[pptp-server] MPPE stopped again...
Joey Coco
anesthes at cisdi.com
Mon Jul 16 21:50:47 CDT 2001
Hello,
What happens when the clients disconnect?? do you get a hung pptpd
process?
See I have a similar problem with my setups. After a while, for whatever
reason a tunnel will die but pptpd and the client will remain
running.. Restarting the client usually fixes the problem.
-- Joe
On Tue, 17 Jul 2001, George Vieira wrote:
> Here's a new twist. This problem with MPPE compression is also effecting
> Windows clients so I think the problem is definitely on the pptpd server.
> Though a restart of the system appears to correct the problem temporarily.
>
> I noticed that killing the pppd connection, pptpd , doing a rmmod of and
> ppp_* module and restarting pptpd doesn't allow me to connect as gives
> errors. Is there a clean way without rebooting to kill and restart the pptpd
> and pppd service?
>
> It dies with:
> Jul 17 09:09:39 firewall pppd[9338]: pppd 2.4.1 started by root, uid 0
> Jul 17 09:09:39 firewall pppd[9338]: Couldn't attach to channel 124: No such
> device or address
> Jul 17 09:09:39 firewall pppd[9338]: Exit.
> Jul 17 09:09:39 firewall pptpd[9337]: Error reading from pppd: Input/output
> error
> Jul 17 09:09:39 firewall pptpd[9337]: CTRL: GRE read or PTY write failed
> (gre,pty)=(6,5)
>
> What else am I missing to clean up my ppp connections?
>
> thanks,
> George Vieira
> Network Engineer
> Citadel Computer Systems P/L
>
>
> -----Original Message-----
> From: George Vieira
> Sent: Monday, July 16, 2001 10:28 AM
> To: 'Justin Kreger'
> Cc: PPTP List (E-mail)
> Subject: RE: [pptp-server] MPPE stopped again...
>
>
> This worked fine for around 6 months on RH6.2 Kernel 2.2.19 before moving to
> RH7.1 Kernel 2.4.5 and is only doing it now.. Though our HDSL came into
> effect around May so it's hard to tell if it's a speed problem or not...
>
> thanks,
> George Vieira
> Network Engineer
> Citadel Computer Systems P/L
>
>
> -----Original Message-----
> From: Justin Kreger [mailto:lists at earthling.2y.net]
> Sent: Monday, July 16, 2001 9:36 AM
> To: George Vieira
> Cc: PPTP List (E-mail)
> Subject: RE: [pptp-server] MPPE stopped again...
>
>
> Its like your client isent ready to do chap....
>
> Justin Kreger, MCP MCSE CCNA
> jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
>
>
> On Mon, 16 Jul 2001, George Vieira wrote:
>
> > It's a HDSL to ADSL connection which is 50ms average...
> >
> > thanks,
> > George Vieira
> > Network Engineer
> > Citadel Computer Systems P/L
> >
> >
> > -----Original Message-----
> > From: Justin Kreger [mailto:lists at earthling.2y.net]
> > Sent: Monday, July 16, 2001 9:32 AM
> > To: George Vieira
> > Cc: PPTP List (E-mail)
> > Subject: RE: [pptp-server] MPPE stopped again...
> >
> >
> > It could just be in pppd, or pppd could be running to quickly.... it could
> > be written for a certian amount of delay in the conneciton, how long is
> > the ping time between the two boxes?
> >
> > Justin Kreger, MCP MCSE CCNA
> > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> >
> >
> > On Mon, 16 Jul 2001, George Vieira wrote:
> >
> > > The only patch I did for pppd was the openssl-0.9.6 patch... Was there
> > other
> > > patches for pppd-2.4.1 for mschap-v2 etc..etc..??
> > >
> > > thanks,
> > > George Vieira
> > > Network Engineer
> > > Citadel Computer Systems P/L
> > >
> > >
> > > -----Original Message-----
> > > From: Justin Kreger [mailto:lists at earthling.2y.net]
> > > Sent: Monday, July 16, 2001 9:25 AM
> > > To: George Vieira
> > > Subject: RE: [pptp-server] MPPE stopped again...
> > >
> > >
> > > Its the inital chap secret... as far as I can tell.... it would be a
> pppd
> > > bug.
> > >
> > > Justin Kreger, MCP MCSE CCNA
> > > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> > >
> > >
> > > On Mon, 16 Jul 2001, George Vieira wrote:
> > >
> > > > You mean it passed my login from the pap-secrets file not chap
> > > > authentication? I have refuse-pap in my options file.
> > > >
> > > > thanks,
> > > > George Vieira
> > > > Network Engineer
> > > > Citadel Computer Systems P/L
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: Justin Kreger [mailto:lists at earthling.2y.net]
> > > > Sent: Monday, July 16, 2001 9:22 AM
> > > > To: George Vieira
> > > > Cc: PPTP List (E-mail)
> > > > Subject: Re: [pptp-server] MPPE stopped again...
> > > >
> > > >
> > > > That would be the inital secret passed......
> > > >
> > > > Justin Kreger, MCP MCSE CCNA
> > > > jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net
> > > >
> > > >
> > > > On Mon, 16 Jul 2001, George Vieira wrote:
> > > >
> > > > > I'm still getting this weird unpredicatable non MPPE support
> happening
> > > > > again.. For some reason MPPE doesn't encrypt when clients connect
> and
> > I
> > > > > receive a "Remote Message" in the client logs which I have no idea
> > about
> > > > but
> > > > > assume it's something to do with mppe...
> > > > >
> > > > > Any ideas why this keeps breaking?
> > > > >
> > > > > --PPTP LINUX CLIENT--
> > > > > Jul 16 09:07:56 stargate pppd[6359]: pppd 2.3.11 started by root,
> uid
> > 0
> > > > > Jul 16 09:07:56 stargate pppd[6359]: Using interface ppp1
> > > > > Jul 16 09:07:57 stargate pppd[6359]: Connect: ppp1 <--> /dev/ttya1
> > > > > Jul 16 09:08:00 stargate pppd[6359]: Remote message:
> > > > > S=948904F100A51375ED96A07BA2A82B66402CB0FF
> > > > >
> > > > >
> > > > > --FIREWALL LOGS--
> > > > > Jul 16 09:07:57 firewall pppd[22865]: pppd 2.4.1 started by root,
> uid
> > 0
> > > > > Jul 16 09:07:57 firewall pppd[22865]: Using interface ppp0
> > > > > Jul 16 09:07:57 firewall pppd[22865]: Connect: ppp0 <--> /dev/pts/0
> > > > > Jul 16 09:08:01 firewall pppd[22865]: MSCHAP-v2 peer authentication
> > > > > succeeded for georgev
> > > > > Jul 16 09:08:01 firewall pppd[22865]: found interface eth0 for proxy
> > arp
> > > > > Jul 16 09:08:01 firewall pppd[22865]: local IP address
> xxx.xxx.0.254
> > > > > Jul 16 09:08:01 firewall pppd[22865]: remote IP address xxx.xxx.0.97
> > > > >
> > > > > --PPTP SERVER--
> > > > > name firewall
> > > > > mru 1450
> > > > > mtu 1450
> > > > > auth
> > > > > refuse-pap
> > > > > require-chap
> > > > > proxyarp
> > > > > +chap
> > > > > +chapms
> > > > > +chapms-v2
> > > > > mppe-128
> > > > > mppe-stateless
> > > > > ms-wins xxx.xxx.0.20
> > > > > lcp-echo-failure 60
> > > > > lcp-echo-interval 5
> > > > >
> > > > > [root at firewall /root]# lsmod
> > > > > Module Size Used by
> > > > > ppp_mppe 26992 0 (autoclean) (unused)
> > > > > ppp_generic 21376 0 (autoclean) [ppp_mppe]
> > > > > slhc 5104 0 (autoclean) [ppp_generic]
> > > > > ipchains 48064 0 (unused)
> > > > > ne2k-pci 4496 3 (autoclean)
> > > > >
> > > > >
> > > > > thanks,
> > > > > George Vieira
> > > > > Network Engineer
> > > > > Citadel Computer Systems P/L
> > > > > (The box said "For Windows 95 or better", so I installed Linux.)
> > > > > _______________________________________________
> > > > > pptp-server maillist - pptp-server at lists.schulte.org
> > > > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > > > --- To unsubscribe, go to the url just above this line. --
> > > > >
> > > >
> > > _______________________________________________
> > > pptp-server maillist - pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > --- To unsubscribe, go to the url just above this line. --
> > >
> >
More information about the pptp-server
mailing list