[pptp-server] Problems logging into PopTop.

George Vieira GeorgeV at citadelcomputer.com.au
Thu Feb 1 15:20:38 CST 2001 

I think you need to patch your 192.168.1.X firewall for PPTP masquerading I
think.

Also, I'd patch your kernel up to version 2.2.16 at least due to a root
access bug.. Don't ask what it is and how they gain access 'coz I don't know
but I just avoid it.


thanks,
George Vieira


-----Original Message-----
From: Andy Ennamorato [mailto:ajennamo at uncc.edu]
Sent: Thursday, February 01, 2001 3:45 PM
To: pptp-server at lists.schulte.org
Subject: [pptp-server] Problems logging into PopTop.



Howdy...

After having installed a couple weeks ago, I'm still struggling to have a
machine connect to my
PoPTop server. I'm using RedHat 6.2, kernel 2.2.14 and PopTop 1.1.2 and
pppd 2.3.11.

The poptop software IS running on the firewall, and every time I've tested,
I've enabled all packets
(i.e. IPCHAINS -P INPUT ACCEPT, OUTPUT ACCEPT) so that "shouldn't" be
blocking anything.

I've attempted to connect in two different ways - the first time, from a
Win98 machine behind the
firewall (using the 192.168.x.x IP class). When I connect to the internal
interface (in this case, eth1),
the Win98 box connects temporarily - it seems to authenticate - but then
immediately drops the
connection. Here's a snippet of the log file when this happens (I can post
the complete log
if needed):

... (pptpd.log) ...
Jan 25 18:47:15 yoyodyne pptpd[19937]: CTRL (PPPD Launcher): local address
= 192.168.1.80
Jan 25 18:47:15 yoyodyne pptpd[19937]: CTRL (PPPD Launcher): remote address
= 192.168.1.70
Jan 25 18:47:15 yoyodyne pptpd[19936]: CTRL: I wrote 32 bytes to the
client.
Jan 25 18:47:15 yoyodyne pptpd[19936]: CTRL: Sent packet to client
Jan 25 18:47:16 yoyodyne pppd[19937]: pppd 2.3.11 started by root, uid 0
Jan 25 18:47:16 yoyodyne pppd[19937]: Using interface ppp1
Jan 25 18:47:16 yoyodyne pppd[19937]: Connect: ppp1 <--> /dev/pts/1
Jan 25 18:47:16 yoyodyne pptpd[19936]: Buffering out-of-order packet; got 1
after 4294967295
Jan 25 18:47:16 yoyodyne pptpd[19936]: Packet reorder timeout waiting for 0
Jan 25 18:47:16 yoyodyne pptpd[19936]: Buffering out-of-order packet; got 2
after 0
Jan 25 18:47:16 yoyodyne pppd[19937]: Peer is not authorized to use remote
address 192.168.1.70
Jan 25 18:47:16 yoyodyne pppd[19937]: CCP terminated by peer
Jan 25 18:47:16 yoyodyne pppd[19937]: Compression disabled by peer.
Jan 25 18:47:16 yoyodyne pppd[19937]: Connection terminated.
Jan 25 18:47:16 yoyodyne pppd[19937]: Connect time 0.0 minutes.
Jan 25 18:47:16 yoyodyne pppd[19937]: Sent 334 bytes, received 346 bytes.
Jan 25 18:47:16 yoyodyne pppd[19937]: Exit.
Jan 25 18:47:16 yoyodyne pptpd[19936]: Error reading from pppd:
Input/output error
Jan 25 18:47:16 yoyodyne pptpd[19936]: CTRL: GRE read or PTY write failed
(gre,pty)=(5,4)
Jan 25 18:47:16 yoyodyne pptpd[19936]: CTRL: Client 192.168.0.2 control
connection finished

Recently, I tried to have someone connect from a Windows ME machine, and
something similar happens
on the client side. They were able to connect/authenticate, but again, the
connection is immediately
disconnected. Here's the log for that:

... pptpd.log ...
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Client 216.67.54.235 control
connection started
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Received PPTP Control Message
(type: 1)
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Made a START CTRL CONN RPLY
packet
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: I wrote 156 bytes to the
client.
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Sent packet to client
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Received PPTP Control Message
(type: 7)
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: 0 min_bps, 1525 max_bps, 32
window size
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Made a OUT CALL RPLY packet
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Starting call (launching pppd,
opening GRE)
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: pty_fd = 4
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: tty_fd = 5
Jan 25 19:02:33 yoyodyne pptpd[19976]: CTRL (PPPD Launcher): Connection
speed = 115200
Jan 25 19:02:33 yoyodyne pptpd[19976]: CTRL (PPPD Launcher): local address
= 192.168.1.80
Jan 25 19:02:33 yoyodyne pptpd[19976]: CTRL (PPPD Launcher): remote address
= 192.168.1.70
Jan 25 19:02:33 yoyodyne pppd[19976]: pppd 2.3.11 started by root, uid 0
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: I wrote 32 bytes to the
client.
Jan 25 19:02:33 yoyodyne pptpd[19975]: CTRL: Sent packet to client
Jan 25 19:02:33 yoyodyne pppd[19976]: Using interface ppp1
Jan 25 19:02:33 yoyodyne pppd[19976]: Connect: ppp1 <--> /dev/pts/1
Jan 25 19:03:03 yoyodyne pppd[19976]: LCP: timeout sending Config-Requests
Jan 25 19:03:03 yoyodyne pppd[19976]: Connection terminated.
Jan 25 19:03:03 yoyodyne pppd[19976]: Exit.
Jan 25 19:03:03 yoyodyne pptpd[19975]: Error reading from pppd:
Input/output error
Jan 25 19:03:03 yoyodyne pptpd[19975]: CTRL: GRE read or PTY write failed
(gre,pty)=(5,4)
Jan 25 19:03:03 yoyodyne pptpd[19975]: CTRL: Client 216.67.54.235 control
connection finished
Jan 25 19:03:03 yoyodyne pptpd[19975]: CTRL: Exiting now
Jan 25 19:03:03 yoyodyne pptpd[19925]: MGR: Reaped child 19975

Here's a copy of my options.pptpd file:

lock
debug
proxyarp
auth
+chap

Here's chap-secrets:

# Secrets for authentication using CHAP
# client        server  secret                   IP addresses
noauth
guest   * xxxxx *
andy    * xxxx  *
"anjoju" * "xxxxx"

Here's my pptpd.conf:

speed 115200
/etc/ppp/options.pptp
debug
localip 192.168.1.80-89
remoteip 192.168.1.70-79

Additionally, here's the /var/log/messages file from the client connection
attempt from "inside"
my massive 2 computer LAN:

Jan 25 18:47:15 yoyodyne pptpd[19936]: CTRL: Client 192.168.0.2 control
connection started
Jan 25 18:47:15 yoyodyne pptpd[19936]: CTRL: Starting call (launching pppd,
opening GRE)
Jan 25 18:47:16 yoyodyne pppd[19937]: pppd 2.3.11 started by root, uid 0
Jan 25 18:47:16 yoyodyne kernel: registered device ppp1
Jan 25 18:47:16 yoyodyne pppd[19937]: Using interface ppp1
Jan 25 18:47:16 yoyodyne pppd[19937]: Connect: ppp1 <--> /dev/pts/1
Jan 25 18:47:16 yoyodyne pptpd[19936]: Buffering out-of-order packet; got 1
after 4294967295
Jan 25 18:47:16 yoyodyne pptpd[19936]: Packet reorder timeout waiting for 0
Jan 25 18:47:16 yoyodyne pptpd[19936]: Buffering out-of-order packet; got 2
after 0
Jan 25 18:47:16 yoyodyne kernel: PPP BSD Compression module registered
Jan 25 18:47:16 yoyodyne kernel: PPP Deflate Compression module registered
Jan 25 18:47:16 yoyodyne pppd[19937]: Peer is not authorized to use remote
address 192.168.1.70
Jan 25 18:47:16 yoyodyne pppd[19937]: CCP terminated by peer
Jan 25 18:47:16 yoyodyne pppd[19937]: Compression disabled by peer.
Jan 25 18:47:16 yoyodyne pppd[19937]: Connection terminated.
Jan 25 18:47:16 yoyodyne pppd[19937]: Connect time 0.0 minutes.
Jan 25 18:47:16 yoyodyne pppd[19937]: Sent 334 bytes, received 346 bytes.
Jan 25 18:47:16 yoyodyne pppd[19937]: Exit.
Jan 25 18:47:16 yoyodyne pptpd[19936]: Error reading from pppd:
Input/output error
Jan 25 18:47:16 yoyodyne pptpd[19936]: CTRL: GRE read or PTY write failed
(gre,pty)=(5,4)
Jan 25 18:47:16 yoyodyne pptpd[19936]: CTRL: Client 192.168.0.2 control
connection finished

Does anyone have any ideas on what to try? I'm working on this as a senior
project, and need
to get this "home" configuration running before I try to implement it on
our campus' network.

Thanks to those that have already given me suggestions...

Andy Ennamorato
NCO CLT Help Desk
aennam at us.ibm.com
http://w3.ibm.com/help

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
List services provided by www.schulteconsulting.com!

More information about the pptp-server mailing list