net  Sun Oct 17 00:54:22 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 00:54:22 1999
Subject: [pptp-server] Extended Instructions-HTML
In-Reply-To: <EDA23054FDC0D1119842006008CEAB4830D6A3@GLIATECHUSA1>
Message-ID: <001e01bf1864$28b4ff90$020a10ac@titan.gnaa.net>

Thanks for some excellent docs.

I would like to add some steps--that I missed.

In Section 6 you have these commands.
P)    Type "cd /usr/src/linux/ppp-2.3.8"
Q)    Type "patch ?p1 < ppp-2.3.8-mppe-others-norc4_TH7.diff.gz"
R)    Type "./configure"
S)    Type "cd /usr/src/linux/ppp-2.3.8/linux"
T)    Type "./kinstall.sh"

I had to also issue a

make
make install

to get the pppd functioning correctly.


geoff



> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of
> Michael Walter
> Sent: Thursday, August 12, 1999 12:01 PM
> To: 'pptp-server at lists.schulte.org'
> Subject: [pptp-server] Extended Instructions-HTML
>
>
> Hello again all,
> Took a bit longer than a half an hour(Word does not convert
> to HTML nicely)
> and I am sure that I have made a few mistakes(Had to
> basically re-format the
> whole thing) so let me know if you see anything that needs changed.
> Cheers,
>
> Michael J. Walter mcse
> Gliatech, Inc.
> walterm at gliatech.com
> mwalter at drwalter.com
>  <<RedhatPoptopHOWTO.html>>
>




From kseel at utcorp.com  Sun Oct 17 10:35:04 1999
From: kseel at utcorp.com (Kurt Seel)
Date: Sun Oct 17 10:35:04 1999
Subject: [pptp-server] freebsd port - how to finish?
Message-ID: <3809ED0E.3F42F80E@utcorp.com>

 Well FreeBSD now has a port of poptop. It uses user level ppp. But user
ppp
has no crypto in it. I've talked to the author of of FBSD u-ppp and he
says
that he would need to sign an NDA or obtain permission from MS to
implement
it. How did the poptop group put the crypto into the kernel (has to be
GPL,
right?) without encumbrance?

--
"Signature file failed Preliminary Design Review.
Feasibility of a new signature is currently being evaluated."






From rdale at digital-mission.com  Sun Oct 17 11:33:29 1999
From: rdale at digital-mission.com (Robert Dale)
Date: Sun Oct 17 11:33:29 1999
Subject: [pptp-server] freebsd port - how to finish?
In-Reply-To: <3809ED0E.3F42F80E@utcorp.com>
Message-ID: <Pine.LNX.4.04.9910171230001.21343-100000@enterprise.phalanx.net>

On Sun, 17 Oct 1999, Kurt Seel wrote:
> 
> How did the poptop group put the crypto into the kernel (has to be
> GPL, right?) without encumbrance?

Not the official word, but this is provided as a patch and compiled
as a module.  It's not included with or compiled into the kernel, therefore
does not require to be GPL'ed.

-- 
Robert Dale

                   Digital Mission
            http://www.digital-mission.com






From tclick at intrex.net  Sun Oct 17 12:34:49 1999
From: tclick at intrex.net (Tony Click)
Date: Sun Oct 17 12:34:49 1999
Subject: [pptp-server] Its working now
In-Reply-To: <Pine.LNX.4.04.9910171230001.21343-100000@enterprise.phalanx.net>
Message-ID: <000001bf18c5$e0b5d4a0$47f82ad1@thegallerygroup.com>

Thanks for the suggestions - I had a routing problem and needed another entry in
the interfaces line of smb.conf

Everything is working great now, browsing, connection, etc.

-Tony




From geoff at gnaa.net  Sun Oct 17 14:58:49 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 14:58:49 1999
Subject: [pptp-server] unable to ping hosts on network
Message-ID: <002301bf18da$1f2fd9b0$020a10ac@titan.gnaa.net>

I have attached my pptplog describing a session.

I am unable to ping into the network.

Any ideas why this might happen? 

The proxy arp is eth0, which is the internal
network (172.16.0.0), which I assume is correct,
since I think it is responsible for replying 
ARP requests on local network.

I actually had it working temporarily last night,
but then it broke. 

thanks,

BTW I am also unable to get the encryption set up
with the NT 4 SP5 client.  It says,  "the local
computer does not support encryption".

Any ideas with that?

Geoff Nordli
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pptpd.log
Type: application/octet-stream
Size: 3374 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991017/c156ce3b/attachment.obj>

From geoff at gnaa.net  Sun Oct 17 15:12:47 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 15:12:47 1999
Subject: [pptp-server] unable to ping hosts on network
In-Reply-To: <002301bf18da$1f2fd9b0$020a10ac@titan.gnaa.net>
Message-ID: <002801bf18dc$13632680$020a10ac@titan.gnaa.net>

some more information.

Proxy_arp, and ip_forward have the value of 1 in the proc
file system.

In regards to the client not being able to connect with
an encrypted tunnel.

The ppp_mpppe module is loaded

thanks,

geoff

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> Sent: Sunday, October 17, 1999 12:59 PM
> To: Pptp-Server List (E-mail)
> Subject: [pptp-server] unable to ping hosts on network
> 
> 
> I have attached my pptplog describing a session.
> 
> I am unable to ping into the network.
> 
> Any ideas why this might happen? 
> 
> The proxy arp is eth0, which is the internal
> network (172.16.0.0), which I assume is correct,
> since I think it is responsible for replying 
> ARP requests on local network.
> 
> I actually had it working temporarily last night,
> but then it broke. 
> 
> thanks,
> 
> BTW I am also unable to get the encryption set up
> with the NT 4 SP5 client.  It says,  "the local
> computer does not support encryption".
> 
> Any ideas with that?
> 
> Geoff Nordli



From carey at itfreedom.com  Sun Oct 17 18:08:16 1999
From: carey at itfreedom.com (Carey Jung)
Date: Sun Oct 17 18:08:16 1999
Subject: [pptp-server] unable to ping hosts on network
In-Reply-To: <002301bf18da$1f2fd9b0$020a10ac@titan.gnaa.net>
Message-ID: <NDBBKMIPMLIGJMHGCCNAAEBOCBAA.carey@itfreedom.com>

This sounds somewhat like a known bug in NT SP5.  Check out Microsoft
knowledge base article Q236584.  Here's an excerpt.  Sound like your
problem?

SYMPTOMS
After you upgrade to Windows NT 4.0 Service Pack 5 (SP5), Windows NT
4.0-based 128-bit Remote Access Services (RAS) clients can successfully dial
in to a RAS server, but cannot access the server's network adapter or any
other device on the network. The issue occurs when you are using the Require
Data Encryption option with the Require Microsoft Encrypted Authentication
setting. The client is unable to ping any TCP/IP interface on the remote
network, including the Microsoft Virtual Private Networking Adapter
(NDISWAN) IP address that the server assigned to the client. This behavior
does not occur with 40-bit RAS clients or Microsoft Windows 95/Microsoft
Windows 98 clients.

Routing and Remote Access Services (RRAS) Dial-on-Demand (DOD) connections
that use direct dial (Point-to-Point Protocol, or PPP), not Point-to-Point
Tunneling Protocol (PPTP), are also affected when you are using 128-bit
updates with the Require Data Encryption option with the Require Microsoft
Encrypted Authentication setting

RESOLUTION
A supported fix that corrects this problem is now available from Microsoft,
but it has not been fully regression tested and should be applied only to
systems experiencing this specific problem. If you are not severely affected
by this specific problem, Microsoft recommends that you wait for the next
Windows NT 4.0 service pack that contains this fix.

To resolve this problem immediately, contact Microsoft Product Support
Services to obtain the fix. For a complete list of Microsoft Product Support
Services phone numbers and information on support costs, please go to the
following address on the World Wide Web:


http://www.microsoft.com/support/supportnet/overview/overview.asp



> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> Sent: Sunday, October 17, 1999 2:59 PM
> To: Pptp-Server List (E-mail)
> Subject: [pptp-server] unable to ping hosts on network
>
>
> I have attached my pptplog describing a session.
>
> I am unable to ping into the network.
>
> Any ideas why this might happen?
>
> The proxy arp is eth0, which is the internal
> network (172.16.0.0), which I assume is correct,
> since I think it is responsible for replying
> ARP requests on local network.
>
> I actually had it working temporarily last night,
> but then it broke.
>
> thanks,
>
> BTW I am also unable to get the encryption set up
> with the NT 4 SP5 client.  It says,  "the local
> computer does not support encryption".
>
> Any ideas with that?
>
> Geoff Nordli




From carey at itfreedom.com  Sun Oct 17 18:17:06 1999
From: carey at itfreedom.com (Carey Jung)
Date: Sun Oct 17 18:17:06 1999
Subject: [pptp-server] Domain logins from a different domain
Message-ID: <NDBBKMIPMLIGJMHGCCNAEEBOCBAA.carey@itfreedom.com>

Hi all,

I don't think this is purely a pptpd issue, but could someone please help
solve the following problem.  I have an NT workstation logged into a work
domain with one login, call it WORK\worklogin, and I want to create a VPN
connection to my home network and access Samba resources.  Call the home
login HOME\homelogin.  How do I do this?  I don't think I should have to
change my workstation's host domain, should I?  What needs to go into the
ppp chap-secrets and options files?

BTW, I can successfully login to my home network a phone dial-up to my ISP,
so I know the basics are working.  In that situation, though, I have my
workstation's domain set to my HOME domain.

thanks

----------------------------------------------------------------------
Carey Jung                                 IT Freedom
carey at itfreedom.com                        8127 Mesa Dr, B206, PMB 360
(512)502.1171, fax (512)349.2165           Austin, TX 78759-8632






From geoff at gnaa.net  Sun Oct 17 18:24:38 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 18:24:38 1999
Subject: [pptp-server] unable to ping hosts on network
In-Reply-To: <NDBBKMIPMLIGJMHGCCNAAEBOCBAA.carey@itfreedom.com>
Message-ID: <004301bf18f6$e14d8a80$020a10ac@titan.gnaa.net>

Does anyone happen to have a link for the fix.

I can't find it on the MS ftp server.

> -----Original Message-----
> From: Carey Jung [mailto:carey at itfreedom.com]
> Sent: Sunday, October 17, 1999 4:06 PM
> To: geoff at gnaa.net; Pptp-Server List (E-mail)
> Subject: RE: [pptp-server] unable to ping hosts on network
> 
> 
> This sounds somewhat like a known bug in NT SP5.  Check out Microsoft
> knowledge base article Q236584.  Here's an excerpt.  Sound like your
> problem?
> 
> SYMPTOMS
> After you upgrade to Windows NT 4.0 Service Pack 5 (SP5), Windows NT
> 4.0-based 128-bit Remote Access Services (RAS) clients can 
> successfully dial
> in to a RAS server, but cannot access the server's network 
> adapter or any
> other device on the network. The issue occurs when you are 
> using the Require
> Data Encryption option with the Require Microsoft Encrypted 
> Authentication
> setting. The client is unable to ping any TCP/IP interface on 
> the remote
> network, including the Microsoft Virtual Private Networking Adapter
> (NDISWAN) IP address that the server assigned to the client. 
> This behavior
> does not occur with 40-bit RAS clients or Microsoft Windows 
> 95/Microsoft
> Windows 98 clients.
> 
> Routing and Remote Access Services (RRAS) Dial-on-Demand 
> (DOD) connections
> that use direct dial (Point-to-Point Protocol, or PPP), not 
> Point-to-Point
> Tunneling Protocol (PPTP), are also affected when you are 
> using 128-bit
> updates with the Require Data Encryption option with the 
> Require Microsoft
> Encrypted Authentication setting
> 
> RESOLUTION
> A supported fix that corrects this problem is now available 
> from Microsoft,
> but it has not been fully regression tested and should be 
> applied only to
> systems experiencing this specific problem. If you are not 
> severely affected
> by this specific problem, Microsoft recommends that you wait 
> for the next
> Windows NT 4.0 service pack that contains this fix.
> 
> To resolve this problem immediately, contact Microsoft Product Support
> Services to obtain the fix. For a complete list of Microsoft 
> Product Support
> Services phone numbers and information on support costs, 
> please go to the
> following address on the World Wide Web:
> 
> 
http://www.microsoft.com/support/supportnet/overview/overview.asp



> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> Sent: Sunday, October 17, 1999 2:59 PM
> To: Pptp-Server List (E-mail)
> Subject: [pptp-server] unable to ping hosts on network
>
>
> I have attached my pptplog describing a session.
>
> I am unable to ping into the network.
>
> Any ideas why this might happen?
>
> The proxy arp is eth0, which is the internal
> network (172.16.0.0), which I assume is correct,
> since I think it is responsible for replying
> ARP requests on local network.
>
> I actually had it working temporarily last night,
> but then it broke.
>
> thanks,
>
> BTW I am also unable to get the encryption set up
> with the NT 4 SP5 client.  It says,  "the local
> computer does not support encryption".
>
> Any ideas with that?
>
> Geoff Nordli





From geoff at gnaa.net  Sun Oct 17 19:31:09 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Sun Oct 17 19:31:09 1999
Subject: [pptp-server] compiling with RC4, and openssl (easy fix for a guru)
In-Reply-To: <NDBBKMIPMLIGJMHGCCNACEBPCBAA.carey@itfreedom.com>
Message-ID: <004401bf1900$2ae33150$020a10ac@titan.gnaa.net>

Yes.  I think so.  I tried all kinds of different things.

I tried doing a re-install of the ppp/pptpd, and now I can't 
even get the damn thing compiled.

I am working with the openssl package, and follwed the 
instructions that were on the list, but to no avail.

Supposedly you are supposed to:

1. copy rc4.h, rc4_enc.c rc4_locl.h, rc4_skey.c to both
           .../ppp-2.3.8/linux/
     and
           /usr/src/linux/drivers/net/

2. edit both "ppp_mppe.c" files and add the following line at the end
     of the set of #include lines at the top of the file...
           #include "rc4_skey.c"

which i did, but I can't get past the

'make modules' command in the /usr/src/linux

I attached the error log from my compile.  It seems that it can't
find the openssl/rc4.h file.  Is there a path section I should
be aware of?

thanks,

geoff  



> -----Original Message-----
> From: Carey Jung [mailto:carey at itfreedom.com]
> Sent: Sunday, October 17, 1999 5:08 PM
> To: geoff at gnaa.net
> Subject: RE: [pptp-server] unable to ping hosts on network
> 
> 
> Looks like you have to call them.  It's not generally available.
> 
> Have you tried connecting with encryption turned off?
> 
> > -----Original Message-----
> > From: Geoff Nordli [mailto:geoff at gnaa.net]
> > Sent: Sunday, October 17, 1999 6:25 PM
> > To: carey at itfreedom.com; 'Pptp-Server List (E-mail)'
> > Subject: RE: [pptp-server] unable to ping hosts on network
> > 
> > 
> > Does anyone happen to have a link for the fix.
> > 
> > I can't find it on the MS ftp server.
> > 
> > > -----Original Message-----
> > > From: Carey Jung [mailto:carey at itfreedom.com]
> > > Sent: Sunday, October 17, 1999 4:06 PM
> > > To: geoff at gnaa.net; Pptp-Server List (E-mail)
> > > Subject: RE: [pptp-server] unable to ping hosts on network
> > > 
> > > 
> > > This sounds somewhat like a known bug in NT SP5.  Check 
> out Microsoft
> > > knowledge base article Q236584.  Here's an excerpt.  
> Sound like your
> > > problem?
> > > 
> > > SYMPTOMS
> > > After you upgrade to Windows NT 4.0 Service Pack 5 (SP5), 
> Windows NT
> > > 4.0-based 128-bit Remote Access Services (RAS) clients can 
> > > successfully dial
> > > in to a RAS server, but cannot access the server's network 
> > > adapter or any
> > > other device on the network. The issue occurs when you are 
> > > using the Require
> > > Data Encryption option with the Require Microsoft Encrypted 
> > > Authentication
> > > setting. The client is unable to ping any TCP/IP interface on 
> > > the remote
> > > network, including the Microsoft Virtual Private 
> Networking Adapter
> > > (NDISWAN) IP address that the server assigned to the client. 
> > > This behavior
> > > does not occur with 40-bit RAS clients or Microsoft Windows 
> > > 95/Microsoft
> > > Windows 98 clients.
> > > 
> > > Routing and Remote Access Services (RRAS) Dial-on-Demand 
> > > (DOD) connections
> > > that use direct dial (Point-to-Point Protocol, or PPP), not 
> > > Point-to-Point
> > > Tunneling Protocol (PPTP), are also affected when you are 
> > > using 128-bit
> > > updates with the Require Data Encryption option with the 
> > > Require Microsoft
> > > Encrypted Authentication setting
> > > 
> > > RESOLUTION
> > > A supported fix that corrects this problem is now available 
> > > from Microsoft,
> > > but it has not been fully regression tested and should be 
> > > applied only to
> > > systems experiencing this specific problem. If you are not 
> > > severely affected
> > > by this specific problem, Microsoft recommends that you wait 
> > > for the next
> > > Windows NT 4.0 service pack that contains this fix.
> > > 
> > > To resolve this problem immediately, contact Microsoft 
> Product Support
> > > Services to obtain the fix. For a complete list of Microsoft 
> > > Product Support
> > > Services phone numbers and information on support costs, 
> > > please go to the
> > > following address on the World Wide Web:
> > > 
> > > 
> > http://www.microsoft.com/support/supportnet/overview/overview.asp
> > 
> > 
> > 
> > > -----Original Message-----
> > > From: pptp-server-admin at lists.schulte.org
> > > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of 
> Geoff Nordli
> > > Sent: Sunday, October 17, 1999 2:59 PM
> > > To: Pptp-Server List (E-mail)
> > > Subject: [pptp-server] unable to ping hosts on network
> > >
> > >
> > > I have attached my pptplog describing a session.
> > >
> > > I am unable to ping into the network.
> > >
> > > Any ideas why this might happen?
> > >
> > > The proxy arp is eth0, which is the internal
> > > network (172.16.0.0), which I assume is correct,
> > > since I think it is responsible for replying
> > > ARP requests on local network.
> > >
> > > I actually had it working temporarily last night,
> > > but then it broke.
> > >
> > > thanks,
> > >
> > > BTW I am also unable to get the encryption set up
> > > with the NT 4 SP5 client.  It says,  "the local
> > > computer does not support encryption".
> > >
> > > Any ideas with that?
> > >
> > > Geoff Nordli
> > 
> > 
> 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: errors.txt
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991017/81bbac31/attachment.txt>

From mrmagoo at satx.rr.com  Sun Oct 17 20:06:47 1999
From: mrmagoo at satx.rr.com (Mr Magoo)
Date: Sun Oct 17 20:06:47 1999
Subject: [pptp-server] PPTP and FreeBSD
Message-ID: <NDBBIDLEKDLILPNDNAEJIEHDCAAA.mrmagoo@satx.rr.com>

	Has anybody gotten PPTP and FreeBSD to successfully work together?  pptpd
compiles and runs fine on my machine, but when a windows client connects to
it it hands the connection over to pppd and just stops there.  Logs just
give like a bunch of auth packets are being sent back and forth but nothing
is being reconized by either side.  I really don't want to use CHAP if at
all possable, I need(want:) VPN for a virtual lan thats not really going
over an insecure link.
	I did recompile pppd with the patch, but didn't recompile the kernel in any
way.  Its really a pain for me to recompile my kernel because I don't have
the kern sources now...


+-----------------------------------------------------------------+
|       PGP-Geek-Code: http://mrmagoo.dhs.org/mrmagoo.txt         |
| Fingerprint: 062B EFFF F655 7677 2530  8DF2 3DCB F3BE E2AD 97B4 |
+-----------------------------------------------------------------+




From tim at extrateam.com  Sun Oct 17 20:27:13 1999
From: tim at extrateam.com (Tim Sammut)
Date: Sun Oct 17 20:27:13 1999
Subject: [pptp-server] PPTP and FreeBSD
Message-ID: <60E0E1111B35D311989C00105ACE723C189DBB@wallace.extrateam.com>

You may want to try a poptop installation via the FreeBSD ports system..
Should be as easy as (cd /usr/ports/net/poptop;make install).

hope that helps
tim


-----Original Message-----
From: Mr Magoo [mailto:mrmagoo at satx.rr.com]
Sent: Sunday, October 17, 1999 6:07 PM
To: pptp-server at lists.schulte.org
Subject: [pptp-server] PPTP and FreeBSD



	Has anybody gotten PPTP and FreeBSD to successfully work together?
pptpd
compiles and runs fine on my machine, but when a windows client connects to
it it hands the connection over to pppd and just stops there.  Logs just
give like a bunch of auth packets are being sent back and forth but nothing
is being reconized by either side.  I really don't want to use CHAP if at
all possable, I need(want:) VPN for a virtual lan thats not really going
over an insecure link.
	I did recompile pppd with the patch, but didn't recompile the kernel
in any
way.  Its really a pain for me to recompile my kernel because I don't have
the kern sources now...


+-----------------------------------------------------------------+
|       PGP-Geek-Code: http://mrmagoo.dhs.org/mrmagoo.txt         |
| Fingerprint: 062B EFFF F655 7677 2530  8DF2 3DCB F3BE E2AD 97B4 |
+-----------------------------------------------------------------+


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!



From mrmagoo at shotblast.com  Sun Oct 17 22:18:25 1999
From: mrmagoo at shotblast.com (Mr Magoo)
Date: Sun Oct 17 22:18:25 1999
Subject: [pptp-server] PPTP and FreeBSD
In-Reply-To: <60E0E1111B35D311989C00105ACE723C189DBB@wallace.extrateam.com>
Message-ID: <NDBBIDLEKDLILPNDNAEJOEHECAAA.mrmagoo@shotblast.com>

	Ok, now I think I've ran into only 1 more problem hopfully ;) - Are there
any settings that I have to make to /etc/ppp/ppp.conf?  When I try to
connect it fails with 'Warning: Label pptp rejected -direct connection:
Configuration label not found'

-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Tim Sammut
Sent: Sunday, October 17, 1999 8:27 PM
To: 'Mr Magoo'; pptp-server at lists.schulte.org
Subject: RE: [pptp-server] PPTP and FreeBSD


You may want to try a poptop installation via the FreeBSD ports system..
Should be as easy as (cd /usr/ports/net/poptop;make install).

hope that helps
tim


-----Original Message-----
From: Mr Magoo [mailto:mrmagoo at satx.rr.com]
Sent: Sunday, October 17, 1999 6:07 PM
To: pptp-server at lists.schulte.org
Subject: [pptp-server] PPTP and FreeBSD



	Has anybody gotten PPTP and FreeBSD to successfully work together?
pptpd
compiles and runs fine on my machine, but when a windows client connects to
it it hands the connection over to pppd and just stops there.  Logs just
give like a bunch of auth packets are being sent back and forth but nothing
is being reconized by either side.  I really don't want to use CHAP if at
all possable, I need(want:) VPN for a virtual lan thats not really going
over an insecure link.
	I did recompile pppd with the patch, but didn't recompile the kernel
in any
way.  Its really a pain for me to recompile my kernel because I don't have
the kern sources now...


+-----------------------------------------------------------------+
|       PGP-Geek-Code: http://mrmagoo.dhs.org/mrmagoo.txt         |
| Fingerprint: 062B EFFF F655 7677 2530  8DF2 3DCB F3BE E2AD 97B4 |
+-----------------------------------------------------------------+


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!




From P.J.Reid at earthling.net  Mon Oct 18 13:40:52 1999
From: P.J.Reid at earthling.net (Patrick Reid)
Date: Mon Oct 18 13:40:52 1999
Subject: [pptp-server] Error 629
Message-ID: <000701bf1998$23f8e220$0200a8c0@Reid>

I hope this isn't a FAQ, but I have looked around the docs without any
luck...

I had PoPTop 1.0.0 running fine (without the encryption patches in my pppd).
However, I was having trouble getting browsing going in SAMBA, so I added to
my zone files to include entries for the external IP addresses which I was
handing out (192.168.0.200-205)

All of my PCs are on the 192.168.0 network.

I rebooted my machine after redefining the zone files and now I am getting
the following error which I run the VPN "dialer:"

Error 629: You have been disconnected from the computer you dialed.
Double-click the connection to try again.

Does anyone know what this means?

Patrick Reid - mailto:P.J.Reid at earthling.net




From martin at simpli.net  Mon Oct 18 13:59:10 1999
From: martin at simpli.net (martin at simpli.net)
Date: Mon Oct 18 13:59:10 1999
Subject: [pptp-server] Bug in PPTPD or PPPD
Message-ID: <199910181910.PAA06992@server.simpli.net>

Hi all,

Well there something wrong in pptpd when we tell to pptpd to take a 
different options file it work and not:

he take the options file but check the default options file so if you 
have set pptpd to take the options file called: options.pptpd he will 
look at it but will take info of the default one: options...

this is a problem cause we have a pppoed deamon tha use the default 
options file (he dont have the option to config a other one... but Im 
in communication with the developper to make change ...) so for now I 
cant have pptpd and pppoed running at same time cause the default 
options file interfer with the pptpd config so maybe you should check 
that ... this make error 629, 650 on my windows box but if I remove 
the default options file there no problems...

so give some feedback on that please!

and thanks again for pptpd

Martin
Hebert

---------------------------------------------
Ce message ? ?t? transmis ? l'aide du syst?me
de messagerie de Simplinet.
http://www.simpli.net/





From EMIR.TOKTAR at bra.xerox.com  Mon Oct 18 14:43:56 1999
From: EMIR.TOKTAR at bra.xerox.com (Toktar, Emir)
Date: Mon Oct 18 14:43:56 1999
Subject: [pptp-server] compiling with RC4, and openssl (easy fix for a guru)
Message-ID: <51E5E026247AD2118CDD0008C74CC2DD5F134D@bra0070ms1.bra.xerox.com>

Geoff 

It isen?t necessary modify any source code. Probally you?re using 
OpenSSL-0.9.1c or OpenSSL-0.9.4. 
If you use SSLeay-0.6.6b forget the information below.
************************************************************************
2. edit both "ppp_mppe.c" files and add the following line at the end
     of the set of #include lines at the top of the file...
           #include "rc4_skey.c"

************************************************************************


I modifyed any procedures below. 

Now I installed without problems with a bit modifications describe
below from HOWTOFAQ PoPToP source.


Thanks

Emir Toktar



Procedures that I used for comments.

begin------------------------------
(+) lines that I add ....
end------------------------------

(-) lines that I cut ....


******************************


PoPToP HOWTO/FAQ
----------------
Last Updated: 19990813
Maintained by: Matthew Ramsay <matthewr at moreton.com.au>

HOWTO/FAQ mostly compiled from PoPToP help pages and the PoPToP Mailing List
(hosted by Christopher Schulte) by Matthew Ramsay. Large contributions from
Steve Rhodes and Michael Walter.

+++++++++++++++++++++

3.0 PPP (and MSCHAP/MPPE) Installation
--------------------------------------
It is only necessary to use PPP 2.3.8 if you want Microsoft compatible
MSCHAPv2/MPPE authentication and encryption. The reason for this is that
the MSCHAPv2/MPPE patch currently supplied (19990813) is against PPP 2.3.8.
If you don't need Microsoft compatible authentication/encryption any 2.3.x
PPP source will be fine.

Assuming you want Microsoft compatible authentication/encryption follow
these steps:

Note: [] are example commands to run

1. Grab yourself a clean copy of the PPP deamon v2.3.8 (ppp-2.3.8.tar.gz).
 I usually go here for my PPP files: ftp://cs.anu.edu.au/pub/software/ppp/
 Note: You must get the tarball (tar.gz) and *not* the RPM.

2. Grab youself the MSCHAP/MPPE diff file from:

http://www.moretonbay.com/vpn/releases/ppp-2.3.8-mppe-others-norc4_TH7.diff.
gz

3. Grab yourself the SSLeay-0.6.6b file from:
 ftp://ftp.psy.uq.oz.au/pub/Crypto/SSL/SSLeay-0.6.6b.tar.gz

4. You should now have 3 files:
  ppp-2.3.8.tar.gz
  ppp-2.3.8-mppe-others-norc4_TH7.diff.gz
  SSLeay-0.6.6b.tar.gz
begin-------------------------------------------
(+) ppp-2.3.8-patch1  ==>correction for IPX/SPX
end---------------------------------------------

 Copy these files to your preferred location (I prefer /usr/local/src/)

begin-----------------------------
 I uninstall previus ppp
(+) rpm -e ppp-2.3.7-2
end--------------------------------

5. Assuming your files are in /usr/local/src/ and your current working
 directory is also /usr/local/src/ do the following:
  [tar zxvf ppp-2.3.8.tar.gz]
  [gunzip ppp-2.3.8-mppe-others-norc4_TH7.diff.gz]

begin----------------------------
 it's not gunzip... [gunzip ppp-2.3.8-mppe-others-norc4_TH7.diff.gz]
end----------------------------

  [tar zxvf SSLeay-0.6.6b.tar.gz]
  [cp SSLeay-0.6.6b/crypto/rc4/rc4.h ppp-2.3.8/linux/]
  [cp SSLeay-0.6.6b/crypto/rc4/rc4_enc.c ppp-2.3.8/linux/]

begin------------------------------
(+) [cp SSLeay-0.6.6b/crypto/rc4/rc4.h  /usr/src/linux/drivers/net/]
(+) [cp SSLeay-0.6.6b/crypto/rc4/rc4_enc.c /usr/src/linux/drivers/net/]
(+) [cp ppp-2.3.8-patch1  ppp-2.3.8/pppd]
(+) [cd ppp-2.3.8/pppd]
(+) [patch -p0 < ppp-2.3.8-patch1]
(+) [cd /usr/local/src/]
end------------------------------
    [patch -p0 < ppp-2.3.8-mppe-others-norc4_TH7.diff]
    [cd ppp-2.3.8]


6. The files should now all be in place and we are ready to compile PPP.
 Follow these steps to compile it:
  [./configure]

begin--------------------------------------------------------------
(+)  [make kernel]  --> reference ppp-2.3.8
it isen't necessary following lines below described in HOWTOFAQ...
end----------------------------------------------------------------

(-)  [cd linux]
(-)  [./kinstall.sh]
(-)  [cd ..]

begin-----(if kernel < 2.2.8)---------
Build the kernel when < Kernel 2.2.8
     [cd /usr/src/linux/]
     [make menuconfig .....if necessary ...]
     [make dep]
     [make clean]
     [make bzImage]
end---------------------------------

  [make]
  [cp pppd/pppd /usr/sbin/]

begin------------------------------
(+) [make install]  --> reference ppp-2.3.8
end------------------------------

  [cd /usr/src/linux]
  [make modules SUBDIRS=drivers/net]
  [make modules_install]

begin------------------------------
(+) [cd /lib/modules/2.2.5-15/net/]
(+) [insmod slhc]
(+) [insmod ppp]
(+) [insmod bsd_comp]
(+) [insmod ppp_deflate]
(+) [insmod ppp_mppe]
end------------------------------


// it isen't work
(-)  [rmmod ppp]
(-)  [insmod ppp]
(-)  [insmod ppp_mppe]



Regards,

Emir Toktar

+55 ** 41 340-7157
emir.toktar at bra.xerox.com
toktar at per.com.br
toktar at ppgia.pucpr.br




-----Original Message-----
From: Geoff Nordli [mailto:geoff at gnaa.net]
Sent: Sunday, October 17, 1999 10:32 PM
To: carey at itfreedom.com
Cc: Pptp-Server List (E-mail)
Subject: [pptp-server] compiling with RC4, and openssl (easy fix for a
guru)


Yes.  I think so.  I tried all kinds of different things.

I tried doing a re-install of the ppp/pptpd, and now I can't
even get the damn thing compiled.

I am working with the openssl package, and follwed the
instructions that were on the list, but to no avail.

Supposedly you are supposed to:

1. copy rc4.h, rc4_enc.c rc4_locl.h, rc4_skey.c to both
           .../ppp-2.3.8/linux/
     and
           /usr/src/linux/drivers/net/

2. edit both "ppp_mppe.c" files and add the following line at the end
     of the set of #include lines at the top of the file...
           #include "rc4_skey.c"

which i did, but I can't get past the

'make modules' command in the /usr/src/linux

I attached the error log from my compile.  It seems that it can't
find the openssl/rc4.h file.  Is there a path section I should
be aware of?

thanks,

geoff 



> -----Original Message-----
> From: Carey Jung [mailto:carey at itfreedom.com]
> Sent: Sunday, October 17, 1999 5:08 PM
> To: geoff at gnaa.net
> Subject: RE: [pptp-server] unable to ping hosts on network
>
>
> Looks like you have to call them.  It's not generally available.
>
> Have you tried connecting with encryption turned off?
>
> > -----Original Message-----
> > From: Geoff Nordli [mailto:geoff at gnaa.net]
> > Sent: Sunday, October 17, 1999 6:25 PM
> > To: carey at itfreedom.com; 'Pptp-Server List (E-mail)'
> > Subject: RE: [pptp-server] unable to ping hosts on network
> >
> >
> > Does anyone happen to have a link for the fix.
> >
> > I can't find it on the MS ftp server.
> >
> > > -----Original Message-----
> > > From: Carey Jung [mailto:carey at itfreedom.com]
> > > Sent: Sunday, October 17, 1999 4:06 PM
> > > To: geoff at gnaa.net; Pptp-Server List (E-mail)
> > > Subject: RE: [pptp-server] unable to ping hosts on network
> > >
> > >
> > > This sounds somewhat like a known bug in NT SP5.  Check
> out Microsoft
> > > knowledge base article Q236584.  Here's an excerpt. 
> Sound like your
> > > problem?
> > >
> > > SYMPTOMS
> > > After you upgrade to Windows NT 4.0 Service Pack 5 (SP5),
> Windows NT
> > > 4.0-based 128-bit Remote Access Services (RAS) clients can
> > > successfully dial
> > > in to a RAS server, but cannot access the server's network
> > > adapter or any
> > > other device on the network. The issue occurs when you are
> > > using the Require
> > > Data Encryption option with the Require Microsoft Encrypted
> > > Authentication
> > > setting. The client is unable to ping any TCP/IP interface on
> > > the remote
> > > network, including the Microsoft Virtual Private
> Networking Adapter
> > > (NDISWAN) IP address that the server assigned to the client.
> > > This behavior
> > > does not occur with 40-bit RAS clients or Microsoft Windows
> > > 95/Microsoft
> > > Windows 98 clients.
> > >
> > > Routing and Remote Access Services (RRAS) Dial-on-Demand
> > > (DOD) connections
> > > that use direct dial (Point-to-Point Protocol, or PPP), not
> > > Point-to-Point
> > > Tunneling Protocol (PPTP), are also affected when you are
> > > using 128-bit
> > > updates with the Require Data Encryption option with the
> > > Require Microsoft
> > > Encrypted Authentication setting
> > >
> > > RESOLUTION
> > > A supported fix that corrects this problem is now available
> > > from Microsoft,
> > > but it has not been fully regression tested and should be
> > > applied only to
> > > systems experiencing this specific problem. If you are not
> > > severely affected
> > > by this specific problem, Microsoft recommends that you wait
> > > for the next
> > > Windows NT 4.0 service pack that contains this fix.
> > >
> > > To resolve this problem immediately, contact Microsoft
> Product Support
> > > Services to obtain the fix. For a complete list of Microsoft
> > > Product Support
> > > Services phone numbers and information on support costs,
> > > please go to the
> > > following address on the World Wide Web:
> > >
> > >
> > http://www.microsoft.com/support/supportnet/overview/overview.asp
> >
> >
> >
> > > -----Original Message-----
> > > From: pptp-server-admin at lists.schulte.org
> > > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of
> Geoff Nordli
> > > Sent: Sunday, October 17, 1999 2:59 PM
> > > To: Pptp-Server List (E-mail)
> > > Subject: [pptp-server] unable to ping hosts on network
> > >
> > >
> > > I have attached my pptplog describing a session.
> > >
> > > I am unable to ping into the network.
> > >
> > > Any ideas why this might happen?
> > >
> > > The proxy arp is eth0, which is the internal
> > > network (172.16.0.0), which I assume is correct,
> > > since I think it is responsible for replying
> > > ARP requests on local network.
> > >
> > > I actually had it working temporarily last night,
> > > but then it broke.
> > >
> > > thanks,
> > >
> > > BTW I am also unable to get the encryption set up
> > > with the NT 4 SP5 client.  It says,  "the local
> > > computer does not support encryption".
> > >
> > > Any ideas with that?
> > >
> > > Geoff Nordli
> >
> >
>




From tmk at netmagic.net  Mon Oct 18 18:08:38 1999
From: tmk at netmagic.net (tmk)
Date: Mon Oct 18 18:08:38 1999
Subject: [pptp-server] Error 629
References: <000701bf1998$23f8e220$0200a8c0@Reid>
Message-ID: <000a01bf19be$27d340e0$071c0fc0@lala.net>

send (or check yourself) ppp logs from either machine. Something is most
likely wrong with authentication, and it is disconnecting you because it
thinks you shouldnt be allowed to log in.

Kevin
----- Original Message -----
From: Patrick Reid <P.J.Reid at earthling.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 18, 1999 11:39 AM
Subject: [pptp-server] Error 629


> I hope this isn't a FAQ, but I have looked around the docs without any
> luck...
>
> I had PoPTop 1.0.0 running fine (without the encryption patches in my
pppd).
> However, I was having trouble getting browsing going in SAMBA, so I added
to
> my zone files to include entries for the external IP addresses which I was
> handing out (192.168.0.200-205)
>
> All of my PCs are on the 192.168.0 network.
>
> I rebooted my machine after redefining the zone files and now I am getting
> the following error which I run the VPN "dialer:"
>
> Error 629: You have been disconnected from the computer you dialed.
> Double-click the connection to try again.
>
> Does anyone know what this means?
>
> Patrick Reid - mailto:P.J.Reid at earthling.net
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From tmk at netmagic.net  Mon Oct 18 18:11:28 1999
From: tmk at netmagic.net (tmk)
Date: Mon Oct 18 18:11:28 1999
Subject: [pptp-server] Bug in PPTPD or PPPD
References: <199910181910.PAA06992@server.simpli.net>
Message-ID: <001301bf19be$8dde4ce0$071c0fc0@lala.net>

You can specify a different ppp options file than the default one. most
likely you typo'd if you already are using it. Read the pptpd.conf file that
comes with pptpd for examples. I added this in way back in 0.7.4 or
something. I know it works :)

pppd will use the /etc/ppp/options file if the specified options file is not
found or if you do not specify any options file.

Kevin
----- Original Message -----
From: <martin at simpli.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 18, 1999 12:10 PM
Subject: [pptp-server] Bug in PPTPD or PPPD


> Hi all,
>
> Well there something wrong in pptpd when we tell to pptpd to take a
> different options file it work and not:
>
> he take the options file but check the default options file so if you
> have set pptpd to take the options file called: options.pptpd he will
> look at it but will take info of the default one: options...
>
> this is a problem cause we have a pppoed deamon tha use the default
> options file (he dont have the option to config a other one... but Im
> in communication with the developper to make change ...) so for now I
> cant have pptpd and pppoed running at same time cause the default
> options file interfer with the pptpd config so maybe you should check
> that ... this make error 629, 650 on my windows box but if I remove
> the default options file there no problems...
>
> so give some feedback on that please!
>
> and thanks again for pptpd
>
> Martin
> Hebert
>
> ---------------------------------------------
> Ce message ` iti transmis ` l'aide du systhme
> de messagerie de Simplinet.
> http://www.simpli.net/
>
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From P.J.Reid at earthling.net  Mon Oct 18 18:59:49 1999
From: P.J.Reid at earthling.net (Patrick Reid)
Date: Mon Oct 18 18:59:49 1999
Subject: [pptp-server] Error 629
In-Reply-To: <000a01bf19be$27d340e0$071c0fc0@lala.net>
Message-ID: <000a01bf19c4$a23aa520$0200a8c0@Reid>

Curious. I looked in my logs, and each connection has a set of log entries
like this:

Oct 18 13:59:50 Black pptpd[655]: CTRL: Client 207.179.147.61 control
connection started
Oct 18 13:59:50 Black pptpd[655]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 18 13:59:50 Black kernel: CSLIP: code copyright 1989 Regents of the
University of California
Oct 18 13:59:50 Black kernel: PPP: version 2.3.3 (demand dialling)
Oct 18 13:59:50 Black kernel: PPP line discipline registered.
Oct 18 13:59:50 Black kernel: registered device ppp0
Oct 18 13:59:50 Black pppd[656]: pppd 2.3.7 started by root, uid 0
Oct 18 13:59:50 Black pppd[656]: Using interface ppp0
Oct 18 13:59:50 Black pppd[656]: Connect: ppp0 <--> /dev/pts/0
Oct 18 13:59:51 Black pppd[656]: Warning - secret file /etc/ppp/chap-secrets
has world and/or group access
Oct 18 13:59:51 Black modprobe: can't locate module ppp-compress-21
Oct 18 13:59:51 Black modprobe: can't locate module ppp-compress-26
Oct 18 13:59:52 Black modprobe: can't locate module ppp-compress-24
Oct 18 13:59:52 Black pppd[656]: CHAP peer authentication succeeded for
patrick
Oct 18 13:59:52 Black modprobe: can't locate module ppp-compress-21
Oct 18 13:59:52 Black modprobe: can't locate module ppp-compress-26
Oct 18 13:59:52 Black modprobe: can't locate module ppp-compress-24
Oct 18 13:59:52 Black pppd[656]: found interface eth0 for proxy arp
Oct 18 13:59:52 Black pppd[656]: local  IP address 192.168.0.100
Oct 18 13:59:52 Black pppd[656]: remote IP address 192.168.0.200
Oct 18 13:59:53 Black pppd[656]: CCP terminated by peer
Oct 18 13:59:53 Black pppd[656]: Compression disabled by peer.
Oct 18 14:01:05 Black PAM_pwdb[673]: (login) session opened for user patrick
by (uid=0)
Oct 18 14:03:30 Black PAM_pwdb[696]: (login) session opened for user patrick
by (uid=0)
Oct 18 14:05:10 Black pptpd[655]: CTRL: EOF or bad error reading ctrl packet
length.
Oct 18 14:05:10 Black pptpd[655]: CTRL: couldn't read packet header (exit)
Oct 18 14:05:10 Black pptpd[655]: CTRL: CTRL read failed
Oct 18 14:05:10 Black pptpd[655]: CTRL: Client 207.179.147.61 control
connection finished
Oct 18 14:05:10 Black pppd[656]: Modem hangup
Oct 18 14:05:10 Black pppd[656]: Connection terminated.
Oct 18 14:05:10 Black pppd[656]: Connect time 5.4 minutes.
Oct 18 14:05:10 Black pppd[656]: Sent 25450 bytes, received 25469 bytes.
Oct 18 14:05:10 Black pppd[656]: Exit.

However, since I have been getting these Error 629 messages, there has been
nothing in the logs. PPTP is running, since if I try to execute it again, I
get the "socket in use" error.

But it apparently doesn't even start the control connection any more.

Help?!?!?

Patrick Reid - mailto:P.J.Reid at earthling.net

-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
Sent: Monday, October 18, 1999 8:12 PM
To: Patrick Reid; pptp-server at lists.schulte.org
Subject: Re: [pptp-server] Error 629


send (or check yourself) ppp logs from either machine. Something is most
likely wrong with authentication, and it is disconnecting you because it
thinks you shouldnt be allowed to log in.

Kevin
----- Original Message -----
From: Patrick Reid <P.J.Reid at earthling.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 18, 1999 11:39 AM
Subject: [pptp-server] Error 629


> I hope this isn't a FAQ, but I have looked around the docs without any
> luck...
>
> I had PoPTop 1.0.0 running fine (without the encryption patches in my
pppd).
> However, I was having trouble getting browsing going in SAMBA, so I added
to
> my zone files to include entries for the external IP addresses which I was
> handing out (192.168.0.200-205)
>
> All of my PCs are on the 192.168.0 network.
>
> I rebooted my machine after redefining the zone files and now I am getting
> the following error which I run the VPN "dialer:"
>
> Error 629: You have been disconnected from the computer you dialed.
> Double-click the connection to try again.
>
> Does anyone know what this means?
>
> Patrick Reid - mailto:P.J.Reid at earthling.net
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!




From mrmagoo at shotblast.com  Mon Oct 18 20:56:39 1999
From: mrmagoo at shotblast.com (Mr Magoo)
Date: Mon Oct 18 20:56:39 1999
Subject: [pptp-server] PPTP and FreeBSD
In-Reply-To: <380B7659.F9441AF2@utcorp.com>
Message-ID: <NDBBIDLEKDLILPNDNAEJKEIBCAAA.mrmagoo@shotblast.com>

	This thing will not give up... I've gotten ppp to accept the connection,
but it wont validate it.  In the log file, it keeps saying 'deflink: his =
none, mine = CHAP 0x05'.  In the windows log (which is amazingly good btw :)
It says its recognizing the servers chap request, and sending a chap packet.
It keeps on doing this until it is canceled.
	I'm missing something here, if its sending it then why isn't the server
getting it?

	BTW I'd be glad to write a PPTP+FreeBSD howto if I can ever get it working
for myself.




From P.J.Reid at earthling.net  Tue Oct 19 11:17:04 1999
From: P.J.Reid at earthling.net (Patrick Reid)
Date: Tue Oct 19 11:17:04 1999
Subject: [pptp-server] Error 629
In-Reply-To: <000a01bf19be$27d340e0$071c0fc0@lala.net>
Message-ID: <000201bf1a4d$3d2e1f20$0200a8c0@Reid>

Here is another weird thing. I thought I would try running pptpd in the
foreground, to see if I could see more about what was going on. But if I
"killall pptpd" it appears to immediately re-start. How is that happening?

Patrick Reid - mailto:P.J.Reid at earthling.net

-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of tmk
Sent: Monday, October 18, 1999 8:12 PM
To: Patrick Reid; pptp-server at lists.schulte.org
Subject: Re: [pptp-server] Error 629


send (or check yourself) ppp logs from either machine. Something is most
likely wrong with authentication, and it is disconnecting you because it
thinks you shouldnt be allowed to log in.

Kevin
----- Original Message -----
From: Patrick Reid <P.J.Reid at earthling.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 18, 1999 11:39 AM
Subject: [pptp-server] Error 629


> I hope this isn't a FAQ, but I have looked around the docs without any
> luck...
>
> I had PoPTop 1.0.0 running fine (without the encryption patches in my
pppd).
> However, I was having trouble getting browsing going in SAMBA, so I added
to
> my zone files to include entries for the external IP addresses which I was
> handing out (192.168.0.200-205)
>
> All of my PCs are on the 192.168.0 network.
>
> I rebooted my machine after redefining the zone files and now I am getting
> the following error which I run the VPN "dialer:"
>
> Error 629: You have been disconnected from the computer you dialed.
> Double-click the connection to try again.
>
> Does anyone know what this means?
>
> Patrick Reid - mailto:P.J.Reid at earthling.net
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!




From mrmagoo at shotblast.com  Tue Oct 19 15:53:16 1999
From: mrmagoo at shotblast.com (Mr Magoo)
Date: Tue Oct 19 15:53:16 1999
Subject: [pptp-server] Error 629
In-Reply-To: <000201bf1a4d$3d2e1f20$0200a8c0@Reid>
Message-ID: <NDBBIDLEKDLILPNDNAEJMEIHCAAA.mrmagoo@shotblast.com>

	Try killall -9 pptpd ... killall isn't sending the same singnal to the
program as killall -9 would, thus not killing it. (most likely it is
rehashing its configuration files)

	I don't think you can run it in the foreground, btw.
-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Patrick Reid
Sent: Tuesday, October 19, 1999 11:16 AM
To: pptp-server at lists.schulte.org
Subject: RE: [pptp-server] Error 629


Here is another weird thing. I thought I would try running pptpd in the
foreground, to see if I could see more about what was going on. But if I
"killall pptpd" it appears to immediately re-start. How is that happening?

Patrick Reid - mailto:P.J.Reid at earthling.net




send (or check yourself) ppp logs from either machine. Something is most
likely wrong with authentication, and it is disconnecting you because it
thinks you shouldnt be allowed to log in.

Kevin
----- Original Message -----
From: Patrick Reid <P.J.Reid at earthling.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 18, 1999 11:39 AM
Subject: [pptp-server] Error 629


> I hope this isn't a FAQ, but I have looked around the docs without any
> luck...
>
> I had PoPTop 1.0.0 running fine (without the encryption patches in my
pppd).
> However, I was having trouble getting browsing going in SAMBA, so I added
to
> my zone files to include entries for the external IP addresses which I was
> handing out (192.168.0.200-205)
>
> All of my PCs are on the 192.168.0 network.
>
> I rebooted my machine after redefining the zone files and now I am getting
> the following error which I run the VPN "dialer:"
>
> Error 629: You have been disconnected from the computer you dialed.
> Double-click the connection to try again.
>
> Does anyone know what this means?
>
> Patrick Reid - mailto:P.J.Reid at earthling.net
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!


_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!




From bens at saber.net  Tue Oct 19 23:14:37 1999
From: bens at saber.net (Benjamin Smith)
Date: Tue Oct 19 23:14:37 1999
Subject: [pptp-server] PPTP Blues...
Message-ID: <99101921120901.23780@bug1.lookuplaw.com>

OK, here's the gig. I have a home and office network, I want to connect them
together, via the Internet and DSL. 

PPTP is the correct tool, yes? 

I have configured the office network (I think) as mentioned in the short howto,
and when I try to start pptpd at the shell prompt, I get the following: 

[root at server /etc]# pptpd &
[1] 874
[root at server /etc]# createHostSocket: Address already in use

[1]+  Done                    pptpd  

Any ideas? 

I'm sure is some simple little setting. I've already tried using both real and
virtual IP addresses for the server (localip) in /etc/pptpd.conf. 

Thanks for your time, 


--
                    ("`-''-/").___..--''"`-._    (Simba)
                    `@_ @  )    `-.  (        ).`-.__.`)
                    (_Y_.)'  ._    )  `._ `. ``-..-'
                _..`--'_..-_/  /--'_.' ,'
              ((().-''  ((().'  (((.-'        Benjamin Smith






From alex at msl.net  Wed Oct 20 01:42:17 1999
From: alex at msl.net (Steve Alexander)
Date: Wed Oct 20 01:42:17 1999
Subject: [pptp-server] Very Newbie needs serious help
Message-ID: <000801bf1ac5$4df8e560$0100a8c0@alex>

I have LAN set up with an NT (PDC) server.  I am using a linux box (RH5.2) with an ISDN 24/7 internet connection and Poptop to connect to the internet and be a firewall.  I want a remote location using Win98 VPN to be able to connect in and access files on the NT server using the internet.  I can connect to the linux box ok using the internet and VPN but am unable to browse any shares on the NT server.  I can ping the NT server and any other machines on the LAN (using private IP's) but cannot resolve any names.  I know I am asking a lot here but could someone give me some guidance.  

-all clients and nt server are on a private lan
-linux box has a valid permanent internet IP and private IP
-NT set up as a wins server
-poptop and win98 set up as directed.

Also is there any way going through the linux box I can still get remote users to authenticate through the NT server?  I realize that by using RAS on the NT I could do this but I preferred to keep it off the internet behind the firewall.

Many thanks in advance

Steve

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991020/82251b64/attachment.html>

From A.T.v.d.Hil at tue.nl  Wed Oct 20 02:56:08 1999
From: A.T.v.d.Hil at tue.nl (Hil, A.T.v.d.)
Date: Wed Oct 20 02:56:08 1999
Subject: [pptp-server] IPX
Message-ID: <81E5F727841DD211A5FD0008C728DB7B5539BF@campusx1.tue.nl>

Hi,
 
I want to enable IPX over the ppp link. Can somebody help me
with this, if pptp supports this.
 
When i try to set up an ipx link i get the pppd message:
IPX support is not present in the kernel.
 
But i'm sure it is compiled in the kernel. Maybe it's a problem in pppd
 
 
Alexander
 
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991020/908ee02b/attachment.html>

From simon.jakesch at proxima-tech.com  Wed Oct 20 09:21:12 1999
From: simon.jakesch at proxima-tech.com (Simon Jakesch)
Date: Wed Oct 20 09:21:12 1999
Subject: [pptp-server] PPPD 2.3.5 or PPPD 2.3.8
Message-ID: <380DCFF1.63860509@proxima-tech.com>

Hi,

sorry for asking such stupid questions but what is the PPPD thing
mentioned on the "how to setup poptop" is it the ppp-patch to work
poptop with ms systems or what?

bye,
simon



From tmk at netmagic.net  Wed Oct 20 09:35:33 1999
From: tmk at netmagic.net (tmk)
Date: Wed Oct 20 09:35:33 1999
Subject: [pptp-server] PPPD 2.3.5 or PPPD 2.3.8
References: <380DCFF1.63860509@proxima-tech.com>
Message-ID: <001b01bf1b08$ce9f54e0$071c0fc0@lala.net>

pppd is the ppp daemon.. pptp uses ppp to do the network interface once it
creates the tunnel

Kevin
----- Original Message -----
From: Simon Jakesch <simon.jakesch at proxima-tech.com>
To: <pptp-server at lists.schulte.org>
Sent: Wednesday, October 20, 1999 7:21 AM
Subject: [pptp-server] PPPD 2.3.5 or PPPD 2.3.8


> Hi,
>
> sorry for asking such stupid questions but what is the PPPD thing
> mentioned on the "how to setup poptop" is it the ppp-patch to work
> poptop with ms systems or what?
>
> bye,
> simon
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From wgg at us.itmasters.com  Wed Oct 20 09:36:55 1999
From: wgg at us.itmasters.com (Walter G. Giroir)
Date: Wed Oct 20 09:36:55 1999
Subject: [pptp-server] Using pptp to connect to watchguard
Message-ID: <NCBBIBNODKFHKGDPJMPCKEHFCMAA.wgg@us.itmasters.com>

I have had not luck in getting my RH 6.0
installation to connect to a VPN implemented
using watchguard.  NT4 and Win98 work OK.

Has anyone attempted to use PPTP 1.0.2 with
a Watchguard firewall ?

Thanks in Advance,
--Walt
wgg at us.itmasters.com


Here's the log from pppd...
Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by root, uid 0
Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
<magic 0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
<magic 0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x1 <mru 338> <auth
chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x1 <auth chap
MD5>]
Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej id=0x1 <asyncmap 0x0>]
Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338> <auth
chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x2 <auth chap
MD5>]
Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
<magic 0xb374eebd> <pcomp> <accomp>]
Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck id=0x2 <mru 338>
<magic 0xb374eebd> <pcomp> <accomp>]
Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
0x830b005f> <pcomp> <accomp>]
Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1 <addr
24.28.71.7> <compress VJ 0f 01>]
Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 <bsd v1 15>]
Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]





From tmk at netmagic.net  Wed Oct 20 09:48:39 1999
From: tmk at netmagic.net (tmk)
Date: Wed Oct 20 09:48:39 1999
Subject: [pptp-server] Using pptp to connect to watchguard
References: <NCBBIBNODKFHKGDPJMPCKEHFCMAA.wgg@us.itmasters.com>
Message-ID: <002501bf1b0a$a102c740$071c0fc0@lala.net>

i think most 3d party pptp vendors use a propreitary pptp algorithm, so
there is no way pptpd would be able to connect to these. Unless of course
they release the specs, which they probaly wont do

Kevin
----- Original Message -----
From: Walter G. Giroir <wgg at us.itmasters.com>
To: <pptp-server at lists.schulte.org>
Sent: Wednesday, October 20, 1999 7:29 AM
Subject: [pptp-server] Using pptp to connect to watchguard


>
> I have had not luck in getting my RH 6.0
> installation to connect to a VPN implemented
> using watchguard.  NT4 and Win98 work OK.
>
> Has anyone attempted to use PPTP 1.0.2 with
> a Watchguard firewall ?
>
> Thanks in Advance,
> --Walt
> wgg at us.itmasters.com
>
>
> Here's the log from pppd...
> Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by root, uid 0
> Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
> Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
> Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
0x0>
> <magic 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
0x0>
> <magic 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x1 <mru 338>
<auth
> chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x1 <auth chap
> MD5>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej id=0x1 <asyncmap
0x0>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
<auth
> chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x2 <auth chap
> MD5>]
> Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
> <magic 0xb374eebd> <pcomp> <accomp>]
> Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck id=0x2 <mru 338>
> <magic 0xb374eebd> <pcomp> <accomp>]
> Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> 0x830b005f> <pcomp> <accomp>]
> Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1 <addr
> 24.28.71.7> <compress VJ 0f 01>]
> Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 <bsd v1 15>]
> Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
> Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
> Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]
>
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From wgg at us.itmasters.com  Wed Oct 20 09:52:40 1999
From: wgg at us.itmasters.com (Walter G. Giroir)
Date: Wed Oct 20 09:52:40 1999
Subject: [pptp-server] Using pptp to connect to watchguard
In-Reply-To: <002501bf1b0a$a102c740$071c0fc0@lala.net>
Message-ID: <NCBBIBNODKFHKGDPJMPCKEHGCMAA.wgg@us.itmasters.com>

If it was proprietary, why would 98/NT PPTP work ?

--Walt

> -----Original Message-----
> From: tmk [mailto:tmk at netmagic.net]
> Sent: Wednesday, October 20, 1999 9:52 AM
> To: wgg at us.itmasters.com; pptp-server at lists.schulte.org
> Subject: Re: [pptp-server] Using pptp to connect to watchguard
> 
> 
> i think most 3d party pptp vendors use a proprietary pptp algorithm, so
> there is no way pptpd would be able to connect to these. Unless of course
> they release the specs, which they probaly wont do
> 
> Kevin
> ----- Original Message -----
> From: Walter G. Giroir <wgg at us.itmasters.com>
> To: <pptp-server at lists.schulte.org>
> Sent: Wednesday, October 20, 1999 7:29 AM
> Subject: [pptp-server] Using pptp to connect to watchguard
> 
> 
> >
> > I have had not luck in getting my RH 6.0
> > installation to connect to a VPN implemented
> > using watchguard.  NT4 and Win98 work OK.
> >
> > Has anyone attempted to use PPTP 1.0.2 with
> > a Watchguard firewall ?
> >
> > Thanks in Advance,
> > --Walt
> > wgg at us.itmasters.com
> >
> >
> > Here's the log from pppd...
> > Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by root, uid 0
> > Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
> > Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
> > Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
> 0x0>
> > <magic 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
> 0x0>
> > <magic 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x1 <mru 338>
> <auth
> > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x1 <auth chap
> > MD5>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej id=0x1 <asyncmap
> 0x0>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
> <auth
> > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x2 <auth chap
> > MD5>]
> > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
> > <magic 0xb374eebd> <pcomp> <accomp>]
> > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck id=0x2 <mru 338>
> > <magic 0xb374eebd> <pcomp> <accomp>]
> > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > 0x830b005f> <pcomp> <accomp>]
> > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1 <addr
> > 24.28.71.7> <compress VJ 0f 01>]
> > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 
> <bsd v1 15>]
> > Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
> > Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
> > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]
> >
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
> 



From tmk at netmagic.net  Wed Oct 20 11:10:34 1999
From: tmk at netmagic.net (tmk)
Date: Wed Oct 20 11:10:34 1999
Subject: [pptp-server] Using pptp to connect to watchguard
In-Reply-To: <NCBBIBNODKFHKGDPJMPCKEHGCMAA.wgg@us.itmasters.com>
Message-ID: <Pine.LNX.3.96.991020091638.12515A-100000@shell.netmagic.net>

are you sure win98/NT pptp works, and you arent installing a 3d party
client applicatino that looks like pptp for 98? Most 3d party firewalls
install a pptp client that looks just like the MS one, but isn't.

Kevin

On Wed, 20 Oct 1999, Walter G. Giroir wrote:

> If it was proprietary, why would 98/NT PPTP work ?
> 
> --Walt
> 
> > -----Original Message-----
> > From: tmk [mailto:tmk at netmagic.net]
> > Sent: Wednesday, October 20, 1999 9:52 AM
> > To: wgg at us.itmasters.com; pptp-server at lists.schulte.org
> > Subject: Re: [pptp-server] Using pptp to connect to watchguard
> > 
> > 
> > i think most 3d party pptp vendors use a proprietary pptp algorithm, so
> > there is no way pptpd would be able to connect to these. Unless of course
> > they release the specs, which they probaly wont do
> > 
> > Kevin
> > ----- Original Message -----
> > From: Walter G. Giroir <wgg at us.itmasters.com>
> > To: <pptp-server at lists.schulte.org>
> > Sent: Wednesday, October 20, 1999 7:29 AM
> > Subject: [pptp-server] Using pptp to connect to watchguard
> > 
> > 
> > >
> > > I have had not luck in getting my RH 6.0
> > > installation to connect to a VPN implemented
> > > using watchguard.  NT4 and Win98 work OK.
> > >
> > > Has anyone attempted to use PPTP 1.0.2 with
> > > a Watchguard firewall ?
> > >
> > > Thanks in Advance,
> > > --Walt
> > > wgg at us.itmasters.com
> > >
> > >
> > > Here's the log from pppd...
> > > Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by root, uid 0
> > > Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
> > > Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
> > > Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
> > 0x0>
> > > <magic 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x1 <asyncmap
> > 0x0>
> > > <magic 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x1 <mru 338>
> > <auth
> > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x1 <auth chap
> > > MD5>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej id=0x1 <asyncmap
> > 0x0>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > > 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
> > <auth
> > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak id=0x2 <auth chap
> > > MD5>]
> > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > > 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > > 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq id=0x2 <mru 338>
> > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck id=0x2 <mru 338>
> > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > > 0x830b005f> <pcomp> <accomp>]
> > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1 <addr
> > > 24.28.71.7> <compress VJ 0f 01>]
> > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 
> > <bsd v1 15>]
> > > Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
> > > Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
> > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]
> > >
> > >
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> > >
> > 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 




From wgg at us.itmasters.com  Wed Oct 20 11:12:45 1999
From: wgg at us.itmasters.com (Walter G. Giroir)
Date: Wed Oct 20 11:12:45 1999
Subject: [pptp-server] Using pptp to connect to watchguard
In-Reply-To: <Pine.LNX.3.96.991020091638.12515A-100000@shell.netmagic.net>
Message-ID: <NCBBIBNODKFHKGDPJMPCCEHJCMAA.wgg@us.itmasters.com>

I'm using the standard PPTP that comes with
the OS.  No third part software.

--Walt

> -----Original Message-----
> From: tmk [mailto:tmk at netmagic.net]
> Sent: Wednesday, October 20, 1999 11:18 AM
> To: Walter G. Giroir
> Cc: pptp-server at lists.schulte.org
> Subject: RE: [pptp-server] Using pptp to connect to watchguard
> 
> 
> are you sure win98/NT pptp works, and you arent installing a 3d party
> client applicatino that looks like pptp for 98? Most 3d party firewalls
> install a pptp client that looks just like the MS one, but isn't.
> 
> Kevin
> 
> On Wed, 20 Oct 1999, Walter G. Giroir wrote:
> 
> > If it was proprietary, why would 98/NT PPTP work ?
> > 
> > --Walt
> > 
> > > -----Original Message-----
> > > From: tmk [mailto:tmk at netmagic.net]
> > > Sent: Wednesday, October 20, 1999 9:52 AM
> > > To: wgg at us.itmasters.com; pptp-server at lists.schulte.org
> > > Subject: Re: [pptp-server] Using pptp to connect to watchguard
> > > 
> > > 
> > > i think most 3d party pptp vendors use a proprietary pptp 
> algorithm, so
> > > there is no way pptpd would be able to connect to these. 
> Unless of course
> > > they release the specs, which they probaly wont do
> > > 
> > > Kevin
> > > ----- Original Message -----
> > > From: Walter G. Giroir <wgg at us.itmasters.com>
> > > To: <pptp-server at lists.schulte.org>
> > > Sent: Wednesday, October 20, 1999 7:29 AM
> > > Subject: [pptp-server] Using pptp to connect to watchguard
> > > 
> > > 
> > > >
> > > > I have had not luck in getting my RH 6.0
> > > > installation to connect to a VPN implemented
> > > > using watchguard.  NT4 and Win98 work OK.
> > > >
> > > > Has anyone attempted to use PPTP 1.0.2 with
> > > > a Watchguard firewall ?
> > > >
> > > > Thanks in Advance,
> > > > --Walt
> > > > wgg at us.itmasters.com
> > > >
> > > >
> > > > Here's the log from pppd...
> > > > Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by 
> root, uid 0
> > > > Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
> > > > Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
> > > > Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq 
> id=0x1 <asyncmap
> > > 0x0>
> > > > <magic 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq 
> id=0x1 <asyncmap
> > > 0x0>
> > > > <magic 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> id=0x1 <mru 338>
> > > <auth
> > > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak 
> id=0x1 <auth chap
> > > > MD5>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej 
> id=0x1 <asyncmap
> > > 0x0>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > > > 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> id=0x2 <mru 338>
> > > <auth
> > > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak 
> id=0x2 <auth chap
> > > > MD5>]
> > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > > > 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2 <magic
> > > > 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> id=0x2 <mru 338>
> > > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck 
> id=0x2 <mru 338>
> > > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2 <magic
> > > > 0x830b005f> <pcomp> <accomp>]
> > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1 <addr
> > > > 24.28.71.7> <compress VJ 0f 01>]
> > > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 
> > > <bsd v1 15>]
> > > > Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
> > > > Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
> > > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]
> > > >
> > > >
> > > >
> > > > _______________________________________________
> > > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > > List services provided by www.schulte.org!
> > > >
> > > 
> > 
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> > 
> 



From walterm at Gliatech.com  Wed Oct 20 11:33:26 1999
From: walterm at Gliatech.com (Michael Walter)
Date: Wed Oct 20 11:33:26 1999
Subject: [pptp-server] Using pptp to connect to watchguard
Message-ID: <EDA23054FDC0D1119842006008CEAB4853CF15@GLIATECHUSA1>

Don't quote me on this, but i believe watchguard uses redhat 4.x with the
freeswan pptp implementation.  Freeswan's web page is at
http://www.flora.org/freeswan/

Michael J. Walter mcse
Gliatech, Inc.
walterm at gliatech.com
mwalter at drwalter.com

On Wednesday, October 20, 1999 12:05 PM, Walter G. Giroir
[SMTP:wgg at us.itmasters.com] wrote:
> I'm using the standard PPTP that comes with
> the OS.  No third part software.
> 
> --Walt
> 
> > -----Original Message-----
> > From: tmk [mailto:tmk at netmagic.net]
> > Sent: Wednesday, October 20, 1999 11:18 AM
> > To: Walter G. Giroir
> > Cc: pptp-server at lists.schulte.org
> > Subject: RE: [pptp-server] Using pptp to connect to watchguard
> > 
> > 
> > are you sure win98/NT pptp works, and you arent installing a 3d party
> > client applicatino that looks like pptp for 98? Most 3d party firewalls
> > install a pptp client that looks just like the MS one, but isn't.
> > 
> > Kevin
> > 
> > On Wed, 20 Oct 1999, Walter G. Giroir wrote:
> > 
> > > If it was proprietary, why would 98/NT PPTP work ?
> > > 
> > > --Walt
> > > 
> > > > -----Original Message-----
> > > > From: tmk [mailto:tmk at netmagic.net]
> > > > Sent: Wednesday, October 20, 1999 9:52 AM
> > > > To: wgg at us.itmasters.com; pptp-server at lists.schulte.org
> > > > Subject: Re: [pptp-server] Using pptp to connect to watchguard
> > > > 
> > > > 
> > > > i think most 3d party pptp vendors use a proprietary pptp 
> > algorithm, so
> > > > there is no way pptpd would be able to connect to these. 
> > Unless of course
> > > > they release the specs, which they probaly wont do
> > > > 
> > > > Kevin
> > > > ----- Original Message -----
> > > > From: Walter G. Giroir <wgg at us.itmasters.com>
> > > > To: <pptp-server at lists.schulte.org>
> > > > Sent: Wednesday, October 20, 1999 7:29 AM
> > > > Subject: [pptp-server] Using pptp to connect to watchguard
> > > > 
> > > > 
> > > > >
> > > > > I have had not luck in getting my RH 6.0
> > > > > installation to connect to a VPN implemented
> > > > > using watchguard.  NT4 and Win98 work OK.
> > > > >
> > > > > Has anyone attempted to use PPTP 1.0.2 with
> > > > > a Watchguard firewall ?
> > > > >
> > > > > Thanks in Advance,
> > > > > --Walt
> > > > > wgg at us.itmasters.com
> > > > >
> > > > >
> > > > > Here's the log from pppd...
> > > > > Oct 19 06:12:43 cs2871-7 pppd[895]: pppd 2.3.8 started by 
> > root, uid 0
> > > > > Oct 19 06:12:43 cs2871-7 pppd[895]: Using interface ppp0
> > > > > Oct 19 06:12:43 cs2871-7 pppd[895]: Connect: ppp0 <--> /dev/ttya0
> > > > > Oct 19 06:12:43 cs2871-7 pppd[895]: sent [LCP ConfReq 
> > id=0x1 <asyncmap
> > > > 0x0>
> > > > > <magic 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq 
> > id=0x1 <asyncmap
> > > > 0x0>
> > > > > <magic 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> > id=0x1 <mru 338>
> > > > <auth
> > > > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak 
> > id=0x1 <auth chap
> > > > > MD5>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfRej 
> > id=0x1 <asyncmap
> > > > 0x0>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2
<magic
> > > > > 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> > id=0x2 <mru 338>
> > > > <auth
> > > > > chap 81> <magic 0xb374eebd> <pcomp> <accomp>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: sent [LCP ConfNak 
> > id=0x2 <auth chap
> > > > > MD5>]
> > > > > Oct 19 06:12:46 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2
<magic
> > > > > 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfReq id=0x2
<magic
> > > > > 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfReq 
> > id=0x2 <mru 338>
> > > > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [LCP ConfAck 
> > id=0x2 <mru 338>
> > > > > <magic 0xb374eebd> <pcomp> <accomp>]
> > > > > Oct 19 06:12:49 cs2871-7 pppd[895]: rcvd [LCP ConfAck id=0x2
<magic
> > > > > 0x830b005f> <pcomp> <accomp>]
> > > > > Oct 19 06:12:49 cs2871-7 pppd[895]: sent [IPCP ConfReq id=0x1
<addr
> > > > > 24.28.71.7> <compress VJ 0f 01>]
> > > > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [CCP ConfReq id=0x1 
> > > > <bsd v1 15>]
> > > > > Oct 19 06:12:50 cs2871-7 pppd[895]: rcvd [LCP TermReq id=0x3]
> > > > > Oct 19 06:12:50 cs2871-7 pppd[895]: LCP terminated by peer
> > > > > Oct 19 06:12:50 cs2871-7 pppd[895]: sent [LCP TermAck id=0x3]
> > > > >
> > > > >
> > > > >
> > > > > _______________________________________________
> > > > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > > > List services provided by www.schulte.org!
> > > > >
> > > > 
> > > 
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> > > 
> > 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!



From geoff at gnaa.net  Thu Oct 21 16:25:49 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Thu Oct 21 16:25:49 1999
Subject: [pptp-server] problems connecting at chapms or chapmsv2
Message-ID: <000901bf1c0a$d52585c0$020a10ac@titan.gnaa.net>

I am currently using linux2.2.12, ppp-2.3.8

My client is NT 4, with the latest RAS patch for
MS

I can connect using chap.

When I connect using chapms or chapms-v2 I am unable
to ping any machine on the private subnet.  I can't
even ping the internal interface of the PPTP server.

When I try to enable data encryption on the client
side it comes back with an error stating the machine
is not capable of encryption.

I attached the log files.  Hopefully you can find
something wrong.  

thanks,

Geoff Nordli
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pptpd.log
Type: application/octet-stream
Size: 3307 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991021/95170ea0/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: messages
Type: application/octet-stream
Size: 1232 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991021/95170ea0/attachment-0001.obj>

From jcaspen at ittc.ukans.edu  Thu Oct 21 16:46:06 1999
From: jcaspen at ittc.ukans.edu (Carlos Javier Castro Pena)
Date: Thu Oct 21 16:46:06 1999
Subject: [pptp-server] Establishing GRE tunnel with CISCO router [Sort of Offtopic]
Message-ID: <380F8992.F1D9BEDF@ittc.ukans.edu>

Is it possible to establish a GRE tunnel with a CISCO router and Linux?
PPTP can do that, but I would like to do it just with Linux. Where could
I find more documentation about this issue?




From geoff at gnaa.net  Thu Oct 21 16:51:48 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Thu Oct 21 16:51:48 1999
Subject: [pptp-server] problems connecting at chapms or chapmsv2
In-Reply-To: <000901bf1c0a$d52585c0$020a10ac@titan.gnaa.net>
Message-ID: <000e01bf1c0e$820c3060$020a10ac@titan.gnaa.net>

More information!!

The main difference between chap, and chapms is
the error:

Oct 21 14:17:29 saturn pptpd[642]: MGR: Max connections reached, extra IP
addresses ignored
Oct 21 14:17:29 saturn pptpd[643]: MGR: Manager process started

I don't get this error on the regular chap session.

geoff

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> Sent: Thursday, October 21, 1999 2:26 PM
> To: Pptp-Server List (E-mail)
> Subject: [pptp-server] problems connecting at chapms or chapmsv2
>
>
> I am currently using linux2.2.12, ppp-2.3.8
>
> My client is NT 4, with the latest RAS patch for
> MS
>
> I can connect using chap.
>
> When I connect using chapms or chapms-v2 I am unable
> to ping any machine on the private subnet.  I can't
> even ping the internal interface of the PPTP server.
>
> When I try to enable data encryption on the client
> side it comes back with an error stating the machine
> is not capable of encryption.
>
> I attached the log files.  Hopefully you can find
> something wrong.
>
> thanks,
>
> Geoff Nordli




From carey at itfreedom.com  Thu Oct 21 17:04:06 1999
From: carey at itfreedom.com (Carey Jung)
Date: Thu Oct 21 17:04:06 1999
Subject: [pptp-server] Establishing GRE tunnel with CISCO router [Sort of Offtopic]
In-Reply-To: <380F8992.F1D9BEDF@ittc.ukans.edu>
Message-ID: <NDBBKMIPMLIGJMHGCCNAGEFFCBAA.carey@itfreedom.com>

I don't know how to get through the Cisco router, but this should describe
how to get through the Linux box:
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html

Carey

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Carlos Javier
> Castro Pena
> Sent: Thursday, October 21, 1999 4:46 PM
> To: ppptp server
> Subject: [pptp-server] Establishing GRE tunnel with CISCO router [Sort
> of Offtopic]
>
>
> Is it possible to establish a GRE tunnel with a CISCO router and Linux?
> PPTP can do that, but I would like to do it just with Linux. Where could
> I find more documentation about this issue?
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




From tmk at netmagic.net  Thu Oct 21 17:14:49 1999
From: tmk at netmagic.net (tmk)
Date: Thu Oct 21 17:14:49 1999
Subject: [pptp-server] problems connecting at chapms or chapmsv2
References: <000e01bf1c0e$820c3060$020a10ac@titan.gnaa.net>
Message-ID: <001601bf1c12$1f2e99c0$071c0fc0@lala.net>

this just means you are using >= the number of ips that you set aside in
/etc/pptpd.conf

give yourself a few extra ip's to work with, or kill the server and start
over and it should go away

Kevin
----- Original Message -----
From: Geoff Nordli <geoff at gnaa.net>
To: <geoff at gnaa.net>; 'Pptp-Server List (E-mail)'
<pptp-server at lists.schulte.org>
Sent: Thursday, October 21, 1999 2:52 PM
Subject: RE: [pptp-server] problems connecting at chapms or chapmsv2


> More information!!
>
> The main difference between chap, and chapms is
> the error:
>
> Oct 21 14:17:29 saturn pptpd[642]: MGR: Max connections reached, extra IP
> addresses ignored
> Oct 21 14:17:29 saturn pptpd[643]: MGR: Manager process started
>
> I don't get this error on the regular chap session.
>
> geoff
>
> > -----Original Message-----
> > From: pptp-server-admin at lists.schulte.org
> > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Geoff Nordli
> > Sent: Thursday, October 21, 1999 2:26 PM
> > To: Pptp-Server List (E-mail)
> > Subject: [pptp-server] problems connecting at chapms or chapmsv2
> >
> >
> > I am currently using linux2.2.12, ppp-2.3.8
> >
> > My client is NT 4, with the latest RAS patch for
> > MS
> >
> > I can connect using chap.
> >
> > When I connect using chapms or chapms-v2 I am unable
> > to ping any machine on the private subnet.  I can't
> > even ping the internal interface of the PPTP server.
> >
> > When I try to enable data encryption on the client
> > side it comes back with an error stating the machine
> > is not capable of encryption.
> >
> > I attached the log files.  Hopefully you can find
> > something wrong.
> >
> > thanks,
> >
> > Geoff Nordli
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From geoff at gnaa.net  Thu Oct 21 17:21:00 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Thu Oct 21 17:21:00 1999
Subject: [pptp-server] problems connecting at chapms or chapmsv2
In-Reply-To: <001601bf1c12$1f2e99c0$071c0fc0@lala.net>
Message-ID: <001101bf1c12$973ed650$020a10ac@titan.gnaa.net>

I kill the pptpd every time I make a config change.

I have attached my pptpd.conf file to take a look at.

I think I only need 1 ip address for the local use.

thanks,

geoff


> -----Original Message-----
> From: tmk [mailto:tmk at netmagic.net]
> Sent: Thursday, October 21, 1999 3:18 PM
> To: geoff at gnaa.net; 'Pptp-Server List (E-mail)'
> Subject: Re: [pptp-server] problems connecting at chapms or chapmsv2
> 
> 
> this just means you are using >= the number of ips that you 
> set aside in
> /etc/pptpd.conf
> 
> give yourself a few extra ip's to work with, or kill the 
> server and start
> over and it should go away
> 
> Kevin
> ----- Original Message -----
> From: Geoff Nordli <geoff at gnaa.net>
> To: <geoff at gnaa.net>; 'Pptp-Server List (E-mail)'
> <pptp-server at lists.schulte.org>
> Sent: Thursday, October 21, 1999 2:52 PM
> Subject: RE: [pptp-server] problems connecting at chapms or chapmsv2
> 
> 
> > More information!!
> >
> > The main difference between chap, and chapms is
> > the error:
> >
> > Oct 21 14:17:29 saturn pptpd[642]: MGR: Max connections 
> reached, extra IP
> > addresses ignored
> > Oct 21 14:17:29 saturn pptpd[643]: MGR: Manager process started
> >
> > I don't get this error on the regular chap session.
> >
> > geoff
> >
> > > -----Original Message-----
> > > From: pptp-server-admin at lists.schulte.org
> > > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of 
> Geoff Nordli
> > > Sent: Thursday, October 21, 1999 2:26 PM
> > > To: Pptp-Server List (E-mail)
> > > Subject: [pptp-server] problems connecting at chapms or chapmsv2
> > >
> > >
> > > I am currently using linux2.2.12, ppp-2.3.8
> > >
> > > My client is NT 4, with the latest RAS patch for
> > > MS
> > >
> > > I can connect using chap.
> > >
> > > When I connect using chapms or chapms-v2 I am unable
> > > to ping any machine on the private subnet.  I can't
> > > even ping the internal interface of the PPTP server.
> > >
> > > When I try to enable data encryption on the client
> > > side it comes back with an error stating the machine
> > > is not capable of encryption.
> > >
> > > I attached the log files.  Hopefully you can find
> > > something wrong.
> > >
> > > thanks,
> > >
> > > Geoff Nordli
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
> 
> 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pptpd.conf
Type: application/octet-stream
Size: 2305 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991021/ece67c87/attachment.obj>

From geoff at gnaa.net  Thu Oct 21 19:57:02 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Thu Oct 21 19:57:02 1999
Subject: [pptp-server] where am I going wrong compiling 2.3.10 openss0.9.4
Message-ID: <000101bf1c28$5fda12e0$020a10ac@titan.gnaa.net>

I have attached the exact steps that I did to compile
2.3.10 with 128bit encryption, and MPPE.

there are 2 files:

configuring pptp on linux, which is the step by step
procedure i followed.

errors.txt, which contains the error log that was generated
after trying to compile the ppp modules.

It seems to be hung up on a "openssl" hard coded path.

thanks anyone.

Geoff Nordli
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: configuing pptp on linux.txt
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991021/784eca47/attachment.txt>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: errors.txt
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991021/784eca47/attachment-0001.txt>

From gstammw at gmx.net  Fri Oct 22 04:09:08 1999
From: gstammw at gmx.net (gstammw)
Date: Fri Oct 22 04:09:08 1999
Subject: [pptp-server] alternative to pptpd ???
References: <000101bf1c28$5fda12e0$020a10ac@titan.gnaa.net>
Message-ID: <00a201bf1c6d$0cf41900$c800a8c0@intern.gstammw.eu.org>

Hello guys,

I've just read about a program similar to pptpd. You can find it here:
http://vtun.netpedia.net/
It says: The easiest way to create Virtual Tunnels over TCP/IP networks
with traffic shaping, compression, and encryption.

The question now is: Could the both authors of pptpd and vtun probably work
together to improve their products ?

You should think about. But don't forget: pptpd is a really great program !
I didn't want to blame any by writing this mail...




From tmk at netmagic.net  Fri Oct 22 09:44:10 1999
From: tmk at netmagic.net (tmk)
Date: Fri Oct 22 09:44:10 1999
Subject: [pptp-server] alternative to pptpd ???
References: <000101bf1c28$5fda12e0$020a10ac@titan.gnaa.net> <00a201bf1c6d$0cf41900$c800a8c0@intern.gstammw.eu.org>
Message-ID: <000901bf1c9c$54043120$071c0fc0@lala.net>

pptpd is based on an internet draft (RFC) and as such can't really be
modified without breaking compatibility. If you just want to make a linux ->
linux vpn, there are tons of ways to do it, and pptp probably isnt the best
one.pptp's strength is that it supports the existing windows clients out
there.

Kevin
----- Original Message -----
From: gstammw <gstammw at gmx.net>
To: Pptp-Server List (E-mail) <pptp-server at lists.schulte.org>
Sent: Friday, October 22, 1999 2:08 AM
Subject: [pptp-server] alternative to pptpd ???


> Hello guys,
>
> I've just read about a program similar to pptpd. You can find it here:
> http://vtun.netpedia.net/
> It says: The easiest way to create Virtual Tunnels over TCP/IP networks
> with traffic shaping, compression, and encryption.
>
> The question now is: Could the both authors of pptpd and vtun probably
work
> together to improve their products ?
>
> You should think about. But don't forget: pptpd is a really great program
!
> I didn't want to blame any by writing this mail...
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From geoff at gnaa.net  Fri Oct 22 12:57:30 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Fri Oct 22 12:57:30 1999
Subject: [pptp-server] I got it working, but on RH 6.0/5.2
Message-ID: <006701bf1cb7$00a8f950$020a10ac@titan.gnaa.net>

I finally got the pptp system working, but I had to
switch to RH 6.0.

I also tried setting it up with 5.2, and was successful.

Initially I was working on a RH 6.1 setup, and it 
didn't work.

Has anyone successfully done a 6.1 install?  Is there
anything that might have changed in the new release
that would break pptp/ppp.




Geoff Nordli MCT, MCSE, Master CNE, CCA, MCP, A+
G Nordli & Associates
749 Robson Dr.
Kamloops BC, V2E 2G7
Phone: 250-314-7354
E-mail to pager: 2503147354 at pcs.cantelatt.com
E-mail: geoff at gnaa.net



From geoff at gnaa.net  Fri Oct 22 16:55:16 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Fri Oct 22 16:55:16 1999
Subject: [pptp-server] ipchains rules assessment
Message-ID: <009301bf1cd8$2c032320$020a10ac@titan.gnaa.net>

Are these rules really safe:

1)  ####  SET DEFAULT RULES TO DENY
2)  /sbin/ipchains -P input DENY
3)  /sbin/ipchains -P forward DENY
4)  ####  ALLOW ALL PORTS ON THE INTERNAL INTERFACE
5)  ipchains -A input -s <INTERNAL IP ADDRESS>/24 -j ACCEPT
6)  ipchains -A forward -s <INTERNAL IP ADDRESS>/24 -j ACCEPT
7)  ####  ALLOW AND FORWARD INCOMING VPN PACKETS
8)  ipchains -A input -p tcp -d <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
9)  ipchains -A input -p 47 -d <EXTERNAL IP ADDRESS> -j ACCEPT
10)  ipchains -A forward -p tcp -d <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
11)  ipchains -A forward -p tcp -s <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
13)  ipchains -A forward -p 47 -d <EXTERNAL IP ADDRESS> -j ACCEPT
14)  ipchains -A forward -p 47 -s <EXTERNAL IP ADDRESS> -j ACCEPT

My interpertation is that any packet that shows up on the
outside interface will be allowed through the firewalling
system, and is vulnerable to spoofing.  Is this so?

I added these rules with an -I to put them at the top of the list:

ipchains -I input -s <internal network> -i <ext interface> -j DENY
ipchains -I input -d <internal network> -i <ext interface> -j DENY


Packets that show up on the external interface with a destination or 
source of the internal network gets denied.

Is there anything else that I should be looking for?  Currently this
box is only there to handle the PPTP duties.

thanks,

Geoff Nordli



From tmk at netmagic.net  Fri Oct 22 18:46:36 1999
From: tmk at netmagic.net (tmk)
Date: Fri Oct 22 18:46:36 1999
Subject: [pptp-server] ipchains rules assessment
In-Reply-To: <009301bf1cd8$2c032320$020a10ac@titan.gnaa.net>
Message-ID: <Pine.LNX.3.96.991022164213.17302A-100000@shell.netmagic.net>

if you choose your internal network numbers from the known reserved ranges
(ie 192.168.0.* or 172.16.*.*, etc) then you wont have to worry about
packets in or out of your external network, since the routers on the net
wont forward them. But it's a good idea to be safe. Just in case, i have a
rule:

ipchains -I output -s <internal net/netmask> -i <ext i/f> -j REJECT

which prevents packets from inside getting out by accident.


On Fri, 22 Oct 1999, Geoff Nordli wrote:

> Are these rules really safe:
> 
> 1)  ####  SET DEFAULT RULES TO DENY
> 2)  /sbin/ipchains -P input DENY
> 3)  /sbin/ipchains -P forward DENY
> 4)  ####  ALLOW ALL PORTS ON THE INTERNAL INTERFACE
> 5)  ipchains -A input -s <INTERNAL IP ADDRESS>/24 -j ACCEPT
> 6)  ipchains -A forward -s <INTERNAL IP ADDRESS>/24 -j ACCEPT
> 7)  ####  ALLOW AND FORWARD INCOMING VPN PACKETS
> 8)  ipchains -A input -p tcp -d <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
> 9)  ipchains -A input -p 47 -d <EXTERNAL IP ADDRESS> -j ACCEPT
> 10)  ipchains -A forward -p tcp -d <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
> 11)  ipchains -A forward -p tcp -s <EXTERNAL IP ADDRESS> 1723 -j ACCEPT
> 13)  ipchains -A forward -p 47 -d <EXTERNAL IP ADDRESS> -j ACCEPT
> 14)  ipchains -A forward -p 47 -s <EXTERNAL IP ADDRESS> -j ACCEPT
> 
> My interpertation is that any packet that shows up on the
> outside interface will be allowed through the firewalling
> system, and is vulnerable to spoofing.  Is this so?

no, only packets with proto 47 (GRE) or on TCP port 1723 will be allowed
through teh firewalling, since anything that doesnt match the above will
get denied. Anything on internal interfaces will be allowed.

Kevin




From bens at saber.net  Sat Oct 23 00:32:21 1999
From: bens at saber.net (Benjamin Smith)
Date: Sat Oct 23 00:32:21 1999
Subject: [pptp-server] Clueless
Message-ID: <99102222300001.27476@bug1.lookuplaw.com>

Just when I think I'm comfortable at the command prompt, I get lost again!

Here's my situation. Need PPTP to access a computer on a work computer
from a remote network, through a masqueraded Internet connection. Both networks
have a single, masqueraded Internet connection. 

Here's a diagram 

Remote Network 

Windoze  +
	   |
Linux       +
	   |
Linux       +=== Internet 
========================================== 
Office Network 

Linux        +===Internet    # This computer has PPTP installed. 
                |
Windoze    +
                |
Windoze    +
                |
Windoze    +
...
=========================================== 

I want to initiate a connection from the remote network to the office network.

The remote computers are connected via IP Masquerading, and use local addresses
192.168.120.* The work computers are similarly connected, and use local
addresses 192.168.121.*. 

The addresses for the Internet on both ends are static. As noted above, PPTP
has been installed on the Linux server for the office, apparently successfully. 

But how do I get the remote Windoze to connect? I've tried d/l MSDUN13.exe,
(supposed to have VPN support) but it only seems to work if you are hooked up
to the 'net via MODEM. What about via a LAN? 

Or should I be using a Linux PPTP client? Would I be able to route the whole
remote network to the office network with a Linux PPTP client on the server of
the three machines? 

I've certainly heard of IPSec, and the only thing I've found is FreesWAN, which
apparently only works with RH 5.2 and 2.0.3x kernel, I'm using RH 6.0 and 2.2.
for office and remote networks. And, if I'm lost now, I don't even know where
to begin with IPsec... 

I'll also include the rules for ipchains that I have in /etc/rc.local: 

ipchains -P forward DENY
ipchains -A forward -s 192.168.120.1/32 -j MASQ #The server (RH 6.0)
ipchains -A forward -s 192.168.120.5/32 -j MASQ # Win/ to connect with
ipchains -A forward -s 192.168.120.10/32 -j MASQ

The office reads as follows: 

ipchains -P forward DENY
ipchains -A forward -s 192.168.121.1/32 -j MASQ # The server (RH 6.0) 
ipchains -A forward -s 192.168.121.2/32 -j MASQ
ipchains -A forward -s 192.168.121.3/32 -j MASQ
ipchains -A forward -s 192.168.121.4/32 -j MASQ # Win/ To connect to. 
ipchains -A forward -s 192.168.121.50/32 -j MASQ
ipchains -A forward -s 192.168.121.51/32 -j MASQ
ipchains -A forward -s 192.168.121.100/32 -j MASQ
ipchains -A forward -s 192.168.121.10/32 -j MASQ   

Thanks in advance, 

--
                    ("`-''-/").___..--''"`-._    (Simba)
                    `@_ @  )    `-.  (        ).`-.__.`)
                    (_Y_.)'  ._    )  `._ `. ``-..-'
                _..`--'_..-_/  /--'_.' ,'
              ((().-''  ((().'  (((.-'        Benjamin Smith




From i_d_i at solo.bg  Sat Oct 23 04:45:38 1999
From: i_d_i at solo.bg (Ivan Iliev)
Date: Sat Oct 23 04:45:38 1999
Subject: [pptp-server] PPTP and WIN311
Message-ID: <38118416.8F123CFE@solo.bg>

	Hi,

Is there a win3.11 pptp client?



From nngodinh at tiscalinet.it  Sat Oct 23 21:06:40 1999
From: nngodinh at tiscalinet.it (Nhan NGO DINH)
Date: Sat Oct 23 21:06:40 1999
Subject: [pptp-server] Monitoring
Message-ID: <4.1.19991024040554.00a58820@pop.tiscalinet.it>

Hi,

How can I know if PoPToP is crypting data over the PPTP connection? Do you
know any packet-dumping programs?

Thx.

---
Nhan NGO DINH
e-mail: nngodinh at tiscalinet.it
web site: http://www.tiscalinet.it/nngodinh




From tmk at netmagic.net  Sat Oct 23 21:20:09 1999
From: tmk at netmagic.net (tmk)
Date: Sat Oct 23 21:20:09 1999
Subject: [pptp-server] Monitoring
References: <4.1.19991024040554.00a58820@pop.tiscalinet.it>
Message-ID: <001d01bf1dc6$b955c7c0$071c0fc0@lala.net>

you can use tcpdump to dump out the ppp packets, or if you're a GUI guy, try
ethereal

Kevin
----- Original Message -----
From: Nhan NGO DINH <nngodinh at tiscalinet.it>
To: <pptp-server at lists.schulte.org>
Sent: Saturday, October 23, 1999 7:06 PM
Subject: [pptp-server] Monitoring


> Hi,
>
> How can I know if PoPToP is crypting data over the PPTP connection? Do you
> know any packet-dumping programs?
>
> Thx.
>
> ---
> Nhan NGO DINH
> e-mail: nngodinh at tiscalinet.it
> web site: http://www.tiscalinet.it/nngodinh
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From matthewr at moreton.com.au  Sun Oct 24 22:19:35 1999
From: matthewr at moreton.com.au (Matthew Ramsay)
Date: Sun Oct 24 22:19:35 1999
Subject: [pptp-server] PoPToP goes to COMDEX
Message-ID: <99102513124207.05191@gibberling.moreton.com.au>

Hiya All,

I'm heading over to the Linux Business Expo held with COMDEX in Las Vegas next
month (November 15-19) and will be taking PoPToP with me. I am promoting PoPToP
as the linux PPTP VPN solution.

I'm also there to help launch a new linux router product (which employs PoPToP
as the VPN server) called the NETtel. I will be giving away a limited number
of NETtel's to anybody who shows enthusiasm at hacking away and actually using
our NETtel.. (ie. I don't want them to sit on a shelf and never be touched
again after COMDEX :-). For more info on the NETtel go here:
http://www.moreton.com.au/MBWEB/product/nettel/nettel.htm

So, if you are around at COMDEX this fall, be sure to come visit me! I'll be at
the Moreton Bay booth. Hope to seeya all there :-)

-matt




From cswan at connectria.com  Mon Oct 25 11:58:23 1999
From: cswan at connectria.com (Chris Swan)
Date: Mon Oct 25 11:58:23 1999
Subject: [pptp-server] IPX
References: <81E5F727841DD211A5FD0008C728DB7B5539BF@campusx1.tue.nl>
Message-ID: <000b01bf1f0a$1477e900$6908a8c0@wustl.edu>

----- Original Message -----
From: Hil, A.T.v.d. <A.T.v.d.Hil at tue.nl>
To: <pptp-server at lists.schulte.org>
Sent: Wednesday, October 20, 1999 2:55 AM
Subject: [pptp-server] IPX

> I want to enable IPX over the ppp link. Can somebody help me
> with this, if pptp supports this.
>
> When i try to set up an ipx link i get the pppd message:
> IPX support is not present in the kernel.
>
> But i'm sure it is compiled in the kernel. Maybe it's a problem in
pppd

    I've been fighting with this for months, and I can't figure out a
solution.  I finally got IPX to compile clean (with kernel 2.2.13) as
a module, and it gets inserted into the running kernel without errors.
But pptpd ALWAYS says that IPX support is not present in the
kernel--what gives?  If I compile it into the kernel I get no errors
on bootup, but still pptp complains.

    Is it possible pptpd is just not detecting IPX properly?  TMK
posted an IPX howto a while ago, so I'm assuming that _someone_ has it
working.  Can anyone provide a simple test to see if IPX is
functioning correctly on the linux side?

This is a listing of what my /proc/net filesystem looked like after
doing the things mentioned by tmk in the IPX howto:

rosebud:/proc/net# more ipx
Local_Address  Remote_Address              Tx_Queue  Rx_Queue  State
Uid

rosebud:/proc/net# more ipx_route
Network    Router_Net   Router_Node
80FC4D01   Directly     Connected
80FCA001   Directly     Connected

rosebud:/proc/net# more ipx_interface
Network    Node_Address   Primary  Device     Frame_Type
80FCA001   00105A221B1C   Yes      eth0       EtherII
80FC4D01   00105A221B1C   No       eth0       802.3
00000000   00105A221B1C   No       eth0       802.2









From tmk at netmagic.net  Mon Oct 25 15:31:47 1999
From: tmk at netmagic.net (tmk)
Date: Mon Oct 25 15:31:47 1999
Subject: [pptp-server] IPX
References: <81E5F727841DD211A5FD0008C728DB7B5539BF@campusx1.tue.nl> <000b01bf1f0a$1477e900$6908a8c0@wustl.edu>
Message-ID: <001001bf1f28$62d76760$071c0fc0@lala.net>

I had this same problem with my old linux (rh 5.2) computer (and it's pppd
that cant find IPX, not pptpd) and i never found a solution. I was building
a redhat 6 system at the time and the problem didnt exist there.

Make sure you do a make clean between kernel compilations. That might be the
problem. I think what happens is that the pppd kernel was compiled without
support for ipx, and somehow it never gets the idea that it's there. It may
also be a setting external to ppp or the kernel that i just didnt find. Like
i said, i never fixed the problem.

Kevin
----- Original Message -----
From: Chris Swan <cswan at connectria.com>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 25, 1999 9:57 AM
Subject: Re: [pptp-server] IPX


>
> ----- Original Message -----
> From: Hil, A.T.v.d. <A.T.v.d.Hil at tue.nl>
> To: <pptp-server at lists.schulte.org>
> Sent: Wednesday, October 20, 1999 2:55 AM
> Subject: [pptp-server] IPX
>
> > I want to enable IPX over the ppp link. Can somebody help me
> > with this, if pptp supports this.
> >
> > When i try to set up an ipx link i get the pppd message:
> > IPX support is not present in the kernel.
> >
> > But i'm sure it is compiled in the kernel. Maybe it's a problem in
> pppd
>
>     I've been fighting with this for months, and I can't figure out a
> solution.  I finally got IPX to compile clean (with kernel 2.2.13) as
> a module, and it gets inserted into the running kernel without errors.
> But pptpd ALWAYS says that IPX support is not present in the
> kernel--what gives?  If I compile it into the kernel I get no errors
> on bootup, but still pptp complains.
>
>     Is it possible pptpd is just not detecting IPX properly?  TMK
> posted an IPX howto a while ago, so I'm assuming that _someone_ has it
> working.  Can anyone provide a simple test to see if IPX is
> functioning correctly on the linux side?
>
> This is a listing of what my /proc/net filesystem looked like after
> doing the things mentioned by tmk in the IPX howto:
>
> rosebud:/proc/net# more ipx
> Local_Address  Remote_Address              Tx_Queue  Rx_Queue  State
> Uid
>
> rosebud:/proc/net# more ipx_route
> Network    Router_Net   Router_Node
> 80FC4D01   Directly     Connected
> 80FCA001   Directly     Connected
>
> rosebud:/proc/net# more ipx_interface
> Network    Node_Address   Primary  Device     Frame_Type
> 80FCA001   00105A221B1C   Yes      eth0       EtherII
> 80FC4D01   00105A221B1C   No       eth0       802.3
> 00000000   00105A221B1C   No       eth0       802.2
>
>
>
>
>
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From cswan at connectria.com  Tue Oct 26 11:52:14 1999
From: cswan at connectria.com (Chris Swan)
Date: Tue Oct 26 11:52:14 1999
Subject: [pptp-server] IPX
References: <81E5F727841DD211A5FD0008C728DB7B5539BF@campusx1.tue.nl> <000b01bf1f0a$1477e900$6908a8c0@wustl.edu> <001001bf1f28$62d76760$071c0fc0@lala.net>
Message-ID: <000401bf1fd2$33157260$6908a8c0@wustl.edu>

----- Original Message -----
From: tmk <tmk at netmagic.net>
To: <pptp-server at lists.schulte.org>
Sent: Monday, October 25, 1999 3:34 PM
Subject: Re: [pptp-server] IPX


> I had this same problem with my old linux (rh 5.2) computer (and
it's pppd
> that cant find IPX, not pptpd) and i never found a solution. I was
building
> a redhat 6 system at the time and the problem didnt exist there.

Wohoo!  Thanks--man, to think all this time that I never bothered
seeing if it was PPPD that was the problem--thank you.  No more errors
after recompiling PPTP.

IPX always was present in the kernel--it was just the old kernel
versions that weren't building IPX as a module properly--it was
working fine when in the kernel, apparently.

Now, to test a little Warcraft2 action and see if it's really working
:)


> > ----- Original Message -----
> > From: Hil, A.T.v.d. <A.T.v.d.Hil at tue.nl>
> > To: <pptp-server at lists.schulte.org>
> > Sent: Wednesday, October 20, 1999 2:55 AM
> > Subject: [pptp-server] IPX
> >
> > > I want to enable IPX over the ppp link. Can somebody help me
> > > with this, if pptp supports this.
> > >
> > > When i try to set up an ipx link i get the pppd message:
> > > IPX support is not present in the kernel.
> > >
> > > But i'm sure it is compiled in the kernel. Maybe it's a problem
in
> > pppd
> >
> >     I've been fighting with this for months, and I can't figure
out a
> > solution.  I finally got IPX to compile clean (with kernel 2.2.13)
as
> > a module, and it gets inserted into the running kernel without
errors.
> > But pptpd ALWAYS says that IPX support is not present in the
> > kernel--what gives?  If I compile it into the kernel I get no
errors
> > on bootup, but still pptp complains.
> >
> >     Is it possible pptpd is just not detecting IPX properly?  TMK
> > posted an IPX howto a while ago, so I'm assuming that _someone_
has it
> > working.  Can anyone provide a simple test to see if IPX is
> > functioning correctly on the linux side?

> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>





From Dave_Plsek at insession.com  Tue Oct 26 13:02:49 1999
From: Dave_Plsek at insession.com (Dave Plsek)
Date: Tue Oct 26 13:02:49 1999
Subject: [pptp-server] pptp server and Win98 -- *sigh*
Message-ID: <OF9F57CEC9.7832AFA2-ON87256816.006190B8@insession.com>

Hi all,

I'm new to this list so be kind even though I'm asking a question that's 
probably been answered a thousand times

I recently set up pptp (1.0.0) on an old 486 (gotta do something with the 
old hardware) running linux 2.0.35
pppd is version 2.3.10 with the appropriate patches

NT4.0 connects just fine 
Win98 (not SE) get's an error 720 - something about not being able to 
negotiate protocols

I *did* check out the archive, but I could not find a complete answer - 
most solutions seem to center around de-installing and re-instlling VPN in 
Win98 and applying the DUN40.exe patch from M-$oft -- been there, done 
that, still no good.

it seems that authentication is (finally) working - what seems to be 
sticking is the negotiation of encryption

here's a 'dump' of /var/log/debug with a few (guesses) comments thrown in

Can anyone tell me what I can try next or what I should be looking at?

Oct 25 21:30:57 VPNserv pppd[19980]: sent [CHAP Challenge id=0x1 
<98b5d57348b0b09c216026d74ec80997>, name = VPNserv"]
Oct 25 21:30:57 VPNserv pppd[19980]: Timeout 0x805571c:0x8072cd8 in 3 
seconds.
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP EchoRep id=0x0 
magic=0x28a47]
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CHAP Response id=0x1 <...>, 
name = "XXXXXXX\\VPNtest"]
Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x805571c:0x8072cd8.
Oct 25 21:30:58 VPNserv pppd[19980]: ChapReceiveResponse: rcvd type 
MS-CHAP-V2
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CHAP Success id=0x1 "S=..."]
Oct 25 21:30:58 VPNserv pppd[19980]: sent [IPCP ConfReq id=0x1 <addr 
a.b.c.d> <compress VJ 0f 01>]
Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072c70 in 3 
seconds.
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x1 <deflate 15> 
<deflate(old#) 15> <mppe 1 0 0 60> <bsd v1 15>]
Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3 
seconds.

Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0 
1> <lzs 0 1 4>]
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfRej id=0x1 <lzs 0 1 4>]
hmmm - ppp_lzscomp.c looks incomplete so I don't have a ppp_lzscomp.o 
module

Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP ProtRej id=0x2 80 21 01 01 
00 10 03 06 cf cd 5c 14 02 06 00 2d 0f 01]
Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072c70.
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfRej id=0x1 <deflate 15> 
<deflate(old#) 15> <bsd v1 15>]
OK - so Win98 doesn't like bsdcomp ...

Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88.
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x2 <mppe 1 0 0 
60>]
128 bit encryption?

Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3 
seconds.
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x2 <mppe 1 0 0 
1>]
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfNak id=0x2 <mppe 1 0 0 
60>]
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfNak id=0x2 <mppe 1 0 0 
20>]
Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88.
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x3 <mppe 1 0 0 
20>]
Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3 
seconds.
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x3 <mppe 1 0 0 
20>]
Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfAck id=0x3 <mppe 1 0 0 
20>]
Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfAck id=0x3 <mppe 1 0 0 
20>]
Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88.
Aren't we all in agreement to use mppe (40 bit??) 'compression' now?

Oct 25 21:31:00 VPNserv pppd[19980]: rcvd [LCP TermReq id=0x3]
Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x805286c:0x8072ab8.
Oct 25 21:31:00 VPNserv pppd[19980]: IPCP: Down event in state 1!
Oct 25 21:31:00 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072ab8 in 3 
seconds.
Oct 25 21:31:00 VPNserv pppd[19980]: sent [LCP TermAck id=0x3]
Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072ab8. 
Apparently not 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991026/1708e1e0/attachment.html>

From walterm at Gliatech.com  Tue Oct 26 13:23:25 1999
From: walterm at Gliatech.com (Michael Walter)
Date: Tue Oct 26 13:23:25 1999
Subject: [pptp-server] pptp server and Win98 -- *sigh*
Message-ID: <EDA23054FDC0D1119842006008CEAB4853CF23@GLIATECHUSA1>

Interesting that WinNT connects but Win98 does not.  That may tell us who to
point a finger at.  A few things, when you connect with WinNT is encryption
enabled?  If so, the linux box is NOT the problem.  If this is the case, (I
know you've done this, but there are a few snafu's) un-install, and
re-install MS Virtual Private Networking.  Now for the Snafu:  you must
un-install and re-install through add/remove programs.  If you do it through
the Network Properties, it will not install properly, so you must do this
through Add/Remove programs.  After that is done, apply the DUN40.exe patch.
You should then be able to connect with encryption(make sure to turn off ipx
and netbios on the vpn link, also turn off header compression and default
gateway on remote network)  Now, the other case, if you were not using
encryption on the WinNT box, type: 
insmod slhc
insmod ppp
insmod ppp_deflate
insmod bsd_comp
insmod ppp_mppe
And try to connect(Don't reboot the linux box after these commands until you
try to connect)
If you still can't connect with encryption, post any errors you received
when doing the insmod's.
Good luck,


Michael J. Walter mcse
Gliatech, Inc.
walterm at gliatech.com
mwalter at drwalter.com

On Tuesday, October 26, 1999 2:03 PM, Dave Plsek
[SMTP:Dave_Plsek at insession.com] wrote:
> 
> Hi all, 
> 
> I'm new to this list so be kind even though I'm asking a question that's
probably been answered a thousand times 
> 
> I recently set up pptp (1.0.0) on an old 486 (gotta do something with the
old hardware) running linux 2.0.35 
> pppd is version 2.3.10 with the appropriate patches 
> 
> NT4.0 connects just fine 
> Win98 (not SE) get's an error 720 - something about not being able to
negotiate protocols 
> 
> I *did* check out the archive, but I could not find a complete answer -
most solutions seem to center around de-installing and re-instlling VPN in
Win98 and applying the DUN40.exe patch from M-$oft -- been there, done that,
still no good. 
> 
> it seems that authentication is (finally) working - what seems to be
sticking is the negotiation of encryption 
> 
> here's a 'dump' of /var/log/debug with a few (guesses) comments thrown in 
> 
> Can anyone tell me what I can try next or what I should be looking at? 
> 
> Oct 25 21:30:57 VPNserv pppd[19980]: sent [CHAP Challenge id=0x1
<98b5d57348b0b09c216026d74ec80997>, name = VPNserv"] 
> Oct 25 21:30:57 VPNserv pppd[19980]: Timeout 0x805571c:0x8072cd8 in 3
seconds. 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP EchoRep id=0x0
magic=0x28a47] 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CHAP Response id=0x1 <...>,
name = "XXXXXXX\\VPNtest"] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x805571c:0x8072cd8. 
> Oct 25 21:30:58 VPNserv pppd[19980]: ChapReceiveResponse: rcvd type
MS-CHAP-V2 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CHAP Success id=0x1 "S=..."] 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [IPCP ConfReq id=0x1 <addr
a.b.c.d> <compress VJ 0f 01>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072c70 in 3
seconds. 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x1 <deflate 15>
<deflate(old#) 15> <mppe 1 0 0 60> <bsd v1 15>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3
seconds. 
> 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0
1> <lzs 0 1 4>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfRej id=0x1 <lzs 0 1 4>]

> hmmm - ppp_lzscomp.c looks incomplete so I don't have a ppp_lzscomp.o
module 
> 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP ProtRej id=0x2 80 21 01 01
00 10 03 06 cf cd 5c 14 02 06 00 2d 0f 01] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072c70. 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfRej id=0x1 <deflate 15>
<deflate(old#) 15> <bsd v1 15>] 
> OK - so Win98 doesn't like bsdcomp ... 
> 
> Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x2 <mppe 1 0 0
60>] 
> 128 bit encryption? 
> 
> Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3
seconds. 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x2 <mppe 1 0 0
1>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfNak id=0x2 <mppe 1 0 0
60>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfNak id=0x2 <mppe 1 0 0
20>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq id=0x3 <mppe 1 0 0
20>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072d88 in 3
seconds. 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq id=0x3 <mppe 1 0 0
20>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfAck id=0x3 <mppe 1 0 0
20>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfAck id=0x3 <mppe 1 0 0
20>] 
> Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> Aren't we all in agreement to use mppe (40 bit??) 'compression' now? 
> 
> Oct 25 21:31:00 VPNserv pppd[19980]: rcvd [LCP TermReq id=0x3] 
> Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x805286c:0x8072ab8. 
> Oct 25 21:31:00 VPNserv pppd[19980]: IPCP: Down event in state 1! 
> Oct 25 21:31:00 VPNserv pppd[19980]: Timeout 0x804fec4:0x8072ab8 in 3
seconds. 
> Oct 25 21:31:00 VPNserv pppd[19980]: sent [LCP TermAck id=0x3] 
> Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072ab8. 
> Apparently not 



From geoff at gnaa.net  Tue Oct 26 13:33:37 1999
From: geoff at gnaa.net (Geoff Nordli)
Date: Tue Oct 26 13:33:37 1999
Subject: [pptp-server] pptp server and Win98 -- *sigh*
In-Reply-To: <EDA23054FDC0D1119842006008CEAB4853CF23@GLIATECHUSA1>
Message-ID: <000901bf1fe0$9c71eaf0$020a10ac@titan.gnaa.net>

I got Win98  working right off the bat yesterday.

I just went to the add/remove prorgrams added the VPN software,
configured the VPN adapter, and whammo it worked.

I am using 128-bit encryption, with MPPE, chapms-v2.

geoff nordli



> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of 
> Michael Walter
> Sent: Tuesday, October 26, 1999 11:20 AM
> To: PPTPD User Group (E-mail)
> Subject: RE: [pptp-server] pptp server and Win98 -- *sigh*
> 
> 
> Interesting that WinNT connects but Win98 does not.  That may 
> tell us who to
> point a finger at.  A few things, when you connect with WinNT 
> is encryption
> enabled?  If so, the linux box is NOT the problem.  If this 
> is the case, (I
> know you've done this, but there are a few snafu's) un-install, and
> re-install MS Virtual Private Networking.  Now for the Snafu: 
>  you must
> un-install and re-install through add/remove programs.  If 
> you do it through
> the Network Properties, it will not install properly, so you 
> must do this
> through Add/Remove programs.  After that is done, apply the 
> DUN40.exe patch.
> You should then be able to connect with encryption(make sure 
> to turn off ipx
> and netbios on the vpn link, also turn off header compression 
> and default
> gateway on remote network)  Now, the other case, if you were not using
> encryption on the WinNT box, type: 
> insmod slhc
> insmod ppp
> insmod ppp_deflate
> insmod bsd_comp
> insmod ppp_mppe
> And try to connect(Don't reboot the linux box after these 
> commands until you
> try to connect)
> If you still can't connect with encryption, post any errors 
> you received
> when doing the insmod's.
> Good luck,
> 
> 
> Michael J. Walter mcse
> Gliatech, Inc.
> walterm at gliatech.com
> mwalter at drwalter.com
> 
> On Tuesday, October 26, 1999 2:03 PM, Dave Plsek
> [SMTP:Dave_Plsek at insession.com] wrote:
> > 
> > Hi all, 
> > 
> > I'm new to this list so be kind even though I'm asking a 
> question that's
> probably been answered a thousand times 
> > 
> > I recently set up pptp (1.0.0) on an old 486 (gotta do 
> something with the
> old hardware) running linux 2.0.35 
> > pppd is version 2.3.10 with the appropriate patches 
> > 
> > NT4.0 connects just fine 
> > Win98 (not SE) get's an error 720 - something about not 
> being able to
> negotiate protocols 
> > 
> > I *did* check out the archive, but I could not find a 
> complete answer -
> most solutions seem to center around de-installing and 
> re-instlling VPN in
> Win98 and applying the DUN40.exe patch from M-$oft -- been 
> there, done that,
> still no good. 
> > 
> > it seems that authentication is (finally) working - what seems to be
> sticking is the negotiation of encryption 
> > 
> > here's a 'dump' of /var/log/debug with a few (guesses) 
> comments thrown in 
> > 
> > Can anyone tell me what I can try next or what I should be 
> looking at? 
> > 
> > Oct 25 21:30:57 VPNserv pppd[19980]: sent [CHAP Challenge id=0x1
> <98b5d57348b0b09c216026d74ec80997>, name = VPNserv"] 
> > Oct 25 21:30:57 VPNserv pppd[19980]: Timeout 
> 0x805571c:0x8072cd8 in 3
> seconds. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP EchoRep id=0x0
> magic=0x28a47] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CHAP Response 
> id=0x1 <...>,
> name = "XXXXXXX\\VPNtest"] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x805571c:0x8072cd8. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: ChapReceiveResponse: rcvd type
> MS-CHAP-V2 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CHAP Success 
> id=0x1 "S=..."] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [IPCP ConfReq id=0x1 <addr
> a.b.c.d> <compress VJ 0f 01>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 
> 0x804fec4:0x8072c70 in 3
> seconds. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq 
> id=0x1 <deflate 15>
> <deflate(old#) 15> <mppe 1 0 0 60> <bsd v1 15>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 
> 0x804fec4:0x8072d88 in 3
> seconds. 
> > 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq 
> id=0x1 <mppe 1 0 0
> 1> <lzs 0 1 4>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfRej 
> id=0x1 <lzs 0 1 4>]
> 
> > hmmm - ppp_lzscomp.c looks incomplete so I don't have a 
> ppp_lzscomp.o
> module 
> > 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [LCP ProtRej 
> id=0x2 80 21 01 01
> 00 10 03 06 cf cd 5c 14 02 06 00 2d 0f 01] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072c70. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfRej 
> id=0x1 <deflate 15>
> <deflate(old#) 15> <bsd v1 15>] 
> > OK - so Win98 doesn't like bsdcomp ... 
> > 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq 
> id=0x2 <mppe 1 0 0
> 60>] 
> > 128 bit encryption? 
> > 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 
> 0x804fec4:0x8072d88 in 3
> seconds. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq 
> id=0x2 <mppe 1 0 0
> 1>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfNak 
> id=0x2 <mppe 1 0 0
> 60>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfNak 
> id=0x2 <mppe 1 0 0
> 20>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfReq 
> id=0x3 <mppe 1 0 0
> 20>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Timeout 
> 0x804fec4:0x8072d88 in 3
> seconds. 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfReq 
> id=0x3 <mppe 1 0 0
> 20>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: sent [CCP ConfAck 
> id=0x3 <mppe 1 0 0
> 20>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: rcvd [CCP ConfAck 
> id=0x3 <mppe 1 0 0
> 20>] 
> > Oct 25 21:30:58 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072d88. 
> > Aren't we all in agreement to use mppe (40 bit??) 
> 'compression' now? 
> > 
> > Oct 25 21:31:00 VPNserv pppd[19980]: rcvd [LCP TermReq id=0x3] 
> > Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x805286c:0x8072ab8. 
> > Oct 25 21:31:00 VPNserv pppd[19980]: IPCP: Down event in state 1! 
> > Oct 25 21:31:00 VPNserv pppd[19980]: Timeout 
> 0x804fec4:0x8072ab8 in 3
> seconds. 
> > Oct 25 21:31:00 VPNserv pppd[19980]: sent [LCP TermAck id=0x3] 
> > Oct 25 21:31:00 VPNserv pppd[19980]: Untimeout 0x804fec4:0x8072ab8. 
> > Apparently not 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 



From Dave_Plsek at insession.com  Tue Oct 26 13:55:22 1999
From: Dave_Plsek at insession.com (Dave Plsek)
Date: Tue Oct 26 13:55:22 1999
Subject: [pptp-server] pptp server and Win98 -- *sigh*
Message-ID: <OF3C1B1722.B39E35DB-ON87256816.0065BA33@insession.com>

Thanks
all the modules (that compile) 'insmod' ok - no errors

I'm pretty sure (not 100% - it's my home PC that's running 98) that I set 
the VPN 'connectoid' up as you have suggested ... no ipx or netbios, no 
header compression, no default, encryption on.
I'll triple check the setting and see how I go.

BTW, I have header compression enabled on the NT machine -- no problems.

On further reading of /var/adm/debug it seems that Win98 is not responding 
to this IPCP request ...
Oct 25 21:30:58 VPNserv pppd[19980]: sent [IPCP ConfReq id=0x1 <addr 
a.b.c.d> <compress VJ 0f 01>]

WinNT does
Oct 26 12:37:17 BBSsite pppd[21208]: sent [IPCP ConfReq id=0x1 <addr 
a.b.c.d> <compress VJ 0f 01>]
Oct 26 12:37:17 BBSsite pppd[21208]: rcvd [IPCP ConfReq id=0x1 <addr 
0.0.0.0>]
Oct 26 12:37:17 BBSsite pppd[21208]: ipcp: returning Configure-NAK
Oct 26 12:37:17 BBSsite pppd[21208]: sent [IPCP ConfNak id=0x1 <addr 
a.b.c.181>]
Oct 26 12:37:17 BBSsite pppd[21208]: rcvd [IPCP ConfRej id=0x1 <compress 
VJ 0f 01>]
Oct 26 12:37:17 BBSsite pppd[21208]: sent [IPCP ConfReq id=0x2 <addr 
a.b.c.d>]
Oct 26 12:37:17 BBSsite pppd[21208]: rcvd [IPCP ConfReq id=0x3 <addr 
a.b.c.181.181>]
Oct 26 12:37:17 BBSsite pppd[21208]: ipcp: returning Configure-ACK
Oct 26 12:37:17 BBSsite pppd[21208]: sent [IPCP ConfAck id=0x3 <addr 
a.b.c.181>]
Oct 26 12:37:17 BBSsite pppd[21208]: rcvd [IPCP ConfAck id=0x2 <addr 
a.b.c.d>]







Michael Walter <walterm at gliatech.com>
26/10/99 12:19

 
        To:     "PPTPD User Group (E-mail)" <pptp-server at lists.schulte.org>
        cc:     (bcc: Dave Plsek/insession)
        Subject:        RE: [pptp-server] pptp server and Win98 -- *sigh*

Interesting that WinNT connects but Win98 does not.  That may tell us who 
to
point a finger at.  A few things, when you connect with WinNT is 
encryption
enabled?  If so, the linux box is NOT the problem.  If this is the case, 
(I
know you've done this, but there are a few snafu's) un-install, and
re-install MS Virtual Private Networking.  Now for the Snafu:  you must
un-install and re-install through add/remove programs.  If you do it 
through
the Network Properties, it will not install properly, so you must do this
through Add/Remove programs.  After that is done, apply the DUN40.exe 
patch.
You should then be able to connect with encryption(make sure to turn off 
ipx
and netbios on the vpn link, also turn off header compression and default
gateway on remote network)  Now, the other case, if you were not using
encryption on the WinNT box, type: 
insmod slhc
insmod ppp
insmod ppp_deflate
insmod bsd_comp
insmod ppp_mppe
And try to connect(Don't reboot the linux box after these commands until 
you
try to connect)
If you still can't connect with encryption, post any errors you received
when doing the insmod's.
Good luck,


Michael J. Walter mcse
Gliatech, Inc.
walterm at gliatech.com
mwalter at drwalter.com




-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991026/8a5ab2c1/attachment.html>

From Dave_Plsek at insession.com  Tue Oct 26 14:20:04 1999
From: Dave_Plsek at insession.com (Dave Plsek)
Date: Tue Oct 26 14:20:04 1999
Subject: [pptp-server] pptp server and Win98 -- *sigh*
Message-ID: <OF03741755.C78D8BAF-ON87256816.0067DF68@insession.com>

Geoff

I only have 40 bit encryption in Win98 -- I tried turing off 128 bit in 
the server, made no difference.
disabling/enabling chapms or chapms-v2 doesn't make a difference

I don't suppose you'd want to send me a (sanitised) extract from 
/var/adm/debeug (assuming you have debug turned on in /etc/ppp/options) 
showing a successful connection (actually /var/adm/messages may have some 
clues as well)
As per my lastest message, I'm starting to lean towards the IPCP stuff - 
though it could be that Win98 is ignoring the IPCP request because it 
doesn't like the way CCP negotiation is proceeding.

DJP




"Geoff Nordli" <geoff at gnaa.net>
26/10/99 12:33
Please respond to geoff

 
        To:     "'Michael Walter'" <walterm at Gliatech.com>, "'PPTPD User Group (E-mail)'" 
<pptp-server at lists.schulte.org>
        cc:     (bcc: Dave Plsek/insession)
        Subject:        RE: [pptp-server] pptp server and Win98 -- *sigh*

I got Win98  working right off the bat yesterday.

I just went to the add/remove prorgrams added the VPN software,
configured the VPN adapter, and whammo it worked.

I am using 128-bit encryption, with MPPE, chapms-v2.

geoff nordli




-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991026/bf984ab9/attachment.html>

From mis at cindyrowe.com  Tue Oct 26 14:30:20 1999
From: mis at cindyrowe.com (Matthew C. Grab)
Date: Tue Oct 26 14:30:20 1999
Subject: [pptp-server] PPTP VPN ADSL
Message-ID: <005701bf1fe8$90056690$0200a8c0@mis>

Hi, I am new to this list.  I have read over the archives, and I would like
your input.

I have an ADSL connection to the internet.  It currently only works with
Windows.  It works by using MS VPN and PPTP, and an ethernet card.

The vpn connection is only to isolate my PC from the other users ADSL users.
They use an NT server to provide VPN authentication, and I want to use a
linux client to connect.

I have downloaded linux PPP version 2.3.8 (plus 2.3.9 & 10).  But I don't
know where to start using an ethernet card to connect.  Can anyone give me
any input on how to do this?  Or where to look?  I have read the PPP how-to,
and found nothing.  I can't find any info about the 1.0.2 VPN PPTP linux
client?

If I can't set it up to work in linux, it does work fine in Windows 95, but
I have an application that works better (from an end user perspective) under
linux.  Besides, linux can do anything better than windows 95, right? ( *
gasp *)

Thanks,
Matt Grab
mis at cindyrowe.com




From tmk at netmagic.net  Tue Oct 26 18:29:08 1999
From: tmk at netmagic.net (tmk)
Date: Tue Oct 26 18:29:08 1999
Subject: [pptp-server] PPTP VPN ADSL
In-Reply-To: <005701bf1fe8$90056690$0200a8c0@mis>
Message-ID: <Pine.LNX.3.96.991026163338.23379A-100000@shell.netmagic.net>

sounds like you want to use the linux pptp client. I'm not sure of the
homepage, but i know it's out there. We got our GRE stuff from there i
believe :)

Kevin

PS to teh best of my knowledge, adsl uses dhcp to get ip addresses, and
then just puts your machine on the net. If you mean an adsl connect to the
net and then a vpn connection to your corporate network, linux can do that
too. Ask the newsgroups how to set up linux and adsl (should just be
setting up dhcp.. that's all it was for my cablemodem) and then use the
linux pptp client for the vpn connection. If you use ppp 2.3.8 and the
patch for encryption, you should be able to hack encryption into the mix
too.

On Tue, 26 Oct 1999, Matthew C. Grab wrote:

> Hi, I am new to this list.  I have read over the archives, and I would like
> your input.
> 
> I have an ADSL connection to the internet.  It currently only works with
> Windows.  It works by using MS VPN and PPTP, and an ethernet card.
> 
> The vpn connection is only to isolate my PC from the other users ADSL users.
> They use an NT server to provide VPN authentication, and I want to use a
> linux client to connect.
> 
> I have downloaded linux PPP version 2.3.8 (plus 2.3.9 & 10).  But I don't
> know where to start using an ethernet card to connect.  Can anyone give me
> any input on how to do this?  Or where to look?  I have read the PPP how-to,
> and found nothing.  I can't find any info about the 1.0.2 VPN PPTP linux
> client?
> 
> If I can't set it up to work in linux, it does work fine in Windows 95, but
> I have an application that works better (from an end user perspective) under
> linux.  Besides, linux can do anything better than windows 95, right? ( *
> gasp *)
> 
> Thanks,
> Matt Grab
> mis at cindyrowe.com
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 




From alahooti at rodgers.rain.com  Tue Oct 26 20:27:10 1999
From: alahooti at rodgers.rain.com (Ali Lahooti)
Date: Tue Oct 26 20:27:10 1999
Subject: [pptp-server] VPN
Message-ID: <64D4ED537C7@ri1.rodgers.rain.com>

Dear Linux Users, 

Has anybody had any experience installing pptp "PoPToP v1.0.0"  
on a Red Hat Linux 5.2 with a kernel version 2.0.36?  I have  
downloaded  "PoPToP v1.0.0", "ppp-2.3.8.tar.gz", "ppp-2.3.8-mppe- 
others-norc4_TH7.diff.gz", and "SSLeay-0.6.6b.tar.gz".  I have  
downloaded PPP 2.3.8 because I want to use Microsoft compatible 
 MSCHAPv2/MPPE authentication and encryption. The reason for  
this is that the MSCHAPv2/MPPE patch is against PPP 2.3.8.  I  
know I need to rebuild my kernel to upgrade my PPP version 2.2 to 
 PPP version 2.38.  What  should be enabled/disabled or what 
should I pay attention to while  building a kernel to get the vpn/pptp 
working properly.  Are  there any instructions to go about this?  
Your help is greatly  appreciated. 

Regards, 

-Ali 



---------------------------
Ali Lahooti
Rodgers Instruments LLC
http://www.rodgerscorp.com
Tel: (503) 681-0484
Fax: (503) 681-6530
----------------------------



From bens at saber.net  Tue Oct 26 23:13:32 1999
From: bens at saber.net (Benjamin Smith)
Date: Tue Oct 26 23:13:32 1999
Subject: [pptp-server] PPTP VPN ADSL
References: <Pine.LNX.3.96.991026163338.23379A-100000@shell.netmagic.net>
Message-ID: <99102621080203.02753@bug1.lookuplaw.com>

If you use a pptp client on a linux computer that's also IP Masquerading, do
all the computers on the local network become part of the remote network as
well? 

In other words, 

Local addresses are 192.168.1.* and remote addresses are 192.168.2.*, and I VPN
to the rermote network using an IP masquerading Linux box locally, which
provides Internet access to the local network, does the whole local network now
have access to the remote network? 

Also, can windows be setup to VPN over a masqueraded IP connection to the
Internet? 

Thanks

-Ben 

On Tue, 26 Oct 1999, tmk wrote:
> sounds like you want to use the linux pptp client. I'm not sure of the
> homepage, but i know it's out there. We got our GRE stuff from there i
> believe :)
> 
> Kevin
> 
> PS to teh best of my knowledge, adsl uses dhcp to get ip addresses, and
> then just puts your machine on the net. If you mean an adsl connect to the
> net and then a vpn connection to your corporate network, linux can do that
> too. Ask the newsgroups how to set up linux and adsl (should just be
> setting up dhcp.. that's all it was for my cablemodem) and then use the
> linux pptp client for the vpn connection. If you use ppp 2.3.8 and the
> patch for encryption, you should be able to hack encryption into the mix
> too.
> 
> On Tue, 26 Oct 1999, Matthew C. Grab wrote:
> 
> > Hi, I am new to this list.  I have read over the archives, and I would like
> > your input.
> > 
> > I have an ADSL connection to the internet.  It currently only works with
> > Windows.  It works by using MS VPN and PPTP, and an ethernet card.
> > 
> > The vpn connection is only to isolate my PC from the other users ADSL users.
> > They use an NT server to provide VPN authentication, and I want to use a
> > linux client to connect.
> > 
> > I have downloaded linux PPP version 2.3.8 (plus 2.3.9 & 10).  But I don't
> > know where to start using an ethernet card to connect.  Can anyone give me
> > any input on how to do this?  Or where to look?  I have read the PPP how-to,
> > and found nothing.  I can't find any info about the 1.0.2 VPN PPTP linux
> > client?
> > 
> > If I can't set it up to work in linux, it does work fine in Windows 95, but
> > I have an application that works better (from an end user perspective) under
> > linux.  Besides, linux can do anything better than windows 95, right? ( *
> > gasp *)
> > 
> > Thanks,
> > Matt Grab
> > mis at cindyrowe.com
> > 
> > 
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> > 
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
--
                    ("`-''-/").___..--''"`-._    (Simba)
                    `@_ @  )    `-.  (        ).`-.__.`)
                    (_Y_.)'  ._    )  `._ `. ``-..-'
                _..`--'_..-_/  /--'_.' ,'
              ((().-''  ((().'  (((.-'        Benjamin Smith






From jh6p at thewire.ap.org  Wed Oct 27 09:04:34 1999
From: jh6p at thewire.ap.org (John Huebner)
Date: Wed Oct 27 09:04:34 1999
Subject: [pptp-server] PPTP VPN ADSL
References: <Pine.LNX.3.96.991026163338.23379A-100000@shell.netmagic.net> <99102621080203.02753@bug1.lookuplaw.com>
Message-ID: <38170667.E2D9C164@thewire.ap.org>


Benjamin Smith wrote:
> 
> If you use a pptp client on a linux computer that's also IP Masquerading, do
> all the computers on the local network become part of the remote network as
> well?
> 
> In other words,
> 
> Local addresses are 192.168.1.* and remote addresses are 192.168.2.*, and I VPN
> to the rermote network using an IP masquerading Linux box locally, which
> provides Internet access to the local network, does the whole local network now
> have access to the remote network?
> 
Yes, I do this often.

> Also, can windows be setup to VPN over a masqueraded IP connection to the
> Internet?
>
This requires a kernel patch, and conflicts with running pptp on the
linux box at the same time.
 
> Thanks
> 
> -Benp



From jh6p at thewire.ap.org  Wed Oct 27 09:13:56 1999
From: jh6p at thewire.ap.org (John Huebner)
Date: Wed Oct 27 09:13:56 1999
Subject: [pptp-server] Re: Newbie Questions
Message-ID: <381708A3.D26F0F47@thewire.ap.org>

To use Win98VPN through a Linux firewall see:
http://metalab.unc.edu/pub/Linux/docs/howto/VPN-Masquerade-HOWTO


for having the firewall run VPN for the whole LAN :
--------------------------------------------------- 
> I have my home network on the vpn now.
> I used the following software:
> <a
> http://www.pdos.lcs.mit.edu/~cananian/Projects/PPTP/release/pptp-linux-latest.tar.gz>
>         PPTP-linux-1.0.2.tar.gz </a>
> <a href="http://www.pdos.lcs.mit.edu/~cananian/Projects/PPTP/"> PPTP
> Docs </a>
> <a
> href="ftp://ftp.funet.fi/pub/crypt/mirrors/ftp.psy.uq.oz.au/DES/libdes-3.06.tar.gz">
>         Eric Young's DES library </a>
> <a href="ftp://cs.anu.edu.au/pub/software/ppp/"> PPP 2.3.10 </a>
> <a
> href="http://www.moretonbay.com/vpn/releases/ppp-2.3.10-openssl-norc4-mppe.patch.gz">
>         "Patch" for pppd 2.3.10, although in reality I didn't use it.
> 
> First I compiled libdes with "make x86-elf". BE WARNED this target
> installs the lib as well as building it.
> 
> Then I compiled pppd-2.3.10 with "make CHAPMS=1 USECRYPT=1"
> Finally I compiled pptp-linux-1.0.2 with "make"
> 
> Then I logged into my isp my favorite way:
> /usr/sbin/pppd/ lock modem crtscts /dev/ttyS0 38400 \
>         kdebug 1 noipdefault defaultroute connect "chat -v -f
> /etc/ppp/1stconnect-script"
> 
> I waited for my dynamic IP addresses, then I ran:
> 
> /usr/src/pptp/pptp <vpn gateway addr> debug name jhuebner remotename vpn
> proxyarp noauth
> 
> Again I waited until route reported a new host, then I
> ran:
> 
> route add -net <VPN net> netmask 255.255.255.0 gw <the pptp host>
> 
> At this point, ping worked. I can check my mail and access
> wiretools
> 
> PROBLEMS:
> 
> 1) You cannot "route add -net <my VPN net> netmask 255.255.0.0" because the
> gateway is inside the subnet! :-P (Minh, you saw me attempt this this
> afternoon, and it locked my home LAN in an infinite loop. I had to kill
> the 165.1 net from console.) As a result I need at least two smaller netmasks to send mail. I
> may try playing with netmasks between 255.255.0.0 and 255.255.255.0.
> 
> 3) With pptp running on my firewall, I can no longer make independent
> VPN connections from other boxes on the net, although with clever routing,
> my firewall should be able to set up a separate route for each of them, if I cared.
> 
> 4) This does not address the netgear problem. ISDN NAT routers need dNAT+.
> 

> --
> John Huebner



From tmk at netmagic.net  Wed Oct 27 09:40:47 1999
From: tmk at netmagic.net (tmk)
Date: Wed Oct 27 09:40:47 1999
Subject: [pptp-server] PPTP VPN ADSL
References: <Pine.LNX.3.96.991026163338.23379A-100000@shell.netmagic.net> <001301bf2080$0677cb00$0200a8c0@mis>
Message-ID: <004101bf2089$afee4660$071c0fc0@lala.net>

See the other posts. *IF* your adsl provider uses windows standard vpn pptp
client, then linux will work with it, just not pptpd, you need pptp (someone
else posted it to the list). It works fine over eth0

pptpd actually creates pppX when it makes a connection. It uses whatever
interface the connection request comes in on.

Kevin

----- Original Message -----
From: Matthew C. Grab <mis at cindyrowe.com>
To: tmk <tmk at netmagic.net>
Sent: Wednesday, October 27, 1999 6:34 AM
Subject: Re: [pptp-server] PPTP VPN ADSL


> Thanks.  Evidently I left out one of the key reasons for my needs.  When
> telco's provide an ADSL connection, they actually set up a lan/switch/hub
> that includes all of their ADSL customers.  My telco/ISP wants to keep us
> off of each other's PC's, so they set up a VPN from my PC to the internet
> gateway, and from everyone else's PC to the internet gateway.  Once routed
> through their gateway, I'm out on the net with no VPN or encryption of any
> sort.
>
> So the only PPTP VPN connection I need is to get TO the ISP.
>
> But my question is: My connection is via a 10baseT Ethernet NIC.  Can I
set
> PPTP to run over eth0 instead of over ppp0?
>
> Thanks,
> Matt Grab
> mis at cindyrowe.com
> ----- Original Message -----
> From: tmk <tmk at netmagic.net>
> To: Matthew C. Grab <mis at cindyrowe.com>
> Cc: <pptp-server at lists.schulte.org>
> Sent: Tuesday, October 26, 1999 7:37 PM
> Subject: Re: [pptp-server] PPTP VPN ADSL
>
>
> > sounds like you want to use the linux pptp client. I'm not sure of the
> >homepage, but i know it's out there. We got our GRE stuff from there i
> >believe :)
>
> >Kevin
>
> >PS to teh best of my knowledge, adsl uses dhcp to get ip addresses, and
> >then just puts your machine on the net. If you mean an adsl connect to
the
> >net and then a vpn connection to your corporate network, linux can do
that
> >too. Ask the newsgroups how to set up linux and adsl (should just be
> >setting up dhcp.. that's all it was for my cablemodem) and then use the
> >linux pptp client for the vpn connection. If you use ppp 2.3.8 and the
> >patch for encryption, you should be able to hack encryption into the mix
> >too.
>
>




From rez.zapatero at csoft.co.uk  Wed Oct 27 12:07:51 1999
From: rez.zapatero at csoft.co.uk (Rez Erik Zapatero)
Date: Wed Oct 27 12:07:51 1999
Subject: [pptp-server] VPN
Message-ID: <00fc01bf209d$beb8ce40$cc00000a@elton.csoft.co.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Has anybody had any experience installing pptp "PoPToP v1.0.0"  
> on a Red Hat Linux 5.2 with a kernel version 2.0.36?  I have  
> downloaded  "PoPToP v1.0.0", "ppp-2.3.8.tar.gz", "ppp-2.3.8-mppe- 
> others-norc4_TH7.diff.gz", and "SSLeay-0.6.6b.tar.gz".  I have  
> downloaded PPP 2.3.8 because I want to use Microsoft compatible 
> MSCHAPv2/MPPE authentication and encryption. The reason for  
> this is that the MSCHAPv2/MPPE patch is against PPP 2.3.8.  I  
> know I need to rebuild my kernel to upgrade my PPP version 2.2 to 
> PPP version 2.38.  What  should be enabled/disabled or what 
> should I pay attention to while  building a kernel to get the
> vpn/pptp  working properly.  Are  there any instructions to go
> about this?   Your help is greatly  appreciated.  
>
> Regards, 
>
>-Ali 


I am just about to do the same thing.  Some of the problems I have
already encountered are that the rpm for PoPToP does like to be
installed as I believe it needs GLIBC 2.0   I would like some
pointers too.  I think the HOWTO/FAQ assumes that you are running a
2.2.x kernel.  However, I can not run this version yet.  So would
appreciate help with getting it running with 2.0.36

Rez
- --
Rez Erik Zapatero, Connection Software, 391 City Road, LONDON EC1V
1NE
Tel:+44 (0)171 713 8000  mailto:rez.zapatero at csoft.co.uk
Fax:+44 (0)171 713 8001  http://www.csoft.co.uk



- ---------------------------
Ali Lahooti
Rodgers Instruments LLC
http://www.rodgerscorp.com
Tel: (503) 681-0484
Fax: (503) 681-6530
- ----------------------------

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.1 for non-commercial use <http://www.pgp.com>

iQA/AwUBOBcxRKRC0XNxIl4nEQLk9gCeOMuSzVU++fOBb3Y20FjvIaXVR38AoN1u
xxRwZImZRARGB2Wadpmu4Ush
=ZQoX
-----END PGP SIGNATURE-----





From gtaylor+pptpsrv_bjbde102799 at picante.com  Wed Oct 27 18:53:06 1999
From: gtaylor+pptpsrv_bjbde102799 at picante.com (Grant Taylor)
Date: Wed Oct 27 18:53:06 1999
Subject: [pptp-server] Trouble with MPPE patches vs 3com PathBuilder
Message-ID: <199910272352.TAA14600@pace.picante.com>

I've been trying for some time to get my Linux machine on speaking
terms with the PPTP VPN server at work (a 3Com pathbuilder 500).  I
can connect successfully without encryption, but with mppe, I get
a connection with no packets getting anywhere.

The Pathbuilder is running EOS 11.3.0.13, and is known to work against
a Microsoft-provided 128-bit client of uncertain version and DUN 1.3.

My linux box runs:

 - kernel 2.0.38
 - pptp-linux-1.0.2 plus a few fixes to make it speak to the 3com code
 - pppd 2.3.8 with Tim Hocken's patch, or 
 - pppd 2.3.10 with the newer openssl-based patch

I get pretty much the same results with either ppp version.

I see one of several things:

 - I get connected, everyone's happy running some flavour or other of
   mppe, and I see occasional bridged (ppp protocl 0x31) broadcast
   frames containing DHCP packets in ethernet encapsulation logged by
   ppp as "unknown protocol 0x31".  I can't ping or telnet over the
   link.  I'm guessing that the pathbuilder's "DHCP helper" code is
   creating the funky bridged dhcp frames from dhcp traffic on its
   segment?

 - I get connected, and ppp logs various unknown protocol packets, all
   of which contain "gibberish".  Presuemably these are encrypted
   differently than expected?  In any case nothing work here either.

 - I get connected, run no encryption whatsoever, and everything works
   dandy.

The different connection types come about when I put different
combinations of mppe-stateless, mppe-128, and/or mppe-40 in my pppd
peer options file.  The almost-working type, with funky bridged
packets appearing, seems to match when the mppe is non-stateless.  The
gibberish case is with stateless mode; perhaps the 3com box doesn't do
that?

I've placed a log which includes several connections covering the two
unsuccessful types at http://www.picante.com/~gtaylor/foo.txt

3com runs a demonstration pathbuilder that anyone can connect to; if
you have a bright idea and want to test it more directly, it's at
129.213.129.219 username "user1" password "password".  It's on private
network 10.0.0.0/24, and gives you an IP on 10.0.1.0/24.

-- 
Grant Taylor - gtaylor at picante.com - http://www.picante.com/~gtaylor/
 Cellphone information: http://www.picante.com/~gtaylor/cell/
 Libretto information:  http://www.picante.com/~gtaylor/portable/




From pcj at p.r.i.m.e.n.e.t.c.o.m  Thu Oct 28 01:21:31 1999
From: pcj at p.r.i.m.e.n.e.t.c.o.m (pcj at p.r.i.m.e.n.e.t.c.o.m)
Date: Thu Oct 28 01:21:31 1999
Subject: [pptp-server] MPPE stateless mode fixes
Message-ID: <199910280619.XAA03358@merlin.pcj.primenet.com>

The following two patches fix pppd to correctly negotiate stateless
mode in MPPE, and make the Linux mppe compressor set the
MPPE_BIT_FLUSHED bit correctly.

Previously the FLUSHED bit was only set when the keys had been
synchronized.  The draft mppe spec requires the bit to be set for
every packet where the key has been changed, i.e. every packet in
stateless mode, and every 0xff packets in stateful mode.

These are relative to ppp-2.3.10 but it should be obvious
where they go in 2.3.8.

--- linux/ppp_mppe.c~  Fri Oct 22 23:21:46 1999
+++ linux/ppp_mppe.c   Wed Oct 27 21:43:46 1999
@@ -163,7 +163,7 @@
     RC4_set_key(&(state->RC4_send_key), state->keylen, state->session_send_key);
     RC4_set_key(&(state->RC4_recv_key), state->keylen, state->session_recv_key);
 
-    state->bits=MPPE_BIT_ENCRYPTED;
+    state->bits |= MPPE_BIT_FLUSHED; 
 }
 
--- pppd/ccp.c~      Fri Oct 22 23:21:46 1999
+++ pppd/ccp.c       Mon Oct 25 23:51:48 1999
@@ -1051,7 +1051,10 @@
                    unsigned char opt_buf[64];
                    opt_buf[0] = CI_MPPE;
                    opt_buf[1] = CILEN_MPPE;
-                   opt_buf[2] = ((p[2] & MPPE_STATELESS) ? 1 : 0);
+                   if(p[2] & MPPE_STATELESS) { 
+                       ho->mppe_stateless=1;
+                       opt_buf[2] = MPPE_STATELESS;
+                   }
                    /* push in our send/receive keys */
                    if(p[5] & MPPE_40BIT) {
                        ho->mppe_40 = 1;

-- 
Paul Janzen 




From alahooti at rodgers.rain.com  Thu Oct 28 13:37:13 1999
From: alahooti at rodgers.rain.com (Ali Lahooti)
Date: Thu Oct 28 13:37:13 1999
Subject: [pptp-server] System lacks kernel support for PPP
Message-ID: <676934E554A@ri1.rodgers.rain.com>

A non-text attachment was scrubbed...
Name: not available
Type: text/enriched
Size: 2390 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991028/6c0f9511/attachment.bin>

From sergio at citynet.net.ar  Thu Oct 28 13:59:53 1999
From: sergio at citynet.net.ar (Sergio A. Sotelo)
Date: Thu Oct 28 13:59:53 1999
Subject: [pptp-server] simple question?
Message-ID: <3.0.6.32.19991028160233.00c43750@pop3.citynet.net.ar>

I have a question:

	May I have any problem running a Linux Box with PoPToP server and mgetty
with some modems for standard remote access?

Best regards..

*****************************************
Sergio Adri?n Sotelo
Citynet S.A. - Ciudad Internet
Corrientes 840 - Rosario (2000)
Argentina
Tel. 54-341-4470003 - Fax: 54-341-4256303
*****************************************



From tmk at netmagic.net  Thu Oct 28 18:03:53 1999
From: tmk at netmagic.net (tmk)
Date: Thu Oct 28 18:03:53 1999
Subject: [pptp-server] simple question?
In-Reply-To: <3.0.6.32.19991028160233.00c43750@pop3.citynet.net.ar>
Message-ID: <Pine.LNX.3.96.991028161041.27031A-100000@shell.netmagic.net>

yes. you would have problems. PPTP is designed to use a pre-existing
network connection, and a dial up user wouldnt be able to connect. Use
pppd with mgetty. That is teh standard method for remote access. 

Kevin

On Thu, 28 Oct 1999, Sergio A. Sotelo wrote:

> I have a question:
> 
> 	May I have any problem running a Linux Box with PoPToP server and mgetty
> with some modems for standard remote access?
> 
> Best regards..
> 
> *****************************************
> Sergio Adri?n Sotelo
> Citynet S.A. - Ciudad Internet
> Corrientes 840 - Rosario (2000)
> Argentina
> Tel. 54-341-4470003 - Fax: 54-341-4256303
> *****************************************
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
> 




From tmk at netmagic.net  Thu Oct 28 21:36:31 1999
From: tmk at netmagic.net (tmk)
Date: Thu Oct 28 21:36:31 1999
Subject: [pptp-server] System lacks kernel support for PPP
References: <676934E554A@ri1.rodgers.rain.com>
Message-ID: <002701bf21b6$d4b290e0$071c0fc0@lala.net>

make sure you installed pppd properly.. in addition to the mppe patches, pppd needs to do some kernel patching of its own for the 2.0.x kernels


Kevin----- Original Message ----- 
  From: Ali Lahooti 
  To: pptp-server at lists.schulte.org 
  Cc: raz at rodgers.rain.com ; al at rodgers.rain.com 
  Sent: Thursday, October 28, 1999 11:33 AM
  Subject: [pptp-server] System lacks kernel support for PPP


  Dear Linux Users,

  Has anybody had any experience installing pptp "PoPToP v1.0.0" on a Red Hat Linux 5.2 with a kernel version 2.0.36. I have installed and upgraded pppd to version 2.3.8. The kernel supports modules. FYI the followings are the packages I have used:

  PoPToP v1.0.0
  ppp-2.3.8.tar.gz
  ppp-2.3.8-mppe- others-norc4_TH7.diff.gz
  SSLeay-0.6.6b.tar.gz

  Kernel shows the followings for the "Loadable module support --->"
  [*] Enable loadable module support
  [*] Set version information on all symbols for modules
  [*] Kernel daemon support (e.g. atuoload of modules)

  When I try to connect from a Win98 machine, I'll get the following errors appeared on the Win98:

  "Error 629: You have been disconnected from the computer you dialed. Double click the connection to try again."

  And at the same time the following messages appear on the Linux box:

  [root at vpn sbin]# /usr/sbin/pppd: This system lacks kernel support for PPP. This could be because the PPP kernel module could not be loaded, or because PPP was not included in the kernel configuration. If PPP was included as a module, try `/sbin/modprobe -v ppp'. If that fails, check t

  I have tried `/sbin/modprobe -v ppp' and have gotten the followings:

  [root at vpn sbin]# /sbin/modprobe -v ppp
  /sbin/insmod /lib/modules/preferred/net/slhc.o
  /sbin/insmod /lib/modules/2.0.36/net/ppp.o
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol dev_kfree_skb_R24c540fc
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol kill_fasync_Rfe9df602
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol dev_alloc_skb_R842d0bc5
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol alloc_skb_Rc94c35d2
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol unregister_netdev_R412a90ed
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol register_netdev_R540d2d39
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol tty_register_ldisc_Rb210a08b
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol netif_rx_Rdea391c1
  /lib/modules/2.0.36/net/ppp.o: unresolved symbol n_tty_ioctl_Rd6f6ea07
  [root at vpn sbin]#

  Any ideas? Your help, pointers, or suggestions would be greatly appreciated.

  Regards,

  -Ali




---------------------------
Ali Lahooti
Rodgers Instruments LLC
http://www.rodgerscorp.com
Tel: (503) 681-0484
Fax: (503) 681-6530
----------------------------

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulte.org!


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/19991028/f468e860/attachment.html>

From ranger at befunk.com  Thu Oct 28 23:10:13 1999
From: ranger at befunk.com (Ben Reed)
Date: Thu Oct 28 23:10:13 1999
Subject: [pptp-server] Errors connecting
Message-ID: <38191DE6.1CE7DE0A@befunk.com>

I have a server running pptpd 1.0.0 with the ppp patches applied to ppp
2.3.10, kernel 2.2.13.  A client is trying to connect through the net to my
machine.  The client is a Win98 machine behind a linux masquerading
firewall.

When he tries to connect, he gets a 650 error, and I get the following to
my syslog:

--- (begin) ---
Oct 28 23:00:57 router pptpd[22756]: CTRL: Client 205.139.250.14 control
connection started
Oct 28 23:00:57 router pptpd[22756]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 28 23:00:58 router modprobe: can't locate module char-major-108
Oct 28 23:00:58 router pppd[22757]: pppd 2.3.10 started by root, uid 0
Oct 28 23:00:58 router pppd[22757]: Using interface ppp0
Oct 28 23:00:58 router pppd[22757]: Connect: ppp0 <--> /dev/pts/4
Oct 28 23:01:28 router pptpd[22756]: GRE:
read(fd=4,buffer=804d8c0,len=8196) from PTY failed: status = -1 error =
Input/output error
Oct 28 23:01:28 router pptpd[22756]: CTRL: PTY read or GRE write failed
(pty,gre)=(4,5)
Oct 28 23:01:28 router pptpd[22756]: CTRL: Client 205.139.250.14 control
connection finished
Oct 28 23:01:28 router pppd[22757]: LCP: timeout sending Config-Requests 
Oct 28 23:01:28 router pppd[22757]: Connection terminated.
Oct 28 23:01:28 router pppd[22757]: Exit.
---- (end) ----

Any ideas what's going on here?  Is his firewall maybe getting in the way
(i.e. does he have to allow a certain port through)?  Normally, assuming he
instigates the outgoing connection to me, it will allow incoming from me. 
We've tried playing with various settings, but nothing really changed.

I would appreciate any help you can pass along.

Thanks,
Ben Reed (ranger at befunk.com)
http://defiance.darktech.org/



From tmk at netmagic.net  Thu Oct 28 23:16:15 1999
From: tmk at netmagic.net (tmk)
Date: Thu Oct 28 23:16:15 1999
Subject: [pptp-server] Errors connecting
References: <38191DE6.1CE7DE0A@befunk.com>
Message-ID: <004b01bf21c4$c1207660$071c0fc0@lala.net>

if you are masquing a pptp connection, you need the kernel pptp masq module
loaded

Kevin
----- Original Message -----
From: Ben Reed <ranger at befunk.com>
To: <pptp-server at lists.schulte.org>
Sent: Thursday, October 28, 1999 9:09 PM
Subject: [pptp-server] Errors connecting


> I have a server running pptpd 1.0.0 with the ppp patches applied to ppp
> 2.3.10, kernel 2.2.13.  A client is trying to connect through the net to
my
> machine.  The client is a Win98 machine behind a linux masquerading
> firewall.
>
> When he tries to connect, he gets a 650 error, and I get the following to
> my syslog:
>
> --- (begin) ---
> Oct 28 23:00:57 router pptpd[22756]: CTRL: Client 205.139.250.14 control
> connection started
> Oct 28 23:00:57 router pptpd[22756]: CTRL: Starting call (launching pppd,
> opening GRE)
> Oct 28 23:00:58 router modprobe: can't locate module char-major-108
> Oct 28 23:00:58 router pppd[22757]: pppd 2.3.10 started by root, uid 0
> Oct 28 23:00:58 router pppd[22757]: Using interface ppp0
> Oct 28 23:00:58 router pppd[22757]: Connect: ppp0 <--> /dev/pts/4
> Oct 28 23:01:28 router pptpd[22756]: GRE:
> read(fd=4,buffer=804d8c0,len=8196) from PTY failed: status = -1 error =
> Input/output error
> Oct 28 23:01:28 router pptpd[22756]: CTRL: PTY read or GRE write failed
> (pty,gre)=(4,5)
> Oct 28 23:01:28 router pptpd[22756]: CTRL: Client 205.139.250.14 control
> connection finished
> Oct 28 23:01:28 router pppd[22757]: LCP: timeout sending Config-Requests
> Oct 28 23:01:28 router pppd[22757]: Connection terminated.
> Oct 28 23:01:28 router pppd[22757]: Exit.
> ---- (end) ----
>
> Any ideas what's going on here?  Is his firewall maybe getting in the way
> (i.e. does he have to allow a certain port through)?  Normally, assuming
he
> instigates the outgoing connection to me, it will allow incoming from me.
> We've tried playing with various settings, but nothing really changed.
>
> I would appreciate any help you can pass along.
>
> Thanks,
> Ben Reed (ranger at befunk.com)
> http://defiance.darktech.org/
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From sergio at citynet.net.ar  Fri Oct 29 08:42:58 1999
From: sergio at citynet.net.ar (Sergio A. Sotelo)
Date: Fri Oct 29 08:42:58 1999
Subject: [pptp-server] simple question?
In-Reply-To: <Pine.LNX.3.96.991028161041.27031A-100000@shell.netmagic.ne
 t>
References: <3.0.6.32.19991028160233.00c43750@pop3.citynet.net.ar>
Message-ID: <3.0.6.32.19991029104537.00c3fc80@pop3.citynet.net.ar>

Perhaps I wasn't clear enough...
	
	I have a Linux box connected to Internet with an ethernet network
connection, and it's also connected to my internal LAN with another
ethernet card. I need some people in the internet to access my internal
network using PPTP. Also, I need this Linux box to receive incoming calls
using two modems, but I don't need this two dialup connections to use PPTP.
Are there any problems with this situation?

Thanks...

>yes. you would have problems. PPTP is designed to use a pre-existing
>network connection, and a dial up user wouldnt be able to connect. Use
>pppd with mgetty. That is teh standard method for remote access. 
>
>Kevin
>
>On Thu, 28 Oct 1999, Sergio A. Sotelo wrote:
>
>> I have a question:
>> 
>> 	May I have any problem running a Linux Box with PoPToP server and mgetty
>> with some modems for standard remote access?
>> 
>> Best regards..


*****************************************
Sergio Adri?n Sotelo
Citynet S.A. - Ciudad Internet
Corrientes 840 - Rosario (2000)
Argentina
Tel. 54-341-4470003 - Fax: 54-341-4256303
*****************************************



From P.J.Reid at earthling.net  Sat Oct 30 21:33:53 1999
From: P.J.Reid at earthling.net (Patrick Reid)
Date: Sat Oct 30 21:33:53 1999
Subject: [pptp-server] Error 742
Message-ID: <000201bf2348$1c0b8e00$0200a8c0@Reidworld.dynip.com>

I have installed pppd version 2.3.8, with the patches for encrypted
connections. I have also uninstalled VPN support from Win98, re-installed
and then run DUN40.EXE. But when I try to connect, I get error 742: The
computer you are dialling in to does not support the data encryption
requirements specified.

My pptpd.log contains the following:

Oct 30 23:27:05 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
connection started
Oct 30 23:27:05 Black pptpd[26567]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 30 23:27:06 Black pppd[26568]: pppd 2.3.8 started by root, uid 0
Oct 30 23:27:06 Black pppd[26568]: Using interface ppp0
Oct 30 23:27:06 Black pppd[26568]: Connect: ppp0 <--> /dev/pts/6
Oct 30 23:27:06 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
<auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
Oct 30 23:27:07 Black pppd[26568]: rcvd [LCP ConfReq id=0x1 <magic 0xa61eb>
<pcomp> <accomp>]
Oct 30 23:27:07 Black pppd[26568]: sent [LCP ConfAck id=0x1 <magic 0xa61eb>
<pcomp> <accomp>]
Oct 30 23:27:09 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
<auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
Oct 30 23:27:09 Black pppd[26568]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0>
<auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Challenge id=0x1
<363eb2bb527e8bf1b18ebc45e181bddb>, name = "Black"]
Oct 30 23:27:09 Black pppd[26568]: rcvd [CHAP Response id=0x1
<112d52d249dd55d10666e18e7ed22a6f0000000000000000512f364cbc6e9c4a5cea4964d66
6a5c9be22490207aa3d5c04>, name = "REID\\patrick"]
Oct 30 23:27:09 Black pppd[26568]: Warning - secret file
/etc/ppp/chap-secrets has world and/or group access
Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Success id=0x1
"S=1EC5F7E12C5FAA97120862370BDD3745D90D09AA"]
Oct 30 23:27:09 Black pppd[26568]: sent [IPCP ConfReq id=0x1 <addr
192.168.0.101> <compress VJ 0f 01>]
Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-21
Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-18
Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-26
Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
Oct 30 23:27:10 Black pppd[26568]: MSCHAP-v2 peer authentication succeeded
for REID\\patrick
Oct 30 23:27:10 Black pppd[26568]: rcvd [IPCP ConfReq id=0x1 <addr 0.0.0.0>
<ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Oct 30 23:27:10 Black pppd[26568]: sent [IPCP ConfRej id=0x1 <ms-dns1
0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Oct 30 23:27:10 Black pppd[26568]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0 31>
<lzs 0 1 4>]
Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-21
Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-18
Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-26
Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
Oct 30 23:27:10 Black pppd[26568]: sent [CCP ConfReq id=0x1]
Oct 30 23:27:11 Black modprobe: can't locate module ppp-compress-18
Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfRej id=0x1 <mppe 1 0 0 20>
<lzs 0 1 4>]
Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f
01>]
Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfReq id=0x2 <addr
192.168.0.101>]
Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x2 <addr 0.0.0.0>]
Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfNak id=0x2 <addr
192.168.0.201>]
Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfAck id=0x1]
Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfReq id=0x2]
Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfAck id=0x2]
Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfAck id=0x2 <addr
192.168.0.101>]
Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x3 <addr
192.168.0.201>]
Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfAck id=0x3 <addr
192.168.0.201>]
Oct 30 23:27:11 Black pppd[26568]: found interface eth0 for proxy arp
Oct 30 23:27:11 Black pppd[26568]: local  IP address 192.168.0.101
Oct 30 23:27:11 Black pppd[26568]: remote IP address 192.168.0.201
Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up started (pid 26581)
Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP TermReq id=0x3]
Oct 30 23:27:11 Black pppd[26568]: CCP terminated by peer
Oct 30 23:27:11 Black pppd[26568]: sent [CCP TermAck id=0x3]
Oct 30 23:27:11 Black pppd[26568]: Compression disabled by peer.
Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up finished (pid
26581), status = 0x0
Oct 30 23:27:47 Black pppd[26568]: rcvd [LCP TermReq id=0x2]
Oct 30 23:27:47 Black pppd[26568]: LCP terminated by peer
Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down started (pid
26611)
Oct 30 23:27:47 Black pppd[26568]: sent [LCP TermAck id=0x2]
Oct 30 23:27:47 Black pptpd[26567]: CTRL: Error with select(), quitting
Oct 30 23:27:47 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
connection finished
Oct 30 23:27:47 Black pppd[26568]: Modem hangup
Oct 30 23:27:47 Black pppd[26568]: Connection terminated.
Oct 30 23:27:47 Black pppd[26568]: Connect time 0.7 minutes.
Oct 30 23:27:47 Black pppd[26568]: Sent 477 bytes, received 439 bytes.
Oct 30 23:27:47 Black pppd[26568]: Waiting for 1 child processes...
Oct 30 23:27:47 Black pppd[26568]:   script /etc/ppp/ip-down, pid 26611
Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down finished (pid
26611), status = 0x0
Oct 30 23:27:47 Black pppd[26568]: Exit.

Any idea what I am missing? Connections with no encryption work fine.

Patrick Reid - mailto:P.J.Reid at earthling.net




From tmk at netmagic.net  Sat Oct 30 23:15:57 1999
From: tmk at netmagic.net (tmk)
Date: Sat Oct 30 23:15:57 1999
Subject: [pptp-server] Error 742
References: <000201bf2348$1c0b8e00$0200a8c0@Reidworld.dynip.com>
Message-ID: <000d01bf2357$0be754a0$071c0fc0@lala.net>

did you add the encryption stuff to the ppp options file? you need to do
that

might be complaining about the lack of compression (does mppe need this?)
make sure to insmod the various compression modules.

Kevin
----- Original Message -----
From: Patrick Reid <P.J.Reid at earthling.net>
To: <pptp-server at lists.schulte.org>
Sent: Saturday, October 30, 1999 7:31 PM
Subject: [pptp-server] Error 742


> I have installed pppd version 2.3.8, with the patches for encrypted
> connections. I have also uninstalled VPN support from Win98, re-installed
> and then run DUN40.EXE. But when I try to connect, I get error 742: The
> computer you are dialling in to does not support the data encryption
> requirements specified.
>
> My pptpd.log contains the following:
>
> Oct 30 23:27:05 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> connection started
> Oct 30 23:27:05 Black pptpd[26567]: CTRL: Starting call (launching pppd,
> opening GRE)
> Oct 30 23:27:06 Black pppd[26568]: pppd 2.3.8 started by root, uid 0
> Oct 30 23:27:06 Black pppd[26568]: Using interface ppp0
> Oct 30 23:27:06 Black pppd[26568]: Connect: ppp0 <--> /dev/pts/6
> Oct 30 23:27:06 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> Oct 30 23:27:07 Black pppd[26568]: rcvd [LCP ConfReq id=0x1 <magic
0xa61eb>
> <pcomp> <accomp>]
> Oct 30 23:27:07 Black pppd[26568]: sent [LCP ConfAck id=0x1 <magic
0xa61eb>
> <pcomp> <accomp>]
> Oct 30 23:27:09 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> Oct 30 23:27:09 Black pppd[26568]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Challenge id=0x1
> <363eb2bb527e8bf1b18ebc45e181bddb>, name = "Black"]
> Oct 30 23:27:09 Black pppd[26568]: rcvd [CHAP Response id=0x1
>
<112d52d249dd55d10666e18e7ed22a6f0000000000000000512f364cbc6e9c4a5cea4964d66
> 6a5c9be22490207aa3d5c04>, name = "REID\\patrick"]
> Oct 30 23:27:09 Black pppd[26568]: Warning - secret file
> /etc/ppp/chap-secrets has world and/or group access
> Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Success id=0x1
> "S=1EC5F7E12C5FAA97120862370BDD3745D90D09AA"]
> Oct 30 23:27:09 Black pppd[26568]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.101> <compress VJ 0f 01>]
> Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-21
> Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-18
> Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-26
> Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> Oct 30 23:27:10 Black pppd[26568]: MSCHAP-v2 peer authentication succeeded
> for REID\\patrick
> Oct 30 23:27:10 Black pppd[26568]: rcvd [IPCP ConfReq id=0x1 <addr
0.0.0.0>
> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> Oct 30 23:27:10 Black pppd[26568]: sent [IPCP ConfRej id=0x1 <ms-dns1
> 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> Oct 30 23:27:10 Black pppd[26568]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0
31>
> <lzs 0 1 4>]
> Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-21
> Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-18
> Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-26
> Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> Oct 30 23:27:10 Black pppd[26568]: sent [CCP ConfReq id=0x1]
> Oct 30 23:27:11 Black modprobe: can't locate module ppp-compress-18
> Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfRej id=0x1 <mppe 1 0 0
20>
> <lzs 0 1 4>]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfRej id=0x1 <compress VJ
0f
> 01>]
> Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfReq id=0x2 <addr
> 192.168.0.101>]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x2 <addr
0.0.0.0>]
> Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfNak id=0x2 <addr
> 192.168.0.201>]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfAck id=0x1]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfReq id=0x2]
> Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfAck id=0x2]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfAck id=0x2 <addr
> 192.168.0.101>]
> Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x3 <addr
> 192.168.0.201>]
> Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfAck id=0x3 <addr
> 192.168.0.201>]
> Oct 30 23:27:11 Black pppd[26568]: found interface eth0 for proxy arp
> Oct 30 23:27:11 Black pppd[26568]: local  IP address 192.168.0.101
> Oct 30 23:27:11 Black pppd[26568]: remote IP address 192.168.0.201
> Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up started (pid
26581)
> Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP TermReq id=0x3]
> Oct 30 23:27:11 Black pppd[26568]: CCP terminated by peer
> Oct 30 23:27:11 Black pppd[26568]: sent [CCP TermAck id=0x3]
> Oct 30 23:27:11 Black pppd[26568]: Compression disabled by peer.
> Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up finished (pid
> 26581), status = 0x0
> Oct 30 23:27:47 Black pppd[26568]: rcvd [LCP TermReq id=0x2]
> Oct 30 23:27:47 Black pppd[26568]: LCP terminated by peer
> Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down started (pid
> 26611)
> Oct 30 23:27:47 Black pppd[26568]: sent [LCP TermAck id=0x2]
> Oct 30 23:27:47 Black pptpd[26567]: CTRL: Error with select(), quitting
> Oct 30 23:27:47 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> connection finished
> Oct 30 23:27:47 Black pppd[26568]: Modem hangup
> Oct 30 23:27:47 Black pppd[26568]: Connection terminated.
> Oct 30 23:27:47 Black pppd[26568]: Connect time 0.7 minutes.
> Oct 30 23:27:47 Black pppd[26568]: Sent 477 bytes, received 439 bytes.
> Oct 30 23:27:47 Black pppd[26568]: Waiting for 1 child processes...
> Oct 30 23:27:47 Black pppd[26568]:   script /etc/ppp/ip-down, pid 26611
> Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down finished (pid
> 26611), status = 0x0
> Oct 30 23:27:47 Black pppd[26568]: Exit.
>
> Any idea what I am missing? Connections with no encryption work fine.
>
> Patrick Reid - mailto:P.J.Reid at earthling.net
>
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>




From glgrobe at wt.net  Sat Oct 30 23:37:44 1999
From: glgrobe at wt.net (G.L.G.)
Date: Sat Oct 30 23:37:44 1999
Subject: [pptp-server] Error 742
References: <000201bf2348$1c0b8e00$0200a8c0@Reidworld.dynip.com> <000d01bf2357$0be754a0$071c0fc0@lala.net>
Message-ID: <381BCEAE.18D6F023@wt.net>

well, don't know if this will fix all your probs, but your certainly not
finding your /lib/moduels/*
you need to add the following lines to your /etc/conf.modules file (you
probably have rh):

alias ppp-compress-18 (i'm not sure on this one, but go search in dejanews.com)

alias ppp-compress-21 bsd_comp
alias ppp-compress-24 ppp_deflate
alias ppp-compress-26 ppp_deflate

this will get you the proper names of the modules so that they can be picked up
(assuming you've built'em)

Gary


tmk wrote:

> did you add the encryption stuff to the ppp options file? you need to do
> that
>
> might be complaining about the lack of compression (does mppe need this?)
> make sure to insmod the various compression modules.
>
> Kevin
> ----- Original Message -----
> From: Patrick Reid <P.J.Reid at earthling.net>
> To: <pptp-server at lists.schulte.org>
> Sent: Saturday, October 30, 1999 7:31 PM
> Subject: [pptp-server] Error 742
>
> > I have installed pppd version 2.3.8, with the patches for encrypted
> > connections. I have also uninstalled VPN support from Win98, re-installed
> > and then run DUN40.EXE. But when I try to connect, I get error 742: The
> > computer you are dialling in to does not support the data encryption
> > requirements specified.
> >
> > My pptpd.log contains the following:
> >
> > Oct 30 23:27:05 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> > connection started
> > Oct 30 23:27:05 Black pptpd[26567]: CTRL: Starting call (launching pppd,
> > opening GRE)
> > Oct 30 23:27:06 Black pppd[26568]: pppd 2.3.8 started by root, uid 0
> > Oct 30 23:27:06 Black pppd[26568]: Using interface ppp0
> > Oct 30 23:27:06 Black pppd[26568]: Connect: ppp0 <--> /dev/pts/6
> > Oct 30 23:27:06 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > Oct 30 23:27:07 Black pppd[26568]: rcvd [LCP ConfReq id=0x1 <magic
> 0xa61eb>
> > <pcomp> <accomp>]
> > Oct 30 23:27:07 Black pppd[26568]: sent [LCP ConfAck id=0x1 <magic
> 0xa61eb>
> > <pcomp> <accomp>]
> > Oct 30 23:27:09 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > Oct 30 23:27:09 Black pppd[26568]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0>
> > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Challenge id=0x1
> > <363eb2bb527e8bf1b18ebc45e181bddb>, name = "Black"]
> > Oct 30 23:27:09 Black pppd[26568]: rcvd [CHAP Response id=0x1
> >
> <112d52d249dd55d10666e18e7ed22a6f0000000000000000512f364cbc6e9c4a5cea4964d66
> > 6a5c9be22490207aa3d5c04>, name = "REID\\patrick"]
> > Oct 30 23:27:09 Black pppd[26568]: Warning - secret file
> > /etc/ppp/chap-secrets has world and/or group access
> > Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Success id=0x1
> > "S=1EC5F7E12C5FAA97120862370BDD3745D90D09AA"]
> > Oct 30 23:27:09 Black pppd[26568]: sent [IPCP ConfReq id=0x1 <addr
> > 192.168.0.101> <compress VJ 0f 01>]
> > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-21
> > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-18
> > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-26
> > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> > Oct 30 23:27:10 Black pppd[26568]: MSCHAP-v2 peer authentication succeeded
> > for REID\\patrick
> > Oct 30 23:27:10 Black pppd[26568]: rcvd [IPCP ConfReq id=0x1 <addr
> 0.0.0.0>
> > <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> > Oct 30 23:27:10 Black pppd[26568]: sent [IPCP ConfRej id=0x1 <ms-dns1
> > 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> > Oct 30 23:27:10 Black pppd[26568]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0
> 31>
> > <lzs 0 1 4>]
> > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-21
> > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-18
> > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-26
> > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> > Oct 30 23:27:10 Black pppd[26568]: sent [CCP ConfReq id=0x1]
> > Oct 30 23:27:11 Black modprobe: can't locate module ppp-compress-18
> > Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfRej id=0x1 <mppe 1 0 0
> 20>
> > <lzs 0 1 4>]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfRej id=0x1 <compress VJ
> 0f
> > 01>]
> > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfReq id=0x2 <addr
> > 192.168.0.101>]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x2 <addr
> 0.0.0.0>]
> > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfNak id=0x2 <addr
> > 192.168.0.201>]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfAck id=0x1]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfReq id=0x2]
> > Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfAck id=0x2]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfAck id=0x2 <addr
> > 192.168.0.101>]
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x3 <addr
> > 192.168.0.201>]
> > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfAck id=0x3 <addr
> > 192.168.0.201>]
> > Oct 30 23:27:11 Black pppd[26568]: found interface eth0 for proxy arp
> > Oct 30 23:27:11 Black pppd[26568]: local  IP address 192.168.0.101
> > Oct 30 23:27:11 Black pppd[26568]: remote IP address 192.168.0.201
> > Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up started (pid
> 26581)
> > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP TermReq id=0x3]
> > Oct 30 23:27:11 Black pppd[26568]: CCP terminated by peer
> > Oct 30 23:27:11 Black pppd[26568]: sent [CCP TermAck id=0x3]
> > Oct 30 23:27:11 Black pppd[26568]: Compression disabled by peer.
> > Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up finished (pid
> > 26581), status = 0x0
> > Oct 30 23:27:47 Black pppd[26568]: rcvd [LCP TermReq id=0x2]
> > Oct 30 23:27:47 Black pppd[26568]: LCP terminated by peer
> > Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down started (pid
> > 26611)
> > Oct 30 23:27:47 Black pppd[26568]: sent [LCP TermAck id=0x2]
> > Oct 30 23:27:47 Black pptpd[26567]: CTRL: Error with select(), quitting
> > Oct 30 23:27:47 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> > connection finished
> > Oct 30 23:27:47 Black pppd[26568]: Modem hangup
> > Oct 30 23:27:47 Black pppd[26568]: Connection terminated.
> > Oct 30 23:27:47 Black pppd[26568]: Connect time 0.7 minutes.
> > Oct 30 23:27:47 Black pppd[26568]: Sent 477 bytes, received 439 bytes.
> > Oct 30 23:27:47 Black pppd[26568]: Waiting for 1 child processes...
> > Oct 30 23:27:47 Black pppd[26568]:   script /etc/ppp/ip-down, pid 26611
> > Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down finished (pid
> > 26611), status = 0x0
> > Oct 30 23:27:47 Black pppd[26568]: Exit.
> >
> > Any idea what I am missing? Connections with no encryption work fine.
> >
> > Patrick Reid - mailto:P.J.Reid at earthling.net
> >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




From walterm at Gliatech.com  Sun Oct 31 07:08:55 1999
From: walterm at Gliatech.com (Michael Walter)
Date: Sun Oct 31 07:08:55 1999
Subject: [pptp-server] Error 742
Message-ID: <EDA23054FDC0D1119842006008CEAB4853CF31@GLIATECHUSA1>

	alias ppp-compress-18 (i'm not sure on this one, but go search in
dejanews.com)

This is the important one, it should be 
alias ppp-compress-18 ppp_mppe

> -----Original Message-----
> From:	G.L.G. [SMTP:glgrobe at wt.net]
> Sent:	Sunday, October 31, 1999 1:08 AM
> To:	tmk
> Cc:	Patrick Reid; pptp-server at lists.schulte.org
> Subject:	Re: [pptp-server] Error 742
> 
> well, don't know if this will fix all your probs, but your certainly not
> finding your /lib/moduels/*
> you need to add the following lines to your /etc/conf.modules file (you
> probably have rh):
> 
> alias ppp-compress-18 (i'm not sure on this one, but go search in
> dejanews.com)
> 
> alias ppp-compress-21 bsd_comp
> alias ppp-compress-24 ppp_deflate
> alias ppp-compress-26 ppp_deflate
> 
> this will get you the proper names of the modules so that they can be
> picked up
> (assuming you've built'em)
> 
> Gary
> 
> 
> tmk wrote:
> 
> > did you add the encryption stuff to the ppp options file? you need to do
> > that
> >
> > might be complaining about the lack of compression (does mppe need
> this?)
> > make sure to insmod the various compression modules.
> >
> > Kevin
> > ----- Original Message -----
> > From: Patrick Reid <P.J.Reid at earthling.net>
> > To: <pptp-server at lists.schulte.org>
> > Sent: Saturday, October 30, 1999 7:31 PM
> > Subject: [pptp-server] Error 742
> >
> > > I have installed pppd version 2.3.8, with the patches for encrypted
> > > connections. I have also uninstalled VPN support from Win98,
> re-installed
> > > and then run DUN40.EXE. But when I try to connect, I get error 742:
> The
> > > computer you are dialling in to does not support the data encryption
> > > requirements specified.
> > >
> > > My pptpd.log contains the following:
> > >
> > > Oct 30 23:27:05 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> > > connection started
> > > Oct 30 23:27:05 Black pptpd[26567]: CTRL: Starting call (launching
> pppd,
> > > opening GRE)
> > > Oct 30 23:27:06 Black pppd[26568]: pppd 2.3.8 started by root, uid 0
> > > Oct 30 23:27:06 Black pppd[26568]: Using interface ppp0
> > > Oct 30 23:27:06 Black pppd[26568]: Connect: ppp0 <--> /dev/pts/6
> > > Oct 30 23:27:06 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap
> 0x0>
> > > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > > Oct 30 23:27:07 Black pppd[26568]: rcvd [LCP ConfReq id=0x1 <magic
> > 0xa61eb>
> > > <pcomp> <accomp>]
> > > Oct 30 23:27:07 Black pppd[26568]: sent [LCP ConfAck id=0x1 <magic
> > 0xa61eb>
> > > <pcomp> <accomp>]
> > > Oct 30 23:27:09 Black pppd[26568]: sent [LCP ConfReq id=0x1 <asyncmap
> 0x0>
> > > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > > Oct 30 23:27:09 Black pppd[26568]: rcvd [LCP ConfAck id=0x1 <asyncmap
> 0x0>
> > > <auth chap 81> <magic 0xd138620f> <pcomp> <accomp>]
> > > Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Challenge id=0x1
> > > <363eb2bb527e8bf1b18ebc45e181bddb>, name = "Black"]
> > > Oct 30 23:27:09 Black pppd[26568]: rcvd [CHAP Response id=0x1
> > >
> >
> <112d52d249dd55d10666e18e7ed22a6f0000000000000000512f364cbc6e9c4a5cea4964d
> 66
> > > 6a5c9be22490207aa3d5c04>, name = "REID\\patrick"]
> > > Oct 30 23:27:09 Black pppd[26568]: Warning - secret file
> > > /etc/ppp/chap-secrets has world and/or group access
> > > Oct 30 23:27:09 Black pppd[26568]: sent [CHAP Success id=0x1
> > > "S=1EC5F7E12C5FAA97120862370BDD3745D90D09AA"]
> > > Oct 30 23:27:09 Black pppd[26568]: sent [IPCP ConfReq id=0x1 <addr
> > > 192.168.0.101> <compress VJ 0f 01>]
> > > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-21
> > > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-18
> > > Oct 30 23:27:09 Black modprobe: can't locate module ppp-compress-26
> > > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> > > Oct 30 23:27:10 Black pppd[26568]: MSCHAP-v2 peer authentication
> succeeded
> > > for REID\\patrick
> > > Oct 30 23:27:10 Black pppd[26568]: rcvd [IPCP ConfReq id=0x1 <addr
> > 0.0.0.0>
> > > <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins
> 0.0.0.0>]
> > > Oct 30 23:27:10 Black pppd[26568]: sent [IPCP ConfRej id=0x1 <ms-dns1
> > > 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> > > Oct 30 23:27:10 Black pppd[26568]: rcvd [CCP ConfReq id=0x1 <mppe 1 0
> 0
> > 31>
> > > <lzs 0 1 4>]
> > > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-21
> > > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-18
> > > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-26
> > > Oct 30 23:27:10 Black modprobe: can't locate module ppp-compress-24
> > > Oct 30 23:27:10 Black pppd[26568]: sent [CCP ConfReq id=0x1]
> > > Oct 30 23:27:11 Black modprobe: can't locate module ppp-compress-18
> > > Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfRej id=0x1 <mppe 1 0
> 0
> > 20>
> > > <lzs 0 1 4>]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfRej id=0x1 <compress
> VJ
> > 0f
> > > 01>]
> > > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfReq id=0x2 <addr
> > > 192.168.0.101>]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x2 <addr
> > 0.0.0.0>]
> > > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfNak id=0x2 <addr
> > > 192.168.0.201>]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfAck id=0x1]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP ConfReq id=0x2]
> > > Oct 30 23:27:11 Black pppd[26568]: sent [CCP ConfAck id=0x2]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfAck id=0x2 <addr
> > > 192.168.0.101>]
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [IPCP ConfReq id=0x3 <addr
> > > 192.168.0.201>]
> > > Oct 30 23:27:11 Black pppd[26568]: sent [IPCP ConfAck id=0x3 <addr
> > > 192.168.0.201>]
> > > Oct 30 23:27:11 Black pppd[26568]: found interface eth0 for proxy arp
> > > Oct 30 23:27:11 Black pppd[26568]: local  IP address 192.168.0.101
> > > Oct 30 23:27:11 Black pppd[26568]: remote IP address 192.168.0.201
> > > Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up started (pid
> > 26581)
> > > Oct 30 23:27:11 Black pppd[26568]: rcvd [CCP TermReq id=0x3]
> > > Oct 30 23:27:11 Black pppd[26568]: CCP terminated by peer
> > > Oct 30 23:27:11 Black pppd[26568]: sent [CCP TermAck id=0x3]
> > > Oct 30 23:27:11 Black pppd[26568]: Compression disabled by peer.
> > > Oct 30 23:27:11 Black pppd[26568]: Script /etc/ppp/ip-up finished (pid
> > > 26581), status = 0x0
> > > Oct 30 23:27:47 Black pppd[26568]: rcvd [LCP TermReq id=0x2]
> > > Oct 30 23:27:47 Black pppd[26568]: LCP terminated by peer
> > > Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down started
> (pid
> > > 26611)
> > > Oct 30 23:27:47 Black pppd[26568]: sent [LCP TermAck id=0x2]
> > > Oct 30 23:27:47 Black pptpd[26567]: CTRL: Error with select(),
> quitting
> > > Oct 30 23:27:47 Black pptpd[26567]: CTRL: Client 192.168.0.2 control
> > > connection finished
> > > Oct 30 23:27:47 Black pppd[26568]: Modem hangup
> > > Oct 30 23:27:47 Black pppd[26568]: Connection terminated.
> > > Oct 30 23:27:47 Black pppd[26568]: Connect time 0.7 minutes.
> > > Oct 30 23:27:47 Black pppd[26568]: Sent 477 bytes, received 439 bytes.
> > > Oct 30 23:27:47 Black pppd[26568]: Waiting for 1 child processes...
> > > Oct 30 23:27:47 Black pppd[26568]:   script /etc/ppp/ip-down, pid
> 26611
> > > Oct 30 23:27:47 Black pppd[26568]: Script /etc/ppp/ip-down finished
> (pid
> > > 26611), status = 0x0
> > > Oct 30 23:27:47 Black pppd[26568]: Exit.
> > >
> > > Any idea what I am missing? Connections with no encryption work fine.
> > >
> > > Patrick Reid - mailto:P.J.Reid at earthling.net
> > >
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> > >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> 
> 
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!



From chrisk at ciris.net  Sun Oct 31 11:02:02 1999
From: chrisk at ciris.net (Christopher Kuhl)
Date: Sun Oct 31 11:02:02 1999
Subject: [pptp-server] How to require encryted data?
Message-ID: <005501bf23c1$acbd9870$02016f0a@tiger.ciris.net>

I have finally made poptop 1.0.0 work on my lrp distribution but I still
have a couple of small problems.

1:  How or can I required data encryption with all clients?  I have chapms,
chapms-v2 working great, also mppe-40, and mppe-128 work great.  My problem
is that if one the  end-users doesn't check "Require Data Encryption" on
their client, they can still log in fine and run unencrypted.  I read a
couple of posts about this in the mail archive, but I the responses dealt
with encrypted authentication, I already have that working fine.

2:  The other problem has me baffled.  I have an LRP box at one location
with a VMS machine behind it.  When I log into the LRP box with Windows NT
everything works perfectly, but if I use Windows 98(SE or not), I can log
into this machine and after a while my terminal session just locks up.  The
same thing happens with my remote LRP boxes running the linux pptp client.
I am using ppe-128, and ppe-stateless.  I am going to take out the
ppe-stateless options and see if that helps.  Also, when the terminal
sessions locks up, the link does not die, so I can restart the telnet
session with stopping and restarting the pptp clients.

3:  This one is a little off topic for poptop, but does anyone have any
ideas of how to have the pptp client reconnect automatically when the link
dies, I do not want to have to reboot the router or have any of the local
users have to log in in order to restart the link.

TIA,
Chris Kuhl




From wangchao_csg at 263.net  Fri Oct 22 06:02:55 1999
From: wangchao_csg at 263.net (wangchao)
Date: Fri, 22 Oct 1999 19:2:55 +0800
Subject: [pptp-server] (no subject)
Message-ID: <20010714111423.7C8311CE426F3@smtp.263.net>

pptp-server:
	
			I am developing a pptp software module in a router in my university. Any one who knows where can I get the "pptp" or "l2tp" source code, please tell me. I will be very appreciated.



                    

            wangchao
            wangchao_csg at 263.net