[pptp-server] poptop and win2k client...
Varghese, Amith
amith.varghese at tallan.com
Thu Jan 4 00:41:41 CST 2001
I'm having some problems getting my VPN set up with poptop. sometimes i can
connect and sometimes i can't. here is my information:
I'm running poptop on a red hat 6.1 machine with the kernel version 2.2.18.
I'm running poptop version 1.1.2 and pppd version 2.3.11. My internal IP of
the VPN server is 192.168.4.244 and i have a network mask of 255.255.254.0
(to reach the 192.168.5.x subnet does not require me to go through a
router). The pool of available address that i have to give out to clients
is 192.168.5.230-240. I followed the configuration details in
http://www.vibrationresearch.com/pptpd/example.html and got everything up
and running. However, when I try to connect from my ISP (outside the
network), I can only connect intermittently. At the bottom of my message is
my debug log. When I try to connect (and when it fails) I get errors that
can be found in debug log #1. However if I keep trying, eventually I will
connect. However, then I start getting errors in debug log #2. Once I do
connect, however, I can not ping anything except for the IP that the VPN
server gave me. I'm not sure if this has anything to do with the fact that
my VPN server is on a different subnet then my client IP pool. Also, one of
the other things about my setup is that the public IP address that I connect
to from my ISP is actually an address that a PIX firewall NATs to my
internal machine (the PIX allows everything through- including GRE and any
needed PPTP control packets). I am attaching all of my relevant
configuration files. Any help would be appreciated.
Thanks
Amith
############################################################################
##########
route on VPN server
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.4.244 * 255.255.255.255 UH 0 0 eth0
192.168.4.0 * 255.255.254.0 U 0 0
eth0
127.0.0.0 * 255.0.0.0 U 0 0
lo
default 192.168.4.1 0.0.0.0 UG 0 0
eth0
############################################################################
##########
/etc/conf.modules
alias tty-ldisc-3 ppp_async
alias char-major-108 off
alias ppp-compress-18 ppp_mppe
alias ppp-compress-21 bsd_comp
alias ppp-compress-24 ppp_deflate
alias ppp-compress-26 ppp_deflate
############################################################################
##########
/etc/pptpd.conf
debug
localip 192.168.4.244
remoteip 192.168.5.230-240
############################################################################
##########
/etc/chap-secrets
# Secrets for authentication using CHAP
# client server secret IP addresses
vpnclient1 gateway secret 192.168.5.230
vpnclient2 gateway secret 192.168.5.231
vpnclient3 gateway secret 192.168.5.232
vpnclient4 gateway secret 192.168.5.233
vpnclient5 gateway secret 192.168.5.234
vpnclient6 gateway secret 192.168.5.235
vpnclient7 gateway secret 192.168.5.236
vpnclient8 gateway secret 192.168.5.237
vpnclient9 gateway secret 192.168.5.238
vpnclient10 gateway secret 192.168.5.239
vpnclient11 gateway secret 192.168.5.240
############################################################################
##########
/etc/ppp/options
debug
name gateway
mtu 1450
mru 1450
auth
require-chap
+chap
+chapms
+chapms-v2
mppe-40
mppe-128
mppe-stateless
ms-dns 192.168.2.251
ms-dns 192.168.2.252
ms-wins 192.168.2.251
ms-wins 192.168.2.252
proxyarp
192.168.4.244:
############################################################################
##########
route print on w2k client after connecting to vpn. I removed my public IP
address of the pptp server
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x1000003 ...00 b0 d0 59 ea 2e ...... 3Com EtherLink PCI
0x1000004 ...00 10 a4 c2 eb c7 ...... Xircom CardBus Ethernet 10/100 Adapter
0xe000005 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
0xf000006 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.5.230 192.168.5.230 1
0.0.0.0 0.0.0.0 216.67.70.108 216.67.70.108 2
<IP of pptp server> 255.255.255.255 216.67.70.108 216.67.70.108
1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.4.244 255.255.255.255 192.168.5.230 192.168.5.230 1
192.168.5.230 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.5.255 255.255.255.255 192.168.5.230 192.168.5.230 1
216.67.11.1 255.255.255.255 216.67.70.108 216.67.70.108 1
216.67.70.108 255.255.255.255 127.0.0.1 127.0.0.1 1
216.67.70.255 255.255.255.255 216.67.70.108 216.67.70.108 1
224.0.0.0 224.0.0.0 192.168.5.230 192.168.5.230 1
224.0.0.0 224.0.0.0 216.67.70.108 216.67.70.108 1
255.255.255.255 255.255.255.255 192.168.5.230 1000003 1
Default Gateway: 192.168.5.230
===========================================================================
Persistent Routes:
None
############################################################################
##########
Debug Log #1
Jan 4 02:04:42 localhost kernel: PPP line discipline registered.
Jan 4 02:04:42 localhost kernel: PPP MPPE compression module registered
Jan 4 02:04:42 localhost kernel: PPP BSD Compression module registered
Jan 4 02:04:42 localhost kernel: PPP Deflate Compression module registered
Jan 4 02:04:59 localhost PAM_pwdb[603]: (login) session opened for user
root by LOGIN(uid=0)
Jan 4 02:05:27 localhost pptpd[626]: CTRL: Client 216.67.70.108 control
connection started
Jan 4 02:05:29 localhost pptpd[626]: CTRL: Starting call (launching pppd,
opening GRE)
Jan 4 02:05:29 localhost kernel: registered device ppp0
Jan 4 02:05:29 localhost pppd[627]: pppd 2.3.11 started by root, uid 0
Jan 4 02:05:29 localhost pppd[627]: Using interface ppp0
Jan 4 02:05:29 localhost pppd[627]: Connect: ppp0 <--> /dev/pts/0
Jan 4 02:05:29 localhost pptpd[626]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
Jan 4 02:05:29 localhost pppd[627]: MSCHAP-v2 peer authentication succeeded
for vpnclient1
Jan 4 02:05:29 localhost pppd[627]: found interface eth0 for proxy arp
Jan 4 02:05:29 localhost pppd[627]: local IP address 192.168.4.244
Jan 4 02:05:29 localhost pppd[627]: remote IP address 192.168.5.230
Jan 4 02:05:35 localhost pppd[627]: MPPE 128 bit, stateless compression
enabled
Jan 4 02:05:36 localhost pppd[627]: MPPE 128 bit, stateless compression
enabled
Jan 4 02:05:50 localhost pptpd[626]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
Jan 4 02:05:50 localhost pppd[627]: LCP terminated by peer
(C!~.^@<M-Mt^@^@^@^@)
Jan 4 02:05:50 localhost pppd[627]: Modem hangup
Jan 4 02:05:50 localhost pppd[627]: Connection terminated.
Jan 4 02:05:50 localhost pppd[627]: Connect time 0.4 minutes.
Jan 4 02:05:50 localhost pppd[627]: Sent 867 bytes, received 9984 bytes.
Jan 4 02:05:50 localhost pppd[627]: Exit.
Jan 4 02:05:50 localhost pptpd[626]: GRE: read error: Bad file descriptor
Jan 4 02:05:50 localhost pptpd[626]: CTRL: PTY read or GRE write failed
(pty,gre)=(-1,-1)
Jan 4 02:05:50 localhost pptpd[626]: CTRL: Client 216.67.70.108 control
connection finished
############################################################################
##########
Debug Log #2
Jan 4 02:20:40 localhost pptpd[639]: CTRL: Client 216.67.70.108 control
connection started
Jan 4 02:20:40 localhost pptpd[639]: CTRL: Starting call (launching pppd,
opening GRE)
Jan 4 02:20:40 localhost pppd[640]: pppd 2.3.11 started by root, uid 0
Jan 4 02:20:40 localhost pppd[640]: Using interface ppp0
Jan 4 02:20:40 localhost pppd[640]: Connect: ppp0 <--> /dev/pts/0
Jan 4 02:20:41 localhost pptpd[639]: Buffering out-of-order packet; got 1
after 4294967295
Jan 4 02:20:41 localhost pptpd[639]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
Jan 4 02:20:41 localhost pppd[640]: MSCHAP-v2 peer authentication succeeded
for vpnclient1
Jan 4 02:20:41 localhost pptpd[639]: Buffering out-of-order packet; got 9
after 7
Jan 4 02:20:41 localhost pppd[640]: found interface eth0 for proxy arp
Jan 4 02:20:41 localhost pppd[640]: local IP address 192.168.4.244
Jan 4 02:20:41 localhost pppd[640]: remote IP address 192.168.5.230
Jan 4 02:20:48 localhost pppd[640]: MPPE 128 bit, stateless compression
enabled
Jan 4 02:20:49 localhost pppd[640]: Unsupported protocol 0x3017 received
Jan 4 02:20:50 localhost pppd[640]: Unsupported protocol 0x409b received
Jan 4 02:20:50 localhost pppd[640]: Unsupported protocol 0xf243 received
Jan 4 02:20:50 localhost pppd[640]: Unsupported protocol 0xa04d received
Jan 4 02:20:51 localhost pppd[640]: Unsupported protocol 0xecc8 received
Jan 4 02:20:51 localhost pppd[640]: Unsupported protocol 0x6590 received
Jan 4 02:20:51 localhost pppd[640]: Unsupported protocol 0x11a2 received
Jan 4 02:20:52 localhost pppd[640]: MPPE 128 bit, stateless compression
enabled
Jan 4 02:22:00 localhost pptpd[639]: Buffering out-of-order packet; got 103
after 101
Jan 4 02:23:18 localhost pptpd[639]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
Jan 4 02:23:18 localhost pppd[640]: LCP terminated by peer
(^]M-(w[^@<M-Mt^@^@^@^@)
Jan 4 02:23:18 localhost pppd[640]: Modem hangup
Jan 4 02:23:18 localhost pppd[640]: Connection terminated.
Jan 4 02:23:18 localhost pppd[640]: Connect time 2.7 minutes.
Jan 4 02:23:18 localhost pppd[640]: Sent 1743 bytes, received 13495 bytes.
Jan 4 02:23:18 localhost pppd[640]: Exit.
Jan 4 02:23:18 localhost pptpd[639]: GRE: read error: Bad file descriptor
Jan 4 02:23:18 localhost pptpd[639]: CTRL: PTY read or GRE write failed
(pty,gre)=(-1,-1)
Jan 4 02:23:18 localhost pptpd[639]: CTRL: Client 216.67.70.108 control
connection finished
More information about the pptp-server
mailing list