[pptp-server] win2k, pptpd 1.2.2, pppd 2.4.0 and Linux 2.4.2
robert
berzerke at swbell.net
Fri Mar 30 20:00:54 CST 2001
Has anyone gotten W2K with encryption working on a pptpd setup running 2.2
kernel series and/or pppd 2.3 series?
To answer your question, the setup works fine with both windows 98 and 95
clients. I don't have access to w2k or me clients to test.
Out of curiosity, is the w2k using NAT? According to M$: If the Virtual
Private Network (VPN) client is behind any network device performing Network
Address Translation (NAT), the L2TP session fails because encrypted IPSec
Encapsulating Security Payload (ESP) packets become corrupted.
The problem *seems* to be w2k, not pptpd. I know M$ purposely created
incompatibilties with bind and kerbos (sp?). I wonder if we have hit upon
another incompatibilty...or a bug????
On Friday 30 March 2001 18:55, Keith T. Garner wrote:
> I just setup and got running pptpd 1.2.2 on a
> machine with the 2.4.2 kernel. I followed the HOWTO at
> http://home.swbell.net/berzerke/2.4_Kernel_PPTPD-HOWTO.txt. It was a
> great amount of help, thanks to whomever threw it together.
>
> After digging through the past two months worth of archives on this
> mailing list, it looks like I've hit what has become a common problem.
>
> Using win2k with encryption off, it works flawlessly. Packets go back
> and forth with easy, giving me access to our private networks.
>
> However, using win2k as a client against the server with encryption on
> (128 bit stateless) all packages between ppp0 on the server and the
> win2k client seem to just disappear into the void. As others have said,
> packets appears to be going over the line thanks to the blinky lights
> on win2k, and I do see "ACCEPTS" being matched in the iptables.
>
> I just wanted to toss out that "yes, this is a real problem, and it
> appears to be an issue with mppe and win2k." I haven't had a chance
> to test it with other clients yet, and I plan on doing it either this
> weekend or on Monday.
>
> Actually, my coworker had a win98 box up that I could test with quickly.
> Doing both encyrpted and non-encrypted connections, the win98 box can
> connect and work flawlessly as a pptp client.
>
> So, to sum up, win98 works well both encrypted and nonencrypted.
> win2k only works well unecrypted. Adding more logs to the fire of
> "win2k isn't working encypted with the stone soup in the subject."
>
> Anything I can do to help, send logs to the list or whatever, let me know.
> (I'm too mentally fried this week to dig into it further at this point.)
>
> Keith
More information about the pptp-server
mailing list