[pptp-server] It works pretty well, but still some sticky problems!

Plastic plasticplastic at ameritech.net
Sun Aug 12 11:09:37 CDT 2001 

Hi, George, and everyone else!

Thanks for the help. =)

I've put the two lcp* clauses in, and I'll be testing that.

I feel a bit foolish, but I've just discovered the ppp-2.3.11.tar.gz source
i have
(and can't remember exactly where i got it from) has the require-mppe*
options built-in, too, ALREADY, altho they are not documented in the
included man pages
like the mschap* ones are. So, one patch is is not even needed....so
no wonder it won't insert! The other patch (just tried it), the \\WORKGROUP
stripper
won't insert completely, and I can see why. It's looking for a
"ppp-2.3.11.mppe" tree at the same level as the "ppp-2.3.11" tree, which
doesn't exist. I'm a bit tempted to just edit out the extra ".mppe", but
that will
probably just break something. I'm going to tack the whole patch onto the
end of this message,
and maybe someone on this list can make sense of it.

I *really* don't think /etc/ppp/ip-down is running at all. It doesn't even
run
when a client makes a graceful disconnection. And after the client has
disconnected,
a "ps -ax | grep pppd" shows no lingering traces of pppd. So, I don't think
putting
logging code in there will help, since it won't run! It has some ipchains
flushing
code that definitely never is run, since it never goes into
effect...although if you manually execute
the script, it goes into effect pronto. In the logs, pppd always says
"Exit", too.

Again, thanks a lot!

-- JS.

----- Original Message -----
From: "George Vieira" <GeorgeV at citadelcomputer.com.au>
To: "'Plastic'" <plasticplastic at ameritech.net>;
<pptp-server at lists.schulte.org>
Sent: Sunday, August 12, 2001 8:43 AM
Subject: RE: [pptp-server] It works pretty well, but still some sticky
problems!


> 1. Try adding
>
> lcp-echo-failure 10
> lcp-echo-interval 3
>
> to your options.pptp file. this helps detect dead pppd links and drops the
> pppd connection if any. Then it's up to the client to reconnect.
>
> 2. Can't remember the patch but usually in the first line it tells you how
> to use it... something line
> patch -p1 < patchfile
>
> 3. The scripts are (usually) called. The problem may be that pppd probably
> didn't totally die or something... the fix in problem 1 may also fix
this..
> Also try using ipparam and linkname in your pppd command line.. then in
> ip-down.local use $6 to determine the ipparam used and log the time/date
to
> help diagnose lose of connectione etc..
>


--------inserting the patch: strip-MSdomain-patch.diff   from
themm.net-------

diff -ur ppp-2.3.11/pppd/chap.c ppp-2.3.11.mppe/pppd/chap.c
--- ppp-2.3.11/pppd/chap.c Thu Mar 16 17:47:42 2000
+++ ppp-2.3.11.mppe/pppd/chap.c Wed Mar 29 13:39:10 2000
@@ -69,6 +69,10 @@
     { "ms-lanman", o_bool, &ms_lanman,
       "Use LanMan passwd when using MS-CHAP", 1 },
 #endif
+#ifdef CHAPMS
+    { "chapms-strip-domain", o_bool, &chapms_strip_domain,
+      "Strip the domain prefix before the Username", 1 },
+#endif
     { NULL }
 };

@@ -518,6 +522,7 @@
     int secret_len, old_state;
     int code;
     char rhostname[256];
+    char tmp[256];
     MD5_CTX mdContext;
     char secret[MAXSECRETLEN];
     u_char hash[MD5_SIGNATURE_SIZE];
@@ -565,6 +570,10 @@
  len = sizeof(rhostname) - 1;
     BCOPY(inp, rhostname, len);
     rhostname[len] = '\000';
+    if (strrchr(rhostname, '\\') && chapms_strip_domain) {
+ strcpy(tmp, strrchr(rhostname, '\\') + 1);
+ strcpy(rhostname, tmp);
+    }

     /*
      * Get secret for authenticating them with us,
diff -ur ppp-2.3.11/pppd/chap_ms.c ppp-2.3.11.mppe/pppd/chap_ms.c
--- ppp-2.3.11/pppd/chap_ms.c Thu Mar 16 17:47:42 2000
+++ ppp-2.3.11.mppe/pppd/chap_ms.c Wed Mar 29 13:44:47 2000
@@ -84,6 +84,7 @@
 bool ms_lanman = 0;     /* Use LanMan password instead of NT */
       /* Has meaning only with MS-CHAP challenges */
 #endif
+bool chapms_strip_domain = 0;

 static void
 ChallengeResponse(challenge, pwHash, response)
diff -ur ppp-2.3.11/pppd/pppd.h ppp-2.3.11.mppe/pppd/pppd.h
--- ppp-2.3.11/pppd/pppd.h Thu Mar 16 17:47:42 2000
+++ ppp-2.3.11.mppe/pppd/pppd.h Wed Mar 29 13:36:10 2000
@@ -226,6 +226,9 @@
 extern bool ms_lanman; /* Use LanMan password instead of NT */
     /* Has meaning only with MS-CHAP challenges */
 #endif
+#ifdef CHAPMS
+extern bool chapms_strip_domain;
+#endif

 extern char *current_option; /* the name of the option being parsed */
 extern int  privileged_option; /* set iff the current option came from root
*/

------------end of patch code------------------

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/20010812/2e22058c/attachment.html>

More information about the pptp-server mailing list