[pptp-server] MPPE stopped again...

George Vieira GeorgeV at citadelcomputer.com.au
Mon Jul 16 18:11:28 CDT 2001 

Here's a new twist. This problem with MPPE compression is also effecting
Windows clients so I think the problem is definitely on the pptpd server.
Though a restart of the system appears to correct the problem temporarily.

I noticed that killing the pppd connection, pptpd , doing a rmmod of and
ppp_* module and restarting pptpd doesn't allow me to connect as gives
errors. Is there a clean way without rebooting to kill and restart the pptpd
and pppd service?

It dies with:
Jul 17 09:09:39 firewall pppd[9338]: pppd 2.4.1 started by root, uid 0
Jul 17 09:09:39 firewall pppd[9338]: Couldn't attach to channel 124: No such
device or address
Jul 17 09:09:39 firewall pppd[9338]: Exit.
Jul 17 09:09:39 firewall pptpd[9337]: Error reading from pppd: Input/output
error
Jul 17 09:09:39 firewall pptpd[9337]: CTRL: GRE read or PTY write failed
(gre,pty)=(6,5)

What else am I missing to clean up my ppp connections?

thanks,
George Vieira
Network Engineer
Citadel Computer Systems P/L


-----Original Message-----
From: George Vieira 
Sent: Monday, July 16, 2001 10:28 AM
To: 'Justin Kreger'
Cc: PPTP List (E-mail)
Subject: RE: [pptp-server] MPPE stopped again...


This worked fine for around 6 months on RH6.2 Kernel 2.2.19 before moving to
RH7.1 Kernel 2.4.5 and is only doing it now.. Though  our HDSL came into
effect around May so it's hard to tell if it's a speed problem or not...

thanks,
George Vieira
Network Engineer
Citadel Computer Systems P/L


-----Original Message-----
From: Justin Kreger [mailto:lists at earthling.2y.net]
Sent: Monday, July 16, 2001 9:36 AM
To: George Vieira
Cc: PPTP List (E-mail)
Subject: RE: [pptp-server] MPPE stopped again...


Its like your client isent ready to do chap....

Justin Kreger, MCP MCSE CCNA
jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net


On Mon, 16 Jul 2001, George Vieira wrote:

> It's a HDSL to ADSL connection which is 50ms average...
> 
> thanks,
> George Vieira
> Network Engineer
> Citadel Computer Systems P/L
> 
> 
> -----Original Message-----
> From: Justin Kreger [mailto:lists at earthling.2y.net]
> Sent: Monday, July 16, 2001 9:32 AM
> To: George Vieira
> Cc: PPTP List (E-mail)
> Subject: RE: [pptp-server] MPPE stopped again...
> 
> 
> It could just be in pppd, or pppd could be running to quickly.... it could
> be written for a certian amount of delay in the conneciton, how long is
> the ping time between the two boxes?
> 
> Justin Kreger, MCP MCSE CCNA
> jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> 
> 
> On Mon, 16 Jul 2001, George Vieira wrote:
> 
> > The only patch I did for pppd was the openssl-0.9.6 patch... Was there
> other
> > patches for pppd-2.4.1 for mschap-v2 etc..etc..??
> > 
> > thanks,
> > George Vieira
> > Network Engineer
> > Citadel Computer Systems P/L
> > 
> > 
> > -----Original Message-----
> > From: Justin Kreger [mailto:lists at earthling.2y.net]
> > Sent: Monday, July 16, 2001 9:25 AM
> > To: George Vieira
> > Subject: RE: [pptp-server] MPPE stopped again...
> > 
> > 
> > Its the inital chap secret... as far as I can tell.... it would be a
pppd
> > bug.
> > 
> > Justin Kreger, MCP MCSE CCNA
> > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> > 
> > 
> > On Mon, 16 Jul 2001, George Vieira wrote:
> > 
> > > You mean it passed my login from the pap-secrets file not chap
> > > authentication? I have refuse-pap in my options file. 
> > > 
> > > thanks,
> > > George Vieira
> > > Network Engineer
> > > Citadel Computer Systems P/L
> > > 
> > > 
> > > -----Original Message-----
> > > From: Justin Kreger [mailto:lists at earthling.2y.net]
> > > Sent: Monday, July 16, 2001 9:22 AM
> > > To: George Vieira
> > > Cc: PPTP List (E-mail)
> > > Subject: Re: [pptp-server] MPPE stopped again...
> > > 
> > > 
> > > That would be the inital secret passed......
> > > 
> > > Justin Kreger, MCP MCSE CCNA
> > > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> > > 
> > > 
> > > On Mon, 16 Jul 2001, George Vieira wrote:
> > > 
> > > > I'm still getting this weird unpredicatable non MPPE support
happening
> > > > again.. For some reason MPPE doesn't encrypt when clients connect
and
> I
> > > > receive a "Remote Message" in the client logs which I have no idea
> about
> > > but
> > > > assume it's something to do with mppe...
> > > > 
> > > > Any ideas why this keeps breaking?
> > > > 
> > > > --PPTP LINUX CLIENT--
> > > > Jul 16 09:07:56 stargate pppd[6359]: pppd 2.3.11 started by root,
uid
> 0
> > > > Jul 16 09:07:56 stargate pppd[6359]: Using interface ppp1
> > > > Jul 16 09:07:57 stargate pppd[6359]: Connect: ppp1 <--> /dev/ttya1
> > > > Jul 16 09:08:00 stargate pppd[6359]: Remote message:
> > > > S=948904F100A51375ED96A07BA2A82B66402CB0FF
> > > > 
> > > > 
> > > > --FIREWALL LOGS--
> > > > Jul 16 09:07:57 firewall pppd[22865]: pppd 2.4.1 started by root,
uid
> 0
> > > > Jul 16 09:07:57 firewall pppd[22865]: Using interface ppp0
> > > > Jul 16 09:07:57 firewall pppd[22865]: Connect: ppp0 <--> /dev/pts/0
> > > > Jul 16 09:08:01 firewall pppd[22865]: MSCHAP-v2 peer authentication
> > > > succeeded for georgev
> > > > Jul 16 09:08:01 firewall pppd[22865]: found interface eth0 for proxy
> arp
> > > > Jul 16 09:08:01 firewall pppd[22865]: local  IP address
xxx.xxx.0.254
> > > > Jul 16 09:08:01 firewall pppd[22865]: remote IP address xxx.xxx.0.97
> > > > 
> > > > --PPTP SERVER--
> > > > name firewall
> > > > mru 1450
> > > > mtu 1450
> > > > auth
> > > > refuse-pap
> > > > require-chap
> > > > proxyarp
> > > > +chap
> > > > +chapms
> > > > +chapms-v2
> > > > mppe-128
> > > > mppe-stateless
> > > > ms-wins xxx.xxx.0.20
> > > > lcp-echo-failure 60
> > > > lcp-echo-interval 5
> > > > 
> > > > [root at firewall /root]# lsmod
> > > > Module                  Size  Used by
> > > > ppp_mppe               26992   0  (autoclean) (unused)
> > > > ppp_generic            21376   0  (autoclean) [ppp_mppe]
> > > > slhc                    5104   0  (autoclean) [ppp_generic]
> > > > ipchains               48064   0  (unused)
> > > > ne2k-pci                4496   3  (autoclean)
> > > > 
> > > > 
> > > > thanks,
> > > > George Vieira
> > > > Network Engineer
> > > > Citadel Computer Systems P/L
> > > > (The box said "For Windows 95 or better", so I installed Linux.)
> > > > _______________________________________________
> > > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > > --- To unsubscribe, go to the url just above this line. --
> > > > 
> > > 
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > --- To unsubscribe, go to the url just above this line. --
> > 
> 
_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
--- To unsubscribe, go to the url just above this line. --

More information about the pptp-server mailing list