Fw: [pptp-server] Error 619
Chris
cliles at gw.total-web.net
Thu Aug 10 00:09:49 CDT 2000
----- Original Message -----
From: Chris
To: George Csahanin-LININET
Sent: Wednesday, August 09, 2000 10:08 PM
Subject: Re: [pptp-server] Error 619
well I put all your chains in its own script and only run those chains. I still get the same error and in my /var/log/messages I see this:
pppd 2.3.11 started by root
connect: ppp0 <--> /dev/pts/0
MSCHAP-v2 peer authentication suceeded for user
found interface eth1 for proxy arp
local ip address 192.168.0.1 (ip of server's internal nic)
remote ip address 192.168.0.232
LCP terminated by peer (.M-rFo^@<M_Mt^@^@BM-f)
Connection terminated
What am I doing wrong here? it connects so the only thing I can think of is that it is not masqing the traffic back to the client and the connection drops.
----- Original Message -----
From: George Csahanin-LININET
To: Chris
Sent: Wednesday, August 09, 2000 11:23 AM
Subject: Re: [pptp-server] Error 619
Here's my setup for the outbound masq for vpn:
ipchains -A forward -p all -s 192.168.0.0/24 -d 0.0.0.0/0 -i eth0 -j MASQ
ipchains -A forward -p tcp -d 192.168.0.0/24 1723 -i ppp0 -j ACCEPT
ipchains -A forward -p tcp -s 192.168.0.0/24 1723 -i ppp0 -j ACCEPT
ipchains -A forward -p 47 -d 192.168.0.0/24 -i ppp0 -j ACCEPT
ipchains -A forward -p 47 -s 192.168.0.0/24 -i ppp0 -j ACCEPT
And for running poptop:
(currently turned off, note)
#####################################################
#START POPTOP
#####################################################
#insmod ppp_deflate
#insmod bsd_comp
#/usr/local/sbin/pptpd -d
######################
insmod ip_masq_portfw
insmod ip_masq_autofw
insmod ip_masq_ipsec
insmod ip_masq_pptp
###########################
As I recall, missing any of the above will give a 619 or 645 error...
-G
-----Original Message-----
From: Chris <cliles at gw.total-web.net>
To: pptp-server at lists.schulte.org <pptp-server at lists.schulte.org>
Date: Wednesday, August 09, 2000 12:54 PM
Subject: [pptp-server] Error 619
I'm trying to connect to my pptp server only to get a 619 error. My setup includes a firewall with 1 regestered ip and 1 private ip. I'm trying to connect to the pptp server through a masq. The firewall (the one running the pptp server), is also the masqer. I have installed all the masq patches, and in /var/messages I am told that the pptp server and client authenticate but the client then drops the connection. I am convinced that it is a firewall problem. The firewall rules I have to allow connections to the pptp server are as follows:
ipchains -A input -p tcp -d 209.XXX.XXX.XXX 1723 -j ACCEPT
ipchains -A inout -p 47 -d 209.XXX.XXX.XXX -j ACCEPT
ipchains -A output -p tcp -s 209.XXX.XXX.XXX 1723 -j ACCEPT
ipchains -A output -p 47 -j ACCEPT
The following rules are for masqing:
ipchains -A forward -p tcp -s 192.168.0.0/24 -j MASQ
ipchains -A forward -p 47 -s 192.168.0.0/24 -j MASQ
and the following rules I have no clue what they do, but I got them off a couple of howtos:
ipchains -A forward -p tcp -d 209.XXX.XXX.XXX 1723 -j ACCEPT
ipchains -A forward -p tcp -s 209.XXX.XXX.XXX 1723 -j ACCEPT
ipchains -A forward -p 47 -d 209.XXX.XXX.XXXX -j ACCEPT
ipchains -A forward -p 47 -s 209.XXX.XXX.XXX -j ACCEPT
I read all the masq woes posts in the archive, but I just can't figure out what the hell I'm doing wrong.
Thanks,
Chris Liles
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/20000809/4014f606/attachment.html>
More information about the pptp-server
mailing list