From yan at cardinalengineering.com Tue Feb 1 06:50:27 2000 From: yan at cardinalengineering.com (Yan Seiner) Date: Tue Feb 1 06:50:27 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) References: Message-ID: <3896D7D5.EE76A24D@cardinalengineering.com> I am using a heavily patched 2.2.13 kernel (ipsec + pptp + a few other things) with no problems at all. There is still the problem of poptop blowing up under load, but I understand that is being addressed in the 1.1.1 version (yes?). A lot problems can be caused by hardware drivers. I had an interesting problem where it appeared that the patched pppd was causing my kernel to panic and lock up. (Interesting in the academic sense; not interesting as this was on our production server). Turned out that the digi board driver was being installed twice and pppd happened to trigger the collapse. My advice is to go through the latest kernel and prune everything you don't need from it. Eliminate every driver you don't need. Especially redhat; they pack everything into the kernel. There's support in there for 6 year old CD ROMs... ancient sound cards... NFS... Appletalk... Novell... Also, I am using a stock 2.2.13 kernel from kernel.org on my RH 6.0 system; my understanding is that RH heavily patches the kernels they release from their web site, so there may be some interactions there the are unique to RH releases of the kernel. The stock kernel works perfectly fine in a RH system. --Yan -- Think different ride a recumbent use Linux. From natecars at real-time.com Tue Feb 1 10:05:59 2000 From: natecars at real-time.com (Nate Carlson) Date: Tue Feb 1 10:05:59 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) In-Reply-To: <00020109213202.11235@gibberling> Message-ID: On Tue, 1 Feb 2000, Matthew Ramsay wrote: > Gday all, > > Can anyone confirm whether they are successfully using PoPToP on a kernel later > than 2.2.5 with MPPE encryption and ppp-2.3.10 (or later). > > Cheers, > Matt. > I am asuccesfully using PoPToP with 128-bit encryption on 2.2.14 with 2.3.10. Win98 & Win2000 clients. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From tlskinner at achilles.hendersontrucking.com Tue Feb 1 11:03:57 2000 From: tlskinner at achilles.hendersontrucking.com (Tony Skinner) Date: Tue Feb 1 11:03:57 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) In-Reply-To: Message-ID: I guess I am alone in my difficulties. By chance, those who have their setups functioning with kernels greater than 2.2.5 and ppp-2.3.10, are you using any release of RedHat ? I am trying to isolate this to a distribution now. Perhaps I was looking too finely at the situation and need to get more general, then close in on the details. Tony Skinner On Tue, 1 Feb 2000, Nate Carlson wrote: > On Tue, 1 Feb 2000, Matthew Ramsay wrote: > > > Gday all, > > > > Can anyone confirm whether they are successfully using PoPToP on a kernel later > > than 2.2.5 with MPPE encryption and ppp-2.3.10 (or later). > > > > Cheers, > > Matt. > > > > I am asuccesfully using PoPToP with 128-bit encryption on 2.2.14 with > 2.3.10. Win98 & Win2000 clients. > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From hshaw at healthcentralrx.com Tue Feb 1 11:12:37 2000 From: hshaw at healthcentralrx.com (T.Shaw) Date: Tue Feb 1 11:12:37 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) References: Message-ID: <003501bf6cd7$8234cc90$0200a8c0@xytek.org> [hshaw at fw /etc]$ more redhat-release Red Hat Linux release 6.0 (Hedwig) The only problem i am having is connecting to my poptop box with a Linux client from behind a Linux masq. firewall. The windows clients are connecting just fine.. ----- Original Message ----- From: Tony Skinner To: Nate Carlson Cc: Matthew Ramsay ; Greg Boehnlein ; Sent: Tuesday, February 01, 2000 9:00 AM Subject: Re: [pptp-server] CTRL: couldn't read packet header (exit) > I guess I am alone in my difficulties. By chance, those who have their > setups functioning with kernels greater than 2.2.5 and ppp-2.3.10, are you > using any release of RedHat ? > > I am trying to isolate this to a distribution now. Perhaps I was looking > too finely at the situation and need to get more general, then close in on > the details. > > Tony Skinner > > > On Tue, 1 Feb 2000, Nate Carlson wrote: > > > On Tue, 1 Feb 2000, Matthew Ramsay wrote: > > > > > Gday all, > > > > > > Can anyone confirm whether they are successfully using PoPToP on a kernel later > > > than 2.2.5 with MPPE encryption and ppp-2.3.10 (or later). > > > > > > Cheers, > > > Matt. > > > > > > > I am asuccesfully using PoPToP with 128-bit encryption on 2.2.14 with > > 2.3.10. Win98 & Win2000 clients. > > > > -- > > Nate Carlson | Phone : (612)943-8700 > > http://www.real-time.com | Fax : (612)943-8500 > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > List services provided by www.schulte.org! > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! From patl at curl.com Tue Feb 1 11:47:36 2000 From: patl at curl.com (Patrick J. LoPresti) Date: Tue Feb 1 11:47:36 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) In-Reply-To: Tony Skinner's message of "Tue, 1 Feb 2000 11:00:03 -0600 (CST)" References:

Message-ID: Tony Skinner writes: > I guess I am alone in my difficulties. By chance, those who have > their setups functioning with kernels greater than 2.2.5 and > ppp-2.3.10, are you using any release of RedHat ? The version of your system is not relevant (coincidence at most). This problem is a simple bug which is triggered when the PPTP control connection closes at just the wrong time. Apply the patch I posted or try PoPToP 1.1.1. - Pat From John.Matthews at madge.com Tue Feb 1 12:27:10 2000 From: John.Matthews at madge.com (John Matthews) Date: Tue Feb 1 12:27:10 2000 Subject: [pptp-server] Can't get PoPToP to work when tunnel is via ISP and modem link Message-ID: <531CE033A25BD3119E610000F6AF15FB192655@wsexch02.dev.madge.com> All, I've got PoPToP working when the tunnel is across a LAN but I can't seem to get it working when the tunnel goes via my ISP and a modem link. Has anyone got PoPToP working like this ? Otherwise do I take it from the following entry in the TODO list that I'm going to have to wait for a future version. "990802 - We don't actually implement any kind of window protocol, congestion control, etc, etc. Very simple algorithm which works well on LANs and good performance links but could be improved for slow distant dialups/bad routing and links." John Matthews From tlskinner at achilles.hendersontrucking.com Tue Feb 1 12:29:30 2000 From: tlskinner at achilles.hendersontrucking.com (Tony Skinner) Date: Tue Feb 1 12:29:30 2000 Subject: [pptp-server] CTRL: couldn't read packet header (exit) In-Reply-To: <003501bf6cd7$8234cc90$0200a8c0@xytek.org> Message-ID: Making a connection is not my problem. I can successfully connect with clients; however, after a random amount of time, the connection simply freezes up and on the server side, errors start getting generated. Tony Skinner On Tue, 1 Feb 2000, T.Shaw wrote: > [hshaw at fw /etc]$ more redhat-release > Red Hat Linux release 6.0 (Hedwig) > > The only problem i am having is connecting to my poptop box with a Linux > client from behind a Linux masq. firewall. The windows clients are > connecting just fine.. > > ----- Original Message ----- > From: Tony Skinner > To: Nate Carlson > Cc: Matthew Ramsay ; Greg Boehnlein > ; > Sent: Tuesday, February 01, 2000 9:00 AM > Subject: Re: [pptp-server] CTRL: couldn't read packet header (exit) > > > > I guess I am alone in my difficulties. By chance, those who have their > > setups functioning with kernels greater than 2.2.5 and ppp-2.3.10, are you > > using any release of RedHat ? > > > > I am trying to isolate this to a distribution now. Perhaps I was looking > > too finely at the situation and need to get more general, then close in on > > the details. > > > > Tony Skinner > > > > > > On Tue, 1 Feb 2000, Nate Carlson wrote: > > > > > On Tue, 1 Feb 2000, Matthew Ramsay wrote: > > > > > > > Gday all, > > > > > > > > Can anyone confirm whether they are successfully using PoPToP on a > kernel later > > > > than 2.2.5 with MPPE encryption and ppp-2.3.10 (or later). > > > > > > > > Cheers, > > > > Matt. > > > > > > > > > > I am asuccesfully using PoPToP with 128-bit encryption on 2.2.14 with > > > 2.3.10. Win98 & Win2000 clients. > > > > > > -- > > > Nate Carlson | Phone : (612)943-8700 > > > http://www.real-time.com | Fax : (612)943-8500 > > > > > > > > > _______________________________________________ > > > pptp-server maillist - pptp-server at lists.schulte.org > > > http://lists.schulte.org/mailman/listinfo/pptp-server > > > List services provided by www.schulte.org! > > > > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > List services provided by www.schulte.org! > From walterm at Gliatech.com Tue Feb 1 12:38:30 2000 From: walterm at Gliatech.com (Michael Walter) Date: Tue Feb 1 12:38:30 2000 Subject: [pptp-server] Can't get PoPToP to work when tunnel is via ISP and modem link Message-ID: We regularly use Poptop to support users from the netherlands, japan, germany, etc... dialing into our server in cleveland ohio. We have a fractional T1 in cleveland, remote users use at&t worldnet service(basically several local isp's in those countries(very random quality), and a vpn connection to at&t(forced by the software). The users are all nt4 sp4 or sp6(due to need for multiple vpn connections). They then connect to our vpn through at&t's vpn(tunnel in a tunnel in a modem connection). Works like a charm, so if it is possible under these conditions it should be possible anywhere. We use redhat 6.0, pppd 2.3.8, and pptpd 1.0.0. Thanks, Michael J. Walter mcse rhce walterm at gliatech.com 216-831-3200 -----Original Message----- From: John Matthews [mailto:John.Matthews at madge.com] Sent: Tuesday, February 01, 2000 1:28 PM To: pptp-server at lists.schulte.org Subject: [pptp-server] Can't get PoPToP to work when tunnel is via ISP and modem link All, I've got PoPToP working when the tunnel is across a LAN but I can't seem to get it working when the tunnel goes via my ISP and a modem link. Has anyone got PoPToP working like this ? Otherwise do I take it from the following entry in the TODO list that I'm going to have to wait for a future version. "990802 - We don't actually implement any kind of window protocol, congestion control, etc, etc. Very simple algorithm which works well on LANs and good performance links but could be improved for slow distant dialups/bad routing and links." John Matthews _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From natecars at real-time.com Tue Feb 1 12:46:00 2000 From: natecars at real-time.com (Nate Carlson) Date: Tue Feb 1 12:46:00 2000 Subject: [pptp-server] Can't get PoPToP to work when tunnel is via ISP and modem link In-Reply-To: <531CE033A25BD3119E610000F6AF15FB192655@wsexch02.dev.madge.com> Message-ID: On Tue, 1 Feb 2000, John Matthews wrote: > I've got PoPToP working when the tunnel is across a LAN but I can't seem > to get it working when the tunnel goes via my ISP and a modem link. Has > anyone got PoPToP working like this ? Otherwise do I take it from the > following entry in the TODO list that I'm going to have to wait for a future > version. > John, I've got it working great over WANs of various sorts (DSL connections, dial-ups, etc). What is your configuration scenario? Have you checked firewall logs to make sure nothing is getting denied? Also, you may need to check with your ISP(s) and make sure they aren't doing firewalling for you and blocking GRE.. (most don't, but you never know..) -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From willic2 at mail.auburn.edu Tue Feb 1 12:50:00 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Tue Feb 1 12:50:00 2000 Subject: [pptp-server] PoPToP install clarification In-Reply-To: Message-ID: I'm new to PoPToP and VPNs in general. I think I get the basic idea. In the PoPToP user guide, it refers to the /etx/pptpd.conf and says the contents should look like: speed 115200 localip 192.168.0.234-238 remoteip 192.168.1.234-238 What do the local and remote IP's mean? Does it have anything to do with my current IP or can I assign the clients any old IP I want? From willic2 at mail.auburn.edu Tue Feb 1 13:02:59 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Tue Feb 1 13:02:59 2000 Subject: [pptp-server] PoPToP newbie problems In-Reply-To: <531CE033A25BD3119E610000F6AF15FB192655@wsexch02.dev.madge.com> Message-ID: We went through and tried to setup PoPToP via the PoPToP FAQ/HOWTO listed on MoretonBay's site. We are now having a problem where after starting pptpd we get a seg fault after a couple of seconds and the following is in our pptpd.log. Can anyone help here?: Feb 1 12:59:03 localhost gpm[450]: Error in protocol Feb 1 12:59:03 localhost last message repeated 12 times Feb 1 12:59:07 localhost pptpd[509]: MGR: Manager process started Feb 1 12:59:25 localhost gnome-name-server[581]: starting Feb 1 12:59:25 localhost gnome-name-server[581]: name server starting Feb 1 12:59:34 localhost gnome-name-server[621]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057968 Feb 1 12:59:35 localhost gnome-name-server[622]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8058038 Feb 1 13:01:48 localhost pptpd[651]: MGR: Manager process started Feb 1 13:07:47 localhost pptpd[682]: MGR: Manager process started Feb 1 13:08:29 localhost pptpd[688]: MGR: Manager process started Feb 1 13:08:36 localhost pptpd[690]: MGR: Manager process started Feb 1 13:09:25 localhost pptpd[696]: MGR: Manager process started Feb 1 13:56:37 localhost gpm[450]: Error in protocol Feb 1 13:56:37 localhost last message repeated 12 times Feb 1 13:57:25 localhost gnome-name-server[594]: starting Feb 1 13:57:25 localhost gnome-name-server[594]: name server starting Feb 1 13:57:34 localhost gnome-name-server[626]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057a48 Feb 1 13:57:34 localhost gnome-name-server[627]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8058040 From natecars at real-time.com Tue Feb 1 13:10:20 2000 From: natecars at real-time.com (Nate Carlson) Date: Tue Feb 1 13:10:20 2000 Subject: [pptp-server] PoPToP install clarification In-Reply-To: Message-ID: On Tue, 1 Feb 2000, Chris Williams wrote: > I'm new to PoPToP and VPNs in general. I think I get the basic idea. In > the PoPToP user guide, it refers to the /etx/pptpd.conf and says the > contents should look like: > > speed 115200 > localip 192.168.0.234-238 > remoteip 192.168.1.234-238 > > What do the local and remote IP's mean? Does it have anything to do with > my current IP or can I assign the clients any old IP I want? > The Local IP should be an address that is valid on the machine that PPTPD is running on, and will appear as the "Point-to-Point" address for the client. The Remote IP addresses are the IP's that are handed out to client machines; you will need one for each machine you will have simultaneously connected. Here's an example config: localip 192.168.100.254 remoteip 192.168.100.240-192.168.100.253 In this configuration, one of the interfaces on the firewall machine is configured as 192.168.100.254, and the clients receive the addresses .240-.253. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From yan at cardinalengineering.com Tue Feb 1 13:22:39 2000 From: yan at cardinalengineering.com (Yan Seiner) Date: Tue Feb 1 13:22:39 2000 Subject: [pptp-server] PoPToP install clarification References: Message-ID: <389733BB.8A41A161@cardinalengineering.com> Think of each end of the tunnel as an interface; the same as if it was a network card. It functions just like one, so each end must have its own unique IP number. Well not quite, but close enough. The local end can have one number for all vpn tunnels or a unique number for each vpn, just as if you have one network card or many. I've found that multiple IPs are easier to manage for firewalling. The IP nubmers you choose should make sense in the overall scheme of your network, and should either be "real" (i.e. assigned by some upstream provider) or much more likely local from the 192. block. --Yan Nate Carlson wrote: > > On Tue, 1 Feb 2000, Chris Williams wrote: > > > I'm new to PoPToP and VPNs in general. I think I get the basic idea. In > > the PoPToP user guide, it refers to the /etx/pptpd.conf and says the > > contents should look like: > > > > speed 115200 > > localip 192.168.0.234-238 > > remoteip 192.168.1.234-238 > > > > What do the local and remote IP's mean? Does it have anything to do with > > my current IP or can I assign the clients any old IP I want? > > > > The Local IP should be an address that is valid on the machine that PPTPD > is running on, and will appear as the "Point-to-Point" address for the > client. The Remote IP addresses are the IP's that are handed out to client > machines; you will need one for each machine you will have simultaneously > connected. Here's an example config: > > localip 192.168.100.254 > remoteip 192.168.100.240-192.168.100.253 > > In this configuration, one of the interfaces on the firewall machine is > configured as 192.168.100.254, and the clients receive the addresses > .240-.253. > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! -- Think different ride a recumbent use Linux. From walterm at Gliatech.com Tue Feb 1 13:39:39 2000 From: walterm at Gliatech.com (Michael Walter) Date: Tue Feb 1 13:39:39 2000 Subject: [pptp-server] PoPToP newbie problems Message-ID: gpm is a mouse driver, so those errors are unrelated. the gnome startup looks normal. the pptpd processes are as you probably guessed abnormal. you should see Feb 1 12:59:07 localhost pptpd[509]: MGR: Manager process started once for each time you start poptop. The fact that it is appearing multiple times means that either multiple instances of poptop are being spawned, or one is crashing and continually being respawned. I would tend to think the latter but you should be able to tell by looking at your processes. Were there any errors during the install process? Did you do your own compile on pptpd or use the rpm? Have you set the debugging mode for poptop and if so what kind of messages is it generating?(to do so add the line "debug"(no quotes) to the /etc/pptpd.conf file) That will log debugging to the messages file, to log to a different file add the line, "daemon.debug /var/log/pptpd.log"(no quotes) to /etc/syslog.conf. Thanks, Michael J. Walter mcse rhce walterm at gliatech.com 216-831-3200 -----Original Message----- From: Chris Williams [mailto:willic2 at mail.auburn.edu] Sent: Tuesday, February 01, 2000 2:03 PM To: pptp-server at lists.schulte.org Subject: [pptp-server] PoPToP newbie problems We went through and tried to setup PoPToP via the PoPToP FAQ/HOWTO listed on MoretonBay's site. We are now having a problem where after starting pptpd we get a seg fault after a couple of seconds and the following is in our pptpd.log. Can anyone help here?: Feb 1 12:59:03 localhost gpm[450]: Error in protocol Feb 1 12:59:03 localhost last message repeated 12 times Feb 1 12:59:07 localhost pptpd[509]: MGR: Manager process started Feb 1 12:59:25 localhost gnome-name-server[581]: starting Feb 1 12:59:25 localhost gnome-name-server[581]: name server starting Feb 1 12:59:34 localhost gnome-name-server[621]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057968 Feb 1 12:59:35 localhost gnome-name-server[622]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8058038 Feb 1 13:01:48 localhost pptpd[651]: MGR: Manager process started Feb 1 13:07:47 localhost pptpd[682]: MGR: Manager process started Feb 1 13:08:29 localhost pptpd[688]: MGR: Manager process started Feb 1 13:08:36 localhost pptpd[690]: MGR: Manager process started Feb 1 13:09:25 localhost pptpd[696]: MGR: Manager process started Feb 1 13:56:37 localhost gpm[450]: Error in protocol Feb 1 13:56:37 localhost last message repeated 12 times Feb 1 13:57:25 localhost gnome-name-server[594]: starting Feb 1 13:57:25 localhost gnome-name-server[594]: name server starting Feb 1 13:57:34 localhost gnome-name-server[626]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057a48 Feb 1 13:57:34 localhost gnome-name-server[627]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8058040 _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From adamh at omaha.org Tue Feb 1 14:06:40 2000 From: adamh at omaha.org (Adam Haeder) Date: Tue Feb 1 14:06:40 2000 Subject: [pptp-server] NAT on firewall? References: Message-ID: <38973CB1.A6DC966D@omaha.org> This question isn't about pptpd per se, but since it relates to the network setup, I thought I would ask it. I've currently got a Sparc machine running RedHat 6.0 with kernel 2.2.5 doing ip forwarding/masquerading for about 30 users. It also does some ip forwarding from valid internet IPs through to non-routable (192.168.x.x) IPs. My questions is this: in the current PoPToP HOWTO, they talk about setting up a firewall and a pptpd server behind it on a non-routable ip. The author then goes through setting up NAT using natadm to be able to forward GRE info through the firewall to the internal pptpd server, since it's the only ip redirector I know of that can handle non-tcp or udp traffic. My question is this: can I use my existing masq box as this firewall? I'm concerned about trying to use both ip forwarding/masq and nat on the same box. Can it be done? I'm thinking the solution to my problem right now is to setup a separate firewall system that does nat and then setup an internal pptpd server. I was planning on keeping this solution down to one server, but it looks like I might not be able to. Any advice is appreciated! -- Adam Haeder Technical Coordinator, AIM Institute adamh at omaha.org From allanc at sco.com Tue Feb 1 14:07:30 2000 From: allanc at sco.com (Allan Clark) Date: Tue Feb 1 14:07:30 2000 Subject: [pptp-server] PoPToP newbie problems References: Message-ID: <38973C1C.DAD0C282@sco.com> A related possibility is if you have installed pptpd from the packages I built (pre 1.0.0) and tried to make yourself a "start" script in /etc/rc.d/* , you've caused your own mistake, but it's based on my own soapbox view. soapbox view: http://www.connected.bc.ca/~agent/soapbox.html Based on this viewpoint, take a look and see if there are entries for the pptpd in the /etc/rc.d/* and in the inittab. If there are in the /etc/rc.d/*, then the inittab entry will see a process there already, and quit. init, following its simple logic, restarts the process. "wash, rinse, repeat". Init eventually stops restarting the process when it dies too often, but it'll start back up in a while, hoping that the failure is resource-based, and will go away. The only way for that to happen in the case of an /etc/rc.d/*-started pptpd is for the pptpd to die, which is against the objective of this group of people. so... ... check for /etc/rc.d/* stuff. .. and support your local inittab. :) Allan Michael Walter wrote: > > gpm is a mouse driver, so those errors are unrelated. > the gnome startup looks normal. > the pptpd processes are as you probably guessed abnormal. you should see > > Feb 1 12:59:07 localhost pptpd[509]: MGR: Manager process started > > once for each time you start poptop. The fact that it is appearing multiple > times means that either multiple instances of poptop are being spawned, or > one is crashing and continually being respawned. I would tend to think the > latter but you should be able to tell by looking at your processes. Were > there any errors during the install process? Did you do your own compile on > pptpd or use the rpm? Have you set the debugging mode for poptop and if so > what kind of messages is it generating?(to do so add the line "debug"(no > quotes) to the /etc/pptpd.conf file) That will log debugging to the > messages file, to log to a different file add the line, "daemon.debug > /var/log/pptpd.log"(no quotes) to /etc/syslog.conf. > > Thanks, > Michael J. Walter mcse rhce > walterm at gliatech.com > 216-831-3200 > > -----Original Message----- > From: Chris Williams [mailto:willic2 at mail.auburn.edu] > Sent: Tuesday, February 01, 2000 2:03 PM > To: pptp-server at lists.schulte.org > Subject: [pptp-server] PoPToP newbie problems > > We went through and tried to setup PoPToP via the PoPToP FAQ/HOWTO listed > on MoretonBay's site. We are now having a problem where after starting > pptpd we get a seg fault after a couple of seconds and the following is in > our pptpd.log. Can anyone help here?: > > Feb 1 12:59:03 localhost gpm[450]: Error in protocol > Feb 1 12:59:03 localhost last message repeated 12 times > Feb 1 12:59:07 localhost pptpd[509]: MGR: Manager process started > Feb 1 12:59:25 localhost gnome-name-server[581]: starting > Feb 1 12:59:25 localhost gnome-name-server[581]: name server starting > Feb 1 12:59:34 localhost gnome-name-server[621]: server_is_alive: > cnx[IDL:GNOME/Panel:1.0] = 0x8057968 > Feb 1 12:59:35 localhost gnome-name-server[622]: server_is_alive: > cnx[IDL:GNOME/Panel:1.0] = 0x8058038 > Feb 1 13:01:48 localhost pptpd[651]: MGR: Manager process started > Feb 1 13:07:47 localhost pptpd[682]: MGR: Manager process started > Feb 1 13:08:29 localhost pptpd[688]: MGR: Manager process started > Feb 1 13:08:36 localhost pptpd[690]: MGR: Manager process started > Feb 1 13:09:25 localhost pptpd[696]: MGR: Manager process started > Feb 1 13:56:37 localhost gpm[450]: Error in protocol > Feb 1 13:56:37 localhost last message repeated 12 times > Feb 1 13:57:25 localhost gnome-name-server[594]: starting > Feb 1 13:57:25 localhost gnome-name-server[594]: name server starting > Feb 1 13:57:34 localhost gnome-name-server[626]: server_is_alive: > cnx[IDL:GNOME/Panel:1.0] = 0x8057a48 > Feb 1 13:57:34 localhost gnome-name-server[627]: server_is_alive: > cnx[IDL:GNOME/Panel:1.0] = 0x8058040 > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! From yan at cardinalengineering.com Tue Feb 1 14:21:50 2000 From: yan at cardinalengineering.com (Yan Seiner) Date: Tue Feb 1 14:21:50 2000 Subject: [pptp-server] NAT on firewall? References: <38973CB1.A6DC966D@omaha.org> Message-ID: <389741A1.858072F8@cardinalengineering.com> I'm a little confused - 192. will route. I have pptpd running on my firewall with no problems. I am not port forwarding, but I am masqing. I am definitely firewalling. Everything lives in harmony. --Yan Adam Haeder wrote: > > This question isn't about pptpd per se, but since it relates to the > network setup, I thought I would ask it. > I've currently got a Sparc machine running RedHat 6.0 with kernel 2.2.5 > doing ip forwarding/masquerading for about 30 users. It also does some > ip forwarding from valid internet IPs through to non-routable > (192.168.x.x) IPs. My questions is this: in the current PoPToP HOWTO, > they talk about setting up a firewall and a pptpd server behind it on a > non-routable ip. The author then goes through setting up NAT using > natadm to be able to forward GRE info through the firewall to the > internal pptpd server, since it's the only ip redirector I know of that > can handle non-tcp or udp traffic. > My question is this: can I use my existing masq box as this firewall? > I'm concerned about trying to use both ip forwarding/masq and nat on the > same box. Can it be done? I'm thinking the solution to my problem right > now is to setup a separate firewall system that does nat and then setup > an internal pptpd server. I was planning on keeping this solution down > to one server, but it looks like I might not be able to. > Any advice is appreciated! > > -- > Adam Haeder > Technical Coordinator, AIM Institute > adamh at omaha.org > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! -- Think different ride a recumbent use Linux. From natecars at real-time.com Tue Feb 1 14:27:00 2000 From: natecars at real-time.com (Nate Carlson) Date: Tue Feb 1 14:27:00 2000 Subject: [pptp-server] NAT on firewall? In-Reply-To: <38973CB1.A6DC966D@omaha.org> Message-ID: On Tue, 1 Feb 2000, Adam Haeder wrote: > This question isn't about pptpd per se, but since it relates to the > network setup, I thought I would ask it. > I've currently got a Sparc machine running RedHat 6.0 with kernel 2.2.5 > doing ip forwarding/masquerading for about 30 users. It also does some > ip forwarding from valid internet IPs through to non-routable > (192.168.x.x) IPs. My questions is this: in the current PoPToP HOWTO, > they talk about setting up a firewall and a pptpd server behind it on a > non-routable ip. The author then goes through setting up NAT using > natadm to be able to forward GRE info through the firewall to the > internal pptpd server, since it's the only ip redirector I know of that > can handle non-tcp or udp traffic. > My question is this: can I use my existing masq box as this firewall? > I'm concerned about trying to use both ip forwarding/masq and nat on the > same box. Can it be done? I'm thinking the solution to my problem right > now is to setup a separate firewall system that does nat and then setup > an internal pptpd server. I was planning on keeping this solution down > to one server, but it looks like I might not be able to. > Any advice is appreciated! > Why do you need to use NAT? If the machine has a public IP address, pptpd can be accessed via that. And since you will be assigning clients non-routable IP addresses (I'm assuming), you do not need to translate between your non-routable internals and the non-routable address you assign them. You'll just need to do typical forwarding there. Unless, of course, I misread your e-mail. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From nneogi at yahoo.com Tue Feb 1 15:00:23 2000 From: nneogi at yahoo.com (Nehali Neogi) Date: Tue Feb 1 15:00:23 2000 Subject: [pptp-server] Error 650 ... Message-ID: <20000201205356.29282.qmail@web1002.mail.yahoo.com> Hi, I spent quite some time digging the mailing list archives, reading FAQs and what not but still no luck getting pptpd to work correctly I'm trying to tunnel into my home network from from my windows 98 machine at work but it gives me the infamous 650 Error!! Here is my setup at Home (typical in linux world) Linux Box (RedHat 6.0) Also a firewall, masq server, pptpd server External IP (provided by my cable modem ISP) Internal IP 192.168.1.1 Home Lan : 192.168.1.x My Windows 98 client at work: Connects to my Home Linux Box (External IP) using VPN adapter. ******** Questions: ********* 1. Can someone verify my localip and remoteip configuration in attached /etc/ppp/pptpd.conf? I'm not sure if I have it right! 2. Also attached see the /var/log/pptpd.log: GRE: read(fd=4,buffer=804d3e0,len=8196) from PTY failed: status = -1 error = Input/output error On the 98 client side, I get the 650 error What am I missing? PS: I tried both ( pptpd-1.0.0-1.i386.rpm and the older verison pptpd-0.9.10-2.src.rpm) Thanks in advance, --Nehali ************************** tail -f /var/log/messages: ************************* Feb 1 15:15:05 localhost pptpd[15874]: MGR: Manager process started Feb 1 15:15:23 localhost pptpd[15875]: CTRL: Client 205.181.228.253 control connection started Feb 1 15:15:24 localhost pptpd[15875]: CTRL: Starting call (launching pppd, opening GRE) Feb 1 15:15:24 localhost modprobe: can't locate module char-major-108 Feb 1 15:15:24 localhost pppd[15876]: pppd 2.3.10 started by root, uid 0 Feb 1 15:15:24 localhost pppd[15876]: Using interface ppp0 Feb 1 15:15:24 localhost pppd[15876]: Connect: ppp0 <--> /dev/pts/6 Feb 1 15:15:24 localhost pppd[15876]: sent [LCP ConfReq id=0x1 ] Feb 1 15:15:51 localhost last message repeated 9 times Feb 1 15:15:54 localhost pptpd[15875]: GRE: read(fd=4,buffer=804d3e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 1 15:15:54 localhost pptpd[15875]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 1 15:15:55 localhost pptpd[15875]: CTRL: Client 205.181.228.253 control connection finished Feb 1 15:15:54 localhost pppd[15876]: LCP: timeout sending Config-Requests Feb 1 15:15:54 localhost pppd[15876]: Connection terminated. Feb 1 15:15:54 localhost pppd[15876]: tcflush failed: Invalid argument Feb 1 15:15:54 localhost pppd[15876]: Exit. Feb 1 15:18:47 localhost pumpd[207]: renewed lease for interface eth0 **************** /etc/ppp/options **************** debug name myserver auth require-chap proxyarp ********************* /etc/ppp/chap-secrets ********************* # client server secret IP addresses myname myserver mypasswd * *************** /etc/pptpd.conf *************** speed 115200 localip 192.168.0.234-238,192.168.0.245 remoteip 192.168.1.234-238,192.168.1.245 __________________________________________________ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com From david at solutionsfirst.net Tue Feb 1 23:48:20 2000 From: david at solutionsfirst.net (David Kempe) Date: Tue Feb 1 23:48:20 2000 Subject: [pptp-server] trouble with chatfiles and scripts Message-ID: Hi people, I'm pretty newbie at pptp and poptop sobe kind :) I have RH6 with most of the standard packages.. ie nothing has been upgraded. pppd is 2.3.7 I set up poptop and after much fiddlineg with the pptpd.conf file and playing aorund with things i have gotten stuck at this problem. It seems that the pptp server is dieng and starting again very quickly. this is the log of what is happneing. Then when a client tries to connect (win2k or win98) it gives from after the CTRL sectin there. What i did was it used to execute the /etc/ppp/chatfile at this point. It seems that this chatfile was trying to dial an old isp of mine, so i backed it up and used a blank one instead. My question is firstly - what is with the restarting? secondly - why does it try and use this chatfile and what is meatn to be in the chat file i am using. My pppd does not use the chatfile, as it has old settings, so osmehwere pppd is using it when it gets invoked by pptpd. How to tell what is correct i dont know. Any help appreciated thanks. Yours David Kempe Feb 2 15:36:30 what init: Id "pptp" respawning too fast: disabled for 5 minutes Feb 2 15:36:29 what pptpd[1504]: MGR: Manager process started Feb 2 15:36:29 what pptpd[1504]: MGR: Couldn't create host socket Feb 2 15:36:29 what pptpd[1505]: MGR: Manager process started Feb 2 15:36:29 what pptpd[1505]: MGR: Couldn't create host socket Feb 2 15:36:29 what pptpd[1506]: MGR: Manager process started Feb 2 15:36:29 what pptpd[1506]: MGR: Couldn't create host socket Feb 2 15:36:29 what pptpd[1507]: MGR: Manager process started Feb 2 15:36:29 what pptpd[1507]: MGR: Couldn't create host socket Feb 2 15:36:30 what pptpd[1508]: MGR: Manager process started Feb 2 15:36:30 what pptpd[1508]: MGR: Couldn't create host socket Feb 2 15:36:39 what pptpd[1509]: CTRL: Client 24.192.50.71 control connection started Feb 2 15:36:40 what pptpd[1509]: CTRL: Starting call (launching pppd, opening GRE) Feb 2 15:36:40 what pppd[1511]: pppd 2.3.7 started by root, uid 0 Feb 2 15:36:40 what pppd[1511]: Serial connection established. Feb 2 15:36:40 what pppd[1511]: Using interface ppp1 Feb 2 15:36:40 what pppd[1511]: Connect: ppp1 <--> /dev/modem Feb 2 15:36:40 what pptpd[1509]: GRE: read(fd=5,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 2 15:36:40 what pptpd[1509]: CTRL: PTY read or GRE write failed (pty,gre)=(5,6) Feb 2 15:36:40 what pptpd[1509]: CTRL: Client 24.192.50.71 control connection finished Feb 2 15:36:41 what pppd[1511]: Serial line is looped back. Feb 2 15:36:41 what pppd[1511]: Connection terminated. Feb 2 15:36:41 what pppd[1511]: Connect time 0.1 minutes. Feb 2 15:36:41 what pppd[1511]: Exit. ______________________________ solutionsFirst.net Consulting http://solutionsfirst.net Ph: (02) 9477 4797 Fax: (02) 9875 4770 Mob: 0413 022 143 From psorgard at telusplanet.net Wed Feb 2 01:21:20 2000 From: psorgard at telusplanet.net (Pat Sorgard) Date: Wed Feb 2 01:21:20 2000 Subject: [pptp-server] Newbie configuration problems: 629 Error Message-ID: <000801bf6d14$bc519560$40413b8e@telusplanet.net> Hi all, The question I have is regarding external internet access to our network. I currently have a Linux machine running Caldera 2.3 with a 2.14 kernel. I've configured the PopTop server, masquerading, firewall and proxy on it and everything works fine except can't dial in and connect to the Poptop server. However, I can connect to it from an internal client without dialup so I don't think it's a problem with my options or other config files. I've duplicated the installation of the PopTop server on my machine at home and can connect to it fine using MS VPN + dialup software. My home setup has one single cable modem connection, whereas work the setup at work has a lan connection and a static ip internet adsl connection. After going through the archives I've found scattered references to this problem but can't seem to avoid the 629 error connecting. Also I've run tcpdump on the internet connection and the firewall rules are allowing the 1723 port through but it just ends there. I checked the pptpd.log files and there is no indication that the connection ever made it that far. I think that the problem is either with my routing setup and/or the masquerading of the internal clients externally. The only other thing I haven't tried is recompiling the pptpd and pptpctrl with debug and attaching to the running daemon and seeing if the forward of 1723 is actually getting there and, if not, where exactly it is going. I've run pptpd with the debug flag on and listening on the internet connection but they don't tell me anything if the dialup connection never makes it through. I this is a fairly standard setup from what reading I've done so I'm sure it is something stupid I've done. Any suggestions or possibly a generic route config example for this type of setup would be greatly appreciated. Thanks, Pat Sorgard psorgard at motioncanada.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From david at solutionsfirst.net Wed Feb 2 05:32:57 2000 From: david at solutionsfirst.net (David Kempe) Date: Wed Feb 2 05:32:57 2000 Subject: [pptp-server] trouble with chatfiles and scripts In-Reply-To: <000701bf6d48$623b7580$071c0fc0@lala.net> Message-ID: Thanks for that hlep tmk. I actually solved it shortly before you replied by doing that exact thing. It seems to work ok..... Now i am getting another problem. For some reason the pptpd is going nuts Feb 2 21:20:15 what pptpd[32675]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32675]: MGR: Couldn't create host socket Feb 2 21:20:15 what pptpd[32676]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32676]: MGR: Couldn't create host socket Feb 2 21:20:15 what pptpd[32677]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32677]: MGR: Couldn't create host socket Feb 2 21:20:16 what init: Id "pptp" respawning too fast: disabled for 5 minutes Feb 2 21:20:15 what pptpd[32678]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32678]: MGR: Couldn't create host socket Feb 2 21:20:15 what pptpd[32679]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32679]: MGR: Couldn't create host socket Feb 2 21:20:15 what pptpd[32680]: MGR: Manager process started Feb 2 21:20:15 what pptpd[32680]: MGR: Couldn't create host socket Feb 2 21:20:15 what pptpd[32681]: MGR: Manager process started Feb 2 21:20:16 what pptpd[32681]: MGR: Couldn't create host socket Feb 2 21:20:16 what pptpd[32682]: MGR: Manager process started Feb 2 21:20:16 what pptpd[32682]: MGR: Couldn't create host socket It seems to die and respawn very quickly givng big troubles. Im not sure what is going on, if you know of anything that would cause this process to do this please let me know Note that i dont run pptpd on startup at all, I have tried also to killall the pptpd process, this stops the racing however when i start it again it imediatly tries to do it. People can still connect fine, however it seems to want to restart itself rampantly. thanks dave -----Original Message----- From: tmk [mailto:tmk at netmagic.net] Sent: Wednesday, 2 February 2000 5:40 PM To: David Kempe Subject: Re: [pptp-server] trouble with chatfiles and scripts check your /etc/ppp/options file for mention of the chat script Kevin ----- Original Message ----- From: David Kempe To: Sent: Tuesday, February 01, 2000 9:48 PM Subject: [pptp-server] trouble with chatfiles and scripts > Hi people, > I'm pretty newbie at pptp and poptop sobe kind :) > I have RH6 with most of the standard packages.. ie nothing has been > upgraded. > pppd is 2.3.7 > I set up poptop and after much fiddlineg with the pptpd.conf file and > playing aorund with things i have gotten stuck at this problem. > It seems that the pptp server is dieng and starting again very quickly. > this is the log of what is happneing. > Then when a client tries to connect (win2k or win98) it gives from after the > CTRL sectin there. > What i did was it used to execute the /etc/ppp/chatfile at this point. > It seems that this chatfile was trying to dial an old isp of mine, so i > backed it up and used a blank one instead. > My question is firstly - what is with the restarting? > secondly - why does it try and use this chatfile and what is meatn to be in > the chat file i am using. > My pppd does not use the chatfile, as it has old settings, so osmehwere pppd > is using it when it gets invoked by pptpd. > How to tell what is correct i dont know. > Any help appreciated thanks. > > Yours > > David Kempe > > > Feb 2 15:36:30 what init: Id "pptp" respawning too fast: disabled for 5 > minutes > Feb 2 15:36:29 what pptpd[1504]: MGR: Manager process started > Feb 2 15:36:29 what pptpd[1504]: MGR: Couldn't create host socket > Feb 2 15:36:29 what pptpd[1505]: MGR: Manager process started > Feb 2 15:36:29 what pptpd[1505]: MGR: Couldn't create host socket > Feb 2 15:36:29 what pptpd[1506]: MGR: Manager process started > Feb 2 15:36:29 what pptpd[1506]: MGR: Couldn't create host socket > Feb 2 15:36:29 what pptpd[1507]: MGR: Manager process started > Feb 2 15:36:29 what pptpd[1507]: MGR: Couldn't create host socket > Feb 2 15:36:30 what pptpd[1508]: MGR: Manager process started > Feb 2 15:36:30 what pptpd[1508]: MGR: Couldn't create host socket > Feb 2 15:36:39 what pptpd[1509]: CTRL: Client 24.192.50.71 control > connection started > Feb 2 15:36:40 what pptpd[1509]: CTRL: Starting call (launching pppd, > opening GRE) > Feb 2 15:36:40 what pppd[1511]: pppd 2.3.7 started by root, uid 0 > Feb 2 15:36:40 what pppd[1511]: Serial connection established. > Feb 2 15:36:40 what pppd[1511]: Using interface ppp1 > Feb 2 15:36:40 what pppd[1511]: Connect: ppp1 <--> /dev/modem > Feb 2 15:36:40 what pptpd[1509]: GRE: read(fd=5,buffer=804d7e0,len=8196) > from PTY failed: status = -1 error = Input/output error > Feb 2 15:36:40 what pptpd[1509]: CTRL: PTY read or GRE write failed > (pty,gre)=(5,6) > Feb 2 15:36:40 what pptpd[1509]: CTRL: Client 24.192.50.71 control > connection finished > Feb 2 15:36:41 what pppd[1511]: Serial line is looped back. > Feb 2 15:36:41 what pppd[1511]: Connection terminated. > Feb 2 15:36:41 what pppd[1511]: Connect time 0.1 minutes. > Feb 2 15:36:41 what pppd[1511]: Exit. > > ______________________________ > solutionsFirst.net Consulting > http://solutionsfirst.net > Ph: (02) 9477 4797 > Fax: (02) 9875 4770 > Mob: 0413 022 143 > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From Gareth_Marlow at scientia.com Wed Feb 2 08:57:04 2000 From: Gareth_Marlow at scientia.com (Gareth Marlow) Date: Wed Feb 2 08:57:04 2000 Subject: [pptp-server] Dropped connection using NT4 Message-ID: <20000202145410.F24308@harris.scientia.com> I have had a couple of connections dropped after approx 15 mins of idle time. This is an Australia-UK connection. It looks from the log as if it's timed out due to network problems. Does anyone know how I can increase the timeout? Relevant log extracts are as follows: Feb 2 11:47:48 h8a pptpd[8444]: CTRL: Session timed out, ending call Feb 2 11:47:48 h8a pppd[8445]: Modem hangup Feb 2 11:47:48 h8a pppd[8445]: Script /etc/ppp/ip-down started (pid 8487) Feb 2 11:47:48 h8a pppd[8445]: Connection terminated. Feb 2 11:47:48 h8a pppd[8445]: Connect time 42.4 minutes. Feb 2 11:47:48 h8a pppd[8445]: Sent 88767 bytes, received 262829 bytes. Feb 2 11:47:48 h8a pppd[8445]: Waiting for 1 child processes... Feb 2 11:47:48 h8a pppd[8445]: script /etc/ppp/ip-down, pid 8487 Feb 2 11:47:48 h8a pptpd[8444]: CTRL: Client 210.84.66.39 control connection finished Feb 2 11:47:48 h8a pppd[8445]: Script /etc/ppp/ip-down finished (pid 8487), status = 0x0 Feb 2 11:47:48 h8a pppd[8445]: Exit. Feb 2 11:47:50 h8a pptpd[8444]: CTRL: Unexpected control message 6 in disconnect sequence Feb 2 11:47:51 h8a pptpd[8444]: CTRL: Asked to free call when no call open, not handled well Feb 2 11:47:51 h8a pptpd[8444]: CTRL: Could not free Call ID [call clear]! Feb 2 11:47:51 h8a pptpd[8444]: CTRL: Got call clear request after call manually shutdown - buggy client When the person attempts to reconnect, they are generally unable to do so. The log shows the following: Feb 2 11:51:11 h8a pppd[8499]: sent [CHAP Success id=0x1 "Welcome to h8a."] Feb 2 11:51:11 h8a pptpd[8498]: CTRL: Ignored a SET LINK INFO packet with real ACCMs! Feb 2 11:51:11 h8a pppd[8499]: rcvd [CHAP Response id=0x1 , name = "richardk"] Feb 2 11:51:11 h8a pppd[8499]: sent [CHAP Success id=0x1 "Welcome to h8a."] Feb 2 11:51:11 h8a pppd[8499]: rcvd [CHAP Response id=0x1 , name = "richardk"] Feb 2 11:51:11 h8a pppd[8499]: sent [CHAP Success id=0x1 "Welcome to h8a."] Feb 2 11:51:12 h8a pppd[8499]: rcvd [LCP TermReq id=0x4 00 00 02 ce] Feb 2 11:51:12 h8a pppd[8499]: LCP terminated by peer (^@^@^BM-N) Feb 2 11:51:12 h8a pppd[8499]: sent [LCP TermAck id=0x4] Feb 2 11:51:13 h8a pppd[8499]: rcvd [LCP TermReq id=0x5 00 00 02 ce] Feb 2 11:51:13 h8a pppd[8499]: sent [LCP TermAck id=0x5] Feb 2 11:51:15 h8a pppd[8499]: Connection terminated. Feb 2 11:51:15 h8a pppd[8499]: Exit. Feb 2 11:51:15 h8a pptpd[8498]: GRE: read(fd=4,buffer=804d7c0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 2 11:51:15 h8a pptpd[8498]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 2 11:51:15 h8a pptpd[8498]: CTRL: Client 210.84.66.39 control connection finished If they leave it for a few minutes, they can usually reconnect without a problem. Please can anyone help? Thanks, Gareth From natecars at real-time.com Wed Feb 2 09:13:41 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 2 09:13:41 2000 Subject: [pptp-server] trouble with chatfiles and scripts In-Reply-To: Message-ID: On Wed, 2 Feb 2000, David Kempe wrote: > Hi people, > I'm pretty newbie at pptp and poptop sobe kind :) > I have RH6 with most of the standard packages.. ie nothing has been > upgraded. > pppd is 2.3.7 > I set up poptop and after much fiddlineg with the pptpd.conf file and > playing aorund with things i have gotten stuck at this problem. > It seems that the pptp server is dieng and starting again very quickly. > this is the log of what is happneing. > Then when a client tries to connect (win2k or win98) it gives from after the > CTRL sectin there. > What i did was it used to execute the /etc/ppp/chatfile at this point. > It seems that this chatfile was trying to dial an old isp of mine, so i > backed it up and used a blank one instead. > My question is firstly - what is with the restarting? > secondly - why does it try and use this chatfile and what is meatn to be in > the chat file i am using. > My pppd does not use the chatfile, as it has old settings, so osmehwere pppd > is using it when it gets invoked by pptpd. > How to tell what is correct i dont know. > Any help appreciated thanks. > > Yours > > David Kempe Have you checked your /etc/ppp/options, and /etc/ppp/if[up|down]? -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From rickb at networxtech.com Wed Feb 2 10:29:11 2000 From: rickb at networxtech.com (Rick Bourassa) Date: Wed Feb 2 10:29:11 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? Message-ID: <81DCF3980E29D311AE3700500422D61D192C@BANDIT> I realize I all ready sent this message, but I didn't get any replies. Could someone reply no? It is better than no reply at all. Getting Desperate. Rick Bourassa (If I don't get htis working soon, I might have to use NT) From hshaw at healthcentralrx.com Wed Feb 2 10:30:13 2000 From: hshaw at healthcentralrx.com (T.Shaw) Date: Wed Feb 2 10:30:13 2000 Subject: [pptp-server] trouble with chatfiles and scripts References: Message-ID: <006b01bf6d9a$c4adaa10$0200a8c0@xytek.org> /etc/inittab maybe? terrelle ----- Original Message ----- From: David Kempe To: Sent: Wednesday, February 02, 2000 3:32 AM Subject: RE: [pptp-server] trouble with chatfiles and scripts > Thanks for that hlep tmk. I actually solved it shortly before you replied by > doing that exact thing. It seems to work ok..... > > Now i am getting another problem. > For some reason the pptpd is going nuts > > Feb 2 21:20:15 what pptpd[32675]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32675]: MGR: Couldn't create host socket > Feb 2 21:20:15 what pptpd[32676]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32676]: MGR: Couldn't create host socket > Feb 2 21:20:15 what pptpd[32677]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32677]: MGR: Couldn't create host socket > Feb 2 21:20:16 what init: Id "pptp" respawning too fast: disabled for 5 > minutes > Feb 2 21:20:15 what pptpd[32678]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32678]: MGR: Couldn't create host socket > Feb 2 21:20:15 what pptpd[32679]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32679]: MGR: Couldn't create host socket > Feb 2 21:20:15 what pptpd[32680]: MGR: Manager process started > Feb 2 21:20:15 what pptpd[32680]: MGR: Couldn't create host socket > Feb 2 21:20:15 what pptpd[32681]: MGR: Manager process started > Feb 2 21:20:16 what pptpd[32681]: MGR: Couldn't create host socket > Feb 2 21:20:16 what pptpd[32682]: MGR: Manager process started > Feb 2 21:20:16 what pptpd[32682]: MGR: Couldn't create host socket > > It seems to die and respawn very quickly givng big troubles. > Im not sure what is going on, if you know of anything that would cause this > process to do this please let me know > Note that i dont run pptpd on startup at all, I have tried also to killall > the pptpd process, this stops the racing however when i start it again it > imediatly tries to do it. People can still connect fine, however it seems to > want to restart itself rampantly. > > thanks > > dave > > > > -----Original Message----- > From: tmk [mailto:tmk at netmagic.net] > Sent: Wednesday, 2 February 2000 5:40 PM > To: David Kempe > Subject: Re: [pptp-server] trouble with chatfiles and scripts > > > check your /etc/ppp/options file for mention of the chat script > > Kevin > ----- Original Message ----- > From: David Kempe > To: > Sent: Tuesday, February 01, 2000 9:48 PM > Subject: [pptp-server] trouble with chatfiles and scripts > > > > Hi people, > > I'm pretty newbie at pptp and poptop sobe kind :) > > I have RH6 with most of the standard packages.. ie nothing has been > > upgraded. > > pppd is 2.3.7 > > I set up poptop and after much fiddlineg with the pptpd.conf file and > > playing aorund with things i have gotten stuck at this problem. > > It seems that the pptp server is dieng and starting again very quickly. > > this is the log of what is happneing. > > Then when a client tries to connect (win2k or win98) it gives from after > the > > CTRL sectin there. > > What i did was it used to execute the /etc/ppp/chatfile at this point. > > It seems that this chatfile was trying to dial an old isp of mine, so i > > backed it up and used a blank one instead. > > My question is firstly - what is with the restarting? > > secondly - why does it try and use this chatfile and what is meatn to be > in > > the chat file i am using. > > My pppd does not use the chatfile, as it has old settings, so osmehwere > pppd > > is using it when it gets invoked by pptpd. > > How to tell what is correct i dont know. > > Any help appreciated thanks. > > > > Yours > > > > David Kempe > > > > > > Feb 2 15:36:30 what init: Id "pptp" respawning too fast: disabled for 5 > > minutes > > Feb 2 15:36:29 what pptpd[1504]: MGR: Manager process started > > Feb 2 15:36:29 what pptpd[1504]: MGR: Couldn't create host socket > > Feb 2 15:36:29 what pptpd[1505]: MGR: Manager process started > > Feb 2 15:36:29 what pptpd[1505]: MGR: Couldn't create host socket > > Feb 2 15:36:29 what pptpd[1506]: MGR: Manager process started > > Feb 2 15:36:29 what pptpd[1506]: MGR: Couldn't create host socket > > Feb 2 15:36:29 what pptpd[1507]: MGR: Manager process started > > Feb 2 15:36:29 what pptpd[1507]: MGR: Couldn't create host socket > > Feb 2 15:36:30 what pptpd[1508]: MGR: Manager process started > > Feb 2 15:36:30 what pptpd[1508]: MGR: Couldn't create host socket > > Feb 2 15:36:39 what pptpd[1509]: CTRL: Client 24.192.50.71 control > > connection started > > Feb 2 15:36:40 what pptpd[1509]: CTRL: Starting call (launching pppd, > > opening GRE) > > Feb 2 15:36:40 what pppd[1511]: pppd 2.3.7 started by root, uid 0 > > Feb 2 15:36:40 what pppd[1511]: Serial connection established. > > Feb 2 15:36:40 what pppd[1511]: Using interface ppp1 > > Feb 2 15:36:40 what pppd[1511]: Connect: ppp1 <--> /dev/modem > > Feb 2 15:36:40 what pptpd[1509]: GRE: read(fd=5,buffer=804d7e0,len=8196) > > from PTY failed: status = -1 error = Input/output error > > Feb 2 15:36:40 what pptpd[1509]: CTRL: PTY read or GRE write failed > > (pty,gre)=(5,6) > > Feb 2 15:36:40 what pptpd[1509]: CTRL: Client 24.192.50.71 control > > connection finished > > Feb 2 15:36:41 what pppd[1511]: Serial line is looped back. > > Feb 2 15:36:41 what pppd[1511]: Connection terminated. > > Feb 2 15:36:41 what pppd[1511]: Connect time 0.1 minutes. > > Feb 2 15:36:41 what pppd[1511]: Exit. > > > > ______________________________ > > solutionsFirst.net Consulting > > http://solutionsfirst.net > > Ph: (02) 9477 4797 > > Fax: (02) 9875 4770 > > Mob: 0413 022 143 > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > List services provided by www.schulte.org! > > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! From amacc at iron-bridge.net Wed Feb 2 10:34:44 2000 From: amacc at iron-bridge.net (Andrew McRory) Date: Wed Feb 2 10:34:44 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? In-Reply-To: <81DCF3980E29D311AE3700500422D61D192C@BANDIT> Message-ID: On Wed, 2 Feb 2000, Rick Bourassa wrote: > I realize I all ready sent this message, but I didn't get any replies. > Could someone reply no? It is better than no reply at all. > > > Getting Desperate. OK, I have tried only once and it seems it ran tooooooooo slowly to be useful. Andrew McRory - amacc at iron-bridge.net 850.575.7213 - Tallahassee, Florida From Gareth_Marlow at scientia.com Wed Feb 2 10:44:47 2000 From: Gareth_Marlow at scientia.com (Gareth Marlow) Date: Wed Feb 2 10:44:47 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? In-Reply-To: <81DCF3980E29D311AE3700500422D61D192C@BANDIT>; from rickb@networxtech.com on Wed, Feb 02, 2000 at 09:26:33AM -0700 References: <81DCF3980E29D311AE3700500422D61D192C@BANDIT> Message-ID: <20000202164149.I24308@harris.scientia.com> On Wed, Feb 02, 2000 at 09:26:33AM -0700, Rick Bourassa wrote: > I realize I all ready sent this message, but I didn't get any replies. > Could someone reply no? It is better than no reply at all. Well I'm not, but what's the problem? We might be able to help. -- From mjbarsalou at attglobal.net Wed Feb 2 12:40:28 2000 From: mjbarsalou at attglobal.net (Michael Barsalou) Date: Wed Feb 2 12:40:28 2000 Subject: [pptp-server] Respawning too many times Message-ID: <200002021840.MAA10732@snaildust.schulte.org> Those of you that are getting this problem. It seems to be related to the fact that pptpd is started in the inittab. In our system the inittab is in /etc/inittab. Comment out the section of the inittab that launches the pptpd daemon. Then type init Q This will stop the spawning process. The most likley cause of this respawning so often is probably a bad option in your options file. Check /var/log/messages for more possible clues. use pptpd -d until you can get it working. This will launch a pptpd daemon. For those of you using redhat, they posted a RedHat HOWTO on the webpage. Might even work for Mandrake. http://www.mortonbay.com/vpn/help.html Michael Barsalou barjunk at attglobal.net From sergio at omnitracs.com.mx Wed Feb 2 12:59:28 2000 From: sergio at omnitracs.com.mx (Sergio Dominguez) Date: Wed Feb 2 12:59:28 2000 Subject: [pptp-server] Unsupported protocol (0xxxx ) received Message-ID: <38987D48.8E8902BC@omnitracs.com.mx> Hello fellow listers: I have setup a PPTP server, it has a public IP address configured: A.B.C.2, and a private IP address: 172.23.1.1 also ( it's connected to the 172.23.1.0 network). From a windows 98 workstation, I have successfully stablished a VPN link across internet, but I can not access the private network. If I make a C:\WINDOWS\PING 172.23.1.1 I receive no response in the client. Looking at the pptpd.log file, the following messages are displayed everytime I do a ping: Feb 2 12:36:24 vpn pppd[6266]: rcvd [proto=0x8072] a1 7a 2f 68 bb 27 97 08 a7 25 14 39 23 5d 17 87 4e 68 38 3f f6 cb b7 30 fc 47 64 ef 38 8f f3 5b ... Feb 2 12:36:24 vpn pppd[6266]: Unsupported protocol (0x8072) received Feb 2 12:36:24 vpn pppd[6266]: sent [LCP ProtRej id=0x21 80 72 a1 7a 2f 68 bb 27 97 08 a7 25 14 39 23 5d 17 87 4e 68 38 3f f6 cb b7 30 fc 47 64 ef 38 8f f3 5b 82 c0 87 4a f6 f6 c5 8f 5a 49 26 77 66 84 19 dd 73 c4 38 0b 91 63 fb d2 4b 74 75 1f] Extra info: My pptpd.conf file is: speed 115200 localip 172.23.1.50-149 remoteip 172.23.1.150-249 In the process list I can se the following: 6265 ? S 0:00 pptpd [internet_address_of_windows_client_machine] 6266 ? S 0:00 /usr/sbin/pppd local 115200 172.23.1.51:172.23.1.151 Routing table at the server side: [root at vpn log]# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 172.23.1.151 * 255.255.255.255 UH 0 0 0 ppp0 A.B.C.2 * 255.255.255.255 UH 0 0 0 eth0 A.B.C.0 * 255.255.255.224 U 0 0 0 eth0 172.23.1.0 * 255.255.255.0 U 0 0 0 eth0 127.0.0.0 * 255.0.0.0 U 0 0 0 lo default A.B.C.1 0.0.0.0 UG 0 0 0 eth0 Any help will be highly apreciatted. From jandeep at interspeed.com Wed Feb 2 13:19:10 2000 From: jandeep at interspeed.com (Jandeep Kang) Date: Wed Feb 2 13:19:10 2000 Subject: [pptp-server] linux pptp newby Message-ID: Hi Everybody, I have just installed the pptp on linux box and the daemon is running fine. While I was testing it and configured a win98 machine to connect to it using microsoft VPN adapter, as soon as I hit the connect button the screen on the win98 goes black and stays that way till it is rebooted. There are no entries in the log file pptpd.log. Anyone knows what could be the causing it? Thanks, Jandeep. -------------- next part -------------- An HTML attachment was scrubbed... URL: From hshaw at epills.com Wed Feb 2 13:34:05 2000 From: hshaw at epills.com (Terrelle Shaw) Date: Wed Feb 2 13:34:05 2000 Subject: [pptp-server] linux pptp newby In-Reply-To: Message-ID: linux pptp newbyI got that same problem with a new install of Win98 and the MSVPN adapter.. I thought i was me having the very latest of the bug fixes from MS. -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Jandeep Kang Sent: Wednesday, February 02, 2000 11:19 AM To: 'pptp-server at lists.schulte.org' Subject: [pptp-server] linux pptp newby Hi Everybody, I have just installed the pptp on linux box and the daemon is running fine. While I was testing it and configured a win98 machine to connect to it using microsoft VPN adapter, as soon as I hit the connect button the screen on the win98 goes black and stays that way till it is rebooted. There are no entries in the log file pptpd.log. Anyone knows what could be the causing it? Thanks, Jandeep. -------------- next part -------------- An HTML attachment was scrubbed... URL: From jandeep at interspeed.com Wed Feb 2 14:05:36 2000 From: jandeep at interspeed.com (Jandeep Kang) Date: Wed Feb 2 14:05:36 2000 Subject: [pptp-server] linux pptp newby Message-ID: have you got any clues why is it so? any leads where to look? thanks. -----Original Message----- From: Terrelle Shaw [mailto:hshaw at epills.com] Sent: Wednesday, February 02, 2000 2:34 PM To: Jandeep Kang; pptp-server at lists.schulte.org Subject: RE: [pptp-server] linux pptp newby I got that same problem with a new install of Win98 and the MSVPN adapter.. I thought i was me having the very latest of the bug fixes from MS. -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Jandeep Kang Sent: Wednesday, February 02, 2000 11:19 AM To: 'pptp-server at lists.schulte.org' Subject: [pptp-server] linux pptp newby Hi Everybody, I have just installed the pptp on linux box and the daemon is running fine. While I was testing it and configured a win98 machine to connect to it using microsoft VPN adapter, as soon as I hit the connect button the screen on the win98 goes black and stays that way till it is rebooted. There are no entries in the log file pptpd.log. Anyone knows what could be the causing it? Thanks, Jandeep. -------------- next part -------------- An HTML attachment was scrubbed... URL: From walterm at Gliatech.com Wed Feb 2 14:17:28 2000 From: walterm at Gliatech.com (Michael Walter) Date: Wed Feb 2 14:17:28 2000 Subject: [pptp-server] linux pptp newby Message-ID: A few issues with win98 vpn, I don't know that they cause the described problem, but they may be valuable. 1) If the vpn adapter is installed via the network properties it will not work correctly. It must be installed via windows setup under add/remove programs. 2) There is a dial up networking patch for win98 available at: http://support.microsoft.com/download/support/mslfiles/DUN40.EXE . I don't recall what it is necessary for, but we install it on all our win98 remote users computers. Thats all I can think of at the moment, Michael J. Walter mcse rhce walterm at gliatech.com 216-831-3200 -----Original Message----- From: Jandeep Kang [mailto:jandeep at interspeed.com] Sent: Wednesday, February 02, 2000 3:05 PM To: 'Terrelle Shaw'; Jandeep Kang; pptp-server at lists.schulte.org Subject: RE: [pptp-server] linux pptp newby have you got any clues why is it so? any leads where to look? thanks. -----Original Message----- From: Terrelle Shaw [mailto:hshaw at epills.com] Sent: Wednesday, February 02, 2000 2:34 PM To: Jandeep Kang; pptp-server at lists.schulte.org Subject: RE: [pptp-server] linux pptp newby I got that same problem with a new install of Win98 and the MSVPN adapter.. I thought i was me having the very latest of the bug fixes from MS. -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Jandeep Kang Sent: Wednesday, February 02, 2000 11:19 AM To: 'pptp-server at lists.schulte.org' Subject: [pptp-server] linux pptp newby Hi Everybody, I have just installed the pptp on linux box and the daemon is running fine. While I was testing it and configured a win98 machine to connect to it using microsoft VPN adapter, as soon as I hit the connect button the screen on the win98 goes black and stays that way till it is rebooted. There are no entries in the log file pptpd.log. Anyone knows what could be the causing it? Thanks, Jandeep. -------------- next part -------------- An HTML attachment was scrubbed... URL: From nmeyers at javalinux.net Wed Feb 2 14:17:29 2000 From: nmeyers at javalinux.net (Nathan Meyers) Date: Wed Feb 2 14:17:29 2000 Subject: [pptp-server] linux pptp newby In-Reply-To: ; from Jandeep Kang on Wed, Feb 02, 2000 at 02:18:59PM -0500 References: Message-ID: <20000202121712.A21251@javalinux.net> On Wed, Feb 02, 2000 at 02:18:59PM -0500, Jandeep Kang wrote: > Hi Everybody, I have just installed the pptp on linux box and the daemon is > running fine. While I was testing it and configured a win98 machine to > connect to it using microsoft VPN adapter, as soon as I hit the connect > button the screen on the win98 goes black and stays that way till it is > rebooted. There are no entries in the log file pptpd.log. > Anyone knows what could be the causing it? > Thanks, Jandeep. I had the same problem in a Win98 Second Edition install. I cured it by uninstalling and reinstalling all the Windows networking components. Nathan From sergio at omnitracs.com.mx Wed Feb 2 14:35:00 2000 From: sergio at omnitracs.com.mx (Sergio Dominguez) Date: Wed Feb 2 14:35:00 2000 Subject: [pptp-server] Tunneling to reach public IP address? Message-ID: <389893A8.BAE3C771@omnitracs.com.mx> Hello people: Given the following escenario, BIGSERVER has a 10.0.0.0 address and a valid public internet IP address VPN PoPTop has a 172.23.1.0 address and a valid public internet IP address. The firewall restricts any access to BIGSERVER directly. Is it posible to configure PoPToP so it can redirect access from workstations in the Internet, to BIGSERVER.company.com? If so can you suggest a possible pptpd.conf file? And make some routing suggestions? ( My main question here is, if the workstation wants to make a connection to bigserver.company.com it will get the IP address from an Internet DNS server, wich will result in a public IP address, so the connection attempt will be tried to be made directly, instead of using the VPN device, and the firewall will stop the connection, am I right?, if so, how can I avoid this issue?) -------------- next part -------------- Windows _____ WS Modem / \ ___ ____ / \ | |----| |----/Internet\ |___| |__| \ / \_____/ | | | ---- | | Corporate | | Firewall | | Restricts ------ Access to BigServer.a.com | | +-------+----Router-------------------+ | | ---- --- | | PoPToP | | | | 172.23.1.0 net | | | | A.B.C.0/26 internet net | | ------ ------ BigServer.a.com A.B.C.0/26 internet net 10.0.0.0 private net From jack at coats.org Wed Feb 2 15:09:10 2000 From: jack at coats.org (Jack Coats) Date: Wed Feb 2 15:09:10 2000 Subject: [pptp-server] Tunneling to reach public IP address? References: <389893A8.BAE3C771@omnitracs.com.mx> Message-ID: <002a01bf6dc2$4c7ff340$bec8a8c0@coats.org> Just a guess... let us know if it works ... If I get this right you probably want to turn off the button that makes the PPTP link your default gateway. ... To do all of what you want, you may need to set up a NETWORKS file to send all traffic for 10.x.x.x to the VPN and everything else out via the general gateway (via another link). Does that sound right to everyone else? ... Jack ----- Original Message ----- From: Sergio Dominguez To: Sent: Wednesday, February 02, 2000 2:29 PM Subject: [pptp-server] Tunneling to reach public IP address? > > Hello people: > > Given the following escenario, > > BIGSERVER has a 10.0.0.0 address and a valid public internet IP address > VPN PoPTop has a 172.23.1.0 address and a valid public internet IP > address. > The firewall restricts any access to BIGSERVER directly. > > Is it posible to configure PoPToP so it can redirect access from > workstations in the Internet, to BIGSERVER.company.com? > If so can you suggest a possible pptpd.conf file? And make some routing > suggestions? > > ( My main question here is, if the workstation wants to make a > connection to bigserver.company.com > it will get the IP address from an Internet DNS server, wich will result > > in a public IP address, so the connection attempt will be tried to be > made > directly, instead of using the VPN device, and the > firewall will stop the connection, am I right?, if so, how can I avoid > this issue?) > > > > > ---------------------------------------------------------------------------- ---- > > > > Windows _____ > WS Modem / \ > ___ ____ / \ > | |----| |----/Internet\ > |___| |__| \ / > \_____/ > | > | > | > ---- > | | Corporate > | | Firewall > | | Restricts > ------ Access to BigServer.a.com > | > | > +-------+----Router-------------------+ > | | > ---- --- > | | PoPToP | | > | | 172.23.1.0 net | | > | | A.B.C.0/26 internet net | | > ------ ------ > BigServer.a.com > A.B.C.0/26 internet net > 10.0.0.0 private net > From natecars at real-time.com Wed Feb 2 16:07:04 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 2 16:07:04 2000 Subject: [pptp-server] Unsupported protocol (0xxxx ) received In-Reply-To: <38987D48.8E8902BC@omnitracs.com.mx> Message-ID: Have you installed the dun40.exe patch for Win98? That might fix it. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 On Wed, 2 Feb 2000, Sergio Dominguez wrote: > Hello fellow listers: > > I have setup a PPTP server, it has a public IP address configured: > A.B.C.2, and > a private IP address: 172.23.1.1 also ( it's connected to the 172.23.1.0 > network). > > From a windows 98 workstation, I have successfully stablished a VPN > link > across internet, but I can not access the private network. > > If I make a > C:\WINDOWS\PING 172.23.1.1 > I receive no response in the client. > > Looking at the pptpd.log file, the following messages are displayed > everytime > I do a ping: > > Feb 2 12:36:24 vpn pppd[6266]: rcvd [proto=0x8072] a1 7a 2f 68 bb 27 > 97 08 a7 25 14 39 23 5d 17 87 4e 68 38 3f f6 cb b7 30 fc 47 64 ef 38 8f > f3 5b ... > > Feb 2 12:36:24 vpn pppd[6266]: Unsupported protocol (0x8072) received > > Feb 2 12:36:24 vpn pppd[6266]: sent [LCP ProtRej id=0x21 80 72 a1 7a 2f > 68 bb 27 97 08 a7 25 14 39 23 5d 17 87 4e 68 38 3f f6 cb b7 30 fc 47 64 > ef 38 8f f3 5b 82 c0 87 4a f6 f6 c5 8f 5a 49 26 77 66 84 19 dd 73 c4 38 > 0b 91 63 fb d2 4b 74 75 1f] > > > Extra info: > > My pptpd.conf file is: > > speed 115200 > localip 172.23.1.50-149 > remoteip 172.23.1.150-249 > > In the process list I can se the following: > 6265 ? S 0:00 pptpd > [internet_address_of_windows_client_machine] > 6266 ? S 0:00 /usr/sbin/pppd local 115200 > 172.23.1.51:172.23.1.151 > > Routing table at the server side: > > [root at vpn log]# route > Kernel IP routing table > Destination Gateway Genmask Flags Metric > Ref Use Iface > 172.23.1.151 * 255.255.255.255 UH 0 > 0 0 ppp0 > A.B.C.2 * 255.255.255.255 UH 0 > 0 0 eth0 > A.B.C.0 * 255.255.255.224 U 0 > 0 0 eth0 > 172.23.1.0 * 255.255.255.0 U > 0 0 0 eth0 > 127.0.0.0 * 255.0.0.0 U > 0 0 0 lo > default A.B.C.1 0.0.0.0 UG > 0 0 0 eth0 > > Any help will be highly apreciatted. > From willic2 at mail.auburn.edu Wed Feb 2 16:18:05 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Wed Feb 2 16:18:05 2000 Subject: [pptp-server] PoPToP install problems (fwd) Message-ID: I'm a newbie to Linux in the grand scheme of things. We are trying to install PoPToP as per the 19990813 PoPToP HOWTO/FAQ. I'm getting errors when I try to run the ./kinstall.sh command as detailed in step 6.0 under PPP Installation. I've included a dump from the output of the install script. I was wondering if someone on the list could take a look and tell me what you think may be wrong. So far, I've followed the directions to a "T". The problem may be that by default, the RedHat 6.1 (clean installation) source files were not installed in /usr/source/linux so I downloaded the files: kernel-2.2.12-20.i386.rpm kernel-headers-2.2.12-20.i386.rpm kernel-source-2.2.12-20.i386.rpm And installed the kernel-source and headers using rpm. Rpm told me the headers were already installed but did install the source. I really appreciate it! Here is the dump from kinstall.sh. I'm not sure if all the "couldn't find ... file" errors are something I should be worrying about. [root at coedsnet2 linux]# ./kinstall.sh Notice to the user: It is perfectly legal for this script to run without making any changes to your system. This means that the system currently contains the necessary changes to support this package. Please do not attempt to force this script to replace any file nor make any patch. If you do so then it is probable that you are actually putting older, buggier, code over the newer, fixed, code. Thank you. Installing into kernel version 2.2.12 in /usr/src/linux /usr/src/linux/drivers/net/bsd_comp.c is not older than bsd_comp.c, skipping /usr/src/linux/drivers/net/ppp_deflate.c is not older than ppp_deflate.c, skipping /usr/src/linux/drivers/net/zlib.c is not older than zlib.c, skipping /usr/src/linux/drivers/net/zlib.h is not older than zlib.h, skipping Could not find source file ppp_mppe.c ! Could not find source file ppp_lzscomp.c ! Could not find source file ppp_lzscomp.h ! Could not find source file mppe.h ! Could not find source file ../pppd/sha.h ! Could not find source file ../pppd/sha1dgst.c ! Could not find source file ../pppd/sha_locl.h ! /usr/src/linux/drivers/net/rc4_enc.c is not older than rc4_enc.c, skipping /usr/src/linux/drivers/net/rc4.h is not older than rc4.h, skipping /usr/src/linux/include/linux/if_ppp.h is not older than ../include/linux/if_ppp.h, skipping /usr/src/linux/include/linux/if_pppvar.h is not older than ../include/linux/if_pppvar.h, skipping Saving old /usr/src/linux/include/linux/ppp-comp.h as ppp-comp.old.h Installing new /usr/src/linux/include/linux/ppp-comp.h /usr/src/linux/include/linux/ppp_defs.h is not older than ../include/linux/ppp_defs.h, skipping Saving old /usr/src/linux/drivers/net/ppp.c as ppp.old.c Installing new /usr/src/linux/drivers/net/ppp.c Adding BSD compression module to drivers makefile...(already there--skipping) Adding Deflate compression module to drivers makefile...(already there--skipping) Adding MPPE compression module to drivers makefile..... Kernel driver files installation done. -------------- next part -------------- Installing into kernel version 2.2.12 in /usr/src/linux /usr/src/linux/drivers/net/bsd_comp.c is not older than bsd_comp.c, skipping /usr/src/linux/drivers/net/ppp_deflate.c is not older than ppp_deflate.c, skipping /usr/src/linux/drivers/net/zlib.c is not older than zlib.c, skipping /usr/src/linux/drivers/net/zlib.h is not older than zlib.h, skipping Could not find source file ppp_mppe.c ! Could not find source file ppp_lzscomp.c ! Could not find source file ppp_lzscomp.h ! Could not find source file mppe.h ! Could not find source file ../pppd/sha.h ! Could not find source file ../pppd/sha1dgst.c ! Could not find source file ../pppd/sha_locl.h ! /usr/src/linux/drivers/net/rc4_enc.c is not older than rc4_enc.c, skipping /usr/src/linux/drivers/net/rc4.h is not older than rc4.h, skipping /usr/src/linux/include/linux/if_ppp.h is not older than ../include/linux/if_ppp.h, skipping /usr/src/linux/include/linux/if_pppvar.h is not older than ../include/linux/if_pppvar.h, skipping Saving old /usr/src/linux/include/linux/ppp-comp.h as ppp-comp.old.h Installing new /usr/src/linux/include/linux/ppp-comp.h /usr/src/linux/include/linux/ppp_defs.h is not older than ../include/linux/ppp_defs.h, skipping Saving old /usr/src/linux/drivers/net/ppp.c as ppp.old.c Installing new /usr/src/linux/drivers/net/ppp.c Adding BSD compression module to drivers makefile...(already there--skipping) Adding Deflate compression module to drivers makefile...(already there--skipping) Adding MPPE compression module to drivers makefile..... From rickb at networxtech.com Wed Feb 2 20:56:36 2000 From: rickb at networxtech.com (Rick Bourassa) Date: Wed Feb 2 20:56:36 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? Message-ID: <81DCF3980E29D311AE3700500422D61D192D@BANDIT> I have installed Poptop to setup VPN access to a Netware 4.1 server from Windows 98. When I connect, I can login in to the Novell server about 20 percent of the time. The rest of the time I get Server not found or Tree not found errors. When it is not working, I can see the server in Network Neighborhood, but when I click on it, I get Server not found error messages. I have tried teh DUN4.0 update from Microsoft and that has not helped. Any help would be appreciated. Rick Bourassa Networx Technology Services Inc. 13024 Lake Twintree Rd. SE Calgary, Alberta T2J 2X3 http://www.ilovetocamp.com http://www.networxtech.com mailto:rickb at networxtech.com -----Original Message----- From: Gareth Marlow [mailto:Gareth_Marlow at scientia.com] Sent: Wednesday, February 02, 2000 9:42 AM To: Rick Bourassa Cc: 'pptp-server at lists.schulte.org' Subject: Re: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? On Wed, Feb 02, 2000 at 09:26:33AM -0700, Rick Bourassa wrote: > I realize I all ready sent this message, but I didn't get any replies. > Could someone reply no? It is better than no reply at all. Well I'm not, but what's the problem? We might be able to help. -- _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From tmk at netmagic.net Wed Feb 2 23:12:30 2000 From: tmk at netmagic.net (tmk) Date: Wed Feb 2 23:12:30 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? References: <81DCF3980E29D311AE3700500422D61D192D@BANDIT> Message-ID: <000701bf6e05$1feed1a0$071c0fc0@lala.net> what protocol are you using? ipx or tcpip? ----- Original Message ----- From: Rick Bourassa To: 'Gareth Marlow' ; Rick Bourassa Cc: Sent: Wednesday, February 02, 2000 6:53 PM Subject: RE: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? > I have installed Poptop to setup VPN access to a Netware 4.1 server from > Windows 98. When I connect, I can login in to the Novell server about 20 > percent of the time. The rest of the time I get Server not found or Tree > not found errors. When it is not working, I can see the server in Network > Neighborhood, but when I click on it, I get Server not found error messages. > > I have tried teh DUN4.0 update from Microsoft and that has not helped. > > Any help would be appreciated. > > > Rick Bourassa > Networx Technology Services Inc. > 13024 Lake Twintree Rd. SE > Calgary, Alberta T2J 2X3 > http://www.ilovetocamp.com > http://www.networxtech.com > mailto:rickb at networxtech.com > > > -----Original Message----- > From: Gareth Marlow [mailto:Gareth_Marlow at scientia.com] > Sent: Wednesday, February 02, 2000 9:42 AM > To: Rick Bourassa > Cc: 'pptp-server at lists.schulte.org' > Subject: Re: [pptp-server] Is anyone using PopTop FOr IPX/Netware > Access? > > > On Wed, Feb 02, 2000 at 09:26:33AM -0700, Rick Bourassa wrote: > > I realize I all ready sent this message, but I didn't get any replies. > > Could someone reply no? It is better than no reply at all. > > Well I'm not, but what's the problem? We might be able to help. > > -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From pf at sxb.bsf.alcatel.fr Thu Feb 3 04:44:05 2000 From: pf at sxb.bsf.alcatel.fr (Pascal Fremaux) Date: Thu Feb 3 04:44:05 2000 Subject: [pptp-server] linux pptp newby References: Message-ID: <389959AE.2081B8C4@sxb.bsf.alcatel.fr> Exact. Just say that DUN40.exe is only for W98, not for W98SE. Michael Walter wrote: > A few issues with win98 vpn, I don't know that they cause the > described problem, but they may be valuable. > 1) If the vpn adapter is installed via the network properties it will > not work correctly. It must be installed via windows setup under > add/remove programs. > 2) There is a dial up networking patch for win98 available at: > http://support.microsoft.com/download/support/mslfiles/DUN40.EXE . I > don't recall what it is necessary for, but we install it on all our > win98 remote users computers.Thats all I can think of at the moment, > > > Michael J. Walter mcse rhce > walterm at gliatech.com > 216-831-3200 -- Pascal Fremaux, SSII Alten Study Engineer at Alcatel Telecom R&D, Illkirch, France From rickb at networxtech.com Thu Feb 3 12:41:37 2000 From: rickb at networxtech.com (Rick Bourassa) Date: Thu Feb 3 12:41:37 2000 Subject: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? Message-ID: <81DCF3980E29D311AE3700500422D61D1930@BANDIT> I am using IPX. Server is Netware 4.10, so I can't use IP. -----Original Message----- From: tmk To: pptp-server at lists.schulte.org Sent: 2/2/00 10:11 PM Subject: Re: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? what protocol are you using? ipx or tcpip? ----- Original Message ----- From: Rick Bourassa To: 'Gareth Marlow' ; Rick Bourassa Cc: Sent: Wednesday, February 02, 2000 6:53 PM Subject: RE: [pptp-server] Is anyone using PopTop FOr IPX/Netware Access? > I have installed Poptop to setup VPN access to a Netware 4.1 server from > Windows 98. When I connect, I can login in to the Novell server about 20 > percent of the time. The rest of the time I get Server not found or Tree > not found errors. When it is not working, I can see the server in Network > Neighborhood, but when I click on it, I get Server not found error messages. > > I have tried teh DUN4.0 update from Microsoft and that has not helped. > > Any help would be appreciated. > > > Rick Bourassa > Networx Technology Services Inc. > 13024 Lake Twintree Rd. SE > Calgary, Alberta T2J 2X3 > http://www.ilovetocamp.com > http://www.networxtech.com > mailto:rickb at networxtech.com > > > -----Original Message----- > From: Gareth Marlow [mailto:Gareth_Marlow at scientia.com] > Sent: Wednesday, February 02, 2000 9:42 AM > To: Rick Bourassa > Cc: 'pptp-server at lists.schulte.org' > Subject: Re: [pptp-server] Is anyone using PopTop FOr IPX/Netware > Access? > > > On Wed, Feb 02, 2000 at 09:26:33AM -0700, Rick Bourassa wrote: > > I realize I all ready sent this message, but I didn't get any replies. > > Could someone reply no? It is better than no reply at all. > > Well I'm not, but what's the problem? We might be able to help. > > -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From sergio at omnitracs.com.mx Thu Feb 3 13:09:30 2000 From: sergio at omnitracs.com.mx (Sergio Dominguez) Date: Thu Feb 3 13:09:30 2000 Subject: [pptp-server] How can I tell encryption... Message-ID: <3899D11B.FA5E92FD@omnitracs.com.mx> Hello listers: I have successfully stablished VPN links with PoPToP... Is there a way I can tell if the data transfer is being encrypted? Some log file message perhaps? Thanks in advance. From willic2 at mail.auburn.edu Thu Feb 3 14:23:30 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Thu Feb 3 14:23:30 2000 Subject: [pptp-server] Redhat installation clarification question Message-ID: I'm stuck at the "Setup your chap-secrets file." step. The file contains two commented lines: # Secrets for authentication using CHAP # client server secret IP addresses What do I put here? I am thinking: client: account name (like jondoe), server: ?? I don't know what goes there secret: jondoe's password (plaintext??) ip addresses: ?? I don't know Thanks, Chris Williams From walterm at Gliatech.com Thu Feb 3 14:39:36 2000 From: walterm at Gliatech.com (Michael Walter) Date: Thu Feb 3 14:39:36 2000 Subject: [pptp-server] Redhat installation clarification question Message-ID: your close... using your examples # Secrets for authentication using CHAP # client server secret IP addresses jondoe * password(plaintext) * \\(domain in lowecase)\jondoe * password(plaintext) * \\(domain in uppercase)\jondoe * password(plaintext) * once you have added your passwords do a: chmod 400 chap-secrets this will make the file read only and exclusive to root. As the passwords are in plain text, I highly recommend a good ipchains ruleset, or hiding the vpn behind a firewall. the \\domainname in upper and lowercase will save you headaches later. Thanks, Michael J. Walter mcse rhce walterm at gliatech.com 216-831-3200 -----Original Message----- From: Chris Williams [mailto:willic2 at mail.auburn.edu] Sent: Thursday, February 03, 2000 3:23 PM To: pptp-server at lists.schulte.org Subject: [pptp-server] Redhat installation clarification question I'm stuck at the "Setup your chap-secrets file." step. The file contains two commented lines: # Secrets for authentication using CHAP # client server secret IP addresses What do I put here? I am thinking: client: account name (like jondoe), server: ?? I don't know what goes there secret: jondoe's password (plaintext??) ip addresses: ?? I don't know Thanks, Chris Williams _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From willic2 at mail.auburn.edu Thu Feb 3 14:52:11 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Thu Feb 3 14:52:11 2000 Subject: [pptp-server] Redhat installation clarification question In-Reply-To: Message-ID: Ok, now I've done the chap-secrets stuff but I get this when I try to run pptpd: [root at coedsnet2 /root]# /usr/sbin/pptpd -d [root at coedsnet2 /root]# createHostSocket: Address already in use And it bombs. This is on a newly installed linux system with the pptp stuff installed. Reading through a bunch of how to's, at this point I'm supposed to be able to run pptpd after only editing the chap-secrets and /etc/ppp/options files. This doesn't seem right when looking through the "other" installation howto's. One specifically mentions the /etc/pptpd.conf which in my config looks like all the lines are commented out. This other doc says I need to do this: speed 115200 localip xxx.xxx.xxx.xxx (i guess that my linux box's ip goes here) remoteip xxx.xxx.xxx.xxx (i guess a valid ip on my internal net goes here?) Any other files I need to configure? Will fixing this /etc/pptpd.conf file fix my problem when running pptpd? (I'd go ahead and do it but I'm not sure what goes where) Also (and much more importantly!), the file I'm looking at says "at this point vpn should be working without encryption. This is great (if I can ever get it working). How would I test this? Can I just grab a Win 98 laptop and set up a vpn adapter but say "don't use encryption" or something? And on another really lame clarification: the client will dial up through a modem to his/her isp and then try to set up a connection to my linux pptp server and from there all ip traffic goes through the internet through my server and onto my lan right? Thanks a lot! Chris Williams On Thu, 3 Feb 2000, Michael Walter wrote: > your close... > using your examples > > # Secrets for authentication using CHAP > # client server secret > IP addresses > jondoe * password(plaintext) > * > \\(domain in lowecase)\jondoe * password(plaintext) > * > \\(domain in uppercase)\jondoe * password(plaintext) * > > > once you have added your passwords do a: > chmod 400 chap-secrets > this will make the file read only and exclusive to root. > > As the passwords are in plain text, I highly recommend a good ipchains > ruleset, or hiding the vpn behind a firewall. the \\domainname in upper and > lowercase will save you headaches later. > > > Thanks, > Michael J. Walter mcse rhce > walterm at gliatech.com > 216-831-3200 > > > > -----Original Message----- > From: Chris Williams [mailto:willic2 at mail.auburn.edu] > Sent: Thursday, February 03, 2000 3:23 PM > To: pptp-server at lists.schulte.org > Subject: [pptp-server] Redhat installation clarification question > > > I'm stuck at the "Setup your chap-secrets file." step. The file contains > two commented lines: > # Secrets for authentication using CHAP > # client server secret IP addresses > What do I put here? I am thinking: > client: account name (like jondoe), > server: ?? I don't know what goes there > secret: jondoe's password (plaintext??) > ip addresses: ?? I don't know > > Thanks, > Chris Williams > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From willic2 at mail.auburn.edu Thu Feb 3 15:21:25 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Thu Feb 3 15:21:25 2000 Subject: [pptp-server] Redhat installation clarification question In-Reply-To: Message-ID: Oops. I still need some of those questions answered but I just found out that pptpd may be running. Here's a ps ef line: root 683 1 0 15:03 ? 00:00:00 [pptpd] I looked in /var/log and there is no pptpd log there. How do I enable logging or debug mode? On Thu, 3 Feb 2000, Chris Williams wrote: > Ok, now I've done the chap-secrets stuff but I get this when I try to run > pptpd: > [root at coedsnet2 /root]# /usr/sbin/pptpd -d > [root at coedsnet2 /root]# createHostSocket: Address already in use > > And it bombs. This is on a newly installed linux system with the pptp > stuff installed. Reading through a bunch of how to's, at this point I'm > supposed to be able to run pptpd after only editing the chap-secrets and > /etc/ppp/options files. This doesn't seem right when looking through the > "other" installation howto's. One specifically mentions the > /etc/pptpd.conf which in my config looks like all the lines are commented > out. This other doc says I need to do this: > speed 115200 > localip xxx.xxx.xxx.xxx (i guess that my linux box's ip goes here) > remoteip xxx.xxx.xxx.xxx (i guess a valid ip on my internal net goes > here?) > > Any other files I need to configure? Will fixing this /etc/pptpd.conf > file fix my problem when running pptpd? (I'd go ahead and do it but I'm > not sure what goes where) > > Also (and much more importantly!), the file I'm looking at says "at this > point vpn should be working without encryption. This is great (if I can > ever get it working). How would I test this? Can I just grab a Win 98 > laptop and set up a vpn adapter but say "don't use encryption" or > something? > > And on another really lame clarification: the client will dial up > through a modem to his/her isp and then try to set up a connection to my > linux pptp server and from there all ip traffic goes through the internet > through my server and onto my lan right? > > Thanks a lot! > Chris Williams > > On Thu, 3 Feb 2000, Michael Walter wrote: > > > your close... > > using your examples > > > > # Secrets for authentication using CHAP > > # client server secret > > IP addresses > > jondoe * password(plaintext) > > * > > \\(domain in lowecase)\jondoe * password(plaintext) > > * > > \\(domain in uppercase)\jondoe * password(plaintext) * > > > > > > once you have added your passwords do a: > > chmod 400 chap-secrets > > this will make the file read only and exclusive to root. > > > > As the passwords are in plain text, I highly recommend a good ipchains > > ruleset, or hiding the vpn behind a firewall. the \\domainname in upper and > > lowercase will save you headaches later. > > > > > > Thanks, > > Michael J. Walter mcse rhce > > walterm at gliatech.com > > 216-831-3200 > > > > > > > > -----Original Message----- > > From: Chris Williams [mailto:willic2 at mail.auburn.edu] > > Sent: Thursday, February 03, 2000 3:23 PM > > To: pptp-server at lists.schulte.org > > Subject: [pptp-server] Redhat installation clarification question > > > > > > I'm stuck at the "Setup your chap-secrets file." step. The file contains > > two commented lines: > > # Secrets for authentication using CHAP > > # client server secret IP addresses > > What do I put here? I am thinking: > > client: account name (like jondoe), > > server: ?? I don't know what goes there > > secret: jondoe's password (plaintext??) > > ip addresses: ?? I don't know > > > > Thanks, > > Chris Williams > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > List services provided by www.schulte.org! > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From nico at sonycom.com Fri Feb 4 07:51:28 2000 From: nico at sonycom.com (Nico De Ranter) Date: Fri Feb 4 07:51:28 2000 Subject: [pptp-server] Win 98 second edition won't connect Message-ID: Hi, I'm trying to connect to my poptop server from a brand new portable with Win98 Second Edition installed. However I'm constantly denied access. When I do the same thing from another slightly older portable with Win98 (not SE) everything works fine. I tried to install dun40.exe (which I believe is installed on the other portable) but the installation program refuses to install on Win98SE. The logs on the server show something like this: Feb 4 14:17:51 ape pppd[23829]: rcvd [CHAP Response id=0x1 , name = "Workgroup\\testuser"] Feb 4 14:17:51 ape pppd[23829]: No CHAP secret found for authenticating Workgroup\\nico Feb 4 14:17:51 ape pppd[23829]: sent [CHAP Failure id=0x1 "I don't like you. Go 'way."] Feb 4 14:17:51 ape pppd[23829]: MSCHAP-v2 peer authentication failed for remote host Workgroup\\nico Feb 4 14:17:51 ape pppd[23829]: sent [LCP TermReq id=0x2 "Authentication failed"] What's that "Workgroup\\" doing in front of my username? As I said it works perfectly with the same user from another portable. Nico -------------------------------------------------------- "It has been said that there are only two businesses refer to customers as users: illegal drug trade and the computer industry." -------------------------------------------------------- Nico De Ranter Sony Service Center (SUPC-E/DME-B) Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) 1130 Brussel (Bruxelles), Belgium, Europe, Earth Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 e-mail: nico.deranter at sonycom.com From pf at sxb.bsf.alcatel.fr Fri Feb 4 08:15:09 2000 From: pf at sxb.bsf.alcatel.fr (Pascal Fremaux) Date: Fri Feb 4 08:15:09 2000 Subject: [pptp-server] Win 98 second edition won't connect References: Message-ID: <389ADEC6.76DD256B@sxb.bsf.alcatel.fr> Search in the old mails, you're the ...th to have this problem. I repeat: - DUN40.exe cannot be installed on a W98SE. It's for W98. - W98SE have some bug with the VPN install(install/desinstall only from the Windows setup box in Windows paramters and NEVER from the networks services. So desinstall and reinstall from this box. Hope it resolve your problem. Nico De Ranter wrote: > Hi, > > I'm trying to connect to my poptop server from a brand new > portable with Win98 Second Edition installed. However I'm constantly > denied access. When I do the same thing from another slightly older > portable with Win98 (not SE) everything works fine. I tried to install > dun40.exe (which I believe is installed on the other portable) but the > installation program refuses to install on Win98SE. > -- Pascal Fremaux, SSII Alten Study Engineer at Alcatel Telecom R&D, Illkirch, France From Gareth_Marlow at scientia.com Fri Feb 4 08:20:56 2000 From: Gareth_Marlow at scientia.com (Gareth Marlow) Date: Fri Feb 4 08:20:56 2000 Subject: [pptp-server] Win 98 second edition won't connect In-Reply-To: ; from nico@sonycom.com on Fri, Feb 04, 2000 at 02:51:03PM +0100 References: Message-ID: <20000204141715.E28619@harris.scientia.com> On Fri, Feb 04, 2000 at 02:51:03PM +0100, Nico De Ranter wrote: > > What's that "Workgroup\\" doing in front of my username? You need to RTF howto on the PoPToP webpage. Basically, windows clients can sometimes prepend the domain or workgroup name to username they send in a CHAP session - this is what you're seeing. Someone has worked around the problem by hacking the source to chop off the \\ and everything before it. I and others have got around it by adding it to our /etc/ppp/chap-secrets, i.e. have two lines to cover all eventualities: gareth * * workgroup\\gareth * * Gareth From nico at sonycom.com Fri Feb 4 08:31:55 2000 From: nico at sonycom.com (Nico De Ranter) Date: Fri Feb 4 08:31:55 2000 Subject: [pptp-server] Win 98 second edition won't connect In-Reply-To: <389ADEC6.76DD256B@sxb.bsf.alcatel.fr> Message-ID: Hm, I'm getting very small now. Please accept my humble apologies but I'm afraid I'll probably never learn to check the archives first. One tiny little question: where can I find those archives? Ok, I just found the link on the poptop homepage, starting to shrink even more. Thank you, thank you veeeery much, Nico ;-) On Fri, 4 Feb 2000, Pascal Fremaux wrote: > Search in the old mails, you're the ...th to have this problem. > I repeat: > - DUN40.exe cannot be installed on a W98SE. It's for W98. > - W98SE have some bug with the VPN install(install/desinstall only from the Windows setup box in Windows paramters and NEVER from the > networks services. So desinstall and reinstall from this box. > > Hope it resolve your problem. > > Nico De Ranter wrote: > > > Hi, > > > > I'm trying to connect to my poptop server from a brand new > > portable with Win98 Second Edition installed. However I'm constantly > > denied access. When I do the same thing from another slightly older > > portable with Win98 (not SE) everything works fine. I tried to install > > dun40.exe (which I believe is installed on the other portable) but the > > installation program refuses to install on Win98SE. > > > > -- > Pascal Fremaux, SSII Alten > Study Engineer at Alcatel Telecom > R&D, Illkirch, France > > > > -------------------------------------------------------- "It has been said that there are only two businesses refer to customers as users: illegal drug trade and the computer industry." -------------------------------------------------------- Nico De Ranter Sony Service Center (SUPC-E/DME-B) Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) 1130 Brussel (Bruxelles), Belgium, Europe, Earth Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 e-mail: nico.deranter at sonycom.com From jandeep at interspeed.com Fri Feb 4 08:39:41 2000 From: jandeep at interspeed.com (Jandeep Kang) Date: Fri Feb 4 08:39:41 2000 Subject: [pptp-server] need some info about chap-secrets and options file Message-ID: Hi everybody, I am currently struggling with the chap-secrets and options file. Can someone please explain to me what should go in there or point me to some reliable source of information (some FAQs/docs) on how to populate these files. Thanks a lot. -------------- next part -------------- An HTML attachment was scrubbed... URL: From nico at sonycom.com Fri Feb 4 08:58:44 2000 From: nico at sonycom.com (Nico De Ranter) Date: Fri Feb 4 08:58:44 2000 Subject: [pptp-server] Win 98 second edition won't connect In-Reply-To: <389ADEC6.76DD256B@sxb.bsf.alcatel.fr> Message-ID: On Fri, 4 Feb 2000, Pascal Fremaux wrote: > Search in the old mails, you're the ...th to have this problem. > I repeat: > - DUN40.exe cannot be installed on a W98SE. It's for W98. > - W98SE have some bug with the VPN install(install/desinstall only from the Windows setup box in Windows paramters and NEVER from the > networks services. So desinstall and reinstall from this box. > > Hope it resolve your problem. Hmmm, actualy it didn't. I desinstalled VPN through the Windows setup box, rebooted reinstalled through the WSB, rebooted, tried to connected... and got the same error. But this time in stead of seeing Workgroup\\testuser on my server I say just \\testuser which doesn't work either. I tried putting \\testuser in the chap-secrets file but that doesn't help :-( (I'm guessing there might be a " " in front of the \\). Recompiling poptop with the patch to strip out everything in front of \\ isn't really an option since the server is in production so I can't just start playing around with it :-(. Any other options? (I haven't found anything usefull in the archives yet, but then again it's rather hard to search them :-( ) Nico > > Nico De Ranter wrote: > > > Hi, > > > > I'm trying to connect to my poptop server from a brand new > > portable with Win98 Second Edition installed. However I'm constantly > > denied access. When I do the same thing from another slightly older > > portable with Win98 (not SE) everything works fine. I tried to install > > dun40.exe (which I believe is installed on the other portable) but the > > installation program refuses to install on Win98SE. > > > > -- > Pascal Fremaux, SSII Alten > Study Engineer at Alcatel Telecom > R&D, Illkirch, France > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > -------------------------------------------------------- "It has been said that there are only two businesses refer to customers as users: illegal drug trade and the computer industry." -------------------------------------------------------- Nico De Ranter Sony Service Center (SUPC-E/DME-B) Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) 1130 Brussel (Bruxelles), Belgium, Europe, Earth Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 e-mail: nico.deranter at sonycom.com From nico at sonycom.com Fri Feb 4 09:11:09 2000 From: nico at sonycom.com (Nico De Ranter) Date: Fri Feb 4 09:11:09 2000 Subject: [pptp-server] Win 98 second edition won't connect In-Reply-To: Message-ID: Ah got it, just put everything between '"' in chap-secrets: e.g. " \\testuser" server blabla * Now it works, Thanks. Nico On Fri, 4 Feb 2000, Nico De Ranter wrote: > On Fri, 4 Feb 2000, Pascal Fremaux wrote: > > > Search in the old mails, you're the ...th to have this problem. > > I repeat: > > - DUN40.exe cannot be installed on a W98SE. It's for W98. > > - W98SE have some bug with the VPN install(install/desinstall only from the Windows setup box in Windows paramters and NEVER from the > > networks services. So desinstall and reinstall from this box. > > > > Hope it resolve your problem. > > Hmmm, actualy it didn't. I desinstalled VPN through the Windows setup box, rebooted > reinstalled through the WSB, rebooted, tried to connected... and got the same > error. But this time in stead of seeing Workgroup\\testuser on my server I say > just \\testuser which doesn't work either. I tried putting \\testuser in the > chap-secrets file but that doesn't help :-( (I'm guessing there might be a " " > in front of the \\). Recompiling poptop with the patch to strip out everything in > front of \\ isn't really an option since the server is in production so I can't just > start playing around with it :-(. Any other options? (I haven't found anything > usefull in the archives yet, but then again it's rather hard to search them :-( ) > > Nico > > > > > Nico De Ranter wrote: > > > > > Hi, > > > > > > I'm trying to connect to my poptop server from a brand new > > > portable with Win98 Second Edition installed. However I'm constantly > > > denied access. When I do the same thing from another slightly older > > > portable with Win98 (not SE) everything works fine. I tried to install > > > dun40.exe (which I believe is installed on the other portable) but the > > > installation program refuses to install on Win98SE. > > > > > > > -- > > Pascal Fremaux, SSII Alten > > Study Engineer at Alcatel Telecom > > R&D, Illkirch, France > > > > > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > List services provided by www.schulte.org! > > > > -------------------------------------------------------- > "It has been said that there are only two businesses > refer to customers as users: illegal drug trade and > the computer industry." > -------------------------------------------------------- > Nico De Ranter > Sony Service Center (SUPC-E/DME-B) > Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) > 1130 Brussel (Bruxelles), Belgium, Europe, Earth > Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 > e-mail: nico.deranter at sonycom.com > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > -------------------------------------------------------- "It has been said that there are only two businesses refer to customers as users: illegal drug trade and the computer industry." -------------------------------------------------------- Nico De Ranter Sony Service Center (SUPC-E/DME-B) Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) 1130 Brussel (Bruxelles), Belgium, Europe, Earth Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 e-mail: nico.deranter at sonycom.com From Patrick at reidworld.dynip.com Fri Feb 4 11:05:54 2000 From: Patrick at reidworld.dynip.com (Patrick Reid) Date: Fri Feb 4 11:05:54 2000 Subject: [pptp-server] Win 98 second edition won't connect In-Reply-To: Message-ID: <000b01bf6f32$0db0c600$0200a8c0@reidworld.dynip.com> You can set the domain which your VPN connection attempts to use by editing the registry. All standard regedit warnings apply here - do this at your own risk, don't screw around if you don't know what you are doing, and make sure you back up your registry before editing it. This is for Windows 98: run regedit, and go to the following key: HKEY_CURRENT_USER\RemoteAccess\Profile\ReidWorld VPN Except for your machine "ReidWorld VPN" will be whatever you named the DUN connection which links you to you VPN. There will be a "Domain" entry in this key - in your case it will have a single space as the Data for the "Domain" value. (Possibly it will be absent - I've never seen that sort of name for the Domain). Change it to whatever you want your domain name to be - if you are running SAMBA or a Windows SMB network, you will probably want to use the name of your workgroup or domain. You will have to make sure your chap-secrets file is consistent with this new domain name. Patrick Reid - mailto:PReid at candesco.com Candesco Research Corp. Communication Centre: -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Nico De Ranter Sent: February 4, 2000 10:59 AM To: pascal.fremaux at sxb.bsf.alcatel.fr Cc: pptp-server at lists.schulte.org Subject: Re: [pptp-server] Win 98 second edition won't connect On Fri, 4 Feb 2000, Pascal Fremaux wrote: > Search in the old mails, you're the ...th to have this problem. > I repeat: > - DUN40.exe cannot be installed on a W98SE. It's for W98. > - W98SE have some bug with the VPN install(install/desinstall only from the Windows setup box in Windows paramters and NEVER from the > networks services. So desinstall and reinstall from this box. > > Hope it resolve your problem. Hmmm, actualy it didn't. I desinstalled VPN through the Windows setup box, rebooted reinstalled through the WSB, rebooted, tried to connected... and got the same error. But this time in stead of seeing Workgroup\\testuser on my server I say just \\testuser which doesn't work either. I tried putting \\testuser in the chap-secrets file but that doesn't help :-( (I'm guessing there might be a " " in front of the \\). Recompiling poptop with the patch to strip out everything in front of \\ isn't really an option since the server is in production so I can't just start playing around with it :-(. Any other options? (I haven't found anything usefull in the archives yet, but then again it's rather hard to search them :-( ) Nico > > Nico De Ranter wrote: > > > Hi, > > > > I'm trying to connect to my poptop server from a brand new > > portable with Win98 Second Edition installed. However I'm constantly > > denied access. When I do the same thing from another slightly older > > portable with Win98 (not SE) everything works fine. I tried to install > > dun40.exe (which I believe is installed on the other portable) but the > > installation program refuses to install on Win98SE. > > > > -- > Pascal Fremaux, SSII Alten > Study Engineer at Alcatel Telecom > R&D, Illkirch, France > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > -------------------------------------------------------- "It has been said that there are only two businesses refer to customers as users: illegal drug trade and the computer industry." -------------------------------------------------------- Nico De Ranter Sony Service Center (SUPC-E/DME-B) Sint Stevens Woluwestraat 55 (Rue de Woluwe-Saint-Etienne) 1130 Brussel (Bruxelles), Belgium, Europe, Earth Telephone: +32 2 724 86 41 Telefax: +32 2 726 26 86 e-mail: nico.deranter at sonycom.com _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server List services provided by www.schulte.org! From sergio at omnitracs.com.mx Fri Feb 4 12:32:23 2000 From: sergio at omnitracs.com.mx (Sergio Dominguez) Date: Fri Feb 4 12:32:23 2000 Subject: [pptp-server] Tunneling to reach public IP address? References: <389893A8.BAE3C771@omnitracs.com.mx> <002a01bf6dc2$4c7ff340$bec8a8c0@coats.org> Message-ID: <389B19A8.361E1A60@omnitracs.com.mx> Hello: I used the button "Use default gateway on remote network" on the VPN connection properties. Good thing about this is that VPN clients DO reach my whole network because the VPN link is the default gateway. Bad thing about it, is that, if the VPN client wants to BROWSE the Internet, or even do some DNS query, all the traffic will go trough the VPN link and then trough my corporate Internet link. The Networks file idea sounds great but I am clueless about it. ( the main goal here is telling my VPN client a couple of static routes: "send all the data going to the corporate networks (public)a.b.c.0 and (private)10.0.0.0 trough the VPN link, send anything else trough your ISP" ). Can you guys give me some clue? ( Yes I'm a newbie, I accept it! :( ) Thanks in advance gents. Jack Coats wrote: > Just a guess... let us know if it works ... > > If I get this right you probably want to turn off the button that makes > the PPTP link your default gateway. ... To do all of what you want, > you may need to set up a NETWORKS file to send all traffic for 10.x.x.x > to the VPN and everything else out via the general gateway (via another > link). > > Does that sound right to everyone else? > > ... Jack > ----- Original Message ----- > From: Sergio Dominguez > To: > Sent: Wednesday, February 02, 2000 2:29 PM > Subject: [pptp-server] Tunneling to reach public IP address? > > > > > Hello people: > > > > Given the following escenario, > > > > BIGSERVER has a 10.0.0.0 address and a valid public internet IP address > > VPN PoPTop has a 172.23.1.0 address and a valid public internet IP > > address. > > The firewall restricts any access to BIGSERVER directly. > > > > Is it posible to configure PoPToP so it can redirect access from > > workstations ... to BIGSERVER.company.com? > >.... From willic2 at mail.auburn.edu Fri Feb 4 12:51:27 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Fri Feb 4 12:51:27 2000 Subject: [pptp-server] PoPToP install clarification In-Reply-To: Message-ID: So are you saying that the local IP will be the same as my linux box's IP address or just an IP that will be valid on my LAN? Chris Williams willic2 at mail.auburn.edu http://www.auburn.edu/~willic2 > From: Nate Carlson > Date: Tue, 1 Feb 2000 13:10:07 -0600 (CST) > To: Chris Williams > Cc: Michael Walter , "PPTPD User Group (E-mail)" > > Subject: Re: [pptp-server] PoPToP install clarification > > On Tue, 1 Feb 2000, Chris Williams wrote: > >> I'm new to PoPToP and VPNs in general. I think I get the basic idea. In >> the PoPToP user guide, it refers to the /etx/pptpd.conf and says the >> contents should look like: >> >> speed 115200 >> localip 192.168.0.234-238 >> remoteip 192.168.1.234-238 >> >> What do the local and remote IP's mean? Does it have anything to do with >> my current IP or can I assign the clients any old IP I want? >> > > The Local IP should be an address that is valid on the machine that PPTPD > is running on, and will appear as the "Point-to-Point" address for the > client. The Remote IP addresses are the IP's that are handed out to client > machines; you will need one for each machine you will have simultaneously > connected. Here's an example config: > > localip 192.168.100.254 > remoteip 192.168.100.240-192.168.100.253 > > In this configuration, one of the interfaces on the firewall machine is > configured as 192.168.100.254, and the clients receive the addresses > ..240-.253. > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From daniel at electricrain.com Fri Feb 4 12:56:56 2000 From: daniel at electricrain.com (Daniel Sully) Date: Fri Feb 4 12:56:56 2000 Subject: [pptp-server] compressed packet fix Message-ID: <20000204105635.A14333@electricrain.com> FYI - if others are having this problem. I believe I've found a solution. Set your mtu in /etc/ppp/options to 1460. -D -- God, root, what is difference? From cwf at att.net Fri Feb 4 16:15:00 2000 From: cwf at att.net (Chuck Flink) Date: Fri Feb 4 16:15:00 2000 Subject: [pptp-server] Some Dumb PPTP Testing Tricks ... a cheat sheet Message-ID: <005301bf6f5d$3cfb3140$0400a8c0@flink.net> On 1/31, Mike Barsalou posted a set of step-wise instructions on how to setup PoPToP on on RedHat Linux. His good work, plus the number of "newbie" questions posted, inspired me to put together the following web page documenting some of the "Dumb PPTP Testing Tricks" I used lately. It covers the client- side of the problem, not PoPToP or Linux, so it is complementary, not a replacement for Mike's cheat sheet. Thanks again, Mike. I hope it helps: http://www.infosecana.com/dump_pptp_testing_tricks.htm Note: Those are underscores, not blanks, in the URL. Underlining of valid URL strings hides the underscores in my mail reader.... if so on yours, you should be able to just "click" to jump to my page. - Chuck Flink cwf at att.net www.infosecana.com - Information Security Analysis LLC (336)852-3329 ---------- -------------- next part -------------- A non-text attachment was scrubbed... Name: Charles W. Flink.vcf Type: text/x-vcard Size: 490 bytes Desc: not available URL: From cwf at att.net Fri Feb 4 16:20:01 2000 From: cwf at att.net (Chuck Flink) Date: Fri Feb 4 16:20:01 2000 Subject: [pptp-server] Some Dumb PPTP Testing Tricks ... a cheat sheet References: <005301bf6f5d$3cfb3140$0400a8c0@flink.net> Message-ID: <006201bf6f5d$f6940280$0400a8c0@flink.net> Talk about DUMB.... I got the URL wrong! Try this: http://www.infosecana.com/dumb_pptp_testing_tricks.htm ----- Original Message ----- From: "Chuck Flink" To: Sent: Friday, February 04, 2000 5:14 PM Subject: [pptp-server] Some Dumb PPTP Testing Tricks ... a cheat sheet > On 1/31, Mike Barsalou posted a set of step-wise instructions > on how to setup PoPToP on on RedHat Linux. His good work, > plus the number of "newbie" questions posted, inspired me to > put together the following web page documenting some of the > "Dumb PPTP Testing Tricks" I used lately. It covers the client- > side of the problem, not PoPToP or Linux, so it is complementary, > not a replacement for Mike's cheat sheet. Thanks again, Mike. > > I hope it helps: > http://www.infosecana.com/dump_pptp_testing_tricks.htm > > Note: Those are underscores, not blanks, in the URL. > Underlining of valid URL strings hides the underscores in my > mail reader.... if so on yours, you should be able to just "click" > to jump to my page. > > - Chuck Flink cwf at att.net www.infosecana.com > - Information Security Analysis LLC (336)852-3329 > ---------- > > From cwf at att.net Fri Feb 4 16:45:50 2000 From: cwf at att.net (Chuck Flink) Date: Fri Feb 4 16:45:50 2000 Subject: [pptp-server] Tunneling to reach public IP address? References: <389893A8.BAE3C771@omnitracs.com.mx> <002a01bf6dc2$4c7ff340$bec8a8c0@coats.org> <389B19A8.361E1A60@omnitracs.com.mx> Message-ID: <006a01bf6f61$86e30900$0400a8c0@flink.net> See my page: http://www.infosecana.com/dumb_pptp_testing_tricks.htm In there is an example of the way the route table "pushes down" when you have the "use remote gateway" checked. Using the pure vanilla DUN interface to dial PPTP (e.g. as is in Win98se used in the example above), your options for handling the route table is limited to the check box for "use remote gateway". If you want to implement more complex routing rules by changing the route table one way upon completion of the tunnel connection, then undoing that when the tunnel comes down, you should get hold of the "Connection Manager" http://www.microsoft.com/TechNet/IEAK/technote/deploygd/APPD.asp This is a wizard that builds connection scripts that include automatic running of programs at various points of the process between start and finish of a tunnel session. E.g. it lets you build a connectoid that will first dial via a modem to an ISP (using one name and password) and then "dial" via a PPTP virtual modem to a PPTP (using another authentication pair) and then launch a specific set of programs.... all by clicking one shortcut on your desktop. It is used by WorldNet to implement their "Global Roaming" service for their business dial customers..... (some of the WorldNet security is dependent on dialing into a WorldNet modem pool and being assigned a 12.*.*.* address. If you're out of the country and want to get back to your WorldNet resources, you install their Global Roaming connectoid and it calls a local ISP in whatever country you're in and then PPTP tunnels to a WorldNet PoP.... assigning you, upon proper authentication, a 12. address as if you had dialed in to one of their PoPs directly. Ain't VPNs great?! - Chuck Flink ----- Original Message ----- From: "Sergio Dominguez" To: "Jack Coats" Cc: Sent: Friday, February 04, 2000 1:25 PM Subject: Re: [pptp-server] Tunneling to reach public IP address? > > Hello: > > I used the button "Use default gateway on remote network" on the > VPN connection properties. Good thing about this is that VPN clients > DO reach my whole network because the VPN link is the default gateway. > > Bad thing about it, is that, if the VPN client wants to BROWSE the Internet, > or even do some DNS query, all the traffic will go trough the VPN link and > then trough my corporate Internet link. > > The Networks file idea sounds great but I am clueless about it. > ( the main goal here is telling my VPN client a couple of static routes: > "send all the data going to the corporate networks (public)a.b.c.0 and > (private)10.0.0.0 trough the VPN link, send anything else trough your ISP" ). > > Can you guys give me some clue? > ( Yes I'm a newbie, I accept it! :( ) > > Thanks in advance gents. > > Jack Coats wrote: > > > Just a guess... let us know if it works ... > > > > If I get this right you probably want to turn off the button that makes > > the PPTP link your default gateway. ... To do all of what you want, > > you may need to set up a NETWORKS file to send all traffic for 10.x.x.x > > to the VPN and everything else out via the general gateway (via another > > link). > > > > Does that sound right to everyone else? > > > > ... Jack > > ----- Original Message ----- > > From: Sergio Dominguez > > To: > > Sent: Wednesday, February 02, 2000 2:29 PM > > Subject: [pptp-server] Tunneling to reach public IP address? > > > > > > > > Hello people: > > > > > > Given the following escenario, > > > > > > BIGSERVER has a 10.0.0.0 address and a valid public internet IP address > > > VPN PoPTop has a 172.23.1.0 address and a valid public internet IP > > > address. > > > The firewall restricts any access to BIGSERVER directly. > > > > > > Is it posible to configure PoPToP so it can redirect access from > > > workstations ... to BIGSERVER.company.com? > > >.... > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > > From willic2 at mail.auburn.edu Fri Feb 4 17:15:26 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Fri Feb 4 17:15:26 2000 Subject: [pptp-server] Server logs?? Message-ID: I don't quite know what's going on with the PoPToP server logs. I've installed it quite a few times trying to get it working and all those times, the pptpd binary would log messages to /var/log/pptpd.log or something like that. Now I've totally re-installed again and the messages are going to /var/log/messages. It also doesn't look like as much information is going into the log as before. I've got the debug option on in the pptpd.conf file. So: A) Why isn't the log going to the "right" place? B) Why am I not getting as much info written to the log? Thanks a lot! Chris Williams willic2 at mail.auburn.edu http://www.auburn.edu/~willic2 From nneogi at yahoo.com Sun Feb 6 07:36:13 2000 From: nneogi at yahoo.com (Nehali Neogi) Date: Sun Feb 6 07:36:13 2000 Subject: [pptp-server] Some Dumb PPTP Testing Tricks ... a cheat sheet Message-ID: <20000206133559.15032.qmail@web1006.mail.yahoo.com> Chuck, I think this is great work! I like the tricks. It clarified a lot of things that I always had little doubts and never saw it documented. Last couple of weeks I was strugging with setting up VPN gateway on my linux box and your document helped a lot! Anyway, here are a few suggestions/future enhancements: 1. I'm attaching a diagram of the VPN test environment. I modified yours and used your IPs so if you like it you can just insert it into your document. 2. I realized that this is a client->Server VPN connection. You can also have Server->Server VPN where you can connect two different lans. In that case your one lan (behind gateway) would have say private IP (192.168.1.x) and other lan (behind other gateway) would have private IP (192.168.2.x). I'm working on implementing this using linux. There would be some ARP and routing issues in this case. Thanks, --Nehali --- Chuck Flink wrote: > Talk about DUMB.... I got the URL wrong! Try this: > http://www.infosecana.com/dumb_pptp_testing_tricks.htm > > ----- Original Message ----- > From: "Chuck Flink" > To: > Sent: Friday, February 04, 2000 5:14 PM > Subject: [pptp-server] Some Dumb PPTP Testing Tricks > ... a cheat sheet > > > > On 1/31, Mike Barsalou posted a set of step-wise > instructions > > on how to setup PoPToP on on RedHat Linux. His > good work, > > plus the number of "newbie" questions posted, > inspired me to > > put together the following web page documenting > some of the > > "Dumb PPTP Testing Tricks" I used lately. It > covers the client- > > side of the problem, not PoPToP or Linux, so it is > complementary, > > not a replacement for Mike's cheat sheet. Thanks > again, Mike. > > > > I hope it helps: > > > http://www.infosecana.com/dump_pptp_testing_tricks.htm > > > > Note: Those are underscores, not blanks, in the > URL. > > Underlining of valid URL strings hides the > underscores in my > > mail reader.... if so on yours, you should be able > to just "click" > > to jump to my page. > > > > - Chuck Flink cwf at att.net www.infosecana.com > > - Information Security Analysis LLC (336)852-3329 > > ---------- > > > > > > > _______________________________________________ > pptp-server maillist - > pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > __________________________________________________ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com -------------- next part -------------- A non-text attachment was scrubbed... Name: VPN.doc Type: application/msword Size: 22016 bytes Desc: VPN.doc URL: From js1 at js1.org Mon Feb 7 09:31:33 2000 From: js1 at js1.org (Jiann-Ming Su) Date: Mon Feb 7 09:31:33 2000 Subject: [pptp-server] encryption problem Message-ID: I'm running pppd-2.3.8 with the MPPE patches. However, I'm having problems connecting to my samba server with Win98 and the latest and greatest MS DUN 128bit encryption update. I get a lot of unsupported protocol errors. However, as soon as I turn encryption off, connection works great. The one computer that was able to connect with encryption used the DUN40.EXE update. Any clues as to why this type of problem is occurring? Thanks for any help. Jiann-Ming Su, js1 at js1.org "...can you imagine a whole civilization that worships a god who created the very world that plagues them?" --Ajax From samu at uta.fi Mon Feb 7 09:41:43 2000 From: samu at uta.fi (Samu Mielonen) Date: Mon Feb 7 09:41:43 2000 Subject: [pptp-server] VPN from Win98SE/Cable modem to pptpd/RH6.1/Internet problem Message-ID: I have a very basic question (?) about pptp daemon setup that I've been wrestling with for over a week now. My apologies if this is a FAQ - I have ready through most of the list archives, but couldn't find (or couldn't understand) a reply to my question. My setup is as follows: Remote machine: Win98se with cable modem dedicated connection to Internet It has dynamic IP (actual non-NAT IP) through DHCP from my cable modem isp. Let's call it r.r.r.r. Local machine: RH6.1 box with pptpd 1.0 on a workplace LAN with direct connection to Internet through it's eth0 Interface This box has a dedicated (non-NAT IP) l.l.l.l. What I'm trying to achieve is to have my Win98SE connect to the RH6.1 pptpd via the cable modem connection, establish a tunnel and route ALL (at least initially) IP traffic to that tunnel and then route that IP traffic into our workplace network and to the global Internet from there. You might wonder why I want another tunneled IP access, when I already have a non-tunneled one through my cable modem, but lets just say I have my reasons :) Currently I can establish the connection to my pptpd (via the cable modem) from my Win98se box with the Dial-Up Network connection (through the VPN adapter). I'm able to log in to the pptp server and establish the connection. All of my setups have been exactly as guided in the pptp general setup and the RH specific setup guide (I'm not using encryption). My kernel is compiled and configured to use PPP, but not firewall or router specific functions (i.e. in the kernel config). The only thing I have set up differently is the: Use default gateway on remote network Setting that is now ON, so that my all IP traffic goes to the tunnel when the tunnel is established. I have also tried manual routing from DOS window with the route command and problems are the same. When I have established the Win98SE->PPTPD connection I can see from the Win98 VPN adapter dialog that packets go into the tunnel (bytes sent increases), but nothing comes back (no bytes received). I don't know what I'm doing wrong and I'm a TOTAL newbie in regards to routing, proxy arp, etc. I've read in many places that I should have the remote machine's address within the same subnet as the eth0 interface IP my local (pptp server) machine has. I've tried both of the following settings in /etc/pptpd.conf remoteip 192.168.1.234-238 # As described in the pptpd HOWTO localip 192.168.0.234-238 # As described in the pptpd HOWTO remoteip l.l.l.l+1 # A free IP from my local network localip l.l.l.l # my RH6.1 box's actual dedicated IP Neither set up works. Here is part of a log from an example session (using the first of the above two remoteip/localip setups). This below /var/log/pptpd is actually part of a debug I did with a client machine within our workplace LAN network along with the pptp server on the same network (thus now cable connection in this setup). The log is the same when I try the cable modem machine (just one ip changes). In the below log, my Win98 box is 128.214.124.181 and the server is samu1 (128.214.132.154). These both are the actual (non-tunnel) IP addresses of the specific machines. Feb 7 15:24:56 localhost pptpd[2829]: CTRL: Client 128.214.124.181 control connection started Feb 7 15:24:56 localhost pptpd[2829]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 15:24:56 localhost modprobe: can't locate module char-major-108 Feb 7 15:24:56 localhost pppd[2830]: pppd 2.3.10 started by root, uid 0 Feb 7 15:24:56 localhost pppd[2830]: Using interface ppp0 Feb 7 15:24:56 localhost pppd[2830]: Connect: ppp0 <--> /dev/pts/1 Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfReq id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfReq id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfRej id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfAck id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfReq id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfAck id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: sent [CHAP Challenge id=0x1 <0546ce70f2deb27f6a4683873817d134988d77ae1e0c52e1c78c0b92e3c2a0c3cbdcb6edc7898b17f1>, name = "servername"] Feb 7 15:24:56 localhost pppd[2830]: rcvd [CHAP Response id=0x1 , name = "samu"] Feb 7 15:24:56 localhost pppd[2830]: sent [CHAP Success id=0x1 "Welcome to samu1."] Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfReq id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfReq id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: CHAP peer authentication succeeded for samu Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x1

] Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfRej id=0x1

] Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfReq id=0x1 < 12 06 01 00 00 01> < 11 05 00 01 04>] Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfRej id=0x1 < 12 06 01 00 00 01> < 11 05 00 01 04>] Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfRej id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfReq id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfRej id=0x1 ] Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfReq id=0x2] Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfNak id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfReq id=0x2] Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfAck id=0x2] Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfAck id=0x2 ] Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfAck id=0x2] Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x3 ] Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfAck id=0x3 ] Feb 7 15:24:56 localhost pppd[2830]: Cannot determine ethernet address for proxy ARP Feb 7 15:24:56 localhost pppd[2830]: local IP address 192.168.0.235 Feb 7 15:24:56 localhost pppd[2830]: remote IP address 192.168.1.235 Feb 7 15:24:56 localhost pppd[2830]: Script /etc/ppp/ip-up started (pid 2832) Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP TermReq id=0x3] Feb 7 15:24:56 localhost pppd[2830]: CCP terminated by peer Feb 7 15:24:56 localhost pppd[2830]: sent [CCP TermAck id=0x3] Feb 7 15:24:56 localhost pppd[2830]: Compression disabled by peer. Feb 7 15:24:56 localhost pppd[2830]: Script /etc/ppp/ip-up finished (pid 2832), status = 0x0 Feb 7 15:26:30 localhost pppd[2830]: rcvd [LCP TermReq id=0x3] Feb 7 15:26:30 localhost pppd[2830]: LCP terminated by peer Feb 7 15:26:30 localhost pppd[2830]: Script /etc/ppp/ip-down started (pid 2862)Feb 7 15:26:30 localhost pppd[2830]: sent [LCP TermAck id=0x3] Feb 7 15:26:30 localhost pptpd[2829]: CTRL: Error with select(), quitting Feb 7 15:26:30 localhost pptpd[2829]: CTRL: Client 128.214.124.181 control connection finished Feb 7 15:26:30 localhost pppd[2830]: Modem hangup Feb 7 15:26:30 localhost pppd[2830]: Connection terminated. Feb 7 15:26:30 localhost pppd[2830]: Connect time 1.6 minutes. Feb 7 15:26:30 localhost pppd[2830]: Sent 378 bytes, received 4251 bytes. Feb 7 15:26:30 localhost pppd[2830]: Waiting for 1 child processes... Feb 7 15:26:30 localhost pppd[2830]: script /etc/ppp/ip-down, pid 2862 Feb 7 15:26:30 localhost pppd[2830]: Script /etc/ppp/ip-down finished (pid 2862), status = 0x0 Feb 7 15:26:30 localhost pppd[2830]: Exit. In the local LAN example (above) I'm able to ping all local 128.214.x.x addresses successfully once the tunnel is up, but any outside network ip address gives me "Request timed out" in DOS ping. Likewise, if I use a web browser, I can browse our local LAN www-server, but any outside link does not work. Can anybody from the above script tell me why I can't get my connection up in such a manner that it sends/receives ip-packets properly and reroutes them to our workplace LAN and the outside Internet via the pptpd tunnel? If this indeed is a FAQ, I would appreciate pointers to earliers answers or some documents a mere layman could understand. I've been trying to educate myself on this matter myself, but it seems I've ran out of steam on my own. Any help would be appreciated. Best regards, Samu Mielonen PS Just for the sake of completeness, my ppp/options and pptpd.conf files: /etc/ppp/options ================ lock debug name servername auth require-chap proxyarp # Please don't tell me that I don't need to use proxyarp. I have no # idea what that means - I don't know what else to use and HOW to use it /etc/pptpd.conf =============== localip 192.168.0.234-238 remoteip 192.168.1.234-238 From nmeyers at javalinux.net Mon Feb 7 10:10:27 2000 From: nmeyers at javalinux.net (Nathan Meyers) Date: Mon Feb 7 10:10:27 2000 Subject: [pptp-server] VPN from Win98SE/Cable modem to pptpd/RH6.1/Internet problem References: Message-ID: <389EEE34.35684BA1@javalinux.net> Samu Mielonen wrote: > > I have a very basic question (?) about pptp daemon setup that I've > been wrestling with for over a week now. A bit of additional info would help. While connected through the VPN, could you capture output from the following 3 commands on the Linux side: /sbin/ifconfig /sbin/route -n /sbin/arp -a You don't need to be root to run any of them. Nathan > > My apologies if this is a FAQ - I have ready through most of the > list archives, but couldn't find (or couldn't understand) a reply > to my question. > > My setup is as follows: > > Remote machine: Win98se with cable modem dedicated connection to Internet > It has dynamic IP (actual non-NAT IP) through DHCP > from my cable modem isp. Let's call it r.r.r.r. > > Local machine: RH6.1 box with pptpd 1.0 on a workplace LAN with direct > connection to Internet through it's eth0 Interface > This box has a dedicated (non-NAT IP) l.l.l.l. > > What I'm trying to achieve is to have my Win98SE connect to the RH6.1 > pptpd via the cable modem connection, establish a tunnel and route > ALL (at least initially) IP traffic to that tunnel and then route that > IP traffic into our workplace network and to the global Internet from > there. > > You might wonder why I want another tunneled IP access, when > I already have a non-tunneled one through my cable modem, but lets just > say I have my reasons :) > > Currently I can establish the connection to my pptpd (via the cable > modem) from my Win98se box with the Dial-Up Network connection (through > the VPN adapter). I'm able to log in to the pptp server and establish the > connection. > > All of my setups have been exactly as guided in the pptp general > setup and the RH specific setup guide (I'm not using encryption). > My kernel is compiled and configured to use PPP, but not firewall or > router specific functions (i.e. in the kernel config). > > The only thing I have set up differently is the: > > Use default gateway on remote network > > Setting that is now ON, so that my all IP traffic goes to the > tunnel when the tunnel is established. I have also tried > manual routing from DOS window with the route command and > problems are the same. > > When I have established the Win98SE->PPTPD connection I can see > from the Win98 VPN adapter dialog that packets go into the tunnel > (bytes sent increases), but nothing comes back (no bytes received). > > I don't know what I'm doing wrong and I'm a TOTAL newbie in > regards to routing, proxy arp, etc. > > I've read in many places that I should have the remote machine's > address within the same subnet as the eth0 interface IP my local > (pptp server) machine has. > > I've tried both of the following settings in /etc/pptpd.conf > > remoteip 192.168.1.234-238 # As described in the pptpd HOWTO > localip 192.168.0.234-238 # As described in the pptpd HOWTO > > remoteip l.l.l.l+1 # A free IP from my local network > localip l.l.l.l # my RH6.1 box's actual dedicated IP > > Neither set up works. > > Here is part of a log from an example session (using the first of > the above two remoteip/localip setups). > > This below /var/log/pptpd is actually part of a debug I did > with a client machine within our workplace LAN network along with > the pptp server on the same network (thus now cable connection > in this setup). The log is the same when I try the cable modem > machine (just one ip changes). > > In the below log, my Win98 box is 128.214.124.181 and the > server is samu1 (128.214.132.154). These both are the actual > (non-tunnel) IP addresses of the specific machines. > > Feb 7 15:24:56 localhost pptpd[2829]: CTRL: Client 128.214.124.181 > control connection started > > Feb 7 15:24:56 localhost pptpd[2829]: CTRL: Starting call (launching > pppd, opening GRE) > > Feb 7 15:24:56 localhost modprobe: can't locate module char-major-108 > > Feb 7 15:24:56 localhost pppd[2830]: pppd 2.3.10 started by root, uid 0 > > Feb 7 15:24:56 localhost pppd[2830]: Using interface ppp0 > > Feb 7 15:24:56 localhost pppd[2830]: Connect: ppp0 <--> /dev/pts/1 > > Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfReq id=0x1 0x0> ] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfReq id=0x1 0xa0000> ] > > Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfRej id=0x1 CBCP>] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfAck id=0x1 0x0> ] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [LCP ConfReq id=0x2 0xa0000> ] > > Feb 7 15:24:56 localhost pppd[2830]: sent [LCP ConfAck id=0x2 0xa0000> ] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CHAP Challenge id=0x1 > <0546ce70f2deb27f6a4683873817d134988d77ae1e0c52e1c78c0b92e3c2a0c3cbdcb6edc7898b17f1>, > name = "servername"] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CHAP Response id=0x1 > , name = "samu"] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CHAP Success id=0x1 "Welcome > to samu1."] > > Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfReq id=0x1 192.168.0.235> ] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfReq id=0x1 15> ] > > Feb 7 15:24:56 localhost pppd[2830]: CHAP peer authentication succeeded > for samu > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x1 0.0.0.0>

0.0.0.0>] > > Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfRej id=0x1 0.0.0.0>

] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfReq id=0x1 < 12 06 01 > 00 00 01> < 11 05 00 01 04>] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfRej id=0x1 < 12 06 01 > 00 00 01> < 11 05 00 01 04>] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfRej id=0x1 VJ 0f 01>] > > Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfReq id=0x2 192.168.0.235>] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfRej id=0x1 15> ] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfReq id=0x2] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x2 0.0.0.0>] > > Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfNak id=0x2 192.168.1.235>] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfReq id=0x2] > > Feb 7 15:24:56 localhost pppd[2830]: sent [CCP ConfAck id=0x2] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfAck id=0x2 192.168.0.235>] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP ConfAck id=0x2] > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [IPCP ConfReq id=0x3 192.168.1.235>] > > Feb 7 15:24:56 localhost pppd[2830]: sent [IPCP ConfAck id=0x3 192.168.1.235>] > > Feb 7 15:24:56 localhost pppd[2830]: Cannot determine ethernet address > for proxy ARP > > Feb 7 15:24:56 localhost pppd[2830]: local IP address 192.168.0.235 > > Feb 7 15:24:56 localhost pppd[2830]: remote IP address 192.168.1.235 > > Feb 7 15:24:56 localhost pppd[2830]: Script /etc/ppp/ip-up started (pid > 2832) > > Feb 7 15:24:56 localhost pppd[2830]: rcvd [CCP TermReq id=0x3] > > Feb 7 15:24:56 localhost pppd[2830]: CCP terminated by peer > > Feb 7 15:24:56 localhost pppd[2830]: sent [CCP TermAck id=0x3] > > Feb 7 15:24:56 localhost pppd[2830]: Compression disabled by peer. > > Feb 7 15:24:56 localhost pppd[2830]: Script /etc/ppp/ip-up finished (pid > 2832), status = 0x0 > > Feb 7 15:26:30 localhost pppd[2830]: rcvd [LCP TermReq id=0x3] > > Feb 7 15:26:30 localhost pppd[2830]: LCP terminated by peer > > Feb 7 15:26:30 localhost pppd[2830]: Script /etc/ppp/ip-down started (pid > 2862)Feb 7 15:26:30 localhost pppd[2830]: sent [LCP TermAck id=0x3] > > Feb 7 15:26:30 localhost pptpd[2829]: CTRL: Error with select(), quitting > > Feb 7 15:26:30 localhost pptpd[2829]: CTRL: Client 128.214.124.181 > control connection finished > > Feb 7 15:26:30 localhost pppd[2830]: Modem hangup > > Feb 7 15:26:30 localhost pppd[2830]: Connection terminated. > > Feb 7 15:26:30 localhost pppd[2830]: Connect time 1.6 minutes. > > Feb 7 15:26:30 localhost pppd[2830]: Sent 378 bytes, received 4251 bytes. > > Feb 7 15:26:30 localhost pppd[2830]: Waiting for 1 child processes... > > Feb 7 15:26:30 localhost pppd[2830]: script /etc/ppp/ip-down, pid 2862 > > Feb 7 15:26:30 localhost pppd[2830]: Script /etc/ppp/ip-down finished > (pid 2862), status = 0x0 > > Feb 7 15:26:30 localhost pppd[2830]: Exit. > > In the local LAN example (above) I'm able to ping all local > 128.214.x.x addresses successfully once the tunnel is up, but any > outside network ip address gives me "Request timed out" in DOS ping. > > Likewise, if I use a web browser, I can browse our local LAN > www-server, but any outside link does not work. > > Can anybody from the above script tell me why I can't get my > connection up in such a manner that it sends/receives ip-packets > properly and reroutes them to our workplace LAN and the outside > Internet via the pptpd tunnel? > > If this indeed is a FAQ, I would appreciate pointers to earliers > answers or some documents a mere layman could understand. I've > been trying to educate myself on this matter myself, but it seems > I've ran out of steam on my own. > > Any help would be appreciated. > > Best regards, > Samu Mielonen > > PS Just for the sake of completeness, my ppp/options and pptpd.conf files: > > /etc/ppp/options > ================ > lock > debug > name servername > auth > require-chap > proxyarp > > # Please don't tell me that I don't need to use proxyarp. I have no > # idea what that means - I don't know what else to use and HOW to use it > > /etc/pptpd.conf > =============== > localip 192.168.0.234-238 > remoteip 192.168.1.234-238 > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! From SCody at Gulbrandsen.com Mon Feb 7 10:29:02 2000 From: SCody at Gulbrandsen.com (Steve Cody) Date: Mon Feb 7 10:29:02 2000 Subject: [pptp-server] Only one PPTP Client for Linux?? Message-ID: I have only found one client for linux to connect to PPTP servers. Has anyone found any others? This on in particular is found on this site: http://www.pdos.lcs.mit.edu/~cananian/Projects/PPTP/ It is no longer being maintained, upgraded, etc. by its author. I am having some problems with it and I don't want to keep bothering someone who doesn't maintain the software anymore. I'd prefer someone who is active in the development, and continued improvement of a client. Thanks in advance! Steve Cody From aaluosta at cc.helsinki.fi Mon Feb 7 16:14:31 2000 From: aaluosta at cc.helsinki.fi (Antti A Luostarinen) Date: Mon Feb 7 16:14:31 2000 Subject: [pptp-server] Error with select(), quitting. Message-ID: <200002072213.AAA11685@myntti.helsinki.fi> Hi! I've requested the port 1723 open from the linux-box I run pptpd on, my initial setup is as what the main FAQ on the www-site says.. The following processes spawn while I connect from my Win98SE box: root 7253 0.0 0.3 780 436 ? S 01:04 0:00 /usr/local/sbin/pptpd root 7257 0.1 0.3 816 448 ? S 01:05 0:00 pptpd [212.90.78.176] root 7258 0.2 0.4 1132 612 ? S 01:05 0:00 /usr/sbin/pppd local 115200 192.168.0.235:192.168.1.235 What the logs say: Feb 8 01:08:23 www pptpd[7273]: CTRL: Client 212.90.78.176 control connection started Feb 8 01:08:23 www pptpd[7273]: CTRL: Starting call (launching pppd, opening GRE) Feb 8 01:08:23 www pppd[7274]: pppd 2.3.10 started by root, uid 0 Feb 8 01:08:23 www pppd[7274]: Using interface ppp0 Feb 8 01:08:23 www pppd[7274]: Connect: ppp0 <--> /dev/ttyp1 Feb 8 01:08:50 www pptpd[7273]: CTRL: Error with select(), quitting Feb 8 01:08:50 www pptpd[7273]: CTRL: Client 212.90.78.176 control connection finished Feb 8 01:08:50 www pppd[7274]: Modem hangup Feb 8 01:08:50 www pppd[7274]: Connection terminated. Feb 8 01:08:50 www pppd[7274]: Exit. Any ideas? please answer with also e-mail Antti -- --axu at bat.org . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Antti Aleksi Luostarinen a.k.a. Amarth Shadowstring of BatMUD . . . . . . . . . . . . phone: +358 40 7306292 or 040-7306292 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . antti.luostarinen at helsinki.fi-- From aaluosta at cc.helsinki.fi Mon Feb 7 16:32:51 2000 From: aaluosta at cc.helsinki.fi (Antti A Luostarinen) Date: Mon Feb 7 16:32:51 2000 Subject: [pptp-server] More about Error with select(), quitting. Message-ID: <200002072232.AAA12059@myntti.helsinki.fi> I fiddled with the settings a bit more and found the following coming to the pptpd server's logs: Feb 8 01:25:12 www pptpd[7379]: CTRL: Client 212.90.78.176 control connection started Feb 8 01:25:12 www pptpd[7379]: CTRL: Starting call (launching pppd, opening GRE) Feb 8 01:25:12 www pppd[7380]: pppd 2.3.10 started by root, uid 0 Feb 8 01:25:12 www pppd[7380]: Using interface ppp0 Feb 8 01:25:12 www pppd[7380]: Connect: ppp0 <--> /dev/ttyp2 Feb 8 01:25:43 www pppd[7380]: LCP: timeout sending Config-Requests Feb 8 01:25:43 www pptpd[7379]: GRE: read(fd=4,buffer=804d40c,len=8196) from PTY failed: status = -1 error = Input/output error Feb 8 01:25:43 www pptpd[7379]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 8 01:25:43 www pptpd[7379]: CTRL: Client 212.90.78.176 control connection finished Feb 8 01:25:43 www pppd[7380]: Connection terminated. Feb 8 01:25:43 www pppd[7380]: Exit. Any help? -- --axu at bat.org . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Antti Aleksi Luostarinen a.k.a. Amarth Shadowstring of BatMUD . . . . . . . . . . . . phone: +358 40 7306292 or 040-7306292 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . antti.luostarinen at helsinki.fi-- From tmk at netmagic.net Mon Feb 7 18:58:51 2000 From: tmk at netmagic.net (tmk) Date: Mon Feb 7 18:58:51 2000 Subject: [pptp-server] More about Error with select(), quitting. References: <200002072232.AAA12059@myntti.helsinki.fi> Message-ID: <001501bf71cf$5eb5b980$071c0fc0@lala.net> your ppp link is dying, check that proto 47 is allowed through any firewalls you may have and that both sides have the correct ppp configuration ie #allow all GRE packets (proto 47) ipchains -I input -p 47 -j ACCEPT -kevin ----- Original Message ----- From: Antti A Luostarinen To: Sent: Monday, February 07, 2000 2:32 PM Subject: [pptp-server] More about Error with select(), quitting. > I fiddled with the settings a bit more and found the following coming to > the pptpd server's logs: > > > Feb 8 01:25:12 www pptpd[7379]: CTRL: Client 212.90.78.176 control > connection started > Feb 8 01:25:12 www pptpd[7379]: CTRL: Starting call (launching pppd, > opening GRE) > Feb 8 01:25:12 www pppd[7380]: pppd 2.3.10 started by root, uid 0 > Feb 8 01:25:12 www pppd[7380]: Using interface ppp0 > Feb 8 01:25:12 www pppd[7380]: Connect: ppp0 <--> /dev/ttyp2 > Feb 8 01:25:43 www pppd[7380]: LCP: timeout sending Config-Requests > Feb 8 01:25:43 www pptpd[7379]: GRE: read(fd=4,buffer=804d40c,len=8196) > from PTY failed: status = -1 error = Input/output error > Feb 8 01:25:43 www pptpd[7379]: CTRL: PTY read or GRE write failed > (pty,gre)=(4,5) > Feb 8 01:25:43 www pptpd[7379]: CTRL: Client 212.90.78.176 control > connection finished > Feb 8 01:25:43 www pppd[7380]: Connection terminated. > Feb 8 01:25:43 www pppd[7380]: Exit. > > > Any help? > > -- > --axu at bat.org . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . > . . . Antti Aleksi Luostarinen a.k.a. Amarth Shadowstring of BatMUD . . . > . . . . . . . . . phone: +358 40 7306292 or 040-7306292 . . . . . . . . . > . . . . . . . . . . . . . . . . . . . . . antti.luostarinen at helsinki.fi-- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From s.mcnee at mail.cosmicfx.com Mon Feb 7 20:32:40 2000 From: s.mcnee at mail.cosmicfx.com (Scott McNee) Date: Mon Feb 7 20:32:40 2000 Subject: [pptp-server] respawning error. Message-ID: <000101bf71dd$2c8fdcc0$fd01a8c0@mcnee> If anyone could spare the time could you please answer a few questions. Current specs- fresh install of RH6.1 Standard RPM install as per the how-to on www.moretonbay.com PPP internet connection The problem OK what is happening is the daemon is respawning contiuously whenever it is run. As a result the first instance takes the avaliable port and every other instance causes a CreateHostSocket error. Any thoughts. Ps. Only occasionaly can a win98 client connect . Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: From mjbarsalou at attglobal.net Tue Feb 8 13:02:39 2000 From: mjbarsalou at attglobal.net (Michael Barsalou) Date: Tue Feb 8 13:02:39 2000 Subject: [pptp-server] respawning Message-ID: <200002081902.NAA15655@snaildust.schulte.org> Scott, Most likely if it is respawning over and over again, you probably have some options in your ppp options file that are not valid. Edit your /etc/inittab and comment out the reference to pptp (probably near the bottom of the file) then type: init Q That should fix the respawning. From willic2 at mail.auburn.edu Tue Feb 8 22:47:37 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Tue Feb 8 22:47:37 2000 Subject: [pptp-server] Help with configuration! Message-ID: We have gotten to the point with a linux poptop configuration where we should be able to connect using a Windows box without encryption. Problem is that I'm not sure what's going on with the pptpd.conf file. Our network is set up like this: Linux box: 131.204.27.30 Other valid IP's not in use on the LAN: 131.204.27.31 Windows machine will dial into ISP then start the VPN connection. Connection appears to be ok but tcp/ip traffic doesn't appear to go through the tunnel to the vpn but goes straight to the internet from the windows machine. I have included the pptpd.conf file and the pptpd.log file. I'm gonna go bald soon if someone doesn't help me figure this one out. As for the client, we've installed the DUN40 update and I think it's clean on the client end and that the server isn't working right... The check boxes on the client are: netbeui is off ipx/spx is off ip header compression is off use default gw on remote network is off Thanks, Chris From shaeff at mediaone.net Tue Feb 8 23:19:24 2000 From: shaeff at mediaone.net (Noel Schaefer) Date: Tue Feb 8 23:19:24 2000 Subject: [pptp-server] Vpn and games Message-ID: <38A0AFB7.4E3F1B0F@mediaone.net> well after a 2 months of playing with vpn i have finally make a vpn connection from the remote client to the local client ( remote <------>vpn-server<------>local computer ) It was not easy i had to figure out what was blocking the connection . It would appear that the tunneled connection does not broadcast on the local network, so to get a vpn connection you have to tell the vpn client the ip of the computer that you are connecting too ! if you wanted to play Ta-Kindmos you would have to the look for the computer ip that is hosting the game. Say the remote client would like to connect to a game on the local, then you would start the game up and look for a game. Using " find a game using IP address " the click on " Update list " some times you have to repeat this many times to see the local game. Once you are in you can play as if you where on a normal local connection. For games like Half-life you both start a lan game then on the local system you will pull down the tremal and type "connect ip here " and the game will start. I have found that if you do this the other way around remote connect to a local game then the connection will die !! So this is a easy way around a annoying problem. For games that rely on broadcast instead of ip to ip you will not be able to connect to a such as Homeworld. As far as games that us broadcasting to find each other you might need a NIS running to resolve the names to ip or for that mater the broadcast from one subnet to any other ! This may vary for some of you, which depends on how you have you network setup ( and or pptp server ) ! Good luck and happy tunneling ! From Hytham at Reamined.on.ca Wed Feb 9 08:05:19 2000 From: Hytham at Reamined.on.ca (Hytham) Date: Wed Feb 9 08:05:19 2000 Subject: [pptp-server] NT client will not connect/LINUX client will not connect Message-ID: <000a01bf7306$3565b840$8400000a@reamined.on.ca> Quick set-up overview: Sorry if this is a stupid problem, but I have limited LINUX experience. @Home using: RH 6.1, PPTPD v1.0.0, PPTP client v1.0.2, PPPD v2.3.10 IP Address: 1.1.1.1 of Linux Client, & pptpd server Remote Server: 2.2.2.2 running NT Server 4.0 RAS I am having a great deal of trouble getting either end to work properly. When connecting with the Linux client, I always get the error message that the remote client should authenticate itself. I am pretty sure that I have set-up the /etc/ppp/chap-secrets file correctly. Here is a snip from the log file: Feb 9 00:10:56 Tigerden pppd[696]: The remote system (2.2.2.2) is required to authenticate itself but I Feb 9 00:10:56 Tigerden pppd[696]: couldn't find any suitable secret (password) for it to use to do so. I also receive this error when I connect using the Linux client: Feb 9 00:03:22 Tigerden pppd[665]: In file /etc/ppp/options: unrecognized option '+chapms' The previous message will also repeat with +chapms-v2, mppe-40. When I attempt to connect with my NT client I always receive an "error 629: The data link was terminated by the remote machine." I have include my /etc/ppp/options and /etc/ppp/chap-secrets files....If anyone can help that would be greatly appreciated. # Secrets for authentication using CHAP # client server secret IP addresses 2.2.2.2 1.1.1.1 ******** * <------------ LINUX PPTPD server workgroup\\administrator 2.2.2.2 ******** * <------------ remote NT PPTP server I am pretty sure where I made the error in the chap-secrets file, I am simply hoping that someone would confirm that. # Options File snip: lock debug auth +chap proxyarp +chapms +chapms-v2 mppe-40 mppe-128 mppe-stateless I understand the localip is the interface which pptpd will listen for incoming connections, while the remote ip option is for addressing purposes to those clients connecting right? pptpd.conf file snip: # TAG: option # # Specifies the location of the PPP options file. # By default PPP looks in '/etc/ppp/options' # #option /this/is/the/options/file # localip 1.1.1.1 remoteip 10.0.0.168 # From natecars at real-time.com Wed Feb 9 09:32:37 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 9 09:32:37 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: On Tue, 8 Feb 2000, Chris Williams wrote: > We have gotten to the point with a linux poptop configuration where we > should be able to connect using a Windows box without encryption. Problem > is that I'm not sure what's going on with the pptpd.conf file. Our > network is set up like this: > > Linux box: 131.204.27.30 > Other valid IP's not in use on the LAN: 131.204.27.31 > > Windows machine will dial into ISP then start the VPN connection. > Connection appears to be ok but tcp/ip traffic doesn't appear to go > through the tunnel to the vpn but goes straight to the internet from the > windows machine. I have included the pptpd.conf file and the pptpd.log > file. I'm gonna go bald soon if someone doesn't help me figure this one > out. > > As for the client, we've installed the DUN40 update and I think it's clean > on the client end and that the server isn't working right... > The check boxes on the client are: > netbeui is off > ipx/spx is off > ip header compression is off > use default gw on remote network is off > Chris, Can you please post more information? A dump of your pptpd.conf and log files would be very helpful. Also, what exactly are you trying to? Do you have a firewalled network behind the linux machine that you are trying to allow VPN access to? Or something else? -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From willic2 at mail.auburn.edu Wed Feb 9 10:20:12 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Wed Feb 9 10:20:12 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: I'm waiting on the list-mom to approve my post that has those 2 files in it. What we are trying to do is set up a VPN so that the client can access the LAN machines within the firewall. Our impression about how the VPN works is that the client will appear (as far as tcp/ip is concerned) as he is on the LAN... What's the point of setting up a VPN without encryption if the traffic from the client goes over the net anyway? I thought that even traffic destined for some site not on out LAN would still go through our LAN after the VPN was setup and through our internet gateway... Please correct me if I'm wrong... Thanks, Chris On Wed, 9 Feb 2000, Nate Carlson wrote: > On Tue, 8 Feb 2000, Chris Williams wrote: > > > We have gotten to the point with a linux poptop configuration where we > > should be able to connect using a Windows box without encryption. Problem > > is that I'm not sure what's going on with the pptpd.conf file. Our > > network is set up like this: > > > > Linux box: 131.204.27.30 > > Other valid IP's not in use on the LAN: 131.204.27.31 > > > > Windows machine will dial into ISP then start the VPN connection. > > Connection appears to be ok but tcp/ip traffic doesn't appear to go > > through the tunnel to the vpn but goes straight to the internet from the > > windows machine. I have included the pptpd.conf file and the pptpd.log > > file. I'm gonna go bald soon if someone doesn't help me figure this one > > out. > > > > As for the client, we've installed the DUN40 update and I think it's clean > > on the client end and that the server isn't working right... > > The check boxes on the client are: > > netbeui is off > > ipx/spx is off > > ip header compression is off > > use default gw on remote network is off > > > > Chris, > > Can you please post more information? A dump of your pptpd.conf and log > files would be very helpful. Also, what exactly are you trying to? Do you > have a firewalled network behind the linux machine that you are trying to > allow VPN access to? Or something else? > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From natecars at real-time.com Wed Feb 9 10:37:35 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 9 10:37:35 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: On Wed, 9 Feb 2000, Chris Williams wrote: > I'm waiting on the list-mom to approve my post that has those 2 files in > it. > > What we are trying to do is set up a VPN so that the client can access the > LAN machines within the firewall. > > Our impression about how the VPN works is that the client will appear > (as far as tcp/ip is concerned) as he is on the LAN... What's the point > of setting up a VPN without encryption if the traffic from the client goes > over the net anyway? I thought that even traffic destined for some site > not on out LAN would still go through our LAN after the VPN was setup and > through our internet gateway... > > Please correct me if I'm wrong... Chris, I think you may have made some incorrect assumptions about how PPTP/VPN works. I'll detail how I've used it (which is similar to what you are planning on, I think): Here's the "typical" network setup that I've used pptp with: ----------- ----------------- -------- -------------- | win lan |------| masq firewall |-------| 'net |------| win client | ----------- ----------------- -------- -------------- Let's assume the following IP Addresses: Windows Network: 192.168.0.0/24 Unused IP's: 192.168.0.240-192.168.0.249 Masq Firewall: 192.168.0.254 & 10.0.0.1 "Internet": 10.0.0.0/16 Windows Client: 10.0.1.1 Here is the PPTPD configuration I would use on the Firewall to make this work: pptpd.conf: localip 192.168.0.254 remoteip 192.168.0.240-249 So, the windows client dials in to the firewall, authenticates itself (with the secrets set up in /etc/ppp/chap-secrets), and is given an ip address between 192.168.0.240 and 192.168.0.249. You do _not_ give these clients real internet ip's; you give them IP's in the private network. Routes on the client machine should be configured to use the VPN interface to reach the 192.168.0.n network, which is generally done automatically by the program making the VPN connection (in this case, dial-up networking.) To get encrypted traffic over this stream, you have to recompile your kernel ppp modules and your ppp daemon, and configure /etc/ppp/options differently. Hope this helps you; I could also be totally wrong about what you are trying to do. Maybe when your files come through I'll be able to tell better.. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From natecars at real-time.com Wed Feb 9 10:46:18 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 9 10:46:18 2000 Subject: [pptp-server] Encryption with Linux PPTP Client? Message-ID: (I know this isn't the right list for this, but it's the closest, and I've seen many other posts regarding the Linux PPTP clients here before, so I figured I'd give it a shot.) I'm wondering if anyone has successfully made a connection between the Linux PPTP client and the PoPToP server _with_ encryption. If so, could you post the basic configuration files you use to make this work, and the command line pptp (the client) is called with? Everything I've tried has failed horribly. Thanks! -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From willic2 at mail.auburn.edu Wed Feb 9 13:46:41 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Wed Feb 9 13:46:41 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: The way we are setup is like this: ----------- ------------- -------- ------- -------------- | large | | | | | | | | | | campus |----| firewall |---| 'net |---| ISP |----| win client | | network | | | | | | | | | ----------- ------------- -------- ------- -------------- The PPTP server is actually within the large campus network with the ports opened at the firewall to let the PPTP traffic through. This allows the client to dial into his ISP then start the VPN session. I thought that this would mean that the windows machine would only route tcp/ip packets to/through the poptop server running inside the campus network. If I'm wrong then the client will route packets through the internet OR the pptp server, whichever it thinks it needs to, right? If this is the case, what's the point of getting encryption working? Why wouldn't the client trying to access a web site like netscape.com send those packets through the pptp server then they would be routed to the netscape server off campus? This way, the client will have a secure connection and be (in effect) behind a firewall. Another big question: If I'm wrong and the above is true about the routing, how in the heck can I test this setup? If I go to the engineering web page, there are 2 different versions: one for people from off campus and one for people on campus. When we set up the VPN adapter and try to go the engineering web page, we get the off campus one. Do you understand my problem here? Maybe you can clear up my incorrect assumptions. Meanwhile, I'm still waiting on the list mom to either accept or decline my message with the logs attached. > On Wed, 9 Feb 2000, Chris Williams wrote: > >> I'm waiting on the list-mom to approve my post that has those 2 files in >> it. >> >> What we are trying to do is set up a VPN so that the client can access the >> LAN machines within the firewall. >> >> Our impression about how the VPN works is that the client will appear >> (as far as tcp/ip is concerned) as he is on the LAN... What's the point >> of setting up a VPN without encryption if the traffic from the client goes >> over the net anyway? I thought that even traffic destined for some site >> not on out LAN would still go through our LAN after the VPN was setup and >> through our internet gateway... >> >> Please correct me if I'm wrong... > > Chris, > > I think you may have made some incorrect assumptions about how PPTP/VPN > works. I'll detail how I've used it (which is similar to what you are > planning on, I think): > > Here's the "typical" network setup that I've used pptp with: > > ----------- ----------------- -------- -------------- > | win lan |------| masq firewall |-------| 'net |------| win client | > ----------- ----------------- -------- -------------- > > Let's assume the following IP Addresses: > > Windows Network: 192.168.0.0/24 > Unused IP's: 192.168.0.240-192.168.0.249 > Masq Firewall: 192.168.0.254 & 10.0.0.1 > "Internet": 10.0.0.0/16 > Windows Client: 10.0.1.1 > > Here is the PPTPD configuration I would use on the Firewall to make this work: > > pptpd.conf: > localip 192.168.0.254 > remoteip 192.168.0.240-249 > > So, the windows client dials in to the firewall, authenticates itself > (with the secrets set up in /etc/ppp/chap-secrets), and is given an ip > address between 192.168.0.240 and 192.168.0.249. You do _not_ give these > clients real internet ip's; you give them IP's in the private network. > Routes on the client machine should be configured to use the VPN interface > to reach the 192.168.0.n network, which is generally done automatically by > the program making the VPN connection (in this case, dial-up networking.) > To get encrypted traffic over this stream, you have to recompile your > kernel ppp modules and your ppp daemon, and configure /etc/ppp/options > differently. > > Hope this helps you; I could also be totally wrong about what you are > trying to do. Maybe when your files come through I'll be able to tell > better.. > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > From tmk at netmagic.net Wed Feb 9 14:28:42 2000 From: tmk at netmagic.net (tmk) Date: Wed Feb 9 14:28:42 2000 Subject: [pptp-server] Encryption with Linux PPTP Client? References: Message-ID: <000c01bf733c$18b04360$071c0fc0@lala.net> the encryption is a function of pppd, and if you can get that working, then pptp will work too. follow all the instructions for making encryption work in pptpd [which really just tells you how to do encryption with linux], and if you still cant get it, ask the forum again with more specific questions. Kevin ----- Original Message ----- From: Nate Carlson To: PoPToP mailing list Sent: Wednesday, February 09, 2000 8:46 AM Subject: [pptp-server] Encryption with Linux PPTP Client? > (I know this isn't the right list for this, but it's the closest, and I've > seen many other posts regarding the Linux PPTP clients here before, so I > figured I'd give it a shot.) > > I'm wondering if anyone has successfully made a connection between the > Linux PPTP client and the PoPToP server _with_ encryption. If so, could > you post the basic configuration files you use to make this work, and the > command line pptp (the client) is called with? Everything I've tried has > failed horribly. Thanks! > > -- > Nate Carlson | Phone : (612)943-8700 > http://www.real-time.com | Fax : (612)943-8500 > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > From natecars at real-time.com Wed Feb 9 14:37:25 2000 From: natecars at real-time.com (Nate Carlson) Date: Wed Feb 9 14:37:25 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: On Wed, 9 Feb 2000, Chris Williams wrote: > The way we are setup is like this: > > ----------- ------------- -------- ------- -------------- > | large | | | | | | | | | > | campus |----| firewall |---| 'net |---| ISP |----| win client | > | network | | | | | | | | | > ----------- ------------- -------- ------- -------------- > > The PPTP server is actually within the large campus network with the ports > opened at the firewall to let the PPTP traffic through. > > This allows the client to dial into his ISP then start the VPN session. I > thought that this would mean that the windows machine would only route > tcp/ip packets to/through the poptop server running inside the campus > network. If that is the behavior you would like, turn 'Use default gateway' on in the connection profile on the winblows box. > If I'm wrong then the client will route packets through the internet OR the > pptp server, whichever it thinks it needs to, right? If this is the case, > what's the point of getting encryption working? Why wouldn't the client > trying to access a web site like netscape.com send those packets through the > pptp server then they would be routed to the netscape server off campus? > This way, the client will have a secure connection and be (in effect) behind > a firewall. Read above. The point of getting encryption working is the typical business use of pptp -- for example, businesses that have salesmen on the road and want them to be able to get access to the corporate network (behind the firewall) without sending this vital information unencrypted across the internet. > Another big question: If I'm wrong and the above is true about the routing, > how in the heck can I test this setup? If I go to the engineering web page, > there are 2 different versions: one for people from off campus and one for > people on campus. When we set up the VPN adapter and try to go the > engineering web page, we get the off campus one. What do you mean by the engineering web page? I'm confused here; are YOU the one trying to get the pptp server working, or are you a client trying to get access to the pptp server? > Do you understand my problem here? Maybe you can clear up my incorrect > assumptions. > > Meanwhile, I'm still waiting on the list mom to either accept or decline my > message with the logs attached. You can forward them directly to me if you so desire. -- Nate Carlson | Phone : (612)943-8700 http://www.real-time.com | Fax : (612)943-8500 From willic2 at mail.auburn.edu Wed Feb 9 16:25:21 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Wed Feb 9 16:25:21 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: >> The way we are setup is like this: >> >> ----------- ------------- -------- ------- -------------- >> | large | | | | | | | | | >> | campus |----| firewall |---| 'net |---| ISP |----| win client | >> | network | | | | | | | | | >> ----------- ------------- -------- ------- -------------- >> >> The PPTP server is actually within the large campus network with the ports >> opened at the firewall to let the PPTP traffic through. >> >> This allows the client to dial into his ISP then start the VPN session. I >> thought that this would mean that the windows machine would only route >> tcp/ip packets to/through the poptop server running inside the campus >> network. > > If that is the behavior you would like, turn 'Use default gateway' on in > the connection profile on the winblows box. > Ok, we turned that one off so we'll turn it back on and try that.. >> Another big question: If I'm wrong and the above is true about the routing, >> how in the heck can I test this setup? If I go to the engineering web page, >> there are 2 different versions: one for people from off campus and one for >> people on campus. When we set up the VPN adapter and try to go the >> engineering web page, we get the off campus one. > > What do you mean by the engineering web page? I'm confused here; are YOU > the one trying to get the pptp server working, or are you a client trying > to get access to the pptp server? Both. We are setting up the PoPToP code along with the client software. As for the engineering web page, we have an engineering web page that has a different version depending on weather you are on or off the campus network. We are trying to test this configuration by seeing if the client loads the on-campus version of the page or the off-campus version. >> Do you understand my problem here? Maybe you can clear up my incorrect >> assumptions. >> >> Meanwhile, I'm still waiting on the list mom to either accept or decline my >> message with the logs attached. > > You can forward them directly to me if you so desire. Tell you what, we'll try with use default gateway turned on in the client and see if that works. As I recall, this gave us problems before. I'll send you THOSE logs... ;) Thanks for your help! Chris Williams willic2 at mail.auburn.edu From willic2 at mail.auburn.edu Wed Feb 9 23:54:28 2000 From: willic2 at mail.auburn.edu (Chris Williams) Date: Wed Feb 9 23:54:28 2000 Subject: [pptp-server] Help with configuration! In-Reply-To: Message-ID: Duh. I forgot to attatch the files.. Here is the pptpd.log and pptpd.conf... Please heelp!!! On Tue, 8 Feb 2000, Chris Williams wrote: > We have gotten to the point with a linux poptop configuration where we > should be able to connect using a Windows box without encryption. Problem > is that I'm not sure what's going on with the pptpd.conf file. Our > network is set up like this: > > Linux box: 131.204.27.30 > Other valid IP's not in use on the LAN: 131.204.27.31 > > Windows machine will dial into ISP then start the VPN connection. > Connection appears to be ok but tcp/ip traffic doesn't appear to go > through the tunnel to the vpn but goes straight to the internet from the > windows machine. I have included the pptpd.conf file and the pptpd.log > file. I'm gonna go bald soon if someone doesn't help me figure this one > out. > > As for the client, we've installed the DUN40 update and I think it's clean > on the client end and that the server isn't working right... > The check boxes on the client are: > netbeui is off > ipx/spx is off > ip header compression is off > use default gw on remote network is off > > Thanks, > Chris > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > List services provided by www.schulte.org! > -------------- next part -------------- Feb 5 15:43:20 localhost gpm[482]: Error in protocol Feb 5 15:43:20 localhost last message repeated 11 times Feb 5 15:44:54 localhost gpm[483]: Error in protocol Feb 5 15:44:54 localhost last message repeated 12 times Feb 5 15:44:57 localhost pptpd[541]: MGR: Manager process started Feb 5 15:46:08 localhost gnome-name-server[611]: starting Feb 5 15:46:08 localhost gnome-name-server[611]: name server starting Feb 5 15:46:13 localhost gnome-name-server[634]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057728 Feb 5 15:46:13 localhost gnome-name-server[635]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057d20 Feb 5 15:49:56 localhost in.identd[642]: started Feb 5 16:32:15 localhost gnome-name-server[611]: input condition is: 0x10, exiting Feb 5 16:32:18 localhost gpm[483]: Error in protocol Feb 5 16:32:18 localhost last message repeated 12 times Feb 5 16:33:48 localhost gpm[483]: Error in protocol Feb 5 16:33:48 localhost last message repeated 12 times Feb 5 16:33:51 localhost pptpd[541]: MGR: Manager process started Feb 5 16:37:24 localhost gnome-name-server[612]: starting Feb 5 16:37:24 localhost gnome-name-server[612]: name server starting Feb 5 16:37:30 localhost gnome-name-server[634]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057980 Feb 5 16:37:30 localhost gnome-name-server[635]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057d18 Feb 5 16:38:37 localhost in.identd[639]: started Feb 5 17:38:46 localhost gnome-name-server[612]: input condition is: 0x10, exiting Feb 5 17:38:47 localhost gpm[483]: Error in protocol Feb 5 17:38:47 localhost last message repeated 12 times Feb 5 17:40:15 localhost gpm[483]: Error in protocol Feb 5 17:40:15 localhost last message repeated 12 times Feb 5 17:40:18 localhost pptpd[541]: MGR: Manager process started Feb 7 15:14:41 localhost gnome-name-server[1647]: starting Feb 7 15:14:41 localhost gnome-name-server[1647]: name server starting Feb 7 15:14:45 localhost gnome-name-server[1675]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057790 Feb 7 15:14:46 localhost gnome-name-server[1676]: server_is_alive: cnx[IDL:GNOME/Panel:1.0] = 0x8057d88 Feb 7 15:14:50 localhost gnome-name-server[1647]: input condition is: 0x10, exiting Feb 7 22:34:52 localhost pptpd[1860]: CTRL: local address = 192.168.0.1 Feb 7 22:34:52 localhost pptpd[1860]: CTRL: remote address = 192.168.1.1 Feb 7 22:34:52 localhost pptpd[1860]: CTRL: Client 63.26.18.116 control connection started Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Received PPTP Control Message (type: 1) Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 22:34:55 localhost pptpd[1860]: CTRL: I wrote 156 bytes to the client. Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Sent packet to client Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Received PPTP Control Message (type: 7) Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Made a OUT CALL RPLY packet Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 22:34:55 localhost pptpd[1860]: CTRL: pty_fd = 4 Feb 7 22:34:55 localhost pptpd[1860]: CTRL: tty_fd = 5 Feb 7 22:34:55 localhost pptpd[1860]: CTRL: I wrote 32 bytes to the client. Feb 7 22:34:55 localhost pptpd[1860]: CTRL: Sent packet to client Feb 7 22:34:55 localhost pptpd[1861]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 22:34:55 localhost pptpd[1861]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 22:34:55 localhost pptpd[1861]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 22:34:56 localhost modprobe: can't locate module char-major-108 Feb 7 22:34:56 localhost pppd[1861]: pppd 2.3.10 started by root, uid 0 Feb 7 22:34:56 localhost pppd[1861]: Using interface ppp0 Feb 7 22:34:56 localhost pppd[1861]: Connect: ppp0 <--> /dev/pts/2 Feb 7 22:34:56 localhost pppd[1861]: sent [LCP ConfReq id=0x1 ] Feb 7 22:35:23 localhost last message repeated 9 times Feb 7 22:35:26 localhost pppd[1861]: LCP: timeout sending Config-Requests Feb 7 22:35:26 localhost pppd[1861]: Connection terminated. Feb 7 22:35:26 localhost pppd[1861]: Exit. Feb 7 22:35:26 localhost pptpd[1860]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 22:35:26 localhost pptpd[1860]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 22:35:26 localhost pptpd[1860]: CTRL: Client 63.26.18.116 control connection finished Feb 7 22:35:26 localhost pptpd[1860]: CTRL: Exiting now Feb 7 22:35:55 localhost pptpd[1867]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 22:35:55 localhost pptpd[1867]: CTRL: local address = 192.168.0.2 Feb 7 22:35:55 localhost pptpd[1867]: CTRL: remote address = 192.168.1.2 Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Client 63.26.18.116 control connection started Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Received PPTP Control Message (type: 1) Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 22:35:55 localhost pptpd[1867]: CTRL: I wrote 156 bytes to the client. Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Sent packet to client Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Received PPTP Control Message (type: 7) Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Made a OUT CALL RPLY packet Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 22:35:55 localhost pptpd[1867]: CTRL: pty_fd = 4 Feb 7 22:35:55 localhost pptpd[1867]: CTRL: tty_fd = 5 Feb 7 22:35:55 localhost pptpd[1868]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 22:35:55 localhost pptpd[1868]: CTRL (PPPD Launcher): local address = 192.168.0.2 Feb 7 22:35:55 localhost pptpd[1868]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Feb 7 22:35:55 localhost pptpd[1867]: CTRL: I wrote 32 bytes to the client. Feb 7 22:35:55 localhost pptpd[1867]: CTRL: Sent packet to client Feb 7 22:35:55 localhost modprobe: can't locate module char-major-108 Feb 7 22:35:55 localhost pppd[1868]: pppd 2.3.10 started by root, uid 0 Feb 7 22:35:55 localhost pppd[1868]: Using interface ppp0 Feb 7 22:35:55 localhost pppd[1868]: Connect: ppp0 <--> /dev/pts/2 Feb 7 22:35:55 localhost pppd[1868]: sent [LCP ConfReq id=0x1 ] Feb 7 22:36:22 localhost last message repeated 9 times Feb 7 22:36:25 localhost pppd[1868]: LCP: timeout sending Config-Requests Feb 7 22:36:25 localhost pppd[1868]: Connection terminated. Feb 7 22:36:25 localhost pppd[1868]: Exit. Feb 7 22:36:25 localhost pptpd[1867]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 22:36:25 localhost pptpd[1867]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 22:36:25 localhost pptpd[1867]: CTRL: Client 63.26.18.116 control connection finished Feb 7 22:36:25 localhost pptpd[1867]: CTRL: Exiting now Feb 7 22:36:25 localhost pptpd[541]: MGR: Reaped child 1867 Feb 7 22:44:16 localhost pptpd[1891]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 22:44:16 localhost pptpd[1891]: CTRL: local address = 192.168.0.1 Feb 7 22:44:16 localhost pptpd[1891]: CTRL: remote address = 192.168.1.1 Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Client 63.26.18.116 control connection started Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Received PPTP Control Message (type: 1) Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 22:44:16 localhost pptpd[1891]: CTRL: I wrote 156 bytes to the client. Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Sent packet to client Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Received PPTP Control Message (type: 7) Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Made a OUT CALL RPLY packet Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 22:44:16 localhost pptpd[1891]: CTRL: pty_fd = 4 Feb 7 22:44:16 localhost pptpd[1891]: CTRL: tty_fd = 5 Feb 7 22:44:16 localhost pptpd[1891]: CTRL: I wrote 32 bytes to the client. Feb 7 22:44:16 localhost pptpd[1891]: CTRL: Sent packet to client Feb 7 22:44:16 localhost pptpd[1892]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 22:44:16 localhost pptpd[1892]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 22:44:16 localhost pptpd[1892]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 22:44:16 localhost modprobe: can't locate module char-major-108 Feb 7 22:44:17 localhost pppd[1892]: pppd 2.3.10 started by root, uid 0 Feb 7 22:44:17 localhost pppd[1892]: Using interface ppp0 Feb 7 22:44:17 localhost pppd[1892]: Connect: ppp0 <--> /dev/pts/3 Feb 7 22:44:17 localhost pppd[1892]: sent [LCP ConfReq id=0x1 ] Feb 7 22:44:44 localhost last message repeated 9 times Feb 7 22:44:47 localhost pppd[1892]: LCP: timeout sending Config-Requests Feb 7 22:44:47 localhost pppd[1892]: Connection terminated. Feb 7 22:44:47 localhost pppd[1892]: Exit. Feb 7 22:44:47 localhost pptpd[1891]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 22:44:47 localhost pptpd[1891]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 22:44:47 localhost pptpd[1891]: CTRL: Client 63.26.18.116 control connection finished Feb 7 22:44:47 localhost pptpd[1891]: CTRL: Exiting now Feb 7 22:44:47 localhost pptpd[541]: MGR: Reaped child 1891 Feb 7 22:47:16 localhost gpm[483]: Error in protocol Feb 7 22:47:16 localhost last message repeated 11 times Feb 7 22:48:52 localhost gpm[482]: Error in protocol Feb 7 22:48:52 localhost last message repeated 12 times Feb 7 22:48:55 localhost pptpd[540]: MGR: Manager process started Feb 7 22:50:12 localhost pptpd[572]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 22:50:12 localhost pptpd[572]: CTRL: local address = 192.168.0.1 Feb 7 22:50:12 localhost pptpd[572]: CTRL: remote address = 192.168.1.1 Feb 7 22:50:12 localhost pptpd[572]: CTRL: Client 63.26.18.116 control connection started Feb 7 22:50:12 localhost pptpd[572]: CTRL: Received PPTP Control Message (type: 1) Feb 7 22:50:12 localhost pptpd[572]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 22:50:12 localhost pptpd[572]: CTRL: I wrote 156 bytes to the client. Feb 7 22:50:12 localhost pptpd[572]: CTRL: Sent packet to client Feb 7 22:50:13 localhost pptpd[572]: CTRL: Received PPTP Control Message (type: 7) Feb 7 22:50:13 localhost pptpd[572]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 22:50:13 localhost pptpd[572]: CTRL: Made a OUT CALL RPLY packet Feb 7 22:50:13 localhost pptpd[572]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 22:50:13 localhost pptpd[572]: CTRL: pty_fd = 4 Feb 7 22:50:13 localhost pptpd[572]: CTRL: tty_fd = 5 Feb 7 22:50:13 localhost pptpd[572]: CTRL: I wrote 32 bytes to the client. Feb 7 22:50:13 localhost pptpd[572]: CTRL: Sent packet to client Feb 7 22:50:13 localhost pptpd[573]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 22:50:13 localhost pptpd[573]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 22:50:13 localhost pptpd[573]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 22:50:13 localhost modprobe: can't locate module char-major-108 Feb 7 22:50:14 localhost pppd[573]: pppd 2.3.10 started by root, uid 0 Feb 7 22:50:14 localhost pppd[573]: Using interface ppp0 Feb 7 22:50:14 localhost pppd[573]: Connect: ppp0 <--> /dev/pts/1 Feb 7 22:50:14 localhost pppd[573]: sent [LCP ConfReq id=0x1 ] Feb 7 22:50:20 localhost last message repeated 2 times Feb 7 22:50:21 localhost pptpd[572]: CTRL: Received PPTP Control Message (type: 12) Feb 7 22:50:21 localhost pptpd[572]: CTRL: Made a CALL DISCONNECT RPLY packet Feb 7 22:50:21 localhost pptpd[572]: CTRL: Received CALL CLR request (closing call) Feb 7 22:50:21 localhost pptpd[572]: CTRL: I wrote 148 bytes to the client. Feb 7 22:50:21 localhost pptpd[572]: CTRL: Sent packet to client Feb 7 22:50:21 localhost pptpd[572]: CTRL: Error with select(), quitting Feb 7 22:50:21 localhost pptpd[572]: CTRL: Client 63.26.18.116 control connection finished Feb 7 22:50:21 localhost pptpd[572]: CTRL: Exiting now Feb 7 22:50:21 localhost pptpd[540]: MGR: Reaped child 572 Feb 7 22:50:21 localhost pppd[573]: Modem hangup Feb 7 22:50:21 localhost pppd[573]: Connection terminated. Feb 7 22:50:21 localhost pppd[573]: Exit. Feb 7 22:52:52 localhost pptpd[579]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 22:52:52 localhost pptpd[579]: CTRL: local address = 192.168.0.2 Feb 7 22:52:52 localhost pptpd[579]: CTRL: remote address = 192.168.1.2 Feb 7 22:52:52 localhost pptpd[579]: CTRL: Client 63.26.18.116 control connection started Feb 7 22:52:52 localhost pptpd[579]: CTRL: Received PPTP Control Message (type: 1) Feb 7 22:52:52 localhost pptpd[579]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 22:52:52 localhost pptpd[579]: CTRL: I wrote 156 bytes to the client. Feb 7 22:52:52 localhost pptpd[579]: CTRL: Sent packet to client Feb 7 22:52:52 localhost pptpd[579]: CTRL: Received PPTP Control Message (type: 7) Feb 7 22:52:52 localhost pptpd[579]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 22:52:52 localhost pptpd[579]: CTRL: Made a OUT CALL RPLY packet Feb 7 22:52:52 localhost pptpd[579]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 22:52:52 localhost pptpd[579]: CTRL: pty_fd = 4 Feb 7 22:52:52 localhost pptpd[579]: CTRL: tty_fd = 5 Feb 7 22:52:52 localhost pptpd[580]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 22:52:52 localhost pptpd[580]: CTRL (PPPD Launcher): local address = 192.168.0.2 Feb 7 22:52:52 localhost pptpd[580]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Feb 7 22:52:52 localhost pptpd[579]: CTRL: I wrote 32 bytes to the client. Feb 7 22:52:52 localhost pptpd[579]: CTRL: Sent packet to client Feb 7 22:52:52 localhost modprobe: can't locate module char-major-108 Feb 7 22:52:52 localhost pppd[580]: pppd 2.3.10 started by root, uid 0 Feb 7 22:52:52 localhost pppd[580]: Using interface ppp0 Feb 7 22:52:52 localhost pppd[580]: Connect: ppp0 <--> /dev/pts/1 Feb 7 22:52:52 localhost pppd[580]: sent [LCP ConfReq id=0x1 ] Feb 7 22:53:01 localhost last message repeated 3 times Feb 7 22:53:04 localhost pptpd[579]: CTRL: Received PPTP Control Message (type: 12) Feb 7 22:53:04 localhost pptpd[579]: CTRL: Made a CALL DISCONNECT RPLY packet Feb 7 22:53:04 localhost pptpd[579]: CTRL: Received CALL CLR request (closing call) Feb 7 22:53:04 localhost pptpd[579]: CTRL: I wrote 148 bytes to the client. Feb 7 22:53:04 localhost pptpd[579]: CTRL: Sent packet to client Feb 7 22:53:04 localhost pptpd[579]: CTRL: Error with select(), quitting Feb 7 22:53:04 localhost pptpd[579]: CTRL: Client 63.26.18.116 control connection finished Feb 7 22:53:04 localhost pptpd[579]: CTRL: Exiting now Feb 7 22:53:04 localhost pptpd[540]: MGR: Reaped child 579 Feb 7 22:53:04 localhost pppd[580]: Modem hangup Feb 7 22:53:04 localhost pppd[580]: Connection terminated. Feb 7 22:53:04 localhost pppd[580]: Exit. Feb 7 23:15:18 localhost pptpd[602]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 23:15:18 localhost pptpd[602]: CTRL: local address = 192.168.0.1 Feb 7 23:15:18 localhost pptpd[602]: CTRL: remote address = 192.168.1.1 Feb 7 23:15:18 localhost pptpd[602]: CTRL: Client 63.30.163.215 control connection started Feb 7 23:15:18 localhost pptpd[602]: CTRL: Received PPTP Control Message (type: 1) Feb 7 23:15:18 localhost pptpd[602]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 23:15:18 localhost pptpd[602]: CTRL: I wrote 156 bytes to the client. Feb 7 23:15:18 localhost pptpd[602]: CTRL: Sent packet to client Feb 7 23:15:18 localhost pptpd[602]: CTRL: Received PPTP Control Message (type: 7) Feb 7 23:15:18 localhost pptpd[602]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 23:15:18 localhost pptpd[602]: CTRL: Made a OUT CALL RPLY packet Feb 7 23:15:18 localhost pptpd[602]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 23:15:18 localhost pptpd[602]: CTRL: pty_fd = 4 Feb 7 23:15:18 localhost pptpd[602]: CTRL: tty_fd = 5 Feb 7 23:15:18 localhost pptpd[602]: CTRL: I wrote 32 bytes to the client. Feb 7 23:15:18 localhost pptpd[602]: CTRL: Sent packet to client Feb 7 23:15:18 localhost pptpd[603]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 23:15:18 localhost pptpd[603]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 23:15:18 localhost pptpd[603]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 23:15:18 localhost modprobe: can't locate module char-major-108 Feb 7 23:15:18 localhost pppd[603]: pppd 2.3.10 started by root, uid 0 Feb 7 23:15:18 localhost pppd[603]: Using interface ppp0 Feb 7 23:15:18 localhost pppd[603]: Connect: ppp0 <--> /dev/pts/1 Feb 7 23:15:18 localhost pppd[603]: sent [LCP ConfReq id=0x1 ] Feb 7 23:15:27 localhost last message repeated 3 times Feb 7 23:15:28 localhost pptpd[602]: CTRL: Received PPTP Control Message (type: 12) Feb 7 23:15:28 localhost pptpd[602]: CTRL: Made a CALL DISCONNECT RPLY packet Feb 7 23:15:28 localhost pptpd[602]: CTRL: Received CALL CLR request (closing call) Feb 7 23:15:28 localhost pptpd[602]: CTRL: I wrote 148 bytes to the client. Feb 7 23:15:28 localhost pptpd[602]: CTRL: Sent packet to client Feb 7 23:15:28 localhost pptpd[602]: CTRL: Error with select(), quitting Feb 7 23:15:28 localhost pptpd[602]: CTRL: Client 63.30.163.215 control connection finished Feb 7 23:15:28 localhost pptpd[602]: CTRL: Exiting now Feb 7 23:15:28 localhost pptpd[540]: MGR: Reaped child 602 Feb 7 23:15:28 localhost pppd[603]: Modem hangup Feb 7 23:15:28 localhost pppd[603]: Connection terminated. Feb 7 23:15:28 localhost pppd[603]: Exit. Feb 7 23:15:30 localhost pptpd[608]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 23:15:30 localhost pptpd[608]: CTRL: local address = 192.168.0.2 Feb 7 23:15:30 localhost pptpd[608]: CTRL: remote address = 192.168.1.2 Feb 7 23:15:30 localhost pptpd[608]: CTRL: Client 63.30.163.215 control connection started Feb 7 23:15:30 localhost pptpd[608]: CTRL: Received PPTP Control Message (type: 1) Feb 7 23:15:30 localhost pptpd[608]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 23:15:30 localhost pptpd[608]: CTRL: I wrote 156 bytes to the client. Feb 7 23:15:30 localhost pptpd[608]: CTRL: Sent packet to client Feb 7 23:15:30 localhost pptpd[608]: CTRL: Received PPTP Control Message (type: 7) Feb 7 23:15:30 localhost pptpd[608]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 23:15:30 localhost pptpd[608]: CTRL: Made a OUT CALL RPLY packet Feb 7 23:15:30 localhost pptpd[608]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 23:15:30 localhost pptpd[608]: CTRL: pty_fd = 4 Feb 7 23:15:30 localhost pptpd[608]: CTRL: tty_fd = 5 Feb 7 23:15:30 localhost pptpd[608]: CTRL: I wrote 32 bytes to the client. Feb 7 23:15:30 localhost pptpd[608]: CTRL: Sent packet to client Feb 7 23:15:30 localhost pptpd[609]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 23:15:30 localhost pptpd[609]: CTRL (PPPD Launcher): local address = 192.168.0.2 Feb 7 23:15:30 localhost pptpd[609]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Feb 7 23:15:30 localhost modprobe: can't locate module char-major-108 Feb 7 23:15:30 localhost pppd[609]: pppd 2.3.10 started by root, uid 0 Feb 7 23:15:30 localhost pppd[609]: Using interface ppp0 Feb 7 23:15:30 localhost pppd[609]: Connect: ppp0 <--> /dev/pts/1 Feb 7 23:15:30 localhost pppd[609]: sent [LCP ConfReq id=0x1 ] Feb 7 23:15:32 localhost pptpd[608]: CTRL: Received PPTP Control Message (type: 12) Feb 7 23:15:32 localhost pptpd[608]: CTRL: Made a CALL DISCONNECT RPLY packet Feb 7 23:15:32 localhost pptpd[608]: CTRL: Received CALL CLR request (closing call) Feb 7 23:15:32 localhost pptpd[608]: CTRL: I wrote 148 bytes to the client. Feb 7 23:15:32 localhost pptpd[608]: CTRL: Sent packet to client Feb 7 23:15:32 localhost pptpd[608]: CTRL: Error with select(), quitting Feb 7 23:15:32 localhost pptpd[608]: CTRL: Client 63.30.163.215 control connection finished Feb 7 23:15:32 localhost pptpd[608]: CTRL: Exiting now Feb 7 23:15:32 localhost pptpd[540]: MGR: Reaped child 608 Feb 7 23:15:32 localhost pppd[609]: Modem hangup Feb 7 23:15:32 localhost pppd[609]: Connection terminated. Feb 7 23:15:32 localhost pppd[609]: Exit. Feb 7 23:53:31 localhost pptpd[624]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 23:53:31 localhost pptpd[624]: CTRL: local address = 192.168.0.1 Feb 7 23:53:31 localhost pptpd[624]: CTRL: remote address = 192.168.1.1 Feb 7 23:53:31 localhost pptpd[624]: CTRL: Client 199.174.135.80 control connection started Feb 7 23:53:31 localhost pptpd[624]: CTRL: Received PPTP Control Message (type: 1) Feb 7 23:53:31 localhost pptpd[624]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 23:53:31 localhost pptpd[624]: CTRL: I wrote 156 bytes to the client. Feb 7 23:53:31 localhost pptpd[624]: CTRL: Sent packet to client Feb 7 23:53:31 localhost pptpd[624]: CTRL: Received PPTP Control Message (type: 7) Feb 7 23:53:31 localhost pptpd[624]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 23:53:31 localhost pptpd[624]: CTRL: Made a OUT CALL RPLY packet Feb 7 23:53:31 localhost pptpd[624]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 23:53:31 localhost pptpd[624]: CTRL: pty_fd = 4 Feb 7 23:53:31 localhost pptpd[624]: CTRL: tty_fd = 5 Feb 7 23:53:31 localhost pptpd[624]: CTRL: I wrote 32 bytes to the client. Feb 7 23:53:31 localhost pptpd[624]: CTRL: Sent packet to client Feb 7 23:53:31 localhost pptpd[625]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 23:53:31 localhost pptpd[625]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 23:53:31 localhost pptpd[625]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 23:53:31 localhost modprobe: can't locate module char-major-108 Feb 7 23:53:31 localhost pppd[625]: pppd 2.3.10 started by root, uid 0 Feb 7 23:53:31 localhost pppd[625]: Using interface ppp0 Feb 7 23:53:31 localhost pppd[625]: Connect: ppp0 <--> /dev/pts/1 Feb 7 23:53:31 localhost pppd[625]: sent [LCP ConfReq id=0x1 ] Feb 7 23:53:31 localhost pppd[625]: rcvd [LCP ConfReq id=0x1 ] Feb 7 23:53:31 localhost pppd[625]: sent [LCP ConfAck id=0x1 ] Feb 7 23:53:31 localhost pppd[625]: rcvd [LCP ConfAck id=0x1 ] Feb 7 23:53:31 localhost pppd[625]: sent [CHAP Challenge id=0x1 <79910408d265264778591b9f34a51b2a633c12167a77dd5d3c8d57006be28b05389fd0ddeba6>, name = "server123"] Feb 7 23:53:31 localhost pppd[625]: rcvd [CHAP Response id=0x1 <2c852b1fe2127ea5c210f509786f8554>, name = "mcneewv"] Feb 7 23:53:31 localhost pppd[625]: No CHAP secret found for authenticating mcneewv Feb 7 23:53:31 localhost pppd[625]: sent [CHAP Failure id=0x1 "I don't like you. Go 'way."] Feb 7 23:53:31 localhost pppd[625]: CHAP peer authentication failed for remote host mcneewv Feb 7 23:53:31 localhost pppd[625]: sent [LCP TermReq id=0x2 "Authentication failed"] Feb 7 23:53:31 localhost pppd[625]: rcvd [LCP TermAck id=0x2] Feb 7 23:53:31 localhost pppd[625]: Connection terminated. Feb 7 23:53:31 localhost pppd[625]: Exit. Feb 7 23:53:31 localhost pptpd[624]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 23:53:31 localhost pptpd[624]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 23:53:31 localhost pptpd[624]: CTRL: Client 199.174.135.80 control connection finished Feb 7 23:53:31 localhost pptpd[624]: CTRL: Exiting now Feb 7 23:53:31 localhost pptpd[540]: MGR: Reaped child 624 Feb 7 23:53:46 localhost pptpd[630]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 23:53:46 localhost pptpd[630]: CTRL: local address = 192.168.0.2 Feb 7 23:53:46 localhost pptpd[630]: CTRL: remote address = 192.168.1.2 Feb 7 23:53:46 localhost pptpd[630]: CTRL: Client 199.174.135.80 control connection started Feb 7 23:53:46 localhost pptpd[630]: CTRL: Received PPTP Control Message (type: 1) Feb 7 23:53:46 localhost pptpd[630]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 23:53:46 localhost pptpd[630]: CTRL: I wrote 156 bytes to the client. Feb 7 23:53:46 localhost pptpd[630]: CTRL: Sent packet to client Feb 7 23:53:46 localhost pptpd[630]: CTRL: Received PPTP Control Message (type: 7) Feb 7 23:53:46 localhost pptpd[630]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 23:53:46 localhost pptpd[630]: CTRL: Made a OUT CALL RPLY packet Feb 7 23:53:46 localhost pptpd[630]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 23:53:46 localhost pptpd[630]: CTRL: pty_fd = 4 Feb 7 23:53:46 localhost pptpd[630]: CTRL: tty_fd = 5 Feb 7 23:53:46 localhost pptpd[631]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 23:53:46 localhost pptpd[631]: CTRL (PPPD Launcher): local address = 192.168.0.2 Feb 7 23:53:46 localhost pptpd[631]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Feb 7 23:53:46 localhost pptpd[630]: CTRL: I wrote 32 bytes to the client. Feb 7 23:53:46 localhost pptpd[630]: CTRL: Sent packet to client Feb 7 23:53:46 localhost modprobe: can't locate module char-major-108 Feb 7 23:53:46 localhost pppd[631]: pppd 2.3.10 started by root, uid 0 Feb 7 23:53:46 localhost pppd[631]: Using interface ppp0 Feb 7 23:53:46 localhost pppd[631]: Connect: ppp0 <--> /dev/pts/1 Feb 7 23:53:46 localhost pppd[631]: sent [LCP ConfReq id=0x1 ] Feb 7 23:53:46 localhost pppd[631]: rcvd [LCP ConfReq id=0x1 ] Feb 7 23:53:46 localhost pppd[631]: sent [LCP ConfAck id=0x1 ] Feb 7 23:53:47 localhost pppd[631]: rcvd [LCP ConfAck id=0x1 ] Feb 7 23:53:47 localhost pppd[631]: sent [CHAP Challenge id=0x1 <6eaac3e749e6ef59a82bafc3089f811b4ce274411aa5bb3402e45c85836126434422>, name = "server123"] Feb 7 23:53:47 localhost pppd[631]: rcvd [CHAP Response id=0x1 , name = "mcneewv"] Feb 7 23:53:47 localhost pppd[631]: No CHAP secret found for authenticating mcneewv Feb 7 23:53:47 localhost pppd[631]: sent [CHAP Failure id=0x1 "I don't like you. Go 'way."] Feb 7 23:53:47 localhost pppd[631]: CHAP peer authentication failed for remote host mcneewv Feb 7 23:53:47 localhost pppd[631]: sent [LCP TermReq id=0x2 "Authentication failed"] Feb 7 23:53:47 localhost pppd[631]: rcvd [LCP TermAck id=0x2] Feb 7 23:53:47 localhost pppd[631]: Connection terminated. Feb 7 23:53:47 localhost pppd[631]: Exit. Feb 7 23:53:47 localhost pptpd[630]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 23:53:47 localhost pptpd[630]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 23:53:47 localhost pptpd[630]: CTRL: Client 199.174.135.80 control connection finished Feb 7 23:53:47 localhost pptpd[630]: CTRL: Exiting now Feb 7 23:53:47 localhost pptpd[540]: MGR: Reaped child 630 Feb 7 23:54:10 localhost pptpd[633]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 7 23:54:10 localhost pptpd[633]: CTRL: local address = 192.168.0.1 Feb 7 23:54:10 localhost pptpd[633]: CTRL: remote address = 192.168.1.1 Feb 7 23:54:10 localhost pptpd[633]: CTRL: Client 199.174.135.80 control connection started Feb 7 23:54:10 localhost pptpd[633]: CTRL: Received PPTP Control Message (type: 1) Feb 7 23:54:10 localhost pptpd[633]: CTRL: Made a START CTRL CONN RPLY packet Feb 7 23:54:10 localhost pptpd[633]: CTRL: I wrote 156 bytes to the client. Feb 7 23:54:10 localhost pptpd[633]: CTRL: Sent packet to client Feb 7 23:54:11 localhost pptpd[633]: CTRL: Received PPTP Control Message (type: 7) Feb 7 23:54:11 localhost pptpd[633]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 7 23:54:11 localhost pptpd[633]: CTRL: Made a OUT CALL RPLY packet Feb 7 23:54:11 localhost pptpd[633]: CTRL: Starting call (launching pppd, opening GRE) Feb 7 23:54:11 localhost pptpd[633]: CTRL: pty_fd = 4 Feb 7 23:54:11 localhost pptpd[633]: CTRL: tty_fd = 5 Feb 7 23:54:11 localhost pptpd[634]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 7 23:54:11 localhost pptpd[634]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 7 23:54:11 localhost pptpd[634]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 7 23:54:11 localhost pptpd[633]: CTRL: I wrote 32 bytes to the client. Feb 7 23:54:11 localhost pptpd[633]: CTRL: Sent packet to client Feb 7 23:54:11 localhost modprobe: can't locate module char-major-108 Feb 7 23:54:11 localhost pppd[634]: pppd 2.3.10 started by root, uid 0 Feb 7 23:54:11 localhost pppd[634]: Using interface ppp0 Feb 7 23:54:11 localhost pppd[634]: Connect: ppp0 <--> /dev/pts/1 Feb 7 23:54:11 localhost pppd[634]: sent [LCP ConfReq id=0x1 ] Feb 7 23:54:11 localhost pppd[634]: rcvd [LCP ConfReq id=0x1 ] Feb 7 23:54:11 localhost pppd[634]: sent [LCP ConfAck id=0x1 ] Feb 7 23:54:11 localhost pppd[634]: rcvd [LCP ConfAck id=0x1 ] Feb 7 23:54:11 localhost pppd[634]: sent [CHAP Challenge id=0x1 <8a78e96ef595d9484efbca82a59c79ea5cc2bb2f52d518b4d6ef1572dd3a68d4812365ee075314c03c29076698429af1f895a4c584361e7aed30e2744373>, name = "server123"] Feb 7 23:54:11 localhost pppd[634]: rcvd [CHAP Response id=0x1 <93344014e010ffc413b578dbbf726e73>, name = "mcneewv"] Feb 7 23:54:11 localhost pppd[634]: No CHAP secret found for authenticating mcneewv Feb 7 23:54:11 localhost pppd[634]: sent [CHAP Failure id=0x1 "I don't like you. Go 'way."] Feb 7 23:54:11 localhost pppd[634]: CHAP peer authentication failed for remote host mcneewv Feb 7 23:54:11 localhost pppd[634]: sent [LCP TermReq id=0x2 "Authentication failed"] Feb 7 23:54:11 localhost pppd[634]: rcvd [LCP TermAck id=0x2] Feb 7 23:54:11 localhost pppd[634]: Connection terminated. Feb 7 23:54:11 localhost pppd[634]: Exit. Feb 7 23:54:11 localhost pptpd[633]: GRE: read(fd=4,buffer=804d7e0,len=8196) from PTY failed: status = -1 error = Input/output error Feb 7 23:54:11 localhost pptpd[633]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Feb 7 23:54:11 localhost pptpd[633]: CTRL: Client 199.174.135.80 control connection finished Feb 7 23:54:11 localhost pptpd[633]: CTRL: Exiting now Feb 7 23:54:11 localhost pptpd[540]: MGR: Reaped child 633 Feb 7 23:58:33 localhost gpm[482]: Error in protocol Feb 7 23:58:33 localhost last message repeated 12 times Feb 8 00:00:00 localhost gpm[484]: Error in protocol Feb 8 00:00:00 localhost last message repeated 12 times Feb 8 00:00:03 localhost pptpd[544]: MGR: Manager process started Feb 8 00:02:21 localhost pptpd[578]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 8 00:02:21 localhost pptpd[578]: CTRL: local address = 192.168.0.1 Feb 8 00:02:21 localhost pptpd[578]: CTRL: remote address = 192.168.1.1 Feb 8 00:02:21 localhost pptpd[578]: CTRL: Client 199.174.132.231 control connection started Feb 8 00:02:21 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 1) Feb 8 00:02:21 localhost pptpd[578]: CTRL: Made a START CTRL CONN RPLY packet Feb 8 00:02:21 localhost pptpd[578]: CTRL: I wrote 156 bytes to the client. Feb 8 00:02:21 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:02:22 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 7) Feb 8 00:02:22 localhost pptpd[578]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 8 00:02:22 localhost pptpd[578]: CTRL: Made a OUT CALL RPLY packet Feb 8 00:02:22 localhost pptpd[578]: CTRL: Starting call (launching pppd, opening GRE) Feb 8 00:02:22 localhost pptpd[578]: CTRL: pty_fd = 4 Feb 8 00:02:22 localhost pptpd[578]: CTRL: tty_fd = 5 Feb 8 00:02:22 localhost pptpd[578]: CTRL: I wrote 32 bytes to the client. Feb 8 00:02:22 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:02:22 localhost pptpd[579]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 8 00:02:22 localhost pptpd[579]: CTRL (PPPD Launcher): local address = 192.168.0.1 Feb 8 00:02:22 localhost pptpd[579]: CTRL (PPPD Launcher): remote address = 192.168.1.1 Feb 8 00:02:22 localhost modprobe: can't locate module char-major-108 Feb 8 00:02:23 localhost pppd[579]: pppd 2.3.10 started by root, uid 0 Feb 8 00:02:23 localhost pppd[579]: Using interface ppp0 Feb 8 00:02:23 localhost pppd[579]: Connect: ppp0 <--> /dev/pts/1 Feb 8 00:02:23 localhost pppd[579]: sent [LCP ConfReq id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: rcvd [LCP ConfReq id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: sent [LCP ConfAck id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: rcvd [LCP ConfAck id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: sent [CHAP Challenge id=0x1 <879d2de39783bd8043facf6f7179ce953f136681652a1a7d6348f3d7a9bd281786f0e236dcef485424da9a7def68>, name = "server123"] Feb 8 00:02:23 localhost pppd[579]: rcvd [CHAP Response id=0x1 , name = "mcneewv"] Feb 8 00:02:23 localhost pppd[579]: sent [CHAP Success id=0x1 "Welcome to coedsnet2."] Feb 8 00:02:23 localhost pppd[579]: sent [IPCP ConfReq id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: sent [CCP ConfReq id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: CHAP peer authentication succeeded for mcneewv Feb 8 00:02:23 localhost pppd[579]: rcvd [IPCP ConfReq id=0x1

] Feb 8 00:02:23 localhost pppd[579]: sent [IPCP ConfRej id=0x1

] Feb 8 00:02:23 localhost pppd[579]: rcvd [CCP ConfReq id=0x1 < 12 06 01 00 00 01> < 11 05 00 01 04>] Feb 8 00:02:23 localhost pppd[579]: sent [CCP ConfRej id=0x1 < 12 06 01 00 00 01> < 11 05 00 01 04>] Feb 8 00:02:23 localhost pppd[579]: rcvd [IPCP ConfAck id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: rcvd [CCP ConfRej id=0x1 ] Feb 8 00:02:23 localhost pppd[579]: sent [CCP ConfReq id=0x2] Feb 8 00:02:23 localhost pppd[579]: rcvd [IPCP ConfReq id=0x2 ] Feb 8 00:02:23 localhost pppd[579]: sent [IPCP ConfNak id=0x2 ] Feb 8 00:02:23 localhost pppd[579]: rcvd [CCP ConfReq id=0x2] Feb 8 00:02:23 localhost pppd[579]: sent [CCP ConfAck id=0x2] Feb 8 00:02:23 localhost pppd[579]: rcvd [CCP ConfAck id=0x2] Feb 8 00:02:23 localhost pppd[579]: rcvd [IPCP ConfReq id=0x3 ] Feb 8 00:02:23 localhost pppd[579]: sent [IPCP ConfAck id=0x3 ] Feb 8 00:02:23 localhost pppd[579]: Cannot determine ethernet address for proxy ARP Feb 8 00:02:23 localhost pppd[579]: local IP address 192.168.0.1 Feb 8 00:02:23 localhost pppd[579]: remote IP address 192.168.1.1 Feb 8 00:02:23 localhost pppd[579]: Script /etc/ppp/ip-up started (pid 588) Feb 8 00:02:23 localhost pppd[579]: rcvd [CCP TermReq id=0x3] Feb 8 00:02:23 localhost pppd[579]: CCP terminated by peer Feb 8 00:02:23 localhost pppd[579]: sent [CCP TermAck id=0x3] Feb 8 00:02:23 localhost pppd[579]: Compression disabled by peer. Feb 8 00:02:24 localhost pppd[579]: Script /etc/ppp/ip-up finished (pid 588), status = 0x0 Feb 8 00:03:22 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 5) Feb 8 00:03:22 localhost pptpd[578]: CTRL: Made a ECHO RPLY packet Feb 8 00:03:22 localhost pptpd[578]: CTRL: I wrote 20 bytes to the client. Feb 8 00:03:22 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:04:22 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 5) Feb 8 00:04:22 localhost pptpd[578]: CTRL: Made a ECHO RPLY packet Feb 8 00:04:22 localhost pptpd[578]: CTRL: I wrote 20 bytes to the client. Feb 8 00:04:22 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:05:22 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 5) Feb 8 00:05:22 localhost pptpd[578]: CTRL: Made a ECHO RPLY packet Feb 8 00:05:22 localhost pptpd[578]: CTRL: I wrote 20 bytes to the client. Feb 8 00:05:22 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:06:16 localhost pppd[579]: rcvd [LCP TermReq id=0x2] Feb 8 00:06:16 localhost pppd[579]: LCP terminated by peer Feb 8 00:06:16 localhost pppd[579]: Script /etc/ppp/ip-down started (pid 625) Feb 8 00:06:16 localhost pppd[579]: sent [LCP TermAck id=0x2] Feb 8 00:06:16 localhost pptpd[578]: CTRL: Received PPTP Control Message (type: 12) Feb 8 00:06:16 localhost pptpd[578]: CTRL: Made a CALL DISCONNECT RPLY packet Feb 8 00:06:16 localhost pptpd[578]: CTRL: Received CALL CLR request (closing call) Feb 8 00:06:16 localhost pptpd[578]: CTRL: I wrote 148 bytes to the client. Feb 8 00:06:16 localhost pptpd[578]: CTRL: Sent packet to client Feb 8 00:06:16 localhost pptpd[578]: CTRL: Error with select(), quitting Feb 8 00:06:16 localhost pptpd[578]: CTRL: Client 199.174.132.231 control connection finished Feb 8 00:06:16 localhost pptpd[578]: CTRL: Exiting now Feb 8 00:06:16 localhost pptpd[544]: MGR: Reaped child 578 Feb 8 00:06:16 localhost pppd[579]: Modem hangup Feb 8 00:06:16 localhost pppd[579]: Connection terminated. Feb 8 00:06:16 localhost pppd[579]: Connect time 3.9 minutes. Feb 8 00:06:16 localhost pppd[579]: Sent 454 bytes, received 5241 bytes. Feb 8 00:06:16 localhost pppd[579]: Waiting for 1 child processes... Feb 8 00:06:16 localhost pppd[579]: script /etc/ppp/ip-down, pid 625 Feb 8 00:06:16 localhost pppd[579]: Script /etc/ppp/ip-down finished (pid 625), status = 0x0 Feb 8 00:06:16 localhost pppd[579]: Exit. Feb 8 00:09:11 localhost pptpd[639]: MGR: Launching /usr/sbin/pptpctrl to handle client Feb 8 00:09:11 localhost pptpd[639]: CTRL: local address = 192.168.0.2 Feb 8 00:09:11 localhost pptpd[639]: CTRL: remote address = 192.168.1.2 Feb 8 00:09:11 localhost pptpd[639]: CTRL: Client 199.174.132.231 control connection started Feb 8 00:09:11 localhost pptpd[639]: CTRL: Received PPTP Control Message (type: 1) Feb 8 00:09:11 localhost pptpd[639]: CTRL: Made a START CTRL CONN RPLY packet Feb 8 00:09:11 localhost pptpd[639]: CTRL: I wrote 156 bytes to the client. Feb 8 00:09:11 localhost pptpd[639]: CTRL: Sent packet to client Feb 8 00:09:11 localhost pptpd[639]: CTRL: Received PPTP Control Message (type: 7) Feb 8 00:09:11 localhost pptpd[639]: CTRL: Set parameters to 0 maxbps, 16 window size Feb 8 00:09:11 localhost pptpd[639]: CTRL: Made a OUT CALL RPLY packet Feb 8 00:09:11 localhost pptpd[639]: CTRL: Starting call (launching pppd, opening GRE) Feb 8 00:09:11 localhost pptpd[639]: CTRL: pty_fd = 4 Feb 8 00:09:11 localhost pptpd[639]: CTRL: tty_fd = 5 Feb 8 00:09:11 localhost pptpd[640]: CTRL (PPPD Launcher): Connection speed = 115200 Feb 8 00:09:11 localhost pptpd[640]: CTRL (PPPD Launcher): local address = 192.168.0.2 Feb 8 00:09:11 localhost pptpd[639]: CTRL: I wrote 32 bytes to the client. Feb 8 00:09:11 localhost pptpd[639]: CTRL: Sent packet to client Feb 8 00:09:11 localhost pptpd[640]: CTRL (PPPD Launcher): remote address = 192.168.1.2 Feb 8 00:09:11 localhost modprobe: can't locate module char-major-108 Feb 8 00:09:11 localhost pppd[640]: pppd 2.3.10 started by root, uid 0 Feb 8 00:09:11 localhost pppd[640]: Using interface ppp0 Feb 8 00:09:11 localhost pppd[640]: Connect: ppp0 <--> /dev/pts/1 Feb 8 00:09:11 localhost pppd[640]: sent [LCP ConfReq id=0x1 ] Feb 8 00:09:11 localhost pppd[640]: rcvd [LCP ConfReq id=0x1