[pptp-server] W98 client can only ping poptop server

Scott M. Stone sstone at taos.com
Wed Jun 21 18:32:12 CDT 2000


On Wed, 21 Jun 2000, Brian Aust wrote:

> IP forwarding enabled on the NT FW-1 box, or IP forwarding enabled on the
> poptop server??  If on poptop server, where exactly is this located?

both.

on poptop server you would:

echo 1 > /proc/sys/net/ipv4/ip_forward

> 
> With that info, I can give it a whirl and see what happens!
> 
> Cheers!
> Brian
> 
> Brian R. Aust
> Manager of Information Technology
> Health Decisions, Inc.
> 1512 East Franklin St.  Suite 200
> Chapel Hill, NC   27514
> 919.967.2399 x247
> baust at healthdec.com
> 
> 
> > -----Original Message-----
> > From: Scott M. Stone [mailto:sstone at taos.com]
> > Sent: Wednesday, June 21, 2000 7:00 PM
> > To: Brian Aust
> > Cc: 'pptp-server at lists.schulte.org'
> > Subject: RE: [pptp-server] W98 client can only ping poptop server
> > 
> > 
> > On Wed, 21 Jun 2000, Brian Aust wrote:
> > 
> > > No... no ipchains, yet....
> > > 
> > > I have a CHeckpoint FW-1 firewall on an NT box, and the 
> > poptop server is
> > > 10.1.1.69, NAT'd to a real external address.  So the poptop 
> > server is just
> > > another internal server here at the company.  But FW-1 has 
> > it NAT'd to a
> > > real external IP, and i've set up a rule in FW-1 to allow 
> > ANY AND ALL
> > > traffic in to and out from the poptop server.
> > > 
> > > Does this shed any new light onto things?
> > 
> > hm, make sure the clients are setting their gateway to point 
> > at the poptop
> > server, then, and that ip forwarding is enabled on the server...
> > 
> > > 
> > > Brian R. Aust
> > > Manager of Information Technology
> > > Health Decisions, Inc.
> > > 1512 East Franklin St.  Suite 200
> > > Chapel Hill, NC   27514
> > > 919.967.2399 x247
> > > baust at healthdec.com
> > > 
> > > 
> > > > -----Original Message-----
> > > > From: Scott M. Stone [mailto:sstone at taos.com]
> > > > Sent: Wednesday, June 21, 2000 6:51 PM
> > > > To: Brian Aust
> > > > Cc: 'pptp-server at lists.schulte.org'
> > > > Subject: Re: [pptp-server] W98 client can only ping poptop server
> > > > 
> > > > 
> > > > On Wed, 21 Jun 2000, Brian Aust wrote:
> > > > 
> > > > > Hey guys...
> > > > > 
> > > > > After finally trashing all of my W98SE dial up networking 
> > > > software and
> > > > > reinstalling all of it from CD and then applying the 
> > > > 128-bit DUN upgrade,
> > > > > the W98 now successfully connects to my Linux Poptop server 
> > > > without errors.
> > > > > Bear in mind this is just clear, no authentication.
> > > > > 
> > > > > However...  it comes close, but not quite.  Turns out that 
> > > > it can ONLY ping
> > > > > the internal address of the Poptop server (10.1.1.69), and 
> > > > nothing else.
> > > > > There are lots of other machines on our 10.x.x.x network, 
> > > > but the W98 box
> > > > > can't ping them.  it can't ping 10.1.1.2 (DNS and WINS 
> > > > server) or anything.
> > > > 
> > > > you're using ipchains, right?
> > > > 
> > > > you have to specifically allow conduits from your pptp client 
> > > > ip addrs to
> > > > the rest of your subnet, since you're spanning multiple 
> > interfaces.
> > > > 
> > > > > 
> > > > > Here's the layout again:
> > > > > 
> > > > > Server:  RHAT6.2, PPTPD 1.0.0 tarball install             
> > > > Client:  W98SE
> > > > > with 128-bit DUN upgrade...   only TCP/IP selected, gets 
> > > > all addresses from
> > > > > server
> > > > > 
> > > > > /etc/ppp/options file:
> > > > > lock
> > > > > ms-dns 10.1.1.2
> > > > > ms-wins 10.1.1.2
> > > > > domain healthdec.com
> > > > > proxyarp
> > > > > name bnyatalie.healthdec.com
> > > > > debug
> > > > > auth
> > > > > require-chap 
> > > > > 
> > > > > /etc/ppp/chap-secrets file:
> > > > > baust     *               bpass               *		
> > > > (I've also put the
> > > > > name of the poptop server in place of the "*"s in the 2nd 
> > > > area, in the past)
> > > > > jdoe       *               jpass                *
> > > > > 
> > > > > /etc/pptpd.conf file:
> > > > > speed 115200
> > > > > debug
> > > > > localip 10.1.1.69    #this is the address of the poptop server
> > > > > remoteip 10.1.1.96-99	#the four addresses i have set 
> > > > aside for W98 clients
> > > > > 
> > > > > 
> > > > > and finally, the /var/log/messages file when the W98 
> > box connects:
> > > > > Jun 21 01:58:39 bnyatalie pptpd[10016]: CTRL: Client 
> > > > 24.162.230.141 control
> > > > > connection started
> > > > > Jun 21 01:58:39 bnyatalie pptpd[10016]: CTRL: Starting call 
> > > > (launching pppd,
> > > > > opening GRE)
> > > > > Jun 21 01:58:39 bnyatalie pppd[10017]: pppd 2.3.11 started 
> > > > by root, uid 0
> > > > > Jun 21 01:58:39 bnyatalie pppd[10017]: Using interface ppp0
> > > > > Jun 21 01:58:39 bnyatalie pppd[10017]: Connect: ppp0 
> > <--> /dev/pts/2
> > > > > Jun 21 01:58:39 bnyatalie pppd[10017]: CHAP peer 
> > > > authentication succeeded
> > > > > for baust
> > > > > Jun 21 01:58:40 bnyatalie pppd[10017]: found interface eth0 
> > > > for proxy arp
> > > > > Jun 21 01:58:40 bnyatalie pppd[10017]: local  IP 
> > address 10.1.1.69
> > > > > Jun 21 01:58:40 bnyatalie pppd[10017]: remote IP 
> > address 10.1.1.97
> > > > > Jun 21 01:58:40 bnyatalie pppd[10017]: CCP terminated by peer
> > > > > Jun 21 01:58:40 bnyatalie pppd[10017]: Compression 
> > disabled by peer.
> > > > > Jun 21 02:01:35 bnyatalie pppd[10017]: LCP terminated by peer
> > > > > Jun 21 02:01:36 bnyatalie pptpd[10016]: CTRL: Error with 
> > > > select(), quitting
> > > > > Jun 21 02:01:36 bnyatalie pptpd[10016]: CTRL: Client 
> > > > 24.162.230.141 control
> > > > > connection finished
> > > > > Jun 21 02:01:36 bnyatalie pppd[10017]: Modem hangup
> > > > > Jun 21 02:01:36 bnyatalie pppd[10017]: Connection terminated.
> > > > > Jun 21 02:01:36 bnyatalie pppd[10017]: Connect time 3.0 minutes.
> > > > > Jun 21 02:01:36 bnyatalie pppd[10017]: Sent 1114 bytes, 
> > > > received 18023
> > > > > bytes.
> > > > > Jun 21 02:01:36 bnyatalie pppd[10017]: Exit.             
> > > > > 
> > > > > everything at 01:58 is when it first connects, the stuff at 
> > > > 02:01 is when i
> > > > > finally killed the dialup networking connection from W98.
> > > > > 
> > > > > Any clues why the W98 box can ping the poptop server, but 
> > > > nothing else on
> > > > > the internal network??
> > > > > 
> > > > > Thanks much!!
> > > > > Brian
> > > > > 
> > > > > Brian R. Aust
> > > > > Manager of Information Technology
> > > > > Health Decisions, Inc.
> > > > > 1512 East Franklin St.  Suite 200
> > > > > Chapel Hill, NC   27514
> > > > > 919.967.2399 x247
> > > > > baust at healthdec.com
> > > > > 
> > > > > _______________________________________________
> > > > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > > > List services provided by www.schulteconsulting.com!
> > > > > 
> > > > > 
> > > > 
> > > > --------------------------
> > > > Scott M. Stone, CCNA <sstone at taos.com>
> > > > UNIX Systems and Network Engineer
> > > > Taos - The SysAdmin Company 
> > > > 
> > > 
> > > 
> > 
> > --------------------------
> > Scott M. Stone, CCNA <sstone at taos.com>
> > UNIX Systems and Network Engineer
> > Taos - The SysAdmin Company 
> > 
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulteconsulting.com!
> > 
> 
> 

--------------------------
Scott M. Stone, CCNA <sstone at taos.com>
UNIX Systems and Network Engineer
Taos - The SysAdmin Company 




More information about the pptp-server mailing list