[pptp-server] win2k, pptpd 1.2.2, pppd 2.4.0 and Linux 2.4.2

Mon Apr 2 05:12:10 CDT 2001

I have a working setting with w2k client, rh7 with kernel 2.2.18 patched
with ppp 2.3.11, ppp 2.3.11 with pach, 40 bit encryption and pptpd 1.0.1.
It did'nt work with kernel 2.4.2, ppp 2.4.0, but winME did.

On Sat, 31 Mar 2001 04:00:54 robert wrote:
> Has anyone gotten W2K with encryption working on a pptpd setup running
> 2.2 
> kernel series and/or pppd 2.3 series?
> 
> To answer your question, the setup works fine with both windows 98 and 95
> 
> clients.  I don't have access to w2k or me clients to test.
> 
> Out of curiosity, is the w2k using NAT?  According to M$: If the Virtual 
> Private Network (VPN) client is behind any network device performing
> Network 
> Address Translation (NAT), the L2TP session fails because encrypted IPSec
> 
> Encapsulating Security Payload (ESP) packets become corrupted.
> 
> The problem *seems* to be w2k, not pptpd.  I know M$ purposely created 
> incompatibilties with bind and kerbos (sp?).  I wonder if we have hit
> upon 
> another incompatibilty...or a bug????  
> 
> On Friday 30 March 2001 18:55, Keith T. Garner wrote:
> > I just setup and got running pptpd 1.2.2 on a
> > machine with the 2.4.2 kernel.  I followed the HOWTO at
> > http://home.swbell.net/berzerke/2.4_Kernel_PPTPD-HOWTO.txt.  It was a
> > great amount of help, thanks to whomever threw it together.
> >
> > After digging through the past two months worth of archives on this
> > mailing list, it looks like I've hit what has become a common problem.
> >
> > Using win2k with encryption off, it works flawlessly.  Packets go back
> > and forth with easy, giving me access to our private networks.
> >
> > However, using win2k as a client against the server with encryption on
> > (128 bit stateless) all packages between ppp0 on the server and the
> > win2k client seem to just disappear into the void.  As others have
> said,
> > packets appears to be going over the line thanks to the blinky lights
> > on win2k, and I do see "ACCEPTS" being matched in the iptables.
> >
> > I just wanted to toss out that "yes, this is a real problem, and it
> > appears to be an issue with mppe and win2k."  I haven't had a chance
> > to test it with other clients yet, and I plan on doing it either this
> > weekend or on Monday.
> >
> > Actually, my coworker had a win98 box up that I could test with
> quickly.
> > Doing both encyrpted and non-encrypted connections, the win98 box can
> > connect and work flawlessly as a pptp client.
> >
> > So, to sum up, win98 works well both encrypted and nonencrypted.
> > win2k only works well unecrypted.  Adding more logs to the fire of
> > "win2k isn't working encypted with the stone soup in the subject."
> >
> > Anything I can do to help, send logs to the list or whatever, let me
> know.
> > (I'm too mentally fried this week to dig into it further at this
> point.)
> >
> > Keith
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulteconsulting.com!
> 

Hans Einar Gautun