[pptp-server] NT compression revisited
Michael Armstrong
mikea at maketi.com
Wed Mar 15 21:24:25 CST 2000
I've seen this issue several times over the last few months with no
apparent resolution, so I'll pose the problem again.
My configuration is as follows.
client--> Internet --> Firewall -->PPTP Server(RedHat 6.1 w/ PoPToP) -->
Destination Lan
When the client is Win98 running patches, I connect/authenticate and run
perfectly with MS-CHAP-V2 and strong encryption
When the client is Windoze NT.
Running the client with No encryption gives perfect
connection/authentication and data transmission
Running the client with Encryption allows the
connection/authentication, but any attempt to access the internal
network gives a slew of "unsupported protocol" messages.
The Windoze NT configuration which doesn't work is:
NT 4.0 workstation, SP6a, 128 bit edition
Software compression disabled
PPP LCP extensions enabled
TCP settings: server assigned address, server assigned DNS, no IP header
compression, Use default gateway on remote NW
M/S encrypted authentication required, Data encryption required.
The Windoze NT configuration which does work is the same as above but
with No Data encryption required.
The Firewall configuration is:
Red Hat 6.0 with masquerade patches
ipmasqadm and ipfwd running for control ports and GRE.
The internal pptp server configuration is:
Kernel 2.2.12 (Red Hat H6.1)
pptpd 1.0.0
ppp-2.3.10 with ppp-2.3.10-mppe patches
SSLeay 0.6.6b
ppp options file is configured as follows:
lock
debug
name altbier
auth
+chap
+chapms
+chapms-v2
mppe-40
mppe-128
proxyarp
pptpd.conf file is:
speed 115200
debug
localip xx.xx.xx.xx
remoteip yy.yy.yy.zz (zz=200-203)
The log file is attached. Any help would be IMMENSELY appreciated.
Thanks,
MikeA
Mar 15 18:10:32 altbier pppd[918]: pppd 2.3.10 started by root, uid 0
Mar 15 18:10:32 altbier pppd[918]: Using interface ppp0
Mar 15 18:10:32 altbier pppd[918]: Connect: ppp0 <--> /dev/pts/3
Mar 15 18:10:32 altbier pppd[918]: sent [LCP ConfReq id=0x1 <asyncmap
0x0> <auth chap 81> <magic 0xa1d1f1de> <pcomp> <accomp>]
Mar 15 18:10:32 altbier pppd[918]: Timeout 0x8050164:0x8077660 in 3
seconds.
Mar 15 18:10:32 altbier pppd[918]: rcvd [LCP ConfReq id=0x0 <magic
0x790a> <pcomp> <accomp> < 0d 03 06>]
Mar 15 18:10:32 altbier pppd[918]: lcp_reqci: rcvd unknown option 13
Mar 15 18:10:32 altbier pppd[918]: lcp_reqci: returning CONFREJ.
Mar 15 18:10:32 altbier pppd[918]: sent [LCP ConfRej id=0x0 < 0d 03 06>]
Mar 15 18:10:32 altbier pppd[918]: rcvd [LCP ConfNak id=0x1 <asyncmap
0xffffffff>]
Mar 15 18:10:32 altbier pppd[918]: Untimeout 0x8050164:0x8077660.
Mar 15 18:10:32 altbier pppd[918]: sent [LCP ConfReq id=0x2 <auth chap
81> <magic 0xa1d1f1de> <pcomp> <accomp>]
Mar 15 18:10:32 altbier pppd[918]: Timeout 0x8050164:0x8077660 in 3
seconds.
Mar 15 18:10:32 altbier pppd[918]: rcvd [LCP ConfReq id=0x1 <magic
0x790a> <pcomp> <accomp>]
Mar 15 18:10:32 altbier pppd[918]: lcp_reqci: returning CONFACK.
Mar 15 18:10:32 altbier pppd[918]: sent [LCP ConfAck id=0x1 <magic
0x790a> <pcomp> <accomp>]
Mar 15 18:10:32 altbier pppd[918]: rcvd [LCP ConfAck id=0x2 <auth chap
81> <magic 0xa1d1f1de> <pcomp> <accomp>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x8077660.
Mar 15 18:10:33 altbier pppd[918]: sent [CHAP Challenge id=0x1
<583633f4cdf03b53c55e8ed5ec4dc3e7>, name = "altbier"]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x80558c0:0x8077940 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: rcvd [LCP code=0xc id=0x2 00 00 79 0a
4d 53 52 41 53 56 34 2e 30 30]
Mar 15 18:10:33 altbier pppd[918]: sent [LCP CodeRej id=0x3 0c 02 00 12
00 00 79 0a 4d 53 52 41 53 56 34 2e 30 30]
Mar 15 18:10:33 altbier pppd[918]: rcvd [LCP code=0xc id=0x3 00 00 79 0a
4d 53 52 41 53 2d 31 2d 50 4f 49 4e 44 45 58 54 45 52]
Mar 15 18:10:33 altbier pppd[918]: sent [LCP CodeRej id=0x4 0c 03 00 1a
00 00 79 0a 4d 53 52 41 53 2d 31 2d 50 4f 49 4e 44 45 58 54 45 52]
Mar 15 18:10:33 altbier pppd[918]: rcvd [CHAP Response id=0x1
<6add6f360dd7194d1a64d353519d7c980000000000000000105e4588c6cd6205215c50af6a21dc030f4c69950e41fdf600>,
name = "joeuser"]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x80558c0:0x8077940.
Mar 15 18:10:33 altbier pppd[918]: ChapReceiveResponse: rcvd type
MS-CHAP-V2
Mar 15 18:10:33 altbier pppd[918]: sent [CHAP Success id=0x1
"S=40BB601C27759F0B01B770B88E22C6D2FA77BB02"]
Mar 15 18:10:33 altbier pppd[918]: sent [IPCP ConfReq id=0x1 <addr
xx.xx.xx.xx> <compress VJ 0f 01>]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x8050164:0x80778c0 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: sent [CCP ConfReq id=0x1 <deflate 15>
<deflate(old#) 15> <mppe 0 0 0 60> <bsd v1 15>]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x8050164:0x8077a00 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: MSCHAP-v2 peer authentication
succeeded for joeuser
Mar 15 18:10:33 altbier pppd[918]: rcvd [CCP ConfReq id=0x4 <mppe 1 0 0
60>]
Mar 15 18:10:33 altbier pppd[918]: sent [CCP ConfNak id=0x4 <mppe 1 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: rcvd [IPCP ConfReq id=0x5 <addr
0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins
0.0.0.0>]
Mar 15 18:10:33 altbier pppd[918]: ipcp: returning Configure-REJ
Mar 15 18:10:33 altbier pppd[918]: sent [IPCP ConfRej id=0x5 <ms-dns1
0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Mar 15 18:10:33 altbier pppd[918]: rcvd [IPCP ConfRej id=0x1 <compress
VJ 0f 01>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x80778c0.
Mar 15 18:10:33 altbier pppd[918]: sent [IPCP ConfReq id=0x2 <addr
xx.xx.xx.xx>]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x8050164:0x80778c0 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: rcvd [CCP ConfRej id=0x1 <deflate 15>
<deflate(old#) 15> <bsd v1 15>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x8077a00.
Mar 15 18:10:33 altbier pppd[918]: sent [CCP ConfReq id=0x2 <mppe 0 0 0
60>]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x8050164:0x8077a00 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: rcvd [CCP ConfReq id=0x6 <mppe 1 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: sent [CCP ConfAck id=0x6 <mppe 1 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: rcvd [IPCP ConfReq id=0x7 <addr
0.0.0.0>]
Mar 15 18:10:33 altbier pppd[918]: ipcp: returning Configure-NAK
Mar 15 18:10:33 altbier pppd[918]: sent [IPCP ConfNak id=0x7 <addr
yy.yy.yy.yy>]
Mar 15 18:10:33 altbier pppd[918]: rcvd [IPCP ConfAck id=0x2 <addr
xx.xx.xx.xx>]
Mar 15 18:10:33 altbier pppd[918]: rcvd [CCP ConfNak id=0x2 <mppe 0 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x8077a00.
Mar 15 18:10:33 altbier pppd[918]: sent [CCP ConfReq id=0x3 <mppe 0 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: Timeout 0x8050164:0x8077a00 in 3
seconds.
Mar 15 18:10:33 altbier pppd[918]: rcvd [IPCP ConfReq id=0x8 <addr
yy.yy.yy.yy>]
Mar 15 18:10:33 altbier pppd[918]: ipcp: returning Configure-ACK
Mar 15 18:10:33 altbier pppd[918]: sent [IPCP ConfAck id=0x8 <addr
yy.yy.yy.yy>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x80778c0.
Mar 15 18:10:33 altbier pppd[918]: ipcp: up
Mar 15 18:10:33 altbier pppd[918]: found interface eth0 for proxy arp
Mar 15 18:10:33 altbier pppd[918]: local IP address xx.xx.xx.xx
Mar 15 18:10:33 altbier pppd[918]: remote IP address yy.yy.yy.yy
Mar 15 18:10:33 altbier pppd[918]: Script /etc/ppp/ip-up started (pid
926)
Mar 15 18:10:33 altbier pppd[918]: rcvd [CCP ConfAck id=0x3 <mppe 0 0 0
40>]
Mar 15 18:10:33 altbier pppd[918]: Untimeout 0x8050164:0x8077a00.
Mar 15 18:10:33 altbier pppd[918]: MPPE 128 bit, non-stateless
compression enabled
Mar 15 18:10:33 altbier pppd[918]: Script /etc/ppp/ip-up finished (pid
926), status = 0x0
Okay, now the fun begins...
Mar 15 18:10:36 altbier pppd[918]: rcvd [proto=0x5ce5] ce 19 74 d6 05 3b
44 6c 02 bc 79 52 f0 91 0f 2f 5c 90 3a 18 9e a9 fe 82 94 09 91 6a d1 d8
34 56 ...
Mar 15 18:10:36 altbier pppd[918]: Unsupported protocol (0x5ce5)
received
Mar 15 18:10:36 altbier pppd[918]: sent [LCP ProtRej id=0x5 5c e5 ce 19
74 d6 05 3b 44 6c 02 bc 79 52 f0 91 0f 2f 5c 90 3a 18 9e a9 fe 82 94 09
91 6a d1 d8 34 56 0a 81 34 f6 ed f3 1a 42 5f b6 25 65 2e 8b 88 66 10 a8
9c 5e b4 52 50 19 96 1f bc d9]
Mar 15 18:10:37 altbier pppd[918]: rcvd [proto=0x5731] 7f 36 cf bb 72 97
9d c6 06 d0 d4 2e ba 09 ad 7f d0 ba 58 20 5b a3 b9 ba 1a b9 2e a9 1f 23
2d 20 ...
Mar 15 18:10:37 altbier pppd[918]: Unsupported protocol (0x5731)
received
Mar 15 18:10:37 altbier pppd[918]: sent [LCP ProtRej id=0x6 57 31 7f 36
cf bb 72 97 9d c6 06 d0 d4 2e ba 09 ad 7f d0 ba 58 20 5b a3 b9 ba 1a b9
2e a9 1f 23 2d 20 36 0a e4 ca 6b f6 a1 b9 dc 36 9d d6 b3 53 ed 8e 13 67
72 8a 27 9f aa d9 aa ed 67 d6]
Mar 15 18:10:38 altbier pppd[918]: rcvd [proto=0x2e85] 3c 18 b0 02 b2 da
9f 79 71 e4 57 4a a4 f8 dd 13 56 a3 9b 5c a3 9b 4b 38 17 06 4e 78 2c 63
a8 a9 ...
Mar 15 18:10:38 altbier pppd[918]: Unsupported protocol (0x2e85)
received
Mar 15 18:10:38 altbier pppd[918]: sent [LCP ProtRej id=0x7 2e 85 3c 18
b0 02 b2 da 9f 79 71 e4 57 4a a4 f8 dd 13 56 a3 9b 5c a3 9b 4b 38 17 06
4e 78 2c 63 a8 a9 08 db af 6f de 8f d1 79 20 98 6b bd d4 8c 83 73 71 49
da 61 56 69 1b 5f 1d 7a 81 c4]
Mar 15 18:10:39 altbier pppd[918]: rcvd [proto=0x4d16] e0 00 3e ff a2 34
43 d8 72 44 fc 37 bf 74 3f e5 48 de 21 94 c1 a4 64 27 eb 56 10 0d 47 17
11 cf ...
Mar 15 18:10:39 altbier pppd[918]: Unsupported protocol (0x4d16)
received
Mar 15 18:10:39 altbier pppd[918]: sent [LCP ProtRej id=0x8 4d 16 e0 00
3e ff a2 34 43 d8 72 44 fc 37 bf 74 3f e5 48 de 21 94 c1 a4 64 27 eb 56
10 0d 47 17 11 cf d9 36 4d b8 ea 9e 1f d4 7e 43 0b f9 a5 37 7e 76 88 d7
ff a0 01 f7 63 cb 22 1e 1a a9]
Mar 15 18:10:40 altbier pppd[918]: rcvd [proto=0x9948] 09 e0 35 56 5b 52
61 f9 08 20 63 b3 d4 cb 5a ed bb 31 93 bb f3 6c 6c ff 4e 51 2a af 7e 63
db c1 ...
Mar 15 18:10:40 altbier pppd[918]: Unsupported protocol (0x9948)
received
Mar 15 18:10:40 altbier pppd[918]: sent [LCP ProtRej id=0x9 99 48 09 e0
35 56 5b 52 61 f9 08 20 63 b3 d4 cb 5a ed bb 31 93 bb f3 6c 6c ff 4e 51
2a af 7e 63 db c1 17 81 11 28 05 71 29 3a 88 a4 ec 12 9d 5f 73 e5 dd a7
56 18 c0 54 b0 9a 4b 2d f2 89]
Mar 15 18:10:41 altbier pppd[918]: rcvd [proto=0xc43b] 1c 02 d8 99 13 4d
95 77 86 67 99 5f 55 b6 22 bd d4 39 2f 35 07 57 a0 25 41 34 53 4c 19 14
eb 0b ...
Mar 15 18:10:41 altbier pppd[918]: Unsupported protocol (0xc43b)
received
Mar 15 18:10:41 altbier pppd[918]: sent [LCP ProtRej id=0xa c4 3b 1c 02
d8 99 13 4d 95 77 86 67 99 5f 55 b6 22 bd d4 39 2f 35 07 57 a0 25 41 34
53 4c 19 14 eb 0b 65 84 d4 70 8d e9 ac 7e 64 6a c1 2e 76 a2 2e 09 c5 2f
8b c4 3d de 37 bf 23 62 ac 58]
Mar 15 18:10:44 altbier pppd[918]: rcvd [proto=0x800e] f2 c6 9a ab 0c 7c
f9 a0 d5 e6 b2 3b c0 e3 d6 59 33 0f 78 97 4d c5 5c 03 29 22 dc ed 10 61
39 b8 ...
Mar 15 18:10:44 altbier pppd[918]: Unsupported protocol (0x800e)
received
Mar 15 18:10:44 altbier pppd[918]: sent [LCP ProtRej id=0xb 80 0e f2 c6
9a ab 0c 7c f9 a0 d5 e6 b2 3b c0 e3 d6 59 33 0f 78 97 4d c5 5c 03 29 22
dc ed 10 61 39 b8 ad 9a 52 a6 0d 3c a6 84 8c 5a d7 1a 91 02 a5 7e fe c9
4a 46 1b 5f fe 4d 8d a6 02 4b 2c 4a 5a 98 2e 19 58 0c d8 fe 78 c8 e1 27
15
Mar 15 18:10:45 altbier pppd[918]: rcvd [proto=0x7be2] a2 39 9a 31 4f c7
be 82 87 c5 a7 8a e8 8c d5 48 07 47 df ac 5b 65 8a 3f 88 cb 25 fc 01 47
bf c7 ...
Mar 15 18:10:45 altbier pppd[918]: Unsupported protocol (0x7be2)
received
Mar 15 18:10:45 altbier pppd[918]: sent [LCP ProtRej id=0xc 7b e2 a2 39
9a 31 4f c7 be 82 87 c5 a7 8a e8 8c d5 48 07 47 df ac 5b 65 8a 3f 88 cb
25 fc 01 47 bf c7 32 07 fa 2f e7 75 ad 8c 48 bf 5b 5b fb 39 bf ca 04 d7
a9 be b5 6b 5e 4c db ac 7a ae 20 c8 12 28 d5 5f a9 62 2b e1 ff ed 0a 89
3a
Mar 15 18:10:46 altbier pppd[918]: rcvd [proto=0x3c9b] 9a 1f c9 d1 db f7
c6 4e a0 9b 15 98 a2 ad 70 41 19 75 e2 bd 3f 64 b7 f4 35 f3 f6 55 25 3a
54 93 ...
Mar 15 18:10:46 altbier pppd[918]: Unsupported protocol (0x3c9b)
received
Mar 15 18:10:46 altbier pppd[918]: sent [LCP ProtRej id=0xd 3c 9b 9a 1f
c9 d1 db f7 c6 4e a0 9b 15 98 a2 ad 70 41 19 75 e2 bd 3f 64 b7 f4 35 f3
f6 55 25 3a 54 93 cf 48 68 4a 82 c8 37 31 5a bb 22 54 82 b8 bb 6f 34 ea
15 6a fc 86 11 23 18 69 97 22 ec ab 08 db 56 13 e0 42 80 bc 90 10 ac 60
53
Mar 15 18:10:48 altbier pppd[918]: rcvd [proto=0xe0e6] 94 f8 c4 12 b4 ef
3a 51 fd 7d fe 66 0b f7 ef e2 39 a2 c8 08 88 65 3c 10 68 67 69 b0 70 06
f9 8c ...
Mar 15 18:10:48 altbier pppd[918]: Unsupported protocol (0xe0e6)
received
Mar 15 18:10:48 altbier pppd[918]: sent [LCP ProtRej id=0xe e0 e6 94 f8
c4 12 b4 ef 3a 51 fd 7d fe 66 0b f7 ef e2 39 a2 c8 08 88 65 3c 10 68 67
69 b0 70 06 f9 8c 94 e7 2f 7f 7d 5d d5 e3 c4 68 c1 8c 9c ee f8 78 7b 55
70 38 f4 9a 00 4f 49 1d 7a 18 b6 2a 2e ef d8 b0 96 06 0c c5 6d 65 af 27
29
Mar 15 18:10:48 altbier pppd[918]: rcvd [proto=0x3744] e0 26 26 d5 68 38
ff 6b f9 0a 06 f1 bc 0e ec ed 41 77 4b 7a 79 af cd 91 ab 54 ef d5 f1 6f
15 02 ...
Mar 15 18:10:48 altbier pppd[918]: Unsupported protocol (0x3744)
received
Mar 15 18:10:48 altbier pppd[918]: sent [LCP ProtRej id=0xf 37 44 e0 26
26 d5 68 38 ff 6b f9 0a 06 f1 bc 0e ec ed 41 77 4b 7a 79 af cd 91 ab 54
ef d5 f1 6f 15 02 4d a4 09 06 a6 27 e5 f6 71 13 d3 9b ad 2c 33 f6 9e 23
57 5b 5f 34 17 fa b4 47 c6 71 a7 94 3c af 5f ac 87 c6 68 92 67 1a 14 6c
ad
Mar 15 18:10:52 altbier pppd[918]: rcvd [proto=0x86bc] da 49 7e af ff d6
36 0c 8c 56 8a 92 44 49 55 c8 35 7e 72 05 d9 97 48 a4 77 ba ee a4 b0 f7
c7 fd ...
Mar 15 18:10:52 altbier pppd[918]: Unsupported protocol (0x86bc)
received
Mar 15 18:10:52 altbier pppd[918]: sent [LCP ProtRej id=0x10 86 bc da 49
7e af ff d6 36 0c 8c 56 8a 92 44 49 55 c8 35 7e 72 05 d9 97 48 a4 77 ba
ee a4 b0 f7 c7 fd 4a af bc 4d 48 c2 e1 fb eb 2d 56 27 db 83 24 ab 59 a4
1b da de 33 54 3a 2d 14 67 6a e5 36 d6 62 c2 2e 05 fe a3 62 f5 27 40 f5
6
Mar 15 18:10:52 altbier pppd[918]: rcvd [proto=0x5a7f] 88 e6 28 01 1b ee
70 7e 18 33 79 a4 60 be 7f 61 67 59 23 db d8 51 05 4d b0 85 87 31 e4 1e
9c 09 ...
Mar 15 18:10:52 altbier pppd[918]: Unsupported protocol (0x5a7f)
received
Mar 15 18:10:52 altbier pppd[918]: sent [LCP ProtRej id=0x11 5a 7f 88 e6
28 01 1b ee 70 7e 18 33 79 a4 60 be 7f 61 67 59 23 db d8 51 05 4d b0 85
87 31 e4 1e 9c 09 87 db 9a 02 ef c6 ba 94 b9 e4 a3 b6 7e 4d bb bd 52 49
eb 62 67 93 46 95 57 cd 56 24 c6 81 cf e3 f3 3b ae 60 62 3a b3 c1 d6 98
c
Mar 15 18:11:19 altbier pppd[918]: Modem hangup
Mar 15 18:11:19 altbier pppd[918]: ipcp: down
Mar 15 18:11:19 altbier pppd[918]: Untimeout 0x805957c:0x0.
Mar 15 18:11:19 altbier pppd[918]: Script /etc/ppp/ip-down started (pid
958)
Mar 15 18:11:19 altbier pppd[918]: Connection terminated.
Mar 15 18:11:19 altbier pppd[918]: Connect time 0.8 minutes.
Mar 15 18:11:19 altbier pppd[918]: Sent 1851 bytes, received 1737 bytes.
Mar 15 18:11:19 altbier pppd[918]: Waiting for 1 child processes...
Mar 15 18:11:19 altbier pppd[918]: script /etc/ppp/ip-down, pid 958
Mar 15 18:11:19 altbier pppd[918]: Script /etc/ppp/ip-down finished (pid
958), status = 0x0
Mar 15 18:11:19 altbier pppd[918]: Exit.
More information about the pptp-server
mailing list