[pptp-server] One last problem...

Colin Coe Colinc at method.com.au
Fri Jul 14 00:37:12 CDT 2000


Ok, so we're almost all the way there.  Here is my problem.

Setup laptop with win98.  Configure to laptop to logon to domain.  Install
modem, dialup adapter, VPN, and dialup adapter #2.
Create dialup networking entry to connect to ISP, and another for connecting
to firewall with PoPToP configured.
Connect to ISP, can now access web
Connect to VPN, can no longer connect to web, can ping firewall but not any
other hosts on the LAN.

I suspect the problem is the routing table in Win98.  Interestingly though,
once VPN is up I can ping the PC's VPN IP (ie 192.168.8.101) but not the
server's VPN IP (ie 192.168.8.1).  Even though I have specified in
/etc/ppp/options that the netmask is 255.255.0.0, Win98 always uses a mask
of 255.255.255.0

Any ideas?

Win98 routing table (connected to ISP and VPN):
Network Address	Subnet Mask		Gateway		Interface
Metric
0.0.0.0		0.0.0.0		192.168.8.102	192.168.8.102	1
0.0.0.0		0.0.0.0		202.61.239.232	202.61.239.232	2
127.0.0.0		255.0.0.0		127.0.0.1
127.0.0.1		1
192.168.8.0		255.255.255.0	192.168.8.102	192.168.8.102	1
192.168.8.102	255.255.255.255	202.61.239.232	202.61.239.232	1
202.61.239.0	255.255.255.0	202.61.239.232	202.61.239.232	2
202.61.239.232	255.255.255.0	127.0.0.1		127.0.0.1
1
202.61.239.255	255.255.255.255	202.61.239.232	202.61.239.232	1
203.59.136.94	255.255.255.255	202.61.239.232	202.61.239.232	1
224.0.0.0		244.0.0.0		192.168.8.102
192.168.8.102	1
224.0.0.0		244.0.0.0		202.61.239.232
202.61.239.232	1

Firewall routing table (when laptop connected via VPN):
Destination     Gateway         Genmask         Flags   MSS Window  irtt
Iface
192.168.0.1     0.0.0.0         255.255.255.255 UH        0 0          0
eth1
203.59.136.94   0.0.0.0         255.255.255.255 UH        0 0          0
eth0
192.168.8.102   0.0.0.0         255.255.255.255 UH        0 0          0
ppp0
203.59.136.92   0.0.0.0         255.255.255.252 U         0 0          0
eth0
192.168.0.0     0.0.0.0         255.255.0.0     U         0 0          0
eth1
127.0.0.0       0.0.0.0         255.0.0.0       U         0 0          0 lo
0.0.0.0         203.59.136.93   0.0.0.0         UG        0 0          0
eth0

/etc/pptpd.conf:
speed 115200
option /etc/ppp/options
debug
localip 192.168.8.1-20
remoteip 192.168.8.101-120
listen 203.59.136.94
pidfile /var/run/pptpd.pid

/etc/ppp/options:
lock
netmask 255.255.0.0
debug
auth
-chap           # Deny standard CHAP - unsecure
proxyarp
-chapms         # Deny standard MS-CHAP - unsecure
+chapms-v2
#mppe-40        # Deny 40 bit security
mppe-128
mppe-stateless

Colin Coe
Systems Administrator

M E T H O D  +  M A D N E S S
........................................www.method.com.au

1st Flr Churchill Court               Ph: +(08) 9388 6100
331 Hay Street                        Fx: +(08) 9380 6537
Subiaco, WA 6008                      

Disclaimer...............................................

E-mail is not secure and there is a risk that messages
may be corrupted in transmission. We will send you a
written confirmation of this message, if you send us a
specific written request for such confirmation.

This e-mail is intended only for the use of the
individual or entity named above and may contain
information that is confidential or privileged. If you
are not the intended recipient, you are hereby notified
that any dissemination, distribution or copying of this
e-mail is strictly prohibited. If you have received this
e-mail in error, please notify us immediately by return
e-mail or telephone (08) 9388 6100 and destroy the
original message. Thank you.

.........................................................




More information about the pptp-server mailing list