From awdavis at waretec.com Sun Jul 1 00:34:56 2001 From: awdavis at waretec.com (Andrew W. Davis) Date: Sun, 1 Jul 2001 00:34:56 -0500 Subject: [pptp-server] MPPE died In-Reply-To: ; from lists@earthling.2y.net on Sat, Jun 30, 2001 at 11:32:25PM -0400 References: <01063019574900.18408@linux> Message-ID: <20010701003456.A22260@falcon.waretec.com> All I ever use anymore are Intel NIC's. They are great cards, and at about $30 a piece OEM, you can put 2 in a system at a minimal cost. That's what all my VPN boxes out there to date have in 'em. AND they are actually running in the kernel as apposed to a module. Andrew On Sat, Jun 30, 2001 at 11:32:25PM -0400, Justin Kreger wrote: > > > I have seen the same with certian clones of the DEC Tulip chipset.... but > then again.... some of those cards (they are most of the very cheap 10/100 > cards.... tipiclly they are everything at best buy, except the 3com stuff, > and maybe a linksys on an odd day.) won't with even the most recent > drivers anyway... its weird.... i finally went and got another 3com Vortex > for that project. > > Justin Kreger, MCP MCSE CCNA > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net > > > On Sat, 30 Jun 2001, robert wrote: > > > > > > > I too have found some things just don't work compiled in, but work fine as > > modules. I have the SIS NIC driver that refuses to work when compiled in, > > but works just fine as a module. And this is in the official tree! I wish I > > could explain why. > > > > On Friday 29 June 2001 18:48, Jamin Collins wrote: > > > Tom Eastep [mailto:teastep at seattlefirewall.dyndns.org] wrote: > > > > I've found that many features that aren't in Linus's official > > > > source tree work better when compiled as a module. > > > > > > I can't say that I've tried anything other than as a module. However, it > > > does seem that we module users are working and those compiling it into the > > > kernel are not. Could one or two of you try it as a module and see if that > > > fixes things? > > > > > > Jamin W. Collins > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From lists at earthling.2y.net Sun Jul 1 06:20:20 2001 From: lists at earthling.2y.net (Justin Kreger) Date: Sun, 1 Jul 2001 07:20:20 -0400 (EDT) Subject: [pptp-server] MPPE died In-Reply-To: <20010701003456.A22260@falcon.waretec.com> Message-ID: We use alot of Intels where I work, and alot of RealTek 8139 based stuff. Both work VERY well. Before I started my current job, I had never seen a 3com fail, but since I started working where I'm working now, I've probilly seen half a dozen 3com cards fail. We get the RTL8139 based cards for under 30 bucks, but Intel eepro100s cost us like 40 bucks oem. *shrug* Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net On Sun, 1 Jul 2001, Andrew W. Davis wrote: > > > All I ever use anymore are Intel NIC's. They are great cards, and at about $30 > a piece OEM, you can put 2 in a system at a minimal cost. That's what all my > VPN boxes out there to date have in 'em. AND they are actually running in the > kernel as apposed to a module. > > Andrew > > On Sat, Jun 30, 2001 at 11:32:25PM -0400, Justin Kreger wrote: > > > > > > I have seen the same with certian clones of the DEC Tulip chipset.... but > > then again.... some of those cards (they are most of the very cheap 10/100 > > cards.... tipiclly they are everything at best buy, except the 3com stuff, > > and maybe a linksys on an odd day.) won't with even the most recent > > drivers anyway... its weird.... i finally went and got another 3com Vortex > > for that project. > > > > Justin Kreger, MCP MCSE CCNA > > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net > > > > > > On Sat, 30 Jun 2001, robert wrote: > > > > > > > > > > > I too have found some things just don't work compiled in, but work fine as > > > modules. I have the SIS NIC driver that refuses to work when compiled in, > > > but works just fine as a module. And this is in the official tree! I wish I > > > could explain why. > > > > > > On Friday 29 June 2001 18:48, Jamin Collins wrote: > > > > Tom Eastep [mailto:teastep at seattlefirewall.dyndns.org] wrote: > > > > > I've found that many features that aren't in Linus's official > > > > > source tree work better when compiled as a module. > > > > > > > > I can't say that I've tried anything other than as a module. However, it > > > > does seem that we module users are working and those compiling it into the > > > > kernel are not. Could one or two of you try it as a module and see if that > > > > fixes things? > > > > > > > > Jamin W. Collins > > > _______________________________________________ > > > pptp-server maillist - pptp-server at lists.schulte.org > > > http://lists.schulte.org/mailman/listinfo/pptp-server > > > --- To unsubscribe, go to the url just above this line. -- > > > > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From siva at india.adventnet.com Mon Jul 2 01:58:43 2001 From: siva at india.adventnet.com (N.S i v a k u m a r) Date: Mon, 02 Jul 2001 12:28:43 +0530 Subject: [pptp-server] log monitoring tool Message-ID: <3B401BA3.E0DA23DB@india.adventnet.com> Dear All, Is there any web based log monitoring tool for pptpd.log file. If so please give the details. Thanks in advance, N.Sivakumar -- ----------------------------------------------- /"\ N.Sivakumar \ / Tel: 2432414 EXTN: 378, 381 x AdventNet Development Centre (I) Pvt Ltd., / \ ----------------------------------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: From joachim.misselbeck at gmx.net Mon Jul 2 11:50:08 2001 From: joachim.misselbeck at gmx.net (Joachim Misselbeck) Date: Mon, 2 Jul 2001 18:50:08 +0200 Subject: [pptp-server] PPTpD Message-ID: <001101c10317$0d6664f0$fe78a8c0@neptun> Hi to all, I try to configure a vpn with linux and pptpd.So, far. But after a calling the VPN-Server via internet I see following message in my syslog file. Jul 2 18:33:48 sunshine100 pppd[3558]: tcsetattr: Invalid argument Jul 2 18:33:48 sunshine100 pppd[3558]: Exit. Jul 2 18:33:48 sunshine100 pptpd[3557]: Error reading from pppd: Input/output error Jul 2 18:33:48 sunshine100 pptpd[3557]: CTRL: GRE read or PTY write failed (gre,pty)=(5,4) Jul 2 18:33:48 sunshine100 pptpd[3557]: CTRL: Client 62.180.219.29 control connection finished Can tell my any body what's that ? thanks advance joe From chris at shuksan.com Tue Jul 3 00:31:47 2001 From: chris at shuksan.com (Chris Coulthurst) Date: Mon, 02 Jul 2001 22:31:47 -0700 Subject: [pptp-server] PPTPd with Samba on kernel 2.4.2-2 RH71 IP routing issue Message-ID: <3B4158C3.BB30F0F@shuksan.com> I would appreciate any help from anyone who has a clue of what to do to make this thing work for me. Here is my setup: RH 7.1 virgin install with ppp-2.4.0-2 RPM PPTP version 1.0.1 A full Class-C of internet addressable IPs (/24 if you will) Samba 2.0.7 (yes, the redhat included one, hope this okay) The Samba setup aside for the moment, I have configured pptpd.conf, chap-secrets, and options to allow me to "at least" log in from a win98SE client. I gave static addresses in the chap-secrets to hopefully simplify troubleshooting. Here's the deal: I can ping the VPN client on my home cable modem-connected windows client once the VPN is established, and I can ping the VPN server (although it doesn't appear to run through the tunnel, it just goes out the default route from @home. I cannot, however, ping any other VPN-connected computers from the windows client. I can ping everything from inside the linux box VPN server though. Is this a routing issue? Is it an IP forwarding issue? I am not using the MSCHAP2 patches yet, since I just wanted to see that this could be done reliably. Once I get past this hurdle I have to figure out how to get Samba to be the master browser for the workgroup. Any ideas from anywhere? Thanks. Chris Coulthurst chris at shuksan.com From Josh.Howlett at bristol.ac.uk Tue Jul 3 02:37:36 2001 From: Josh.Howlett at bristol.ac.uk (Josh Howlett) Date: Tue, 3 Jul 2001 08:37:36 +0100 (BST) Subject: [pptp-server] PPTPd with Samba on kernel 2.4.2-2 RH71 IP routing issue In-Reply-To: <3B4158C3.BB30F0F@shuksan.com> Message-ID: Can you post your routing table ("route") and your arp table ("arp") ? josh. --------------------------------------- Josh Howlett, Network Supervisor, Networking & Digital Communications, Information Systems & Computing, University of Bristol, U.K. 0117 928 7850 | josh.howlett at bris.ac.uk --------------------------------------- On Mon, 2 Jul 2001, Chris Coulthurst wrote: > > > I would appreciate any help from anyone who has a clue of what to do to > make this thing work for me. Here is my setup: > > RH 7.1 virgin install with ppp-2.4.0-2 RPM > PPTP version 1.0.1 > A full Class-C of internet addressable IPs (/24 if you will) > Samba 2.0.7 (yes, the redhat included one, hope this okay) > > The Samba setup aside for the moment, I have configured pptpd.conf, > chap-secrets, and options to allow me to "at least" log in from a > win98SE client. I gave static addresses in the chap-secrets to > hopefully simplify troubleshooting. > > Here's the deal: I can ping the VPN client on my home cable > modem-connected windows client once the VPN is established, and I can > ping the VPN server (although it doesn't appear to run through the > tunnel, it just goes out the default route from @home. I cannot, > however, ping any other VPN-connected computers from the windows > client. I can ping everything from inside the linux box VPN server > though. > > Is this a routing issue? Is it an IP forwarding issue? > > I am not using the MSCHAP2 patches yet, since I just wanted to see that > this could be done reliably. Once I get past this hurdle I have to > figure out how to get Samba to be the master browser for the workgroup. > > Any ideas from anywhere? > > Thanks. > Chris Coulthurst > chris at shuksan.com > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > From lists at earthling.2y.net Tue Jul 3 05:56:08 2001 From: lists at earthling.2y.net (Justin Kreger) Date: Tue, 3 Jul 2001 06:56:08 -0400 (EDT) Subject: [pptp-server] log monitoring tool In-Reply-To: <3B401BA3.E0DA23DB@india.adventnet.com> Message-ID: I could use a log monitoring tool for some of my large corperate customers...... Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net On Mon, 2 Jul 2001, N.S i v a k u m a r wrote: From JaminC at adapt-tele.com Tue Jul 3 08:00:59 2001 From: JaminC at adapt-tele.com (Jamin Collins) Date: Tue, 3 Jul 2001 08:00:59 -0500 Subject: [pptp-server] PPTPd with Samba on kernel 2.4.2-2 RH71 IP rout ing issue Message-ID: Chris Coulthurst [mailto:chris at shuksan.com] wrote: > A full Class-C of internet addressable IPs (/24 if you will) (snip) > I cannot, > however, ping any other VPN-connected computers from the windows > client. I can ping everything from inside the linux box VPN server > though. > > Is this a routing issue? Is it an IP forwarding issue? Unless you have specifically enabled IP forwarding, this could be the cause of your problem. You don't meantion what IP ranges are being used for each section. Without this information, it's hard to say really. Jamin W. Collins From doug.koobs at dimensionnetworks.com Tue Jul 3 10:09:58 2001 From: doug.koobs at dimensionnetworks.com (Douglas W Koobs) Date: Tue, 3 Jul 2001 11:09:58 -0400 Subject: [pptp-server] No Ping Results Message-ID: Hello, I have PoPToP 1.0.1 set up, and am able to log in from a W2K client, and get registered on the network. However, from client, trying to ping any machine on the network, I do not get a reply. On the client side, I captured packets, and responses are coming back over the connection clear text. However, they do not show up in the Ping results... Any idea what could cause this? Thanks, Doug -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 1700 bytes Desc: not available URL: From doug.koobs at dimensionnetworks.com Tue Jul 3 11:58:36 2001 From: doug.koobs at dimensionnetworks.com (Douglas W Koobs) Date: Tue, 3 Jul 2001 12:58:36 -0400 Subject: [pptp-server] No Ping Results In-Reply-To: Message-ID: mmm, let me try that again... I have PoPToP 1.0.1 set up, and am able to log in from a W2K client, and get registered on the network. However, I can not ping anything on the network from the client. I put a sniffer on the client, and it sees the ping requests going out, and the replies cpme back in. But they do not show up in the ping response. Zny ideas what can cause this? Thanks, Doug From berzerke at swbell.net Tue Jul 3 12:39:35 2001 From: berzerke at swbell.net (robert) Date: Tue, 03 Jul 2001 12:39:35 -0500 Subject: [pptp-server] No Ping Results In-Reply-To: References: Message-ID: <01070312393500.18933@linux> Aside: I would recommend PoPTop 1.1.2. Is there a firewall on either end? Remember W2K does include some sort of packet filter. On Tuesday 03 July 2001 11:58, Douglas W Koobs wrote: > mmm, let me try that again... > > I have PoPToP 1.0.1 set up, and am able to log in from a W2K client, and > get registered on the network. However, I can not ping anything on the > network from the client. I put a sniffer on the client, and it sees the > ping requests going out, and the replies cpme back in. But they do not show > up in the ping response. Zny ideas what can cause this? Thanks, > > Doug > From n.vieira at home.com Tue Jul 3 13:11:58 2001 From: n.vieira at home.com (Nelson Vieira) Date: Tue, 3 Jul 2001 13:11:58 -0500 Subject: [pptp-server] unresolved symbols in ppp.o using kernel 2.2.19 (redhat) Message-ID: <008601c103eb$a7836a90$85df2781@spocaw.can.sni.ibm.com> After performing the configuration steps listed at the end of this messaege I'm getting the following unresolved symbols in ppp.o: ( in /usr/src/linux/drivers/net ) depmod -e ppp.o slhc.o ppp_mppe.o bsd_comp.o ppp_deflate.o depmod: *** Unresolved symbols in ppp.o depmod: n_tty_ioctl depmod: __wake_up depmod: __kfree_skb depmod: alloc_skb depmod: skb_under_panic depmod: unregister_netdev depmod: tty_register_ldisc depmod: request_module depmod: register_netdev depmod: dev_alloc_name depmod: interruptible_sleep_on depmod: __pollwait depmod: kill_fasync depmod: netif_rx depmod: skb_over_panic depmod: tty_hung_up_p ppp.o: slhc.o slhc.o: ppp_mppe.o: ppp.o bsd_comp.o: ppp.o ppp_deflate.o: ppp.o ------------------------------------ Here's my configuration: - redhat 6.2 with kernel-headers-2.2.19-6.2.1.i386.rpm and kernel-source-2.2.19-6.2.1.i386.rpm installed to /usr/src/linux - ppp-2.3.11 installed to /usr/src/ppp-2.3.11 ------------------------------------ The configuration steps: cd /usr/src/ppp-2.3.11 patch -p1 < ppp-2.3.11-openssl-0.9.5-mppe.patch patch -p1 < applied mppe-chapv1-fix.diff ./configure make make kernel make install ( editted /usr/src/linux/include/linux/if_ppp.h and added the following: #define PPP_MAGIC 0x5002 #define PPP_VERSION "2.3.11" ) cd /usr/src/linux patch -p1 rcv_proto_unknown.patch (as explained in http://mirror.binarix.com/ppp-mppe/README) patch -p1 if_ppp_2.2.17.diff (addresses "structure has no member named `tty_pushing'" errors) make modules SUBDIRS=drivers/net ------------------------------------ Am I missing something? Could the fact that I'm using a redhat kernel source be causing the problems? Thanks in advance! From m.ghaeini at center7.com Tue Jul 3 14:04:48 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 13:04:48 -0600 Subject: [pptp-server] poptop on Solaris 8 Message-ID: Hello, Has anybody tried pptp version 1.0.1 on Solaris 8 sparc? Thanks in advance, Mohammad Ghaeini Unix Policy Engineer Center 7 Inc. 333 South 520 West Lindon, Utah 84042 Phone: 801.805.3150 Fax: 801.805.3030 Mobile: 801.554.7630 E-mail: m.ghaeini at center7.com www.center7.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From m.ghaeini at center7.com Tue Jul 3 14:31:08 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 13:31:08 -0600 Subject: [pptp-server] (no subject) Message-ID: Hello, Has anybody configured pptp version 1.0.1 on Solaris 8 sparc successfully? Thanks in advance, Mohammad Ghaeini Unix Policy Engineer Center 7 Inc. 333 South 520 West Lindon, Utah 84042 Phone: 801.805.3150 Fax: 801.805.3030 Mobile: 801.554.7630 E-mail: m.ghaeini at center7.com www.center7.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From m.ghaeini at center7.com Tue Jul 3 14:32:55 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 13:32:55 -0600 Subject: [pptp-server] pptp on Solaris 8 Message-ID: Hello, Has anybody configured pptp version 1.0.1 on Solaris 8 sparc successfully? Thanks in advance, Mohammad Ghaeini Unix Policy Engineer Center 7 Inc. 333 South 520 West Lindon, Utah 84042 Phone: 801.805.3150 Fax: 801.805.3030 Mobile: 801.554.7630 E-mail: m.ghaeini at center7.com www.center7.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From m.ghaeini at center7.com Tue Jul 3 15:00:36 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 14:00:36 -0600 Subject: [pptp-server] pptp on Solaris 8 Message-ID: Hello, Sorry folks about the earlier messages. Has anybody configured pptp version 1.0.1 on Solaris 8 sparc successfully? Thanks in advance, Mohammad Ghaeini Unix Policy Engineer Center 7 Inc. 333 South 520 West Lindon, Utah 84042 Phone: 801.805.3150 Fax: 801.805.3030 Mobile: 801.554.7630 E-mail: m.ghaeini at center7.com www.center7.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From m.ghaeini at center7.com Tue Jul 3 16:09:22 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 15:09:22 -0600 Subject: [pptp-server] Test. Please ignore Message-ID: Test. Please ignore. From m.ghaeini at center7.com Tue Jul 3 16:22:18 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 15:22:18 -0600 Subject: [pptp-server] Please ignore, test. Message-ID: Test. From m.ghaeini at center7.com Tue Jul 3 17:03:15 2001 From: m.ghaeini at center7.com (Mohammad Ghaeini) Date: Tue, 3 Jul 2001 16:03:15 -0600 Subject: [pptp-server] pptp on Solaris 8 Message-ID: Hello, Sorry folks about the earlier messages. Has anybody configured VPN on Solaris 8 on sparc using pptp version 1.0.1? Thanks in advance, -mghaeini From christopher at schulte.org Wed Jul 4 12:35:51 2001 From: christopher at schulte.org (Christopher Schulte) Date: Wed, 04 Jul 2001 12:35:51 -0500 Subject: [pptp-server] administrivia: change to postfix MTA. Message-ID: <5.1.0.14.0.20010704123048.0306c818@pop.schulte.org> FYI: I've migrated this list server from Sendmail 8.12.0Beta12 to Postfix-20010228-pl03. This has been done mainly for performance reasons. Sendmail has a reputation of being very slow and inefficient for the large mail volume that a mailing list server can sometimes need to process. This should improve the speed and reliability of messages posted. It might also make my life easier, as I won't have to clear backed up messages nearly as often. :-) -- Christopher Schulte Finger for PGP key, or for UNIX impaired: http://noc.schulte.org/cgi-bin/noc/finger.cgi From mick at kincrome.com Thu Jul 5 02:16:43 2001 From: mick at kincrome.com (Michael Hayes) Date: Thu, 5 Jul 2001 19:16:43 +1200 Subject: [pptp-server] windows nat Message-ID: <001001c10522$730ad040$0502a8c0@kinnz1> Hi, I have a slight problem, I have setup Poptop with all bells and whistles 128 bit encryption etc, all is well except......I can connect fine from individual clients and from home behind a masq'd gateway, where I run into trouble is when I try and connect multiple clients from the same ip (a dsl connection) now this site unfortunately doesn't have anything other than windows boxes or nokia adsl routers available. Both of these have trouble with more than one poptop client connection natting through it, I have tried a few windows based products, including winroute and ics. As much as I think putting a linux gateway in is the best, easiest and most sensible option, the client will not go for a linux box at this site. Can anyone recomend and windows based routing software that will support multiple poptop clients ? Thanks in advance. Michael Hayes From mstempin at com1.fr Thu Jul 5 05:02:40 2001 From: mstempin at com1.fr (Michel Stempin) Date: Thu, 5 Jul 2001 12:02:40 +0200 Subject: [pptp-server] Packet ordering problem Message-ID: Hi list, I guess I am experiencing some packet reordering problems. Here is my config: - linux 2.0.36 - pppd 2.3.8 + mppe patch - pptpd 1.1.2 Everything is working fine, but the connection dies (esp. during long FTP transfers ;-)) for what looks like a packet ordering problem. I formely used pptpd 1.0.1 and switched to 1.1.2, for no better results. You will find below what I get in the logs, but stated shortly, packet 833 is out of order. What surprises me, is that this packet is not waited for long before giving up (see timestamp). Looking at the code, isn't it supposed to be waiting for 2s? pptpgre.h:35:#define PCKT_REORDER_WAIT_TIME 2 Trying to solve my problem, do you think that lowering the MTU value from the default (Windows) 1500 would do anything good to me? ----------- log start Jul 4 16:26:07 ns pppd[17225]: rcvd [CCP ResetReq id=0x13] Jul 4 16:26:07 ns pppd[17225]: sent [CCP ResetAck id=0x13] Jul 4 16:26:15 ns pptpd[17224]: Buffering out-of-order packet; got 834 after 832 Jul 4 16:26:15 ns pppd[14708]: rcvd [LCP EchoReq id=0x8e magic=0x0 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f 10 11 12 13 14 15 16 17 18 19 1a 1b 1c 1d 1e 1f 20 21 22 23 24 25 26 27 28 29 2a 2b 2c 2d 2e 2f 30 31 32 33 34 35 36 37 00 00 00 00] Jul 4 16:26:15 ns pppd[14708]: sent [LCP EchoRep id=0x8e magic=0xa37f 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f 10 11 12 13 14 15 16 17 18 19 1a 1b 1c 1d 1e 1f 20 21 22 23 24 25 26 27 28 29 2a 2b 2c 2d 2e 2f 30 31 32 33 34 35 36 37 00 00 00 00] Jul 4 16:26:15 ns pptpd[17224]: Buffering out-of-order packet; got 835 after 832 Jul 4 16:26:15 ns pptpd[17224]: Buffering out-of-order packet; got 836 after 832 Jul 4 16:26:15 ns pptpd[17224]: Gave up waiting for 1 lost packets beginning with 833 Jul 4 16:26:15 ns pppd[17225]: rcvd [Compressed data] 13 23 9e 1b 1d e9 37 33 ... Jul 4 16:26:15 ns pppd[17225]: rcvd [proto=0x58d6] 0d 2d 48 3b e7 54 f6 3e bb a6 94 10 70 dc 05 15 2b 7e 01 f6 ac 61 66 dc 95 61 d3 12 a0 68 db 2a ... Jul 4 16:26:15 ns pppd[17225]: Unsupported protocol (0x58d6) received Jul 4 16:26:15 ns pppd[17225]: sent [LCP ProtRej id=0x2 58 d6 0d 2d 48 3b e7 54 f6 3e bb a6 94 10 70 dc 05 15 2b 7e 01 f6 ac 61 66 dc 95 61 d3 12 a0 68 db 2a 03 69 3d 2f 29 ec 78 56 6b 5b 6e 6c 20 28 38 93 78 df a0 e5 8f a0 79 17 c2 e4 79 2b 4c 9f c1 d7 42 01 de 2b 6d 10 80 9d 73 8e d5 ----------- log end -- Michel Stempin MIS COM One SA, 11 parc de Marticot, 33610 CESTAS, FRANCE Tel: +33(0)5 57 97 72 72 Fax: +33(0)5 56 78 84 78 Email: mstempin at com1.fr From lists at earthling.2y.net Thu Jul 5 05:24:08 2001 From: lists at earthling.2y.net (Justin Kreger) Date: Thu, 5 Jul 2001 06:24:08 -0400 (EDT) Subject: [pptp-server] windows nat In-Reply-To: <001001c10522$730ad040$0502a8c0@kinnz1> Message-ID: Yeah, your going to need a linux box or an NT or Win2k Server box with RRAS. If you put in a linux box, you can use ipsec. Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net On Thu, 5 Jul 2001, Michael Hayes wrote: > Hi, > > I have a slight problem, I have setup Poptop with all bells and whistles 128 > bit encryption etc, all is well except......I can connect fine from > individual clients and from home behind a masq'd gateway, where I run into > trouble is when I try and connect multiple clients from the same ip (a dsl > connection) now this site unfortunately doesn't have anything other than > windows boxes or nokia adsl routers available. Both of these have trouble > with more than one poptop client connection natting through it, I have tried > a few windows based products, including winroute and ics. As much as I > think putting a linux gateway in is the best, easiest and most sensible > option, the client will not go for a linux box at this site. Can anyone > recomend and windows based routing software that will support multiple > poptop clients ? > > Thanks in advance. > > Michael Hayes > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From support at max4eu.net Thu Jul 5 06:35:59 2001 From: support at max4eu.net (max4eu.net Support) Date: Thu, 5 Jul 2001 13:35:59 +0200 Subject: [pptp-server] Routing & Ping-Problem References: Message-ID: <002201c10546$a998d660$0a01a8c0@wien.max4eu.net> Hallo, I know, old thing, but new Problem: I will use pptp to tunnel via a dyn-ISP-DialUP fixed IP?s to my customers from my own Adresspool (For statistic-services, like mysql, etc.)... My Problem is, booth sides are doesn?t routing. Only the tunnel-PC?s can ping the pptp-Partner. I made a lot of trys. with proxyarp, without proxyarp, with statitic-routes (all variants). - no forwarding :-(( Generally: ip_forward=1 and proxy_arp=1 are set on booth sides ! - No Firewall was enabled in booth machines. I use Kernel 2.4.6p6 (same result with 2.2.19, too) My Situation: VPN-Gate: 80.64.128.5 Destination-IP?s: 80.64.132.0 - 7 to customer. Booth routes 80.64.128.0/24 and 80.64.132.0/24 are routed from the border-gateway (Cisco) via FastEthernet to the whole network. (For reachable from the world-internet-site...) On the VPN-Machine after a pptp-tunnel was established a route was set (80.64.132.0/29) to ppp0. included prox-arp. I see with iptraf on the destination site, ICMP-Request for all 6 IP?s (.2-.6) are goes through the tunnel, but would be never answered from an fastethernet on the other side. Only when the packets comes from the vpngate itself. I Asume, i have a problem with enable_Forwarding, but i don?t use iptables or other things (not needed). On the peer-site i setup a route 80.64.132.0/29 send too ppp0, the rest, included the physical tunnel, goes via ippp0 (!) / ISDN to the dyn-provider. The Problem exists on booth sides, No traffic outside the vpngate, no traffic to the other machines on the lan from the dial-IN-Router. I made trys with all ip?s on booth sides in the same subnet, in different subnets, all times the sames problem, no routing :-(( Any Hints for me for my kernel 2.4.6 and my config ? Regards, Ernst From Josh.Howlett at bristol.ac.uk Thu Jul 5 06:50:29 2001 From: Josh.Howlett at bristol.ac.uk (Josh Howlett) Date: Thu, 5 Jul 2001 12:50:29 +0100 (BST) Subject: [pptp-server] Routing & Ping-Problem In-Reply-To: <002201c10546$a998d660$0a01a8c0@wien.max4eu.net> Message-ID: Post your routing table and arp table on your VPN gateway... josh. --------------------------------------- Josh Howlett, Network Supervisor, Networking & Digital Communications, Information Systems & Computing, University of Bristol, U.K. 0117 928 7850 | josh.howlett at bris.ac.uk --------------------------------------- On Thu, 5 Jul 2001, max4eu.net Support wrote: > Hallo, > > I know, old thing, but new Problem: > > I will use pptp to tunnel via a dyn-ISP-DialUP fixed IP4s to my customers > from my own Adresspool (For statistic-services, like mysql, etc.)... > > My Problem is, booth sides are doesn4t routing. Only the tunnel-PC4s can > ping the pptp-Partner. > > I made a lot of trys. with proxyarp, without proxyarp, with statitic-routes > (all variants). - no forwarding :-(( > > Generally: > > ip_forward=1 and proxy_arp=1 are set on booth sides ! - No Firewall was > enabled in booth machines. I use Kernel 2.4.6p6 (same result with 2.2.19, > too) > > My Situation: > > > VPN-Gate: 80.64.128.5 > > Destination-IP4s: 80.64.132.0 - 7 to customer. > > Booth routes 80.64.128.0/24 and 80.64.132.0/24 are routed from the > border-gateway (Cisco) via FastEthernet to the whole network. (For reachable > from the world-internet-site...) > > On the VPN-Machine after a pptp-tunnel was established a route was set > (80.64.132.0/29) to ppp0. included prox-arp. > > I see with iptraf on the destination site, ICMP-Request for all 6 IP4s > (.2-.6) are goes through the tunnel, but would be never answered from an > fastethernet on the other side. Only when the packets comes from the vpngate > itself. I Asume, i have a problem with enable_Forwarding, but i don4t use > iptables or other things (not needed). > > On the peer-site i setup a route 80.64.132.0/29 send too ppp0, the rest, > included the physical tunnel, goes via ippp0 (!) / ISDN to the dyn-provider. > > The Problem exists on booth sides, No traffic outside the vpngate, no > traffic to the other machines on the lan from the dial-IN-Router. > > I made trys with all ip4s on booth sides in the same subnet, in different > subnets, all times the sames problem, no routing :-(( > > Any Hints for me for my kernel 2.4.6 and my config ? > > Regards, > Ernst > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > From JaminC at adapt-tele.com Thu Jul 5 07:06:54 2001 From: JaminC at adapt-tele.com (Jamin Collins) Date: Thu, 5 Jul 2001 07:06:54 -0500 Subject: [pptp-server] windows nat Message-ID: Michael Hayes [mailto:mick at kincrome.com] wrote: > where I run into trouble is when I try and connect multiple > clients from the same ip PoPToP doesn't support this capability. There have been talks recently about this capability, which is contrary to the RFC (not to rehash the arguments for both sides again). > Both of these have trouble with more than one poptop client > connection natting through it As stated previously, your problem is not the natting solution, but that PoPToP does not support multiple connections from the same IP. There are few different ways around this problem. One is to have multiple external IP addresses for everyone that will need to make a connection at the same time (this is probably not very feasible). Another is to set up a Windows box using some routing solution (WinRoute should work) and have this box make the connection to the remote network. Then update the routing tables on the other user's systems to so the new box is used as their route to the remote network. Jamin W. Collins From doug.koobs at dimensionnetworks.com Thu Jul 5 08:18:27 2001 From: doug.koobs at dimensionnetworks.com (Douglas W Koobs) Date: Thu, 5 Jul 2001 09:18:27 -0400 Subject: [pptp-server] Unrecognized Option chapms Message-ID: Hello, I have patched the ppp-2.4.0 source with the ppp-2.4.0-openssl-0.9.6-mppe.patch.gz . pptpd (using 1.0.1) starts OK, but when a client tries to connect, this shows up in messages: In file /etc/ppp/options: unrecognized option '+chapms' and the client can't connect. Is there another patch to the ppp-2.4.0 that I need to apply to get MSCHAP working?I have followed the how-to at home.swbell.net/bezerke, which I have used in the past without much problem. I am not sure what i am missing this time... Thanks, Doug -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 1824 bytes Desc: not available URL: From Josh.Howlett at bristol.ac.uk Thu Jul 5 08:25:17 2001 From: Josh.Howlett at bristol.ac.uk (Josh Howlett) Date: Thu, 5 Jul 2001 14:25:17 +0100 (BST) Subject: [pptp-server] Unrecognized Option chapms In-Reply-To: Message-ID: Did you compile with CHAPMS? From joachim.misselbeck at mplusw.com Thu Jul 5 08:00:19 2001 From: joachim.misselbeck at mplusw.com (Joachim Misselbeck) Date: Thu, 5 Jul 2001 15:00:19 +0200 Subject: [pptp-server] pptp with W2K Message-ID: Hi, today I try to configure a pptp connection with w2k clients, but I receive a Error message on my Linux-Box. Jul 3 12:25:39 sunshine100 pptpd[2178]: MGR: Launching /usr/local/sbin/pptpctrl to handle client Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: local address = 192.168.0.1 Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: remote address = 192.168.1.100 Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd speed = 115200 Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd options file = /etc/ppp/options.ppp0 Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 control connection started Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Received PPTP Control Message (type: 1) Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Made a START CTRL CONN RPLY packet Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: I wrote 156 bytes to the client. Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Sent packet to client Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Received PPTP Control Message (type: 7) Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: 0 min_bps, 1525 max_bps, 32 window size Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Made a OUT CALL RPLY packet Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Starting call (launching pppd, opening GRE) Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: pty_fd = 5 Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: tty_fd = 6 Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: I wrote 32 bytes to the client. Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Sent packet to client Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): Connection speed = 115200 Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): local address = 192.168.0.1 Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): remote address = 192.168.1.100 Jul 3 12:25:40 sunshine100 pppd[2179]: The remote system is required to authenticate itself Jul 3 12:25:40 sunshine100 pppd[2179]: but I couldn't find any suitable secret (password) for it to use to do so. Jul 3 12:25:40 sunshine100 pppd[2179]: (None of the available passwords would let it use an IP address.) Jul 3 12:25:40 sunshine100 pptpd[2178]: Error reading from pppd: Input/output error Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: GRE read or PTY write failed (gre,pty)=(6,5) Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 control connection finished Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Exiting now Jul 3 12:25:40 sunshine100 pptpd[1635]: MGR: Reaped child 2178 Have any one a Idear what's wrong ? Best Regards Joachim Misselbeck It's nice to be important, but important to be nice ! From Josh.Howlett at bristol.ac.uk Thu Jul 5 09:19:36 2001 From: Josh.Howlett at bristol.ac.uk (Josh Howlett) Date: Thu, 5 Jul 2001 15:19:36 +0100 (BST) Subject: [pptp-server] pptp with W2K In-Reply-To: Message-ID: You failed to authenticate. What are your options and chap/pap-secrets (in /etc/ppp/?) josh. --------------------------------------- Josh Howlett, Network Supervisor, Networking & Digital Communications, Information Systems & Computing, University of Bristol, U.K. 0117 928 7850 | josh.howlett at bris.ac.uk --------------------------------------- On Thu, 5 Jul 2001, Joachim Misselbeck wrote: > Hi, > > today I try to configure a pptp connection with w2k clients, but I receive a > Error message on my Linux-Box. > > Jul 3 12:25:39 sunshine100 pptpd[2178]: MGR: Launching > /usr/local/sbin/pptpctrl to handle client > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: local address = 192.168.0.1 > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: remote address = > 192.168.1.100 > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd speed = 115200 > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd options file = > /etc/ppp/options.ppp0 > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 control > connection started > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Received PPTP Control Message > (type: 1) > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Made a START CTRL CONN RPLY > packet > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: I wrote 156 bytes to the > client. > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Sent packet to client > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Received PPTP Control Message > (type: 7) > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: 0 min_bps, 1525 max_bps, 32 > window size > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Made a OUT CALL RPLY packet > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Starting call (launching > pppd, opening GRE) > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: pty_fd = 5 > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: tty_fd = 6 > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: I wrote 32 bytes to the > client. > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Sent packet to client > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): Connection > speed = 115200 > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): local address > = 192.168.0.1 > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): remote > address = 192.168.1.100 > Jul 3 12:25:40 sunshine100 pppd[2179]: The remote system is required to > authenticate itself > Jul 3 12:25:40 sunshine100 pppd[2179]: but I couldn't find any suitable > secret (password) for it to use to do so. > Jul 3 12:25:40 sunshine100 pppd[2179]: (None of the available passwords > would let it use an IP address.) > Jul 3 12:25:40 sunshine100 pptpd[2178]: Error reading from pppd: > Input/output error > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: GRE read or PTY write failed > (gre,pty)=(6,5) > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 control > connection finished > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Exiting now > Jul 3 12:25:40 sunshine100 pptpd[1635]: MGR: Reaped child 2178 > > > Have any one a Idear what's wrong ? > > > Best Regards > Joachim Misselbeck > It's nice to be important, but important to be nice ! > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > From benjamin-smith at utulsa.edu Thu Jul 5 14:22:01 2001 From: benjamin-smith at utulsa.edu (benjamin-smith at utulsa.edu) Date: Thu, 05 Jul 2001 14:22:01 -0500 (CDT) Subject: [pptp-server] Re: unresolved symbols in ppp.o using kernel 2.2.19 (redhat) Message-ID: <994360921.3b44be59e4e09@webmail.utulsa.edu> Nelson, I tried close to the same thing you're doing, unsuccessfully. I ended up using the 2.4 kernel patch with the Redhat 7.1 kernel; but I think the fault is not in the patch, but in Redhat's kernel. Try turning off "Set Version Information on all Module Symbols" under "Modules" during kernel config. If that doesn't work under 6.2, and you are set on using a stock Redhat kernel, upgrade to 7.1. I'm not sure what this kernel setting does, but it's been working great for me for a few weeks now. P.S. If this doesn't work and you do upgrade to 7.1, be sure to start with a Redhat configuration from the "/usr/src/linux- 2.4/configs" directory. If you don't want to upgrade, most people will advise you to download the kernel tarballs and use them. Good luck! -Ben Smith benjamin-smith at utulsa.edu From JaminC at adapt-tele.com Thu Jul 5 15:19:50 2001 From: JaminC at adapt-tele.com (Jamin Collins) Date: Thu, 5 Jul 2001 15:19:50 -0500 Subject: [pptp-server] PoPToP and PPPD fun Message-ID: I've set a friend of mine up with an old Linux box to use as a firewall/router. I recently upgraded his kernel to 2.4.5 and decided since I had a similiar configuration running on both my server and our company's server, to add PoPToP to the mix to allow him remote access to his network. Everything appears to have compiled fine using PoPToP v1.1.2, kernel 2.4.5, and pppd 2.4 with the same patches used for our company's installation. The problem is that pppd keeps complaining that the kernel is not built with ppp support. However, I've compared the ppp modules with the modules on our company's functioning server. Both system have the following modules: ppp_generic.o ppp_mppe.o ppp_async.o ppp_synctty.o ppp_deflate.o All of these modules load without error. Anyone got any ideas? I used the same .config file for both systems, the only difference being that one (the office) is a 586 and the other (my friends) is a 486. So, I made the appropriate changes in the kernel configuration menus. Jamin W. Collins From lists at earthling.2y.net Thu Jul 5 18:58:41 2001 From: lists at earthling.2y.net (Justin Kreger) Date: Thu, 5 Jul 2001 19:58:41 -0400 (EDT) Subject: [pptp-server] Unrecognized Option chapms In-Reply-To: Message-ID: Does MSChapV2 work? Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net On Thu, 5 Jul 2001, Douglas W Koobs wrote: > Hello, > > I have patched the ppp-2.4.0 source with the > ppp-2.4.0-openssl-0.9.6-mppe.patch.gz . pptpd (using 1.0.1) starts OK, but > when a client tries to connect, this shows up in messages: > > In file /etc/ppp/options: unrecognized option '+chapms' > > and the client can't connect. Is there another patch to the ppp-2.4.0 that I > need to apply to get MSCHAP working?I have followed the how-to at > home.swbell.net/bezerke, which I have used in the past without much problem. > I am not sure what i am missing this time... Thanks, > > Doug > From berzerke at swbell.net Thu Jul 5 23:18:30 2001 From: berzerke at swbell.net (robert) Date: Thu, 05 Jul 2001 23:18:30 -0500 Subject: [pptp-server] pptp with W2K In-Reply-To: References: Message-ID: <01070523183001.29326@linux> Also, it appears the local ip (192.168.0.1) and remote ip (192.168.1.100) are on different subnets. This is a mistake. They should be on the same subnet. On Thursday 05 July 2001 09:19, Josh Howlett wrote: > You failed to authenticate. > > What are your options and chap/pap-secrets (in /etc/ppp/?) > > josh. > > --------------------------------------- > Josh Howlett, Network Supervisor, > Networking & Digital Communications, > Information Systems & Computing, > University of Bristol, U.K. > 0117 928 7850 | josh.howlett at bris.ac.uk > --------------------------------------- > > On Thu, 5 Jul 2001, Joachim Misselbeck wrote: > > Hi, > > > > today I try to configure a pptp connection with w2k clients, but I > > receive a Error message on my Linux-Box. > > > > Jul 3 12:25:39 sunshine100 pptpd[2178]: MGR: Launching > > /usr/local/sbin/pptpctrl to handle client > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: local address = > > 192.168.0.1 Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: remote address > > = > > 192.168.1.100 > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd speed = 115200 > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: pppd options file = > > /etc/ppp/options.ppp0 > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 > > control connection started > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Received PPTP Control > > Message (type: 1) > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Made a START CTRL CONN > > RPLY packet > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: I wrote 156 bytes to the > > client. > > Jul 3 12:25:39 sunshine100 pptpd[2178]: CTRL: Sent packet to client > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Received PPTP Control > > Message (type: 7) > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: 0 min_bps, 1525 max_bps, > > 32 window size > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Made a OUT CALL RPLY > > packet Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Starting call > > (launching pppd, opening GRE) > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: pty_fd = 5 > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: tty_fd = 6 > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: I wrote 32 bytes to the > > client. > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Sent packet to client > > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): Connection > > speed = 115200 > > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): local > > address = 192.168.0.1 > > Jul 3 12:25:40 sunshine100 pptpd[2179]: CTRL (PPPD Launcher): remote > > address = 192.168.1.100 > > Jul 3 12:25:40 sunshine100 pppd[2179]: The remote system is required to > > authenticate itself > > Jul 3 12:25:40 sunshine100 pppd[2179]: but I couldn't find any suitable > > secret (password) for it to use to do so. > > Jul 3 12:25:40 sunshine100 pppd[2179]: (None of the available passwords > > would let it use an IP address.) > > Jul 3 12:25:40 sunshine100 pptpd[2178]: Error reading from pppd: > > Input/output error > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: GRE read or PTY write > > failed (gre,pty)=(6,5) > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Client 62.180.218.123 > > control connection finished > > Jul 3 12:25:40 sunshine100 pptpd[2178]: CTRL: Exiting now > > Jul 3 12:25:40 sunshine100 pptpd[1635]: MGR: Reaped child 2178 > > > > > > Have any one a Idear what's wrong ? > > > > > > Best Regards > > Joachim Misselbeck > > It's nice to be important, but important to be nice ! > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From GeorgeV at citadelcomputer.com.au Fri Jul 6 00:51:49 2001 From: GeorgeV at citadelcomputer.com.au (George Vieira) Date: Fri, 6 Jul 2001 15:51:49 +1000 Subject: [pptp-server] Re: unresolved symbols in ppp.o using kernel 2. 2.19 (redhat) Message-ID: <200FAA488DE0D41194F10010B597610D1726C0@JUPITER> I got this problem the first time working on pptpd and patching/compiling.. I found that you need a fresh copy of the kernel source installed and backup the .config file before blowing away the /usr/src/linux directory... thanks, George Vieira Network Engineer Citadel Computer Systems P/L -----Original Message----- From: benjamin-smith at utulsa.edu [mailto:benjamin-smith at utulsa.edu] Sent: Friday, July 06, 2001 5:22 AM To: pptp-server at lists.schulte.org Subject: [pptp-server] Re: unresolved symbols in ppp.o using kernel 2.2.19 (redhat) Nelson, I tried close to the same thing you're doing, unsuccessfully. I ended up using the 2.4 kernel patch with the Redhat 7.1 kernel; but I think the fault is not in the patch, but in Redhat's kernel. Try turning off "Set Version Information on all Module Symbols" under "Modules" during kernel config. If that doesn't work under 6.2, and you are set on using a stock Redhat kernel, upgrade to 7.1. I'm not sure what this kernel setting does, but it's been working great for me for a few weeks now. P.S. If this doesn't work and you do upgrade to 7.1, be sure to start with a Redhat configuration from the "/usr/src/linux- 2.4/configs" directory. If you don't want to upgrade, most people will advise you to download the kernel tarballs and use them. Good luck! -Ben Smith benjamin-smith at utulsa.edu _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From uwe at computer-jaensch.de Fri Jul 6 07:46:51 2001 From: uwe at computer-jaensch.de (uwe) Date: Fri, 6 Jul 2001 14:46:51 +0200 (CEST) Subject: [pptp-server] PoPToP with more than one win98-clients Message-ID: Hy, I'll try to configure my pptpd on the linux-server SuSE 7.0 Kernel 2.2.16 to make more than one connections. So I have a remote PC in town 1 and another remote PC in town 2. The IP's must always be self for printing with smbclient. What must be in my /etc/pptpd.conf for this situation or what must I also do? The connection to remote PC 1 works already fine. Sorry for my english, if anyone can answer me in german directly, I would be happy. I don't read the mailinglist. Thanks and all the best, Uwe. -- Uwe Jaensch, Am Dorfbach 23, D-09322 PENIG / OT Arnsdorf, Germany eMail: uwe at computer-jaensch.de www.computer-jaensch.de Telefon: +49 37381 80495 Fax: +49 37381 84032 From quasimotoca at yahoo.ca Fri Jul 6 09:13:43 2001 From: quasimotoca at yahoo.ca (Dave Cook) Date: Fri, 6 Jul 2001 10:13:43 -0400 (EDT) Subject: [pptp-server] (no subject) Message-ID: <20010706141343.66307.qmail@web14702.mail.yahoo.com> Hi: This is a weird one. Here is a snippet of my pptpd.log file. I can establish a ppp connection no problem. I run a TN5250 IBM app to get to an AS/400, no problem. When I pass through to do 3270 emulation the screen hangs and if I hit enter it comes up. I have the same pppd configuration on a commercial Mikotel box and the 3270 screen comes up every time. The options files are identical. The only diiference is that the commercial box runs a 2.2.x kernel and mine 2.4.5 running a Shorewall firewall. When the screen is suspended my log keeps producing the following over and over until I disconnect: Is there something I forgot to patch in pppd? I grabbed everything from poptop. Compression bug? Jul 6 10:12:53 jfirewall pptpd[1855]: CTRL: I wrote 20 bytes to the client. Jul 6 10:12:53 jfirewall pptpd[1855]: CTRL: Sent packet to client Jul 6 10:13:53 jfirewall pptpd[1855]: CTRL: Received PPTP Control Message (type: 5) Jul 6 10:13:53 jfirewall pptpd[1855]: CTRL: Made a ECHO RPLY packet Jul 6 10:13:53 jfirewall pptpd[1855]: CTRL: I wrote 20 bytes to the client. Jul 6 10:13:53 jfirewall pptpd[1855]: CTRL: Sent packet to client Jul 6 10:14:53 jfirewall pptpd[1855]: CTRL: Received PPTP Control Message (type: 5) Jul 6 10:14:53 jfirewall pptpd[1855]: CTRL: Made a ECHO RPLY packet Jul 6 10:14:53 jfirewall pptpd[1855]: CTRL: I wrote 20 bytes to the client. Jul 6 10:14:53 jfirewall pptpd[1855]: CTRL: Sent packet to client Thanks, D.Cook _______________________________________________________ Do You Yahoo!? Get your free @yahoo.ca address at http://mail.yahoo.ca From jp at internetz.org Fri Jul 6 09:35:57 2001 From: jp at internetz.org (Jakob Perz) Date: Fri, 6 Jul 2001 16:35:57 +0200 (CEST) Subject: [pptp-server] timeout problems Message-ID: Hi, I'm not sure if this specific timeout questions has been posted before; I searched the mailing list archives and didn't find anything so please don't beat me if I'm wrong :-) Ok, here's my question: Imagine an established pptp connection. When will this connection timeout? It's clear that clients might set timeout values, but what about the server? In what circumstances would the pptpd disconnect a client due to timeout? Is there an automatic timeout disconnect after a certain period of time without any traffic through the tunnel or is there a timeout if the network connection beyond the vpn (which is internet) timeouts? thanks in advance, jakob -- Jakob Perz jp at internetz.org -- [http://www.perz.org] ---------------------------------------------------------------- I'm dangerous when I know what I'm doing. From nikolayg at simplernetworks.com Fri Jul 6 09:36:22 2001 From: nikolayg at simplernetworks.com (Nikolay) Date: Fri, 6 Jul 2001 10:36:22 -0400 Subject: [pptp-server] pptpd and more than 4 connections. Message-ID: <004701c10629$07ae6520$0102010a@nik> Hi gurus! How do I compile pptpd for him to support more than 4 connections? Thanks, Nikolay From martin.leonard at afint.co.uk Fri Jul 6 11:13:18 2001 From: martin.leonard at afint.co.uk (Martin Leonard) Date: Fri, 6 Jul 2001 17:13:18 +0100 Subject: [pptp-server] network-to-network Message-ID: Hi, Can somebody point me in the direction of some documentation to use PPTP to connect 2 lans over the internet. I have Linux 2.4 firewalls setup with masquerading for each connection, but now want to connect the lans to create a VPN. I am currently doing this with RRAS but wish to remove the MS implementation. I have pptpd 1.0.1 and RH7.1 with 2.4.2 kernel LAN IP 10.1.1.0 & 10.10.10.0 Have static Registered IP's Any comments or advice welcome Thanks Martin Leonard martin.leonard at afint.co.uk -------------- next part -------------- An HTML attachment was scrubbed... URL: From teastep at seattlefirewall.dyndns.org Fri Jul 6 11:26:35 2001 From: teastep at seattlefirewall.dyndns.org (Tom Eastep) Date: Fri, 6 Jul 2001 09:26:35 -0700 Subject: [pptp-server] network-to-network In-Reply-To: References: Message-ID: <01070609263502.12064@ursa.seattlefirewall.dyndns.org> On Friday 06 July 2001 09:13 am, Martin Leonard wrote: > Hi, > > Can somebody point me in the direction of some documentation to use PPTP to > connect 2 lans over the internet. I have Linux 2.4 firewalls setup with > masquerading for each connection, but now want to connect the lans to > create a VPN. I am currently doing this with RRAS but wish to remove the MS > implementation. > Martin, In my view, IPSEC using FreeS/WAN (http://www.xs4all.nl/~freeswan) is a better approach to this application on Linux. The site http://jixen.tripod.com has a lot of configuration information and examples. -Tom -- Tom Eastep \ tom at seattlefirewall.dyndns.org ICQ #60745924 \ http://seattlefirewall.dyndns.org Shoreline, Washington \__________________________________________ From martin.leonard at afint.co.uk Fri Jul 6 11:41:23 2001 From: martin.leonard at afint.co.uk (Martin Leonard) Date: Fri, 6 Jul 2001 17:41:23 +0100 Subject: [pptp-server] network-to-network Message-ID: Tom, Thanks, but I forgot to mention that I have numerous user out in the field that dial-in to the VPN to access the network. This would make FreeS/WAN & IPSEC more troublesome to implement. I was looking for a solution that would not mean reconfiguring remote users. Martin > -----Original Message----- > From: Tom Eastep [mailto:teastep at seattlefirewall.dyndns.org] > Sent: Friday, July 06, 2001 5:27 PM > To: Martin Leonard; 'pptp-server at lists.schulte.org' > Subject: Re: [pptp-server] network-to-network > > > On Friday 06 July 2001 09:13 am, Martin Leonard wrote: > > Hi, > > > > Can somebody point me in the direction of some > documentation to use PPTP to > > connect 2 lans over the internet. I have Linux 2.4 > firewalls setup with > > masquerading for each connection, but now want to connect > the lans to > > create a VPN. I am currently doing this with RRAS but wish > to remove the MS > > implementation. > > > > Martin, > > In my view, IPSEC using FreeS/WAN > (http://www.xs4all.nl/~freeswan) is a > better approach to this application on Linux. > > The site http://jixen.tripod.com has a lot of configuration > information and > examples. > > -Tom > -- > Tom Eastep \ tom at seattlefirewall.dyndns.org > ICQ #60745924 \ http://seattlefirewall.dyndns.org > Shoreline, Washington \__________________________________________ > -------------- next part -------------- An HTML attachment was scrubbed... URL: From michael_scholl at ctsius.com Fri Jul 6 11:45:41 2001 From: michael_scholl at ctsius.com (michael_scholl at ctsius.com) Date: Fri, 6 Jul 2001 09:45:41 -0700 Subject: [pptp-server] network-to-network Message-ID: <33E6E975BEF9D211BA800008C7DF61804D7B8D@EXCHANGE> Martin, Have you looked at vtun.sourceforge.net, I have 4 sites connected using this software. Best Regards, Michael Scholl -----Original Message----- From: Martin Leonard [mailto:martin.leonard at afint.co.uk] Sent: Friday, July 06, 2001 9:41 AM To: 'Tom Eastep'; 'pptp-server at lists.schulte.org' Subject: RE: [pptp-server] network-to-network Tom, Thanks, but I forgot to mention that I have numerous user out in the field that dial-in to the VPN to access the network. This would make FreeS/WAN & IPSEC more troublesome to implement. I was looking for a solution that would not mean reconfiguring remote users. Martin > -----Original Message----- > From: Tom Eastep [ mailto:teastep at seattlefirewall.dyndns.org ] > Sent: Friday, July 06, 2001 5:27 PM > To: Martin Leonard; 'pptp-server at lists.schulte.org' > Subject: Re: [pptp-server] network-to-network > > > On Friday 06 July 2001 09:13 am, Martin Leonard wrote: > > Hi, > > > > Can somebody point me in the direction of some > documentation to use PPTP to > > connect 2 lans over the internet. I have Linux 2.4 > firewalls setup with > > masquerading for each connection, but now want to connect > the lans to > > create a VPN. I am currently doing this with RRAS but wish > to remove the MS > > implementation. > > > > Martin, > > In my view, IPSEC using FreeS/WAN > ( http://www.xs4all.nl/~freeswan ) is a > better approach to this application on Linux. > > The site http://jixen.tripod.com has a lot of configuration > information and > examples. > > -Tom > -- > Tom Eastep \ tom at seattlefirewall.dyndns.org > ICQ #60745924 \ http://seattlefirewall.dyndns.org > Shoreline, Washington \__________________________________________ > -------------- next part -------------- An HTML attachment was scrubbed... URL: From teastep at seattlefirewall.dyndns.org Fri Jul 6 11:46:36 2001 From: teastep at seattlefirewall.dyndns.org (Tom Eastep) Date: Fri, 6 Jul 2001 09:46:36 -0700 Subject: [pptp-server] network-to-network In-Reply-To: References: Message-ID: <01070609463603.12064@ursa.seattlefirewall.dyndns.org> On Friday 06 July 2001 09:41 am, Martin Leonard wrote: > Tom, > > Thanks, but I forgot to mention that I have numerous user out in the field > that dial-in to the VPN to access the network. This would make FreeS/WAN & > IPSEC more troublesome to implement. I was looking for a solution that > would not mean reconfiguring remote users. > I personally use both PPTP and FreeS/WAN -- IPSEC is a PITA for RoadWarrior access so for that I use PPTP; for bridging our two networks, we use IPSEC. -Tom -- Tom Eastep \ tom at seattlefirewall.dyndns.org ICQ #60745924 \ http://seattlefirewall.dyndns.org Shoreline, Washington \__________________________________________ From JaminC at adapt-tele.com Fri Jul 6 11:57:25 2001 From: JaminC at adapt-tele.com (Jamin Collins) Date: Fri, 6 Jul 2001 11:57:25 -0500 Subject: [pptp-server] network-to-network Message-ID: Tom Eastep [mailto:teastep at seattlefirewall.dyndns.org] wrote: > I personally use both PPTP and FreeS/WAN -- IPSEC is a PITA > for RoadWarrior access so for that I use PPTP; for bridging > our two networks, we use IPSEC. I have the same type of configuration in use here. With the proper routing rules everything hums along quite nicely. Jamin W. Collins From martin.leonard at afint.co.uk Fri Jul 6 12:04:39 2001 From: martin.leonard at afint.co.uk (Martin Leonard) Date: Fri, 6 Jul 2001 18:04:39 +0100 Subject: [pptp-server] network-to-network Message-ID: Thanks to all who replied.... food for thought and a bit of testing required cheers! > -----Original Message----- > From: Tom Eastep [mailto:teastep at seattlefirewall.dyndns.org] > Sent: Friday, July 06, 2001 5:47 PM > To: Martin Leonard; 'pptp-server at lists.schulte.org' > Subject: Re: [pptp-server] network-to-network > > > On Friday 06 July 2001 09:41 am, Martin Leonard wrote: > > Tom, > > > > Thanks, but I forgot to mention that I have numerous user > out in the field > > that dial-in to the VPN to access the network. This would > make FreeS/WAN & > > IPSEC more troublesome to implement. I was looking for a > solution that > > would not mean reconfiguring remote users. > > > > I personally use both PPTP and FreeS/WAN -- IPSEC is a PITA > for RoadWarrior > access so for that I use PPTP; for bridging our two networks, > we use IPSEC. > > -Tom > -- > Tom Eastep \ tom at seattlefirewall.dyndns.org > ICQ #60745924 \ http://seattlefirewall.dyndns.org > Shoreline, Washington \__________________________________________ > -------------- next part -------------- An HTML attachment was scrubbed... URL: From berzerke at swbell.net Fri Jul 6 14:27:57 2001 From: berzerke at swbell.net (robert) Date: Fri, 06 Jul 2001 14:27:57 -0500 Subject: [pptp-server] timeout problems In-Reply-To: References: Message-ID: <01070614275700.07164@linux> In ppp options file, add the line: idle