[pptp-server] HELP! Linux GW not MPPE encrypting
Tim Wilson
timwilson at mediaone.net
Fri Apr 20 07:06:24 CDT 2001
I have a Linux gateway that I want to use as a PPTP VPN server for win98
clients. I am running kernel 2.4.2 so I followed the directions for patching
linux 2.4 and ppp 2.4 to get mppe going (I found these directions on this
mailing list; they are reproduced below).
It sure seemed to be working great...the debug log shows MPPE successfully
negotiated, and the win98 client status display indicates that encryption is
being used. Then I looked at the packets with tcpdump. Problem is: the Linux
box doesn't encrypt anything it sends! The downlink data (server to client)
is PPP type 0021 (IPv4) and the encapsulated PPP contents are plaintext. The
win98 client does encrypt its stuff (sends PPP frame type 00fd) and the
Linux box decrypts it OK.
Thanks for any advice (please reply direct as I am currently not on the
mailing list).
Here's the directions I used to install:
(snip)
Get the following patches from ftp://ftp.binarix.com/pub/ppp-mppe/
linux-2.4.0-openssl-0.9.6-mppe.patch
ppp-2.4.0-openssl-0.9.6-mppe.patch
Get ppp-2.4.0.tar.gz from ftp://linuxcare.com.au/pub/ppp
Get linux kernel from the usual places.
Apply linux-xxx.patch to kernel and compile. In configuration, select
all the PPP stuff as modules. Apply ppp-xxx.patch to ppp-2.4.0,
compile, install. Boot new kernel.
Add following lines to /etc/ppp/options
mppe-40
mppe-128
mppe-stateless
Put "alias ppp-compress-18 ppp_mppe" to modutils configuration if you
want to have mppe module loaded automatically.
(snip)
-----------------------------------------------------------
Tim Wilson * Systems Engineer
Cambia Networks * 5600 N. River Road, Rosemont IL 60018
Phone 847.885.3090 * Fax 847.993.3097 * Mobile 847.207.4177
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Tim Wilson.vcf
Type: text/x-vcard
Size: 420 bytes
Desc: not available
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/20010420/b1602956/attachment.vcf>
More information about the pptp-server
mailing list