From mbailey at netspace.net.au Tue Apr 2 00:59:40 2002 From: mbailey at netspace.net.au (Michael Bailey) Date: Tue, 02 Apr 2002 06:59:40 +0000 Subject: [pptp-server] mirror.binarix.com replacement? Message-ID: <3CA956DC.9000805@netspace.net.au> Hi, I'm trying to setup pptpd with encryption support. I was wondering if there was somewhere else to download the latest kernel patch for mppe as mirror.binarix.com appears to have left the DNS. I applied linux-2.4.4-openssl-0.9.6a-mppe.patch to 2.4.18 kernel only to find ppp_mppe.o was not installed when I ran 'make modules_install'. I manually copied it across from the src tree but 'insmod ppp_mppe' gave the following error: 'couldn't find the kernel version the module was compiled for' Can anyone offer any advice? I've read the howto on sourceforge and also scoured the list archives. There appears to be more than one way to do this. The annoying thing is that SuSE 7.3 does it out of the box but I need to build it for a custom setup. thanks, Mike From cameron at fax.sno.cpqcorp.net Tue Apr 2 01:43:17 2002 From: cameron at fax.sno.cpqcorp.net (James Cameron) Date: Tue, 02 Apr 2002 17:43:17 +1000 Subject: [pptp-server] mirror.binarix.com replacement? References: <3CA956DC.9000805@netspace.net.au> Message-ID: <3CA96115.87C4B4B4@fax.sno.cpqcorp.net> It has moved. ftp://planetmirror.com/pub/mppe/ http://planetmirror.com/pub/mppe/ -- James Cameron From mbailey2 at netspace.net.au Wed Apr 3 02:35:22 2002 From: mbailey2 at netspace.net.au (Michael Bailey) Date: Wed, 03 Apr 2002 08:35:22 +0000 Subject: [pptp-server] Control over device name (ppp0, ppp1, ppp2) Message-ID: <3CAABECA.3080601@netspace.net.au> Hi, I am running pptpd on a linux box that sometimes uses a dialup connection to the Internet. The firewall is setup with the assumption that ppp0 is the dialup connection to my ISP. Now that pptpd is running there is a chance that ppp0 will be taken by a pptp connection. I need to be able to uniquely identify the device name for the dialup connection. Can anyone suggest how I could somehow do this? I would like to make pptpd leave ppp0 alone or else make it use another device name. Any help would be greatly appreciated! :) Mike From durao at pcsolution.com.br Wed Apr 3 08:19:44 2002 From: durao at pcsolution.com.br (Ricardo Durao) Date: Wed, 3 Apr 2002 11:19:44 -0300 Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat Message-ID: <005e01c1db1a$9a67a180$9ffea8c0@pcsolution.com.br> Hi List I have been following through the PoPToP howto, and have found that when doing the 'make modules SUBDIRS=drivers/net' I get the following output. Using: RedHat Linux 6.2 kernel 2.2.16 ppp 2.3.11.tar.gz ppp=2.3.11-openssl-0.9.5-mpe.patch.gz ppp_mppe_compressed_data_fix.diif pptpd-1.0.1.tar.gz Please help [root at teste linux]# make modules SUBDIRS=drivers/net scripts/split-include include/linux/autoconf.h include/config make -C drivers/net CFLAGS="-Wall -Wstrict-prototypes -O2 -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce -m486 -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE" MAKING_MODULES=1 modules make[1]: Entering directory `/usr/src/linux-2.2.16/drivers/net' gcc -D__KERNEL__ -I/usr/src/linux-2.2.16/include -Wall -Wstrict-prototypes -O2 -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce -m486 -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE -DEXPORT_SYMTAB -c ppp.c ppp.c:98: warning: static declaration for `ppp_register_compressor' follows non-static ppp.c:99: warning: static declaration for `ppp_unregister_compressor' follows non-static ppp.c:173: `PPP_VERSION' undeclared here (not in a function) ppp.c: In function `ppp_tty_open': ppp.c:409: `PPP_MAGIC' undeclared (first use in this function) ppp.c:409: (Each undeclared identifier is reported only once ppp.c:409: for each function it appears in.) ppp.c: In function `ppp_tty_close': ppp.c:454: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_read': ppp.c:502: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_write': ppp.c:591: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_ioctl': ppp.c:650: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_poll': ppp.c:808: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_wakeup': ppp.c:836: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_sync_send': ppp.c:860: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_sync_push': ppp.c:913: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_async_send': ppp.c:969: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_push': ppp.c:995: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_async_encode': ppp.c:1064: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_tty_receive': ppp.c:1198: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_dev_close': ppp.c:1551: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_dev_ioctl': ppp.c:1585: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_ioctl': ppp.c:1633: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_receive_error': ppp.c:2226: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_ip': ppp.c:2257: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_ipv6': ppp.c:2270: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_ipx': ppp.c:2283: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_at': ppp.c:2296: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_vjc_comp': ppp.c:2311: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_vjc_uncomp': ppp.c:2336: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_ccp': ppp.c:2351: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `rcv_proto_unknown': ppp.c:2362: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_send_frame': ppp.c:2409: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_output_wakeup': ppp.c:2583: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_send_ctrl': ppp.c:2599: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_alloc': ppp.c:2838: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `ppp_release': ppp.c:2924: `PPP_MAGIC' undeclared (first use in this function) ppp.c: In function `cleanup_module': ppp.c:3128: `PPP_MAGIC' undeclared (first use in this function) make[1]: *** [ppp.o] Error 1 make[1]: Leaving directory `/usr/src/linux-2.2.16/drivers/net' make: *** [_mod_drivers/net] Error 2 Thanks, Ricardo Dur?o ______________________________________ Scanned and protected by Inflex http://pldaniels.com/inflex From orjan at whyevenbother.com Wed Apr 3 11:56:50 2002 From: orjan at whyevenbother.com (=?Windows-1252?Q?=D6rjan_Johansson?=) Date: Wed, 3 Apr 2002 19:56:50 +0200 Subject: [pptp-server] gre protocol not available - help! Message-ID: Hi all! After going through tons of problems I managed to get Win clients - Linux pptp server working thanks to help from list members. But now I think I'm losing my mind. I set up another box to verify the setup procedure, and guess what? No luck... Here's the setup: Redhat 7.2 Recompiled 2.4.19-31 kernel patched with the mppe-patch and configured with all the ppp options ppp 2.4.1 patched with mppe pptpd 1.1.12 Now when trying to connect I get GRE: read error: Protocol not available. I saw a post on the subject and the guy wrote that he solved it by loading ip_gre. He did not, however give any clue as to how he loaded it, and I thoght kernel compile would take care of it??? Here's what my modules.conf looks like: alias parport_lowlevel parport_pc alias eth0 3c59x alias eth1 3c59x alias usb-controller usb-uhci alias net-pf-47 ip_gre alias char-major-108 ppp_generic # This will be different for 2.3.x kernels alias tty-ldisc-3 ppp_async alias tty-ldisc-14 ppp_synctty alias ppp-compress-18 ppp_mppe alias ppp-compress-21 bsd_comp alias ppp-compress-24 ppp_deflate alias ppp-compress-26 ppp_deflate I added the ip_gre line myself in a vain attempt to solve the problem.... Anyone out there who can clarify this and help me out? I'd sure appreciate it! Did I just screw up the config of my kernel or what? Any input appreciated! TIA, Orjan From mike_corns at lexpar.com Wed Apr 3 12:08:09 2002 From: mike_corns at lexpar.com (Mike Corns) Date: Wed, 3 Apr 2002 13:08:09 -0500 Subject: [pptp-server] pptpd, iptables and Kernel 2.4.7-10 Message-ID: <025201c1db3a$831593a0$090110ac@ibma21p> I'm running kernel 2.4.7-10, iptables v.1.2.5 and pptpd v1.01. Can anyone suggest a recent reference source for making all of this work along with Windows 9x and Windows 2000 clients running PPTP/VPN support? I'm experiencing problems connecting behind my firewall and through it. Thanks, Mike Corns Voice: 540.337-8880 Email Pager: pagecorns at lexpar.com AIM ID: mikecornslexpar ICQ#: 3675207 -------------- next part -------------- An HTML attachment was scrubbed... URL: From jurr at tref.nl Wed Apr 3 12:46:27 2002 From: jurr at tref.nl (Jurrie Overgoor) Date: Wed, 3 Apr 2002 20:46:27 +0200 Subject: [pptp-server] gre protocol not available - help! References: Message-ID: <006801c1db3f$dde24260$9b9379c3@p266> This is just a quick help, I am not familiar with your problem. You can load a module with modprobe or insmod. You can see the modules currently loaded with lsmod, and you can delete a module (unload it, not delete it from hd) with rmmod. Did you set up your firewall correct? It needs to pass through *protocol* 47 and port .... (ehh, can anyone help out here? Read the doc's to know.) You did compile your kernel correctly I assume? (Also compiled modules, if any?) make modules make modules_install Greetz -- Jurrie jurr at tref.nl Hi all! After going through tons of problems I managed to get Win clients - Linux pptp server working thanks to help from list members. But now I think I'm losing my mind. I set up another box to verify the setup procedure, and guess what? No luck... Here's the setup: Redhat 7.2 Recompiled 2.4.19-31 kernel patched with the mppe-patch and configured with all the ppp options ppp 2.4.1 patched with mppe pptpd 1.1.12 Now when trying to connect I get GRE: read error: Protocol not available. I saw a post on the subject and the guy wrote that he solved it by loading ip_gre. He did not, however give any clue as to how he loaded it, and I thoght kernel compile would take care of it??? Here's what my modules.conf looks like: alias parport_lowlevel parport_pc alias eth0 3c59x alias eth1 3c59x alias usb-controller usb-uhci alias net-pf-47 ip_gre alias char-major-108 ppp_generic # This will be different for 2.3.x kernels alias tty-ldisc-3 ppp_async alias tty-ldisc-14 ppp_synctty alias ppp-compress-18 ppp_mppe alias ppp-compress-21 bsd_comp alias ppp-compress-24 ppp_deflate alias ppp-compress-26 ppp_deflate I added the ip_gre line myself in a vain attempt to solve the problem.... Anyone out there who can clarify this and help me out? I'd sure appreciate it! Did I just screw up the config of my kernel or what? Any input appreciated! TIA, Orjan _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From collini at colliniconsulting.it Wed Apr 3 13:08:23 2002 From: collini at colliniconsulting.it (Collini Consulting s.a.s.) Date: Wed, 3 Apr 2002 21:08:23 +0200 Subject: [pptp-server] pptp client speed Message-ID: Hello, in my poptop server under Linux configuration file i have set the directive speed speed 115200 (i think it is good for a two-adsl vpn, the upstream is 128kb). On the other side, the pptp client link, when i type ps -ax, i notice it is only 38400kb of speed; i can i raise up the speed on the client side? Thank you! Francesco Collini From ctooley at amoa.org Wed Apr 3 13:10:50 2002 From: ctooley at amoa.org (Chris Tooley) Date: 03 Apr 2002 19:10:50 +0000 Subject: [pptp-server] pptp client speed In-Reply-To: References: Message-ID: <1017861050.18850.8.camel@filecabinet.amoa.org> This would really be a question for the pptp-client list and not really the pptp-server list, but... You can create an options.pptp that has the speed 115200 setting in it, just like the options.pptpd on your server side. Chris tooley On Wed, 2002-04-03 at 19:08, Collini Consulting s.a.s. wrote: > Hello, > > in my poptop server under Linux configuration file i have set the directive > speed speed 115200 (i think it is good for a two-adsl vpn, the upstream is > 128kb). > > On the other side, the pptp client link, when i type ps -ax, i notice it is > only 38400kb of speed; i can i raise up the speed on the client side? > > Thank you! > > Francesco Collini > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From berzerke at swbell.net Wed Apr 3 14:39:01 2002 From: berzerke at swbell.net (robert) Date: Wed, 03 Apr 2002 14:39:01 -0600 Subject: [pptp-server] gre protocol not available - help! In-Reply-To: References: Message-ID: <0GU0004SJENT3C@mta4.rcsntx.swbell.net> Did you actually compile gre as a module? You must select it in your kernel configuration. On Wednesday 03 April 2002 11:56 am, ?rjan Johansson wrote: > Hi all! > > After going through tons of problems I managed to get Win clients - > Linux pptp server working thanks to help from list members. But now I > think I'm losing my mind. I set up another box to verify the setup > procedure, and guess what? No luck... Here's the setup: > > Redhat 7.2 > Recompiled 2.4.19-31 kernel patched with the mppe-patch and configured > with all the ppp options > ppp 2.4.1 patched with mppe > pptpd 1.1.12 > > Now when trying to connect I get GRE: read error: Protocol not > available. > I saw a post on the subject and the guy wrote that he solved it by > loading ip_gre. He did not, however give any clue as to how he loaded > it, and I thoght kernel compile would take care of it??? Here's what my > modules.conf looks like: > alias parport_lowlevel parport_pc > alias eth0 3c59x > alias eth1 3c59x > alias usb-controller usb-uhci > alias net-pf-47 ip_gre > alias char-major-108 ppp_generic # This will be different for 2.3.x > kernels > alias tty-ldisc-3 ppp_async > alias tty-ldisc-14 ppp_synctty > alias ppp-compress-18 ppp_mppe > alias ppp-compress-21 bsd_comp > alias ppp-compress-24 ppp_deflate > alias ppp-compress-26 ppp_deflate > I added the ip_gre line myself in a vain attempt to solve the > problem.... > > Anyone out there who can clarify this and help me out? I'd sure > appreciate it! Did I just screw up the config of my kernel or what? > > Any input appreciated! > > TIA, > Orjan > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Public key is at http://home.swbell.net/berzerke/robert.key Fingerprint: 0D70 9ADF B5A7 45E7 A853 4B1C 8E0F 4324 C39D 44A2 From orjan at whyevenbother.com Wed Apr 3 14:57:17 2002 From: orjan at whyevenbother.com (=?Windows-1252?Q?=D6rjan_Johansson?=) Date: Wed, 3 Apr 2002 22:57:17 +0200 Subject: [pptp-server] gre protocol not available - help! Message-ID: I just looked through my .config file, and it says CONFIG_NET_IPGRE=y so the line in modules.conf is as vain as I suspected right? The utterly confusing thing is that once or twice I've got it working, without doing anything...... So why is the protocol not available 9 times out of ten? Any ideas at all? Cheers, ?rjan -----Original Message----- From: robert Sent: Wed 2002-04-03 22:39 To: ?rjan Johansson; pptp-server at lists.schulte.org Cc: Subject: Re: [pptp-server] gre protocol not available - help! Did you actually compile gre as a module? You must select it in your kernel configuration. On Wednesday 03 April 2002 11:56 am, ?rjan Johansson wrote: > Hi all! > > After going through tons of problems I managed to get Win clients - > Linux pptp server working thanks to help from list members. But now I > think I'm losing my mind. I set up another box to verify the setup > procedure, and guess what? No luck... Here's the setup: > > Redhat 7.2 > Recompiled 2.4.19-31 kernel patched with the mppe-patch and configured > with all the ppp options > ppp 2.4.1 patched with mppe > pptpd 1.1.12 > > Now when trying to connect I get GRE: read error: Protocol not > available. > I saw a post on the subject and the guy wrote that he solved it by > loading ip_gre. He did not, however give any clue as to how he loaded > it, and I thoght kernel compile would take care of it??? Here's what my > modules.conf looks like: > alias parport_lowlevel parport_pc > alias eth0 3c59x > alias eth1 3c59x > alias usb-controller usb-uhci > alias net-pf-47 ip_gre > alias char-major-108 ppp_generic # This will be different for 2.3.x > kernels > alias tty-ldisc-3 ppp_async > alias tty-ldisc-14 ppp_synctty > alias ppp-compress-18 ppp_mppe > alias ppp-compress-21 bsd_comp > alias ppp-compress-24 ppp_deflate > alias ppp-compress-26 ppp_deflate > I added the ip_gre line myself in a vain attempt to solve the > problem.... > > Anyone out there who can clarify this and help me out? I'd sure > appreciate it! Did I just screw up the config of my kernel or what? > > Any input appreciated! > > TIA, > Orjan > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Public key is at http://home.swbell.net/berzerke/robert.key Fingerprint: 0D70 9ADF B5A7 45E7 A853 4B1C 8E0F 4324 C39D 44A2 -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 5645 bytes Desc: not available URL: From truin at enterprise.truin.com Wed Apr 3 16:28:57 2002 From: truin at enterprise.truin.com (truin at enterprise.truin.com) Date: Wed, 3 Apr 2002 15:28:57 -0700 (MST) Subject: [pptp-server] gre protocol not available - help! In-Reply-To: Message-ID: IS your test computer behind a NAT'd firewall? I have the GRE Protocol Not Available error when my Win client is on a private IP being NAT'd behind a linux firewall. Perhaps your situation is similar? -=Jason=- On Wed, 3 Apr 2002, [Windows-1252] ?rjan Johansson wrote: > I just looked through my .config file, and it says CONFIG_NET_IPGRE=y so > the line in modules.conf is as vain as I suspected right? The utterly > confusing thing is that once or twice I've got it working, without doing > anything...... So why is the protocol not available 9 times out of ten? > Any ideas at all? > > Cheers, > ?rjan > > -----Original Message----- > From: robert > Sent: Wed 2002-04-03 22:39 > To: ?rjan Johansson; pptp-server at lists.schulte.org > Cc: > Subject: Re: [pptp-server] gre protocol not available - help! > > > > Did you actually compile gre as a module? You must select it in > your kernel > configuration. > > On Wednesday 03 April 2002 11:56 am, ?rjan Johansson wrote: > > Hi all! > > > > After going through tons of problems I managed to get Win > clients - > > Linux pptp server working thanks to help from list members. > But now I > > think I'm losing my mind. I set up another box to verify the > setup > > procedure, and guess what? No luck... Here's the setup: > > > > Redhat 7.2 > > Recompiled 2.4.19-31 kernel patched with the mppe-patch and > configured > > with all the ppp options > > ppp 2.4.1 patched with mppe > > pptpd 1.1.12 > > > > Now when trying to connect I get GRE: read error: Protocol not > > available. > > I saw a post on the subject and the guy wrote that he solved > it by > > loading ip_gre. He did not, however give any clue as to how he > loaded > > it, and I thoght kernel compile would take care of it??? > Here's what my > > modules.conf looks like: > > alias parport_lowlevel parport_pc > > alias eth0 3c59x > > alias eth1 3c59x > > alias usb-controller usb-uhci > > alias net-pf-47 ip_gre > > alias char-major-108 ppp_generic # This will be different for > 2.3.x > > kernels > > alias tty-ldisc-3 ppp_async > > alias tty-ldisc-14 ppp_synctty > > alias ppp-compress-18 ppp_mppe > > alias ppp-compress-21 bsd_comp > > alias ppp-compress-24 ppp_deflate > > alias ppp-compress-26 ppp_deflate > > I added the ip_gre line myself in a vain attempt to solve the > > problem.... > > > > Anyone out there who can clarify this and help me out? I'd > sure > > appreciate it! Did I just screw up the config of my kernel or > what? > > > > Any input appreciated! > > > > TIA, > > Orjan > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > > -- > Public key is at http://home.swbell.net/berzerke/robert.key > Fingerprint: 0D70 9ADF B5A7 45E7 A853 4B1C 8E0F 4324 C39D 44A2 > > > > From cameron at fax.sno.cpqcorp.net Wed Apr 3 16:58:07 2002 From: cameron at fax.sno.cpqcorp.net (James Cameron) Date: Thu, 04 Apr 2002 08:58:07 +1000 Subject: [pptp-server] Control over device name (ppp0, ppp1, ppp2) References: <3CAABECA.3080601@netspace.net.au> Message-ID: <3CAB88FF.785D49EC@fax.sno.cpqcorp.net> I had same problem. Solution I used was to change the firewall scripts so that they accepted the interface name as an argument, and used ipparam option on pppd to identify the purpose of the interface. So, my ISP connection has "ipparam isp", and my pptp connection has "ipparam pptp". In the scripts executed when an interface comes up (in /etc/ppp/ip-up.d/* for my system, Debian) the parameter is checked, and the interface name is used. One of my ip-up scripts detects the pptp connection coming up and adds routes, like this; #!/bin/sh if [ $PPP_IPPARAM == "pptp" ]; then route add -net 10.1.0.0/8 dev ${IFNAME} fi Hope that helps. -- James Cameron (james.cameron at compaq.com) "Think of it as evolution in action." -- Larry Niven From igor.maciel at mailbr.com.br Wed Apr 3 20:43:13 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Wed, 3 Apr 2002 23:43:13 -0300 Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat References: <005e01c1db1a$9a67a180$9ffea8c0@pcsolution.com.br> Message-ID: <016101c1db82$782e0d80$da70b8c8@igor> Oi, Vi que voc? ? brasileiro, e quero te ajudar. O que voc? quer fazer, mais especificamente ? []'z Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "Ricardo Durao" To: Sent: Wednesday, April 03, 2002 11:19 AM Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat > Hi List > > I have been following through the PoPToP howto, and have found that when > doing the 'make modules SUBDIRS=drivers/net' I get the following output. > > Using: > RedHat Linux 6.2 > kernel 2.2.16 > ppp 2.3.11.tar.gz > ppp=2.3.11-openssl-0.9.5-mpe.patch.gz > ppp_mppe_compressed_data_fix.diif > pptpd-1.0.1.tar.gz > > Please help > > > [root at teste linux]# make modules SUBDIRS=drivers/net > scripts/split-include include/linux/autoconf.h include/config > make -C drivers/net CFLAGS="-Wall -Wstrict-prototypes -O2 > -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce -m486 > -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE" > MAKING_MODULES=1 modules > make[1]: Entering directory `/usr/src/linux-2.2.16/drivers/net' > gcc -D__KERNEL__ -I/usr/src/linux-2.2.16/include -Wall -Wstrict-prototypes > -O2 -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce > -m486 -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODU LE > -DEXPORT_SYMTAB -c ppp.c > ppp.c:98: warning: static declaration for `ppp_register_compressor' follows > non-static > ppp.c:99: warning: static declaration for `ppp_unregister_compressor' > follows non-static > ppp.c:173: `PPP_VERSION' undeclared here (not in a function) > ppp.c: In function `ppp_tty_open': > ppp.c:409: `PPP_MAGIC' undeclared (first use in this function) > ppp.c:409: (Each undeclared identifier is reported only once > ppp.c:409: for each function it appears in.) > ppp.c: In function `ppp_tty_close': > ppp.c:454: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_read': > ppp.c:502: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_write': > ppp.c:591: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_ioctl': > ppp.c:650: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_poll': > ppp.c:808: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_wakeup': > ppp.c:836: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_sync_send': > ppp.c:860: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_sync_push': > ppp.c:913: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_async_send': > ppp.c:969: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_push': > ppp.c:995: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_async_encode': > ppp.c:1064: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_receive': > ppp.c:1198: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_dev_close': > ppp.c:1551: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_dev_ioctl': > ppp.c:1585: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_ioctl': > ppp.c:1633: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_receive_error': > ppp.c:2226: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ip': > ppp.c:2257: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ipv6': > ppp.c:2270: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ipx': > ppp.c:2283: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_at': > ppp.c:2296: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_vjc_comp': > ppp.c:2311: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_vjc_uncomp': > ppp.c:2336: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ccp': > ppp.c:2351: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_unknown': > ppp.c:2362: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_send_frame': > ppp.c:2409: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_output_wakeup': > ppp.c:2583: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_send_ctrl': > ppp.c:2599: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_alloc': > ppp.c:2838: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_release': > ppp.c:2924: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `cleanup_module': > ppp.c:3128: `PPP_MAGIC' undeclared (first use in this function) > make[1]: *** [ppp.o] Error 1 > make[1]: Leaving directory `/usr/src/linux-2.2.16/drivers/net' > make: *** [_mod_drivers/net] Error 2 > > Thanks, > > > Ricardo Dur?o > > > ______________________________________ > Scanned and protected by Inflex > http://pldaniels.com/inflex > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From igor.maciel at mailbr.com.br Wed Apr 3 20:50:36 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Wed, 3 Apr 2002 23:50:36 -0300 Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat References: <005e01c1db1a$9a67a180$9ffea8c0@pcsolution.com.br> <016101c1db82$782e0d80$da70b8c8@igor> Message-ID: <018701c1db83$81aef490$da70b8c8@igor> Hi aLL, Sorry about posting this message into my native language - my intention was to reply just to Ricardo, but instead clicking in just "Reply", I clicked into "Reply all". And when I see it, it was too late - the message was already posted. Sorry :) Regards, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "Igor Maciel Macaubas" To: "Ricardo Durao" ; Sent: Wednesday, April 03, 2002 11:43 PM Subject: Re: [pptp-server] Error when Try Install PoPToP HowTo RedHat > Oi, > Vi que voc? ? brasileiro, e quero te ajudar. > O que voc? quer fazer, mais especificamente ? > > > []'z > Igor > -- > igor.maciel at mailbr.com.br > > ----- Original Message ----- > From: "Ricardo Durao" > To: > Sent: Wednesday, April 03, 2002 11:19 AM > Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat > > > > Hi List > > > > I have been following through the PoPToP howto, and have found that when > > doing the 'make modules SUBDIRS=drivers/net' I get the following output. > > > > Using: > > RedHat Linux 6.2 > > kernel 2.2.16 > > ppp 2.3.11.tar.gz > > ppp=2.3.11-openssl-0.9.5-mpe.patch.gz > > ppp_mppe_compressed_data_fix.diif > > pptpd-1.0.1.tar.gz > > > > Please help > > > > > > [root at teste linux]# make modules SUBDIRS=drivers/net > > scripts/split-include include/linux/autoconf.h include/config > > make -C drivers/net CFLAGS="-Wall -Wstrict-prototypes -O2 > > -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce -m486 > > -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE" > > MAKING_MODULES=1 modules > > make[1]: Entering directory `/usr/src/linux-2.2.16/drivers/net' > > gcc -D__KERNEL__ -I/usr/src/linux-2.2.16/include -Wall -Wstrict-prototypes > > -O2 -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce > > -m486 -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODU > LE > > -DEXPORT_SYMTAB -c ppp.c > > ppp.c:98: warning: static declaration for `ppp_register_compressor' > follows > > non-static > > ppp.c:99: warning: static declaration for `ppp_unregister_compressor' > > follows non-static > > ppp.c:173: `PPP_VERSION' undeclared here (not in a function) > > ppp.c: In function `ppp_tty_open': > > ppp.c:409: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c:409: (Each undeclared identifier is reported only once > > ppp.c:409: for each function it appears in.) > > ppp.c: In function `ppp_tty_close': > > ppp.c:454: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_read': > > ppp.c:502: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_write': > > ppp.c:591: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_ioctl': > > ppp.c:650: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_poll': > > ppp.c:808: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_wakeup': > > ppp.c:836: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_sync_send': > > ppp.c:860: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_sync_push': > > ppp.c:913: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_async_send': > > ppp.c:969: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_push': > > ppp.c:995: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_async_encode': > > ppp.c:1064: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_tty_receive': > > ppp.c:1198: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_dev_close': > > ppp.c:1551: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_dev_ioctl': > > ppp.c:1585: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_ioctl': > > ppp.c:1633: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_receive_error': > > ppp.c:2226: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_ip': > > ppp.c:2257: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_ipv6': > > ppp.c:2270: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_ipx': > > ppp.c:2283: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_at': > > ppp.c:2296: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_vjc_comp': > > ppp.c:2311: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_vjc_uncomp': > > ppp.c:2336: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_ccp': > > ppp.c:2351: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `rcv_proto_unknown': > > ppp.c:2362: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_send_frame': > > ppp.c:2409: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_output_wakeup': > > ppp.c:2583: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_send_ctrl': > > ppp.c:2599: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_alloc': > > ppp.c:2838: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `ppp_release': > > ppp.c:2924: `PPP_MAGIC' undeclared (first use in this function) > > ppp.c: In function `cleanup_module': > > ppp.c:3128: `PPP_MAGIC' undeclared (first use in this function) > > make[1]: *** [ppp.o] Error 1 > > make[1]: Leaving directory `/usr/src/linux-2.2.16/drivers/net' > > make: *** [_mod_drivers/net] Error 2 > > > > Thanks, > > > > > > Ricardo Dur?o > > > > > > ______________________________________ > > Scanned and protected by Inflex > > http://pldaniels.com/inflex > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From jvonau at shaw.ca Wed Apr 3 20:55:46 2002 From: jvonau at shaw.ca (Jerry Vonau) Date: Wed, 03 Apr 2002 20:55:46 -0600 Subject: [pptp-server] Error when Try Install PoPToP HowTo RedHat References: <005e01c1db1a$9a67a180$9ffea8c0@pcsolution.com.br> Message-ID: <3CABC0B2.F46AC219@shaw.ca> See: http://lists.schulte.org/pipermail/pptp-server/2001-July/010964.html Jerry Vonau Ricardo Durao wrote: > > Hi List > > I have been following through the PoPToP howto, and have found that when > doing the 'make modules SUBDIRS=drivers/net' I get the following output. > > Using: > RedHat Linux 6.2 > kernel 2.2.16 > ppp 2.3.11.tar.gz > ppp=2.3.11-openssl-0.9.5-mpe.patch.gz > ppp_mppe_compressed_data_fix.diif > pptpd-1.0.1.tar.gz > > Please help > > [root at teste linux]# make modules SUBDIRS=drivers/net > scripts/split-include include/linux/autoconf.h include/config > make -C drivers/net CFLAGS="-Wall -Wstrict-prototypes -O2 > -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce -m486 > -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE" > MAKING_MODULES=1 modules > make[1]: Entering directory `/usr/src/linux-2.2.16/drivers/net' > gcc -D__KERNEL__ -I/usr/src/linux-2.2.16/include -Wall -Wstrict-prototypes > -O2 -fomit-frame-pointer -fno-strict-aliasing -pipe -fno-strength-reduce > -m486 -malign-loops=2 -malign-jumps=2 -malign-functions=2 -DCPU=686 -DMODULE > -DEXPORT_SYMTAB -c ppp.c > ppp.c:98: warning: static declaration for `ppp_register_compressor' follows > non-static > ppp.c:99: warning: static declaration for `ppp_unregister_compressor' > follows non-static > ppp.c:173: `PPP_VERSION' undeclared here (not in a function) > ppp.c: In function `ppp_tty_open': > ppp.c:409: `PPP_MAGIC' undeclared (first use in this function) > ppp.c:409: (Each undeclared identifier is reported only once > ppp.c:409: for each function it appears in.) > ppp.c: In function `ppp_tty_close': > ppp.c:454: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_read': > ppp.c:502: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_write': > ppp.c:591: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_ioctl': > ppp.c:650: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_poll': > ppp.c:808: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_wakeup': > ppp.c:836: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_sync_send': > ppp.c:860: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_sync_push': > ppp.c:913: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_async_send': > ppp.c:969: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_push': > ppp.c:995: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_async_encode': > ppp.c:1064: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_tty_receive': > ppp.c:1198: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_dev_close': > ppp.c:1551: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_dev_ioctl': > ppp.c:1585: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_ioctl': > ppp.c:1633: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_receive_error': > ppp.c:2226: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ip': > ppp.c:2257: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ipv6': > ppp.c:2270: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ipx': > ppp.c:2283: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_at': > ppp.c:2296: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_vjc_comp': > ppp.c:2311: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_vjc_uncomp': > ppp.c:2336: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_ccp': > ppp.c:2351: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `rcv_proto_unknown': > ppp.c:2362: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_send_frame': > ppp.c:2409: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_output_wakeup': > ppp.c:2583: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_send_ctrl': > ppp.c:2599: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_alloc': > ppp.c:2838: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `ppp_release': > ppp.c:2924: `PPP_MAGIC' undeclared (first use in this function) > ppp.c: In function `cleanup_module': > ppp.c:3128: `PPP_MAGIC' undeclared (first use in this function) > make[1]: *** [ppp.o] Error 1 > make[1]: Leaving directory `/usr/src/linux-2.2.16/drivers/net' > make: *** [_mod_drivers/net] Error 2 > > Thanks, > > Ricardo Dur?o > > ______________________________________ > Scanned and protected by Inflex > http://pldaniels.com/inflex > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From lists at colliniconsulting.it Thu Apr 4 02:36:12 2002 From: lists at colliniconsulting.it (Lists) Date: Thu, 04 Apr 2002 08:36:12 GMT Subject: [pptp-server] Re: pptp client speed In-Reply-To: <1017861050.18850.8.camel@filecabinet.amoa.org> References: <1017861050.18850.8.camel@filecabinet.amoa.org> Message-ID: <20020404083612.26046.qmail@mail.itcserra.org> Thank you for your answer, i am out of topic, please excuse me! If i can say the last question: i put in my options.pptp the speed 115200 line, as i did for the options of poptop, but when i run the link it does not recognize that voice. Could you help me again? Thank you very much, best regards! Chris Tooley writes: > This would really be a question for the pptp-client list and not really > the pptp-server list, but... > > You can create an options.pptp that has the speed 115200 setting in it, > just like the options.pptpd on your server side. > > Chris tooley > On Wed, 2002-04-03 at 19:08, Collini Consulting s.a.s. wrote: >> Hello, >> >> in my poptop server under Linux configuration file i have set the directive >> speed speed 115200 (i think it is good for a two-adsl vpn, the upstream is >> 128kb). >> >> On the other side, the pptp client link, when i type ps -ax, i notice it is >> only 38400kb of speed; i can i raise up the speed on the client side? >> >> Thank you! >> >> Francesco Collini >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From r.devroede at linvision.com Thu Apr 4 04:47:29 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 04 Apr 2002 12:47:29 +0200 Subject: [pptp-server] gre protocol not available - help! In-Reply-To: References: Message-ID: <1017917249.1764.3.camel@richard> this is indeed somewhat of a firewall problem. It has something to do with entries in /proc/net/ip_conntrack. Haven't gotten to the bottom of it, but when you get it, there is allready some GRE connection (or history thereof) from the client or to the server. Wait until the entry is gone (5 to 10 mins I think), then you can make a new connection. Regards, Richard de Vroede On Thu, 2002-04-04 at 00:28, truin at enterprise.truin.com wrote: > IS your test computer behind a NAT'd firewall? I have the GRE Protocol > Not Available error when my Win client is on a private IP being NAT'd > behind a linux firewall. Perhaps your situation is similar? > > -=Jason=- > > > On Wed, 3 Apr 2002, [Windows-1252] ?rjan Johansson wrote: > > > I just looked through my .config file, and it says CONFIG_NET_IPGRE=y so > > the line in modules.conf is as vain as I suspected right? The utterly > > confusing thing is that once or twice I've got it working, without doing > > anything...... So why is the protocol not available 9 times out of ten? > > Any ideas at all? > > > > Cheers, > > ?rjan > > -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From byrdr at corp.earthlink.net Thu Apr 4 12:41:50 2002 From: byrdr at corp.earthlink.net (Bo Byrd) Date: Thu, 4 Apr 2002 13:41:50 -0500 Subject: [pptp-server] External auth with MS-CHAPv2 and MPPE-128 In-Reply-To: <1017917249.1764.3.camel@richard> Message-ID: <002501c1dc08$64d75fd0$0345a8c0@bbyrd> Does anyone know how to make a BSD or Linux POPTOP server externally authenticate users who are using MSCHAPv2 and MPPE? From what I understand the Portslave radius client cant do MSCHAPv2 or MPPE. LDAP would do I think but I don?t know how to build it inot POPTOP. Also I got the FreeBSD POPTOP working but users can never connect as stateless. I've specified that they should in the config file /etc/ppp/ppp.conf: pptp: load loop disable chap disable pap disable chap80 deny chap deny pap ideny chap81 enable chap81 accept chap81 set mppe 128 stateless #Authenticate against /etc/passwd ##enable passwdauth enable proxy accept dns # DNS Servers to assign client set dns 207.69.188.187 207.69.188.188 # NetBIOS/WINS Servers to assign client # set nbns 192.168.0.15 192.168.0.16 # set device !/etc/ppp/secure If anyone has seen this with BSD please let me know. Thanks, Bo -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of R. de Vroede Sent: Thursday, April 04, 2002 5:47 AM To: truin at enterprise.truin.com Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] gre protocol not available - help! this is indeed somewhat of a firewall problem. It has something to do with entries in /proc/net/ip_conntrack. Haven't gotten to the bottom of it, but when you get it, there is allready some GRE connection (or history thereof) from the client or to the server. Wait until the entry is gone (5 to 10 mins I think), then you can make a new connection. Regards, Richard de Vroede On Thu, 2002-04-04 at 00:28, truin at enterprise.truin.com wrote: > IS your test computer behind a NAT'd firewall? I have the GRE > Protocol > Not Available error when my Win client is on a private IP being NAT'd > behind a linux firewall. Perhaps your situation is similar? > > -=Jason=- > > > On Wed, 3 Apr 2002, [Windows-1252] ?rjan Johansson wrote: > > > I just looked through my .config file, and it says > > CONFIG_NET_IPGRE=y so the line in modules.conf is as vain as I > > suspected right? The utterly confusing thing is that once or twice > > I've got it working, without doing anything...... So why is the > > protocol not available 9 times out of ten? Any ideas at all? > > > > Cheers, > > ?rjan > > -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From Entchen at entchen.com Thu Apr 4 16:05:55 2002 From: Entchen at entchen.com (Andreas Grote) Date: Fri, 5 Apr 2002 00:05:55 +0200 Subject: [pptp-server] Piepants and pptp-Gui not working wih potTop`? Message-ID: <00ad01c1dc24$e4c8c1e0$03a8a8c0@test1> Hi again, Has annyone tried out clients for OSX? I found two: Piepants and Pptp-Gui but neather of them seems to work right. Anyone out there who got them working or who knows why they dont. Is there a working lcinet for MacOSX? thx -------------- next part -------------- An HTML attachment was scrubbed... URL: From david_luyer at pacific.net.au Thu Apr 4 23:58:10 2002 From: david_luyer at pacific.net.au (David Luyer) Date: Fri, 5 Apr 2002 15:58:10 +1000 Subject: [pptp-server] External auth with MS-CHAPv2 and MPPE-128 In-Reply-To: <002501c1dc08$64d75fd0$0345a8c0@bbyrd> Message-ID: <011701c1dc66$ddd1be90$638317d2@pacific.net.au> > Does anyone know how to make a BSD or Linux POPTOP server externally > authenticate users who are using MSCHAPv2 and MPPE? From what I > understand the Portslave radius client cant do MSCHAPv2 or MPPE. LDAP > would do I think but I don't know how to build it inot POPTOP. There is a RADIUS solution that does MSCHAPv2 and MPPE. Someone else on the list found it (Igor)... cvs -d :pserver:cvs at pserver.samba.org:/cvsroot co ppp/pppd/plugins/radius David. From pptp-server at szczepanek.de Fri Apr 5 03:12:55 2002 From: pptp-server at szczepanek.de (Torge Szczepanek) Date: Fri, 5 Apr 2002 11:12:55 +0200 Subject: [pptp-server] Piepants and pptp-Gui not working wih potTop`? References: <00ad01c1dc24$e4c8c1e0$03a8a8c0@test1> Message-ID: <00b601c1dc82$13320930$02ffa8c0@cygnus> Hi! > Has annyone tried out clients for OSX? > I found two: Piepants and Pptp-Gui but neather of them seems to work right. > Anyone out there who got them working or who knows why they dont. Is there a working lcinet for > MacOSX? thx Some students are using pptp-gui together with PopTop in our network. Our support page is in german, but you seem to be german to. ;-) http://www.stw-bonn.de/support/vpn-mac/ Torge Szczepanek From lists at earthling.2y.net Fri Apr 5 06:48:31 2002 From: lists at earthling.2y.net (lists at earthling.2y.net) Date: Fri, 5 Apr 2002 07:48:31 -0500 (EST) Subject: [pptp-server] External auth with MS-CHAPv2 and MPPE-128 In-Reply-To: <002501c1dc08$64d75fd0$0345a8c0@bbyrd> Message-ID: There is no way to really externally authenticate so that you can still have mschapv2 and mppe. It is possible, with some coding, to auth against a nt server, or without coding, auth against a database somewhere that is storing ntlm hashes... the true easy option is to just run that NT SAM -> smbpasswd program. On Thu, 4 Apr 2002, Bo Byrd wrote: > Does anyone know how to make a BSD or Linux POPTOP server externally > authenticate users who are using MSCHAPv2 and MPPE? From what I > understand the Portslave radius client cant do MSCHAPv2 or MPPE. LDAP > would do I think but I don?t know how to build it inot POPTOP. > > Also I got the FreeBSD POPTOP working but users can never connect as > stateless. I've specified that they should in the config file > /etc/ppp/ppp.conf: > > pptp: > load loop > disable chap > disable pap > disable chap80 > deny chap > deny pap > ideny chap81 > enable chap81 > accept chap81 > set mppe 128 stateless > #Authenticate against /etc/passwd > ##enable passwdauth > enable proxy > accept dns > # DNS Servers to assign client > set dns 207.69.188.187 207.69.188.188 > # NetBIOS/WINS Servers to assign client > # set nbns 192.168.0.15 192.168.0.16 > # set device !/etc/ppp/secure > > If anyone has seen this with BSD please let me know. > > Thanks, > Bo > > > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of R. de Vroede > Sent: Thursday, April 04, 2002 5:47 AM > To: truin at enterprise.truin.com > Cc: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] gre protocol not available - help! > > > this is indeed somewhat of a firewall problem. It has something to do > with entries in /proc/net/ip_conntrack. Haven't gotten to the bottom of > it, but when you get it, there is allready some GRE connection (or > history thereof) from the client or to the server. Wait until the entry > is gone (5 to 10 mins I think), then you can make a new connection. > > Regards, > Richard de Vroede > > On Thu, 2002-04-04 at 00:28, truin at enterprise.truin.com wrote: > > IS your test computer behind a NAT'd firewall? I have the GRE > > Protocol > > Not Available error when my Win client is on a private IP being NAT'd > > behind a linux firewall. Perhaps your situation is similar? > > > > -=Jason=- > > > > > > On Wed, 3 Apr 2002, [Windows-1252] ?rjan Johansson wrote: > > > > > I just looked through my .config file, and it says > > > CONFIG_NET_IPGRE=y so the line in modules.conf is as vain as I > > > suspected right? The utterly confusing thing is that once or twice > > > I've got it working, without doing anything...... So why is the > > > protocol not available 9 times out of ten? Any ideas at all? > > > > > > Cheers, > > > ?rjan > > > > -- Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net From aleksey_poptop at yahoo.com Fri Apr 5 14:12:21 2002 From: aleksey_poptop at yahoo.com (aleksey zakharov) Date: Fri, 5 Apr 2002 12:12:21 -0800 (PST) Subject: [pptp-server] installing pptpd Message-ID: <20020405201221.24760.qmail@web20203.mail.yahoo.com> Hello, I have found your document on http://www.advancevpn.com/en/download_other.html, thank you it seems very helpful. I am trying to set up a PoPtop server on a linux redhat 7.2 system. I followed the exact instructions as you mentioned in your article, but I am still little bit confused. this is what i have done: 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and pptpd-1.1.2) to /usr/src and appled the patches by using the following: [/usr/src] gzip -d < linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch -p0 [/usr/src] gzip -d < ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch -p0 then in step 2 you mention: Configure and make everything. Make sure to include everything that is PPP related from "Network device support". (PPP and PPTPd work with plain ./configure; make; make install) what i did was: ./configured; make make install; both ppp and pptpd But I am not sure if i need to compile the whole linux-2.4.16 kernel before or after. Can you please be more specific in step 2 and describe the step by step process. Thank you very much for your support. --------------------------------- Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax -------------- next part -------------- An HTML attachment was scrubbed... URL: From ctooley at amoa.org Fri Apr 5 14:26:58 2002 From: ctooley at amoa.org (Chris Tooley) Date: 05 Apr 2002 20:26:58 +0000 Subject: [pptp-server] installing pptpd In-Reply-To: <20020405201221.24760.qmail@web20203.mail.yahoo.com> References: <20020405201221.24760.qmail@web20203.mail.yahoo.com> Message-ID: <1018038418.25674.34.camel@filecabinet.amoa.org> Alternatively there is my HOWTO for just this subject (Installing on Redhat 7.2) at http://www.thetooleys.org/pptp/ Even if you didn't use the XFS installers, the kernels that are there are fine, they just give you the added benefit of _also_ using XFS is you so choose in the future. Chris Tooley On Fri, 2002-04-05 at 20:12, aleksey zakharov wrote: > > Hello, I have found your document on http://www.advancevpn.com/en/download_other.html, thank you it seems very helpful. I am trying to set up a PoPtop server on a linux redhat 7.2 system. I followed the exact instructions as you mentioned in your article, but I am still little bit confused. this is what i have done: > > 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and pptpd-1.1.2) to /usr/src and appled the patches by using the following: > > [/usr/src] gzip -d < linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch -p0 > [/usr/src] gzip -d < ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch -p0 > > > then in step 2 you mention: > > Configure and make everything. Make sure to include everything that is PPP related from "Network device support". (PPP and PPTPd work with plain ./configure; make; make install) > > what i did was: ./configured; make make install; both ppp and pptpd > > But I am not sure if i need to compile the whole linux-2.4.16 kernel before or after. Can you please be more specific in step 2 and describe the step by step process. > > Thank you very much for your support. > > > > --------------------------------- > Do You Yahoo!? > Yahoo! Tax Center - online filing with TurboTax From byrdr at corp.earthlink.net Fri Apr 5 15:05:22 2002 From: byrdr at corp.earthlink.net (Bo Byrd) Date: Fri, 5 Apr 2002 16:05:22 -0500 Subject: [pptp-server] installing pptpd In-Reply-To: <1018038418.25674.34.camel@filecabinet.amoa.org> Message-ID: <003201c1dce5$9cb9fa60$0345a8c0@bbyrd> He's wanting to install from source....He's asking what to compile first, 2nd, then 3rd...the kernel, the new PPP, or PPTPD....I'm wondering myself.... -Bo -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Chris Tooley Sent: Friday, April 05, 2002 3:27 PM To: aleksey zakharov Cc: pptp-server at lists.schulte.org Subject: Re: [pptp-server] installing pptpd Alternatively there is my HOWTO for just this subject (Installing on Redhat 7.2) at http://www.thetooleys.org/pptp/ Even if you didn't use the XFS installers, the kernels that are there are fine, they just give you the added benefit of _also_ using XFS is you so choose in the future. Chris Tooley On Fri, 2002-04-05 at 20:12, aleksey zakharov wrote: > > Hello, I have found your document on > http://www.advancevpn.com/en/download_other.html, thank you it seems > very helpful. I am trying to set up a PoPtop server on a linux redhat > 7.2 system. I followed the exact instructions as you mentioned in your > article, but I am still little bit confused. this is what i have done: > > 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and > pptpd-1.1.2) to /usr/src and appled the patches by using the > following: > > [/usr/src] gzip -d < linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch > -p0 [/usr/src] gzip -d < ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch > -p0 > > > then in step 2 you mention: > > Configure and make everything. Make sure to include everything that is > PPP related from "Network device support". (PPP and PPTPd work with > plain ./configure; make; make install) > > what i did was: ./configured; make make install; both ppp and pptpd > > But I am not sure if i need to compile the whole linux-2.4.16 kernel > before or after. Can you please be more specific in step 2 and describe the step by step process. > > Thank you very much for your support. > > > > --------------------------------- > Do You Yahoo!? > Yahoo! Tax Center - online filing with TurboTax _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From igor.maciel at mailbr.com.br Fri Apr 5 19:51:44 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Fri, 5 Apr 2002 22:51:44 -0300 Subject: [pptp-server] External auth with MS-CHAPv2 and MPPE-128 References: <011701c1dc66$ddd1be90$638317d2@pacific.net.au> Message-ID: <00b101c1dd0d$c5c06c00$0870b8c8@igor> Hi, If somebody want, I can help. I have this solution working well right here, in my production servers. I found it using a ppp module and a pam module - you choose what of them you want to use. Regards, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "David Luyer" To: "'Bo Byrd'" ; Sent: Friday, April 05, 2002 2:58 AM Subject: RE: [pptp-server] External auth with MS-CHAPv2 and MPPE-128 > > Does anyone know how to make a BSD or Linux POPTOP server externally > > authenticate users who are using MSCHAPv2 and MPPE? From what I > > understand the Portslave radius client cant do MSCHAPv2 or MPPE. LDAP > > would do I think but I don't know how to build it inot POPTOP. > > There is a RADIUS solution that does MSCHAPv2 and MPPE. Someone else > on the list found it (Igor)... > > cvs -d :pserver:cvs at pserver.samba.org:/cvsroot co > ppp/pppd/plugins/radius > > David. > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From david_luyer at pacific.net.au Sat Apr 6 07:43:34 2002 From: david_luyer at pacific.net.au (David Luyer) Date: Sat, 6 Apr 2002 23:43:34 +1000 Subject: [pptp-server] installing pptpd In-Reply-To: <003201c1dce5$9cb9fa60$0345a8c0@bbyrd> Message-ID: <003501c1dd71$0c6568a0$46943ecb@pacific.net.au> kernel, pppd, pptpd would work. The order isn't likely to be significant, you can compile pptpd at any point, and if there is any dependancy between the kernel and pppd it would be that you should compile the kernel first, but it's not likely to matter. David. -- David Luyer Phone: +61 3 9674 7525 Network Development Manager P A C I F I C Fax: +61 3 9699 8693 Pacific Internet (Australia) I N T E R N E T Mobile: +61 4 1111 BYTE http://www.pacific.net.au/ NASDAQ: PCNTF > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Bo Byrd > Sent: Saturday, 6 April 2002 7:05 AM > To: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] installing pptpd > > > He's wanting to install from source....He's asking what to compile > first, 2nd, then 3rd...the kernel, the new PPP, or PPTPD....I'm > wondering myself.... > > -Bo > > > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Chris Tooley > Sent: Friday, April 05, 2002 3:27 PM > To: aleksey zakharov > Cc: pptp-server at lists.schulte.org > Subject: Re: [pptp-server] installing pptpd > > > Alternatively there is my HOWTO for just this subject (Installing on > Redhat 7.2) at http://www.thetooleys.org/pptp/ > > Even if you didn't use the XFS installers, the kernels that are there > are fine, they just give you the added benefit of _also_ using XFS is > you so choose in the future. > > Chris Tooley > > On Fri, 2002-04-05 at 20:12, aleksey zakharov wrote: > > > > Hello, I have found your document on > > http://www.advancevpn.com/en/download_other.html, thank you > it seems > > very helpful. I am trying to set up a PoPtop server on a > linux redhat > > 7.2 system. I followed the exact instructions as you > mentioned in your > > > article, but I am still little bit confused. this is what i > have done: > > > > 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and > > pptpd-1.1.2) to /usr/src and appled the patches by using the > > following: > > > > [/usr/src] gzip -d < > linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch > > > -p0 [/usr/src] gzip -d < > ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch > > > -p0 > > > > > > then in step 2 you mention: > > > > Configure and make everything. Make sure to include > everything that is > > > PPP related from "Network device support". (PPP and PPTPd work with > > plain ./configure; make; make install) > > > > what i did was: ./configured; make make install; both > ppp and pptpd > > > > But I am not sure if i need to compile the whole > linux-2.4.16 kernel > > before or after. Can you please be more specific in step 2 and > describe the step by step process. > > > > Thank you very much for your support. > > > > > > > > --------------------------------- > > Do You Yahoo!? > > Yahoo! Tax Center - online filing with TurboTax > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > From orjo at bolibompa.com Sat Apr 6 10:50:41 2002 From: orjo at bolibompa.com (=?iso-8859-1?Q?=D6rjan_Johansson?=) Date: Sat, 6 Apr 2002 18:50:41 +0200 Subject: [pptp-server] gre protocol not available - help! Message-ID: <5FC6978F65DF9C41803216AA144CC2BA3A07@dc.winobob.dom> Interesting. I'm not so sure that's the problem I'm having, though. Even a reboot doesn't guarantee success: sometimes it works, sometimes (most of the times) it don't - and I can't see a pattern. Anyone else have this problem? I'm getting a bit desperate, it doesn't feel like something I can recommend a customer if it's not more stable and reliable. Any kernel versions, pptp versions or ppp versions better than others? Any hints on what I should look at? And about the ip_conntrack thing. Any versions of iptables that handles this differently? Thanx for your input! Cheers, ?rjan -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of R. de Vroede Sent: den 4 april 2002 12:47 To: truin at enterprise.truin.com Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] gre protocol not available - help! this is indeed somewhat of a firewall problem. It has something to do with entries in /proc/net/ip_conntrack. Haven't gotten to the bottom of it, but when you get it, there is allready some GRE connection (or history thereof) from the client or to the server. Wait until the entry is gone (5 to 10 mins I think), then you can make a new connection. Regards, Richard de Vroede On Thu, 2002-04-04 at 00:28, truin at enterprise.truin.com wrote: > IS your test computer behind a NAT'd firewall? I have the GRE > Protocol > Not Available error when my Win client is on a private IP being NAT'd > behind a linux firewall. Perhaps your situation is similar? > > -=Jason=- > > > On Wed, 3 Apr 2002, [Windows-1252] ?rjan Johansson wrote: > > > I just looked through my .config file, and it says > > CONFIG_NET_IPGRE=y so the line in modules.conf is as vain as I > > suspected right? The utterly confusing thing is that once or twice > > I've got it working, without doing anything...... So why is the > > protocol not available 9 times out of ten? Any ideas at all? > > > > Cheers, > > ?rjan > > -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From r.devroede at linvision.com Mon Apr 8 02:57:07 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 08 Apr 2002 09:57:07 +0200 Subject: [pptp-server] gre protocol not available - help! In-Reply-To: <5FC6978F65DF9C41803216AA144CC2BA3A07@dc.winobob.dom> References: <5FC6978F65DF9C41803216AA144CC2BA3A07@dc.winobob.dom> Message-ID: <1018252627.1750.15.camel@richard> I am going to include the attached patch to the next kernel RPM, but now you can test if it helps you out. Note that eventhough it is written for the client, it is a problem related to netfilter and should also cure pptp server problems. Hope it helps. Regards, Richard Here's the author's comment: ------------- Here's my first try at a PPTP helper module for netfilter. The patch is against 2.4.12. Testing so far has shown that it works with multiple PPTP clients (windows only tested so far). There are two known problems: 1) if you are using an SNAT pool with more than one address, it doesn't work 2) one person reported not being able to use more than 4 simultaneous clients After applying, make menuconfig and select the PPTP Masq under netfilter options. Any feedback/testing would appreciated. Thanks to all those who have done so already! Regards, Brian Kuschak ------------------ On Sat, 2002-04-06 at 18:50, ?rjan Johansson wrote: > Interesting. I'm not so sure that's the problem I'm having, though. Even > a reboot doesn't guarantee success: sometimes it works, sometimes (most > of the times) it don't - and I can't see a pattern. Anyone else have > this problem? I'm getting a bit desperate, it doesn't feel like > something I can recommend a customer if it's not more stable and > reliable. > > Any kernel versions, pptp versions or ppp versions better than others? > Any hints on what I should look at? And about the ip_conntrack thing. > Any versions of iptables that handles this differently? > > Thanx for your input! > > Cheers, > ?rjan > Richard de Vroede > (r.devroede at linvision.com) > ------------------------------------------------ > Linvision BV Provides Linux Solutions > Elektronicaweg 16D > 2628 XG Delft > T: +31157502310 info at linvision.com > F: +31157502319 http://devel.linvision.com > ------------------------------------------------ > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From r.devroede at linvision.com Mon Apr 8 02:58:32 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 08 Apr 2002 09:58:32 +0200 Subject: [pptp-server] gre protocol not available - help! In-Reply-To: <5FC6978F65DF9C41803216AA144CC2BA3A07@dc.winobob.dom> References: <5FC6978F65DF9C41803216AA144CC2BA3A07@dc.winobob.dom> Message-ID: <1018252712.1753.18.camel@richard> If I said I would attach it, I should attach it (Still mondaymorning here, sorry ;-) -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ -------------- next part -------------- A non-text attachment was scrubbed... Name: netfilter_pptp_2_4_12.patch.gz Type: application/x-gzip Size: 11569 bytes Desc: not available URL: From byrdr at corp.earthlink.net Mon Apr 8 08:04:29 2002 From: byrdr at corp.earthlink.net (Bo Byrd) Date: Mon, 8 Apr 2002 09:04:29 -0400 Subject: [pptp-server] installing pptpd In-Reply-To: <003501c1dd71$0c6568a0$46943ecb@pacific.net.au> Message-ID: <001701c1defd$ee6197f0$0345a8c0@bbyrd> OK thanks for the info....should I reboot to the new kernel before compiling pppd and pptpd? Thanks a lot! Bo Byrd -----Original Message----- From: David Luyer [mailto:david_luyer at pacific.net.au] Sent: Saturday, April 06, 2002 8:44 AM To: 'Bo Byrd'; pptp-server at lists.schulte.org Subject: RE: [pptp-server] installing pptpd kernel, pppd, pptpd would work. The order isn't likely to be significant, you can compile pptpd at any point, and if there is any dependancy between the kernel and pppd it would be that you should compile the kernel first, but it's not likely to matter. David. -- David Luyer Phone: +61 3 9674 7525 Network Development Manager P A C I F I C Fax: +61 3 9699 8693 Pacific Internet (Australia) I N T E R N E T Mobile: +61 4 1111 BYTE http://www.pacific.net.au/ NASDAQ: PCNTF > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Bo Byrd > Sent: Saturday, 6 April 2002 7:05 AM > To: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] installing pptpd > > > He's wanting to install from source....He's asking what to compile > first, 2nd, then 3rd...the kernel, the new PPP, or PPTPD....I'm > wondering myself.... > > -Bo > > > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Chris Tooley > Sent: Friday, April 05, 2002 3:27 PM > To: aleksey zakharov > Cc: pptp-server at lists.schulte.org > Subject: Re: [pptp-server] installing pptpd > > > Alternatively there is my HOWTO for just this subject (Installing on > Redhat 7.2) at http://www.thetooleys.org/pptp/ > > Even if you didn't use the XFS installers, the kernels that are there > are fine, they just give you the added benefit of _also_ using XFS is > you so choose in the future. > > Chris Tooley > > On Fri, 2002-04-05 at 20:12, aleksey zakharov wrote: > > > > Hello, I have found your document on > > http://www.advancevpn.com/en/download_other.html, thank you > it seems > > very helpful. I am trying to set up a PoPtop server on a > linux redhat > > 7.2 system. I followed the exact instructions as you > mentioned in your > > > article, but I am still little bit confused. this is what i > have done: > > > > 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and > > pptpd-1.1.2) to /usr/src and appled the patches by using the > > following: > > > > [/usr/src] gzip -d < > linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch > > > -p0 [/usr/src] gzip -d < > ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch > > > -p0 > > > > > > then in step 2 you mention: > > > > Configure and make everything. Make sure to include > everything that is > > > PPP related from "Network device support". (PPP and PPTPd work with > > plain ./configure; make; make install) > > > > what i did was: ./configured; make make install; both > ppp and pptpd > > > > But I am not sure if i need to compile the whole > linux-2.4.16 kernel > > before or after. Can you please be more specific in step 2 and > describe the step by step process. > > > > Thank you very much for your support. > > > > > > > > --------------------------------- > > Do You Yahoo!? > > Yahoo! Tax Center - online filing with TurboTax > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > From jward at cem.msu.edu Mon Apr 8 12:45:15 2002 From: jward at cem.msu.edu (Joe Ward) Date: Mon, 8 Apr 2002 13:45:15 -0400 Subject: [pptp-server] pptpd, mandrake 8.2, and mppe Message-ID: Several people have written to ask me to write up exactly what I did to get pptpd 1.1.2 to work on mandrake 8.2. With the help of Richard Laframboise I was able to get it all working using the following procedures. I don't have the time to write a howto or anything like that so I just wrote out a list of what I did to install pptpd on a fresh install of mandrake 8.2. I hope this helps those who have asked. -Joe Ward NOTE: this is a fresh install of mandrake 8.2, I used more of a server configuration(apache, mysql, php, iptables, etc.) with the addition of gnome. 1) Went to http://www.advancevpn.com/en/download_other.html and downloaded the following: ppp 2.4.1 tarball mppe patch for ppp2.4.1 mppe patch for kernel 2.4.16 (yes it works even though mandrake uses 2.4.18 kernel) pptpd 1.1.2 tarball I put everything in the /usr/src/ directory Untar?d the ppp and pptpd source 2) Used RPM to remove the kernel-source package that was installed. Then I downloaded fresh source rpm from mandrake-linux (obviously for the same kernel, Probably could have been installed from the CD, but I didn?t have them at the time). I found it essential to do this step. Without doing this the build failed miserably. 3) Copied the .config file from /usr/src/linux to a safe location as a backup 4) Issued command (from within the /usr/src/linux/ directory): make mrproper 5) Copied the kernel patch (downloaded earlier) to /usr/src/linux 6) Issued command (again from within /usr/src/linux): patch ?p1 < nameofkernelpatch NOTE: received warning about already having a Makefile. Entered ?Y? and continued. 7) Copied the backup of the .config file (from step 3) back to the /usr/src/linux directory 8) Issued command: make xconfig. Made sure everything looked fine and then saved it. In my case I didn?t change anything. 9) Recompiled the kernel using the command: make dep clean bzImage modules modules_install 10) Took a nap ;) 11) No errors reported during compile, Moved the bzImage to /boot, then made the appropriate adjustments to /etc/lilo.conf. and then issued the command: lilo ?v 12) Now went to ppp source directory in /usr/src 13) Copied the ppp patch (downloaded in step 1) to the ppp directory 14) Issued command (from within the ppp-2.4.1 directory): patch ?p1 < nameofppppatch 15) issued command: ./configure 16) Issued command: make 17) Issued command: make install 18) Probably should have removed the ppp rpm package before running the make install, but I did not do that and did not have any problem with it. 19) Modified the files /etc/pptpd.conf and the config files in /etc/ppp (options.pptpd, and chap-secrets) contents of my config files given below. 20) Rebooted and tested. At first had issued with mppe not loading but it was because of a config file issue. pptpd.conf: (first line is really important!!!!!!!!!) option /etc/ppp/options.pptpd debug localip 192.168.1.20 remoteip 192.168.1.30-40 options.pptpd: (works with win2k sp2 as a pptp client) name * lock mtu 1490 mru 1490 proxyarp auth +chap #+chapms #This one is optional and my be omitted. +chapms-v2 ipcp-accept-local ipcp-accept-remote lcp-echo-failure 3 lcp-echo-interval 5 nodeflate nobsdcomp deflate 0 mppe-128 mppe-40 mppe-stateless for those who want the rules for iptables to allow pptpd to work on a masq/iptables box: I used the rc.firewall-2.4-stronger from: http://www.ecst.csuchico.edu/~dranch/LINUX/ as a basis of my firewall then added the following lines for pptpd to work on the inbound. if anyone sees anythign wrong with the statements let me know asap. I peiced them together various site and experimented to get the blasted thing to work. echo -e " - PPTPD Server" #accpet control port traffic $IPTABLES -A INPUT -i $EXTIF -m state --state NEW,ESTABLISHED,RELATED \ -p tcp -s $UNIVERSE -d $EXTIP --dport 1723 -j ACCEPT #Allow GRE packets $IPTABLES -A INPUT -i $EXTIF -m state --state NEW,ESTABLISHED,RELATED \ -p 47 -s $UNIVERSE -d $EXTIP -j ACCEPT # forward traffic to and from the ppp interface to the private network $IPTABLES -A FORWARD -i $INTIF -o ppp+ -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT $IPTABLES -A FORWARD -i ppp+ -o $INTIF -j ACCEPT #not sure but these next two may be partially duplicated by the next 2, not sure. $IPTABLES -A INPUT -i ppp+ \ -s $INTNET -d $INTNET -j ACCEPT $IPTABLES -A OUTPUT -o ppp+ \ -s $INTNET -d $INTNET -j ACCEPT $IPTABLES -A FORWARD -i ppp+ -o $EXTIF -p 47 \ -s $INTNET -d $INTNET -j ACCEPT $IPTABLES -A FORWARD -o ppp+ -i $EXTIF -p 47 \ -s $INTNET -d $INTNET -j ACCEPT #Rules to allow surfing without these two lines things stop working. $IPTABLES -A FORWARD -i ppp+ -o $EXTIF -s $INTNET \ -j ACCEPT $IPTABLES -A FORWARD -o ppp+ -i $EXTIF -d $INTNET \ -j ACCEPT From aleksey_poptop at yahoo.com Mon Apr 8 17:42:50 2002 From: aleksey_poptop at yahoo.com (aleksey zakharov) Date: Mon, 8 Apr 2002 15:42:50 -0700 (PDT) Subject: [pptp-server] where did my /boot go? :( In-Reply-To: <001701c1defd$ee6197f0$0345a8c0@bbyrd> Message-ID: <20020408224250.84494.qmail@web20202.mail.yahoo.com> after i compiled and patched everything i was actually able to establish a secure connection using 128bit encryption and mschap_v2. but the i noticed that the system files in my /boot directory wore gone, where did they go, i am afraid to reboot my system because i am not sure if it will find the kernel images, please help me, thanks allot Bo Byrd wrote: OK thanks for the info....should I reboot to the new kernel before compiling pppd and pptpd? Thanks a lot! Bo Byrd -----Original Message----- From: David Luyer [mailto:david_luyer at pacific.net.au] Sent: Saturday, April 06, 2002 8:44 AM To: 'Bo Byrd'; pptp-server at lists.schulte.org Subject: RE: [pptp-server] installing pptpd kernel, pppd, pptpd would work. The order isn't likely to be significant, you can compile pptpd at any point, and if there is any dependancy between the kernel and pppd it would be that you should compile the kernel first, but it's not likely to matter. David. -- David Luyer Phone: +61 3 9674 7525 Network Development Manager P A C I F I C Fax: +61 3 9699 8693 Pacific Internet (Australia) I N T E R N E T Mobile: +61 4 1111 BYTE http://www.pacific.net.au/ NASDAQ: PCNTF > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Bo Byrd > Sent: Saturday, 6 April 2002 7:05 AM > To: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] installing pptpd > > > He's wanting to install from source....He's asking what to compile > first, 2nd, then 3rd...the kernel, the new PPP, or PPTPD....I'm > wondering myself.... > > -Bo > > > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Chris Tooley > Sent: Friday, April 05, 2002 3:27 PM > To: aleksey zakharov > Cc: pptp-server at lists.schulte.org > Subject: Re: [pptp-server] installing pptpd > > > Alternatively there is my HOWTO for just this subject (Installing on > Redhat 7.2) at http://www.thetooleys.org/pptp/ > > Even if you didn't use the XFS installers, the kernels that are there > are fine, they just give you the added benefit of _also_ using XFS is > you so choose in the future. > > Chris Tooley > > On Fri, 2002-04-05 at 20:12, aleksey zakharov wrote: > > > > Hello, I have found your document on > > http://www.advancevpn.com/en/download_other.html, thank you > it seems > > very helpful. I am trying to set up a PoPtop server on a > linux redhat > > 7.2 system. I followed the exact instructions as you > mentioned in your > > > article, but I am still little bit confused. this is what i > have done: > > > > 1) Unziped all the tars (clean linux-2.4.16, ppp-2.4.1 and > > pptpd-1.1.2) to /usr/src and appled the patches by using the > > following: > > > > [/usr/src] gzip -d < > linux-2.4.16-openssl-0.9.6b-mppe.patch.gz | patch > > > -p0 [/usr/src] gzip -d < > ppp-2.4.1-openssl-0.9.6-mppe-patch.gz | patch > > > -p0 > > > > > > then in step 2 you mention: > > > > Configure and make everything. Make sure to include > everything that is > > > PPP related from "Network device support". (PPP and PPTPd work with > > plain ./configure; make; make install) > > > > what i did was: ./configured; make make install; both > ppp and pptpd > > > > But I am not sure if i need to compile the whole > linux-2.4.16 kernel > > before or after. Can you please be more specific in step 2 and > describe the step by step process. > > > > Thank you very much for your support. > > > > > > > > --------------------------------- > > Do You Yahoo!? > > Yahoo! Tax Center - online filing with TurboTax > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- --------------------------------- Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax -------------- next part -------------- An HTML attachment was scrubbed... URL: From lonnie at outstep.com Mon Apr 8 21:11:17 2002 From: lonnie at outstep.com (Lonnie Cumberland) Date: Mon, 8 Apr 2002 22:11:17 -0400 (EDT) Subject: [pptp-server] domain validation problem Message-ID: <1563.192.168.1.12.1018318277.squirrel@192.168.1.2> Hello All, I recently had been able to get the pptp running on my linux box along with my Samba server. During my configuration challenges, I was able to create a user "lonnie" that I could connect with from another machine outside the LAN. My problem is I cannot seem to remember what I did for that test user? what I mean is that now I have created an new user "test2" and can "Map a network drive" from my windows box using samba, but cannot authenticate using pptp from outside. I get a message "Verifying user name and password" then: Error 691:Access was denied because username and/or password was invalid on the domain" does anyone have any ideas how to fix this? Thanks, Lonnie -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From nylee at enpia.net Mon Apr 8 21:20:34 2002 From: nylee at enpia.net (=?ks_c_5601-1987?B?wMyzsr+t?=) Date: Tue, 9 Apr 2002 11:20:34 +0900 Subject: [pptp-server] UNSUBSCRIBES Message-ID: <012c01c1df6d$21cb85a0$27fea8c0@enpia.net> -------------- next part -------------- An HTML attachment was scrubbed... URL: From lonnie at outstep.com Mon Apr 8 21:14:24 2002 From: lonnie at outstep.com (Lonnie Cumberland) Date: Mon, 8 Apr 2002 22:14:24 -0400 (EDT) Subject: [pptp-server] Windows DNS setting Message-ID: <1564.192.168.1.12.1018318464.squirrel@192.168.1.2> Hello Again All, I also forgot to write down the change that I had to make to the Windows VPN setup so that the VPN would still be able to use the exist network connection to access the Internet. Without this change, I cannot browse the Internet while the VPN is active for some reason. Things have been so crazy that I have not written down this information, but I will now if some one can answer them for me. Cheers, Lonnie -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From mattgav at tempo.com.au Mon Apr 8 21:33:05 2002 From: mattgav at tempo.com.au (Matt Gavin) Date: Tue, 9 Apr 2002 12:33:05 +1000 Subject: [pptp-server] domain validation problem In-Reply-To: <1563.192.168.1.12.1018318277.squirrel@192.168.1.2> Message-ID: What does the log say? -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie Cumberland Sent: Tuesday, 9 April 2002 12:11 PM To: pptp-server at lists.schulte.org Subject: [pptp-server] domain validation problem Hello All, I recently had been able to get the pptp running on my linux box along with my Samba server. During my configuration challenges, I was able to create a user "lonnie" that I could connect with from another machine outside the LAN. My problem is I cannot seem to remember what I did for that test user? what I mean is that now I have created an new user "test2" and can "Map a network drive" from my windows box using samba, but cannot authenticate using pptp from outside. I get a message "Verifying user name and password" then: Error 691:Access was denied because username and/or password was invalid on the domain" does anyone have any ideas how to fix this? Thanks, Lonnie -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From lonnie at outstep.com Mon Apr 8 21:34:07 2002 From: lonnie at outstep.com (Lonnie Cumberland) Date: Mon, 8 Apr 2002 22:34:07 -0400 (EDT) Subject: [pptp-server] Strange new messages Message-ID: <1607.192.168.1.12.1018319647.squirrel@192.168.1.2> Hello All, Now I am getting a message like: /usr/sbin/pppd: The remote system is required to authenticate itself /usr/sbin/pppd: but I couldn't find any suitable secret (password) for it to use to do so. And I do not know why things are not working now. Looks like I might have to start over again, Lonnie -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From lonnie at outstep.com Mon Apr 8 21:37:27 2002 From: lonnie at outstep.com (Lonnie Cumberland) Date: Mon, 8 Apr 2002 22:37:27 -0400 (EDT) Subject: [pptp-server] domain validation problem In-Reply-To: References: Message-ID: <1610.192.168.1.12.1018319847.squirrel@192.168.1.2> Sorry, but I am not sure where the log file is? It is not in the /var/log/ directory from what I can see. Lonnie > What does the log say? > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie > Cumberland > Sent: Tuesday, 9 April 2002 12:11 PM > To: pptp-server at lists.schulte.org > Subject: [pptp-server] domain validation problem > > > Hello All, > > I recently had been able to get the pptp running on my linux box > along with my Samba server. > > During my configuration challenges, I was able to create a > user "lonnie" that I could connect with from another machine > outside the LAN. > > My problem is I cannot seem to remember what I did for that test > user? > > what I mean is that now I have created an new user "test2" and > can "Map a network drive" from my windows box using samba, but > cannot authenticate using pptp from outside. > > I get a message "Verifying user name and password" then: > > Error 691:Access was denied because username and/or password was > invalid on the domain" > > does anyone have any ideas how to fix this? > > Thanks, > Lonnie > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From mattgav at tempo.com.au Mon Apr 8 22:01:53 2002 From: mattgav at tempo.com.au (Matt Gavin) Date: Tue, 9 Apr 2002 13:01:53 +1000 Subject: [pptp-server] domain validation problem In-Reply-To: <1610.192.168.1.12.1018319847.squirrel@192.168.1.2> Message-ID: tail -f /var/log/messages when connecting or equiv depending on your os. -----Original Message----- From: Lonnie Cumberland [mailto:lonnie at outstep.com] Sent: Tuesday, 9 April 2002 12:37 PM To: mattgav at tempo.com.au Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] domain validation problem Sorry, but I am not sure where the log file is? It is not in the /var/log/ directory from what I can see. Lonnie > What does the log say? > > -----Original Message----- > From: pptp-server-admin at lists.schulte.org > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie > Cumberland > Sent: Tuesday, 9 April 2002 12:11 PM > To: pptp-server at lists.schulte.org > Subject: [pptp-server] domain validation problem > > > Hello All, > > I recently had been able to get the pptp running on my linux box > along with my Samba server. > > During my configuration challenges, I was able to create a > user "lonnie" that I could connect with from another machine > outside the LAN. > > My problem is I cannot seem to remember what I did for that test > user? > > what I mean is that now I have created an new user "test2" and > can "Map a network drive" from my windows box using samba, but > cannot authenticate using pptp from outside. > > I get a message "Verifying user name and password" then: > > Error 691:Access was denied because username and/or password was > invalid on the domain" > > does anyone have any ideas how to fix this? > > Thanks, > Lonnie > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From lonnie at outstep.com Mon Apr 8 21:52:59 2002 From: lonnie at outstep.com (Lonnie Cumberland) Date: Mon, 8 Apr 2002 22:52:59 -0400 (EDT) Subject: [pptp-server] domain validation problem In-Reply-To: References: Message-ID: <1653.192.168.1.12.1018320779.squirrel@192.168.1.2> Stupid me!!!! I forgot to add the users to the "chap-secrets" file!!! No I just need to remember the setting so that the user can browse the Internet with their existing connection while the VPN is also connected. Any ideas? thanks for the help All, Lonnie > tail -f /var/log/messages when connecting or equiv depending on > your os. > > -----Original Message----- > From: Lonnie Cumberland [mailto:lonnie at outstep.com] > Sent: Tuesday, 9 April 2002 12:37 PM > To: mattgav at tempo.com.au > Cc: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] domain validation problem > > > Sorry, but I am not sure where the log file is? > > It is not in the /var/log/ directory from what I can see. > > Lonnie > >> What does the log say? >> >> -----Original Message----- >> From: pptp-server-admin at lists.schulte.org >> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie >> Cumberland >> Sent: Tuesday, 9 April 2002 12:11 PM >> To: pptp-server at lists.schulte.org >> Subject: [pptp-server] domain validation problem >> >> >> Hello All, >> >> I recently had been able to get the pptp running on my linux box >> along with my Samba server. >> >> During my configuration challenges, I was able to create a >> user "lonnie" that I could connect with from another machine >> outside the LAN. >> >> My problem is I cannot seem to remember what I did for that test >> user? >> >> what I mean is that now I have created an new user "test2" and >> can "Map a network drive" from my windows box using samba, but >> cannot authenticate using pptp from outside. >> >> I get a message "Verifying user name and password" then: >> >> Error 691:Access was denied because username and/or password was >> invalid on the domain" >> >> does anyone have any ideas how to fix this? >> >> Thanks, >> Lonnie >> >> >> -- >> Lonnie Cumberland >> OutStep Technologies Incorporated >> EMAIL: Lonnie at OutStep.com >> : Lonnie_Cumberland at yahoo.com >> >> The Basis Express Virtual Office >> & >> Data Backup and Recovery Services >> >> URL: http://www.basis-express.com >> >> "The Virtual Office without boundaries!!!" >> >> >> >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From mattgav at tempo.com.au Mon Apr 8 22:11:40 2002 From: mattgav at tempo.com.au (Matt Gavin) Date: Tue, 9 Apr 2002 13:11:40 +1000 Subject: [pptp-server] domain validation problem In-Reply-To: <1653.192.168.1.12.1018320779.squirrel@192.168.1.2> Message-ID: My Windows 2000 box at home does this automatically. It has nothing to do with PoPToP... It is just a matter of setting the Proxy to be that of the ISP rather than your LAN/VPN Proxy. When connected to the VPN, just trace a Web address and watch where it goes? -----Original Message----- From: Lonnie Cumberland [mailto:lonnie at outstep.com] Sent: Tuesday, 9 April 2002 12:53 PM To: mattgav at tempo.com.au Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] domain validation problem Stupid me!!!! I forgot to add the users to the "chap-secrets" file!!! No I just need to remember the setting so that the user can browse the Internet with their existing connection while the VPN is also connected. Any ideas? thanks for the help All, Lonnie > tail -f /var/log/messages when connecting or equiv depending on > your os. > > -----Original Message----- > From: Lonnie Cumberland [mailto:lonnie at outstep.com] > Sent: Tuesday, 9 April 2002 12:37 PM > To: mattgav at tempo.com.au > Cc: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] domain validation problem > > > Sorry, but I am not sure where the log file is? > > It is not in the /var/log/ directory from what I can see. > > Lonnie > >> What does the log say? >> >> -----Original Message----- >> From: pptp-server-admin at lists.schulte.org >> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie >> Cumberland >> Sent: Tuesday, 9 April 2002 12:11 PM >> To: pptp-server at lists.schulte.org >> Subject: [pptp-server] domain validation problem >> >> >> Hello All, >> >> I recently had been able to get the pptp running on my linux box >> along with my Samba server. >> >> During my configuration challenges, I was able to create a >> user "lonnie" that I could connect with from another machine >> outside the LAN. >> >> My problem is I cannot seem to remember what I did for that test >> user? >> >> what I mean is that now I have created an new user "test2" and >> can "Map a network drive" from my windows box using samba, but >> cannot authenticate using pptp from outside. >> >> I get a message "Verifying user name and password" then: >> >> Error 691:Access was denied because username and/or password was >> invalid on the domain" >> >> does anyone have any ideas how to fix this? >> >> Thanks, >> Lonnie >> >> >> -- >> Lonnie Cumberland >> OutStep Technologies Incorporated >> EMAIL: Lonnie at OutStep.com >> : Lonnie_Cumberland at yahoo.com >> >> The Basis Express Virtual Office >> & >> Data Backup and Recovery Services >> >> URL: http://www.basis-express.com >> >> "The Virtual Office without boundaries!!!" >> >> >> >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" From mbailey2 at netspace.net.au Mon Apr 8 21:09:42 2002 From: mbailey2 at netspace.net.au (Michael Bailey) Date: Tue, 09 Apr 2002 02:09:42 +0000 Subject: [pptp-server] Encryption without password Message-ID: <3CB24D66.50805@netspace.net.au> Hi, Is it possible for MS clients to initiate an encrypted PPTP tunnel to a server without having to supply a password? I want to use it to secure wireless connections, but authentication is not required as I will auth them *after* they have a PPTP connection to the server. thanks, Mike From jeremy at thepulsegroup.net Mon Apr 8 22:36:23 2002 From: jeremy at thepulsegroup.net (Jeremy Nelson) Date: Tue, 9 Apr 2002 13:36:23 +1000 Subject: [pptp-server] domain validation problem Message-ID: <21CFAEE4AD228C41B78FDEBA4C82B77421E7@luci.thepulsegroup.net> Lonnie This setting is in the networking properties of your vpn client, under windows 2000 select tcp/ip properties and then choose advanced. Either select or unselect use default gateway on remote network. If you select this, a route is added to your w2k box routing all traffic down the vpn connection. Which is not what you want. If you unselect this, only traffic destin for the network you have your vpn connected to will travel down the tunnel... this is what I think you are after. I have only one problem with this setup and that is that dns queries are sent to my isp's dns servers and not my office network dns server. This resolves domain names to external real world IPs and not our internal range of IPs and can cause problems. My resolution to this was to use IP addresses not dns names of the office machines when I am on the vpn. Hope this was of some help. Jeremy -----Original Message----- From: Lonnie Cumberland [mailto:lonnie at outstep.com] Sent: Tuesday, 9 April 2002 12:53 PM To: mattgav at tempo.com.au Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] domain validation problem Stupid me!!!! I forgot to add the users to the "chap-secrets" file!!! No I just need to remember the setting so that the user can browse the Internet with their existing connection while the VPN is also connected. Any ideas? thanks for the help All, Lonnie > tail -f /var/log/messages when connecting or equiv depending on > your os. > > -----Original Message----- > From: Lonnie Cumberland [mailto:lonnie at outstep.com] > Sent: Tuesday, 9 April 2002 12:37 PM > To: mattgav at tempo.com.au > Cc: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] domain validation problem > > > Sorry, but I am not sure where the log file is? > > It is not in the /var/log/ directory from what I can see. > > Lonnie > >> What does the log say? >> >> -----Original Message----- >> From: pptp-server-admin at lists.schulte.org >> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie >> Cumberland >> Sent: Tuesday, 9 April 2002 12:11 PM >> To: pptp-server at lists.schulte.org >> Subject: [pptp-server] domain validation problem >> >> >> Hello All, >> >> I recently had been able to get the pptp running on my linux box >> along with my Samba server. >> >> During my configuration challenges, I was able to create a >> user "lonnie" that I could connect with from another machine >> outside the LAN. >> >> My problem is I cannot seem to remember what I did for that test >> user? >> >> what I mean is that now I have created an new user "test2" and >> can "Map a network drive" from my windows box using samba, but >> cannot authenticate using pptp from outside. >> >> I get a message "Verifying user name and password" then: >> >> Error 691:Access was denied because username and/or password was >> invalid on the domain" >> >> does anyone have any ideas how to fix this? >> >> Thanks, >> Lonnie >> >> >> -- >> Lonnie Cumberland >> OutStep Technologies Incorporated >> EMAIL: Lonnie at OutStep.com >> : Lonnie_Cumberland at yahoo.com >> >> The Basis Express Virtual Office >> & >> Data Backup and Recovery Services >> >> URL: http://www.basis-express.com >> >> "The Virtual Office without boundaries!!!" >> >> >> >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From mattgav at tempo.com.au Mon Apr 8 23:21:58 2002 From: mattgav at tempo.com.au (Matt Gavin) Date: Tue, 9 Apr 2002 14:21:58 +1000 Subject: [pptp-server] domain validation problem In-Reply-To: <21CFAEE4AD228C41B78FDEBA4C82B77421E7@luci.thepulsegroup.net> Message-ID: Or you could use LMHOSTS. -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Jeremy Nelson Sent: Tuesday, 9 April 2002 1:36 PM To: Lonnie Cumberland Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] domain validation problem Lonnie This setting is in the networking properties of your vpn client, under windows 2000 select tcp/ip properties and then choose advanced. Either select or unselect use default gateway on remote network. If you select this, a route is added to your w2k box routing all traffic down the vpn connection. Which is not what you want. If you unselect this, only traffic destin for the network you have your vpn connected to will travel down the tunnel... this is what I think you are after. I have only one problem with this setup and that is that dns queries are sent to my isp's dns servers and not my office network dns server. This resolves domain names to external real world IPs and not our internal range of IPs and can cause problems. My resolution to this was to use IP addresses not dns names of the office machines when I am on the vpn. Hope this was of some help. Jeremy -----Original Message----- From: Lonnie Cumberland [mailto:lonnie at outstep.com] Sent: Tuesday, 9 April 2002 12:53 PM To: mattgav at tempo.com.au Cc: pptp-server at lists.schulte.org Subject: RE: [pptp-server] domain validation problem Stupid me!!!! I forgot to add the users to the "chap-secrets" file!!! No I just need to remember the setting so that the user can browse the Internet with their existing connection while the VPN is also connected. Any ideas? thanks for the help All, Lonnie > tail -f /var/log/messages when connecting or equiv depending on > your os. > > -----Original Message----- > From: Lonnie Cumberland [mailto:lonnie at outstep.com] > Sent: Tuesday, 9 April 2002 12:37 PM > To: mattgav at tempo.com.au > Cc: pptp-server at lists.schulte.org > Subject: RE: [pptp-server] domain validation problem > > > Sorry, but I am not sure where the log file is? > > It is not in the /var/log/ directory from what I can see. > > Lonnie > >> What does the log say? >> >> -----Original Message----- >> From: pptp-server-admin at lists.schulte.org >> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Lonnie >> Cumberland >> Sent: Tuesday, 9 April 2002 12:11 PM >> To: pptp-server at lists.schulte.org >> Subject: [pptp-server] domain validation problem >> >> >> Hello All, >> >> I recently had been able to get the pptp running on my linux box >> along with my Samba server. >> >> During my configuration challenges, I was able to create a >> user "lonnie" that I could connect with from another machine >> outside the LAN. >> >> My problem is I cannot seem to remember what I did for that test >> user? >> >> what I mean is that now I have created an new user "test2" and >> can "Map a network drive" from my windows box using samba, but >> cannot authenticate using pptp from outside. >> >> I get a message "Verifying user name and password" then: >> >> Error 691:Access was denied because username and/or password was >> invalid on the domain" >> >> does anyone have any ideas how to fix this? >> >> Thanks, >> Lonnie >> >> >> -- >> Lonnie Cumberland >> OutStep Technologies Incorporated >> EMAIL: Lonnie at OutStep.com >> : Lonnie_Cumberland at yahoo.com >> >> The Basis Express Virtual Office >> & >> Data Backup and Recovery Services >> >> URL: http://www.basis-express.com >> >> "The Virtual Office without boundaries!!!" >> >> >> >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- >> >> _______________________________________________ >> pptp-server maillist - pptp-server at lists.schulte.org >> http://lists.schulte.org/mailman/listinfo/pptp-server >> --- To unsubscribe, go to the url just above this line. -- > > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" -- Lonnie Cumberland OutStep Technologies Incorporated EMAIL: Lonnie at OutStep.com : Lonnie_Cumberland at yahoo.com The Basis Express Virtual Office & Data Backup and Recovery Services URL: http://www.basis-express.com "The Virtual Office without boundaries!!!" _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From mbailey at netspace.net.au Tue Apr 9 07:26:00 2002 From: mbailey at netspace.net.au (Michael Bailey) Date: Tue, 09 Apr 2002 12:26:00 +0000 Subject: [pptp-server] Encryption without password References: <3CB24D66.50805@netspace.net.au> Message-ID: <3CB2DDD8.7020403@netspace.net.au> After asking this it occurred to me that unless MS were to have implemented PKE as a fallback(!) then it would be impossible to establish an encrypted connection without a shared key. - Mike 'There are no stupid questions, just stupid people' - Mr Garrison, Southpark Michael Bailey wrote: > Hi, > > Is it possible for MS clients to initiate an encrypted PPTP tunnel to > a server without having to > supply a password? I want to use it to secure wireless connections, > but authentication is > not required as I will auth them *after* they have a PPTP connection > to the server. > > thanks, > > Mike > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From lists at earthling.2y.net Tue Apr 9 10:26:13 2002 From: lists at earthling.2y.net (lists at earthling.2y.net) Date: Tue, 9 Apr 2002 11:26:13 -0400 (EDT) Subject: [pptp-server] Encryption without password In-Reply-To: <3CB24D66.50805@netspace.net.au> Message-ID: How will you auth them after they have access to the server? You can do it, hell, there was a bug that left it open abotu a year ago. On Tue, 9 Apr 2002, Michael Bailey wrote: > Hi, > > Is it possible for MS clients to initiate an encrypted PPTP tunnel to a > server without having to > supply a password? I want to use it to secure wireless connections, but > authentication is > not required as I will auth them *after* they have a PPTP connection to > the server. > > thanks, > > Mike > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > -- Justin Kreger, MCP MCSE CCNA jkreger at earthling.2y.net jwkreger at uncg.edu justin at wss.net From jurr at tref.nl Tue Apr 9 12:21:33 2002 From: jurr at tref.nl (Jurrie Overgoor) Date: Tue, 9 Apr 2002 19:21:33 +0200 Subject: [pptp-server] Multiple users on the same secret Message-ID: <005601c1dfeb$00f2b820$9b9479c3@p266> Hello, Is it possible to have multiple users vpn at the same time to 1 server, using the same chap secret? Greetz -- Jurrie jurr at tref.nl From fabio at ipway.com.br Tue Apr 9 13:09:41 2002 From: fabio at ipway.com.br (Fabio Oliveira) Date: Tue, 9 Apr 2002 15:09:41 -0300 Subject: RES: [pptp-server] Multiple users on the same secret In-Reply-To: <005601c1dfeb$00f2b820$9b9479c3@p266> Message-ID: Jurrie, I believe there is no problem. regards, Fabio Oliveira IPWay - Internet Services http://www.ipway.com.br phone: 13-97024714 (o- (o- (o- (o- (o- //\ //\ //\ //\ //\ V_/_ V_/_ V_/_ V_/_ V_/_ Live with freedom, choice Linux -----Mensagem original----- De: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]Em nome de Jurrie Overgoor Enviada em: ter?a-feira, 9 de abril de 2002 14:22 Para: pptp-server at lists.schulte.org Assunto: [pptp-server] Multiple users on the same secret Hello, Is it possible to have multiple users vpn at the same time to 1 server, using the same chap secret? Greetz -- Jurrie jurr at tref.nl _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From jmarrow at tbegroup.com Tue Apr 9 16:01:03 2002 From: jmarrow at tbegroup.com (Jason Marrow) Date: Tue, 9 Apr 2002 17:01:03 -0400 Subject: [pptp-server] Dont Destroy Yourself Trying to Install PPTPD Go Here Message-ID: <0A6F3B885AF2254287A17540AAA229DA94ADA9@s0nt4.tbegrp.local> http://www.jara.cc Let me know how it turns out ! From durao at pcsolution.com.br Tue Apr 9 17:50:23 2002 From: durao at pcsolution.com.br (Ricardo Durao) Date: Tue, 9 Apr 2002 19:50:23 -0300 Subject: [pptp-server] could not determine local IP address Message-ID: <001b01c1e019$137196a0$9ffea8c0@pcsolution.com.br> Hello List, Thanks for the Help with PPP re-compile So I install the PoPtP, but now I have other problem. I find the system can authenicate but the connection = is lost after that. I got the log of could not determine local IP address but I have set it in pptpd.conf. I've got the following log: Can anyone tell me what does it mean? Thanks, Ricardo Dur?o ______________________________________ Scanned and protected by Inflex http://pldaniels.com/inflex From gkade at bigbrother.net Tue Apr 9 19:33:25 2002 From: gkade at bigbrother.net (Gregory Ade) Date: 09 Apr 2002 17:33:25 -0700 Subject: [pptp-server] Multiple users on the same secret In-Reply-To: <005601c1dfeb$00f2b820$9b9479c3@p266> References: <005601c1dfeb$00f2b820$9b9479c3@p266> Message-ID: <1018398806.8593.0.camel@pslgregory> On Tue, 2002-04-09 at 10:21, Jurrie Overgoor wrote: > Hello, > > Is it possible to have multiple users vpn at the same time to 1 server, > using the same chap secret? This will work, so long as you do not statically define one IP address per login name. -- Gregory K. Ade http://bigbrother.net/~gkade OpenPGP Key ID: EAF4844B keyserver: pgpkeys.mit.edu -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part URL: From r.devroede at linvision.com Wed Apr 10 04:08:59 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 10 Apr 2002 11:08:59 +0200 Subject: [pptp-server] Windows DNS setting In-Reply-To: <1564.192.168.1.12.1018318464.squirrel@192.168.1.2> References: <1564.192.168.1.12.1018318464.squirrel@192.168.1.2> Message-ID: <1018429740.1824.5.camel@richard> This is a client setting. Uncheck the option "Use default gateway of ser" or something like that. Regards, Richard On Tue, 2002-04-09 at 04:14, Lonnie Cumberland wrote: > Hello Again All, > > I also forgot to write down the change that I had to make to the > Windows VPN setup so that the VPN would still be able to use the > exist network connection to access the Internet. Without this change, > I cannot browse the Internet while the VPN is active for some reason. > > Things have been so crazy that I have not written down this > information, but I will now if some one can answer them for me. > > Cheers, > Lonnie > > -- > Lonnie Cumberland > OutStep Technologies Incorporated > EMAIL: Lonnie at OutStep.com > : Lonnie_Cumberland at yahoo.com > > The Basis Express Virtual Office > & > Data Backup and Recovery Services > > URL: http://www.basis-express.com > > "The Virtual Office without boundaries!!!" > > > > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From cfast at alliedbuilding.com Wed Apr 10 10:28:04 2002 From: cfast at alliedbuilding.com (Clint Fast) Date: Wed, 10 Apr 2002 11:28:04 -0400 Subject: [pptp-server] Encryption without password References: <3CB24D66.50805@netspace.net.au> Message-ID: <3CB45A04.E25B660C@alliedbuilding.com> What type of wireless devices are you referring to???? What software would you be using to create a PPTP tunnel to your server?? Thanks, --Clint. Michael Bailey wrote: > > Hi, > > Is it possible for MS clients to initiate an encrypted PPTP tunnel to a > server without having to > supply a password? I want to use it to secure wireless connections, but > authentication is > not required as I will auth them *after* they have a PPTP connection to > the server. > > thanks, > > Mike > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From aleksey_poptop at yahoo.com Wed Apr 10 12:59:26 2002 From: aleksey_poptop at yahoo.com (aleksey zakharov) Date: Wed, 10 Apr 2002 10:59:26 -0700 (PDT) Subject: [pptp-server] Dont Destroy Yourself Trying to Install PPTPD Go Here In-Reply-To: <0A6F3B885AF2254287A17540AAA229DA94ADA9@s0nt4.tbegrp.local> Message-ID: <20020410175926.95212.qmail@web20208.mail.yahoo.com> Hello all, Just a little reminder for all of you who are having problems patching the kernel. Make sure that the downloaded patches and sources have correct user/group permissions. they should be owned by the root, and belong to a root user group. then when you patch the kernel you will successfully copy the necessary files into linux directory. I point this out because I had allot of problems with this, because when i downloaded patches and kernel sources it belonged to a wrong user/group thus wasn't able to patch sucessfuly. Oh well we learn on our mistakes, it was defenetly a good experience/practice for me to compile the kernels. thanks all of you for your support... Jason Marrow wrote: http://www.jara.cc Let me know how it turns out ! _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- --------------------------------- Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax -------------- next part -------------- An HTML attachment was scrubbed... URL: From lists at colliniconsulting.it Thu Apr 11 00:07:18 2002 From: lists at colliniconsulting.it (Francesco) Date: Thu, 11 Apr 2002 07:07:18 +0200 Subject: [pptp-server] 10Mbit VPN line Message-ID: Hello, i am using a vpn pptp connection between two linux gateways to join a remote branch office to the central quarter. The connection is based over two ALDS lines. The enterprise wants to improve this VPN and, as in that city there is the optical fibre internet connections available, they are thinking buying two 10Mb optical fibre lines. Two problem: can poptop support this kind of fast connections or i will have a reduction of the bandwith available? To crypt/decrypt the data in case of heavy traffic on the vpn, do you think the two pentium 166/64Mb RAM i have are enough or i must have to furnish two better machines? Thank you, hoping hear from you soon. Bye, Francesco Collini From byrdr at corp.earthlink.net Thu Apr 11 12:02:33 2002 From: byrdr at corp.earthlink.net (Bo Byrd) Date: Thu, 11 Apr 2002 13:02:33 -0400 Subject: [pptp-server] Require chapms-v2 In-Reply-To: Message-ID: <006701c1e17a$af189c90$0345a8c0@netops.mindspring.net> My rh7.1 2.4.2 poptop server refuses pap and chapms, but accepts chap and chapms-v2 I want it to refuse everything but champs-v2 with mppe-128-stateless... I used the instructions at http://www.shorewall.net/PPTP.htm and applied 4 patches: ppp-2.4.1-openssl-0.9.6-mppe.patch to ppp-2.4.1 ppp-2.4.1-MSCHAPv2-fix.patch to ppp-2.4.1 require-mppe.diff to ppp-2.4.1 linux-2.4.4-openssl-0.9.6b-mppe.patch to the kernel I cant figure out how to get it to refuse chap...heres my config: debug lock mtu 1490 mru 1490 ms-dns 207.69.188.186 ms-dns 207.69.188.188 proxyarp auth -pap -chap -chapms refuse-pap refuse-chap refuse-chapms require-chapms-v2 +chapms-v2 lcp-echo-failure 30 lcp-echo-interval 5 deflate 0 mppe-128 mppe-stateless require-mppe require-mppe-stateless Is this normal? Thanks, Bo I used the instructions at http://www.shorewall.net/PPTP.htm and applied 4 patches: ppp-2.4.1-openssl-0.9.6-mppe.patch to ppp-2.4.1 ppp-2.4.1-MSCHAPv2-fix.patch to ppp-2.4.1 require-mppe.diff to ppp-2.4.1 linux-2.4.4-openssl-0.9.6b-mppe.patch to the kernel -----Original Message----- From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Francesco Sent: Thursday, April 11, 2002 1:07 AM To: Pptp-Server Subject: [pptp-server] 10Mbit VPN line Hello, i am using a vpn pptp connection between two linux gateways to join a remote branch office to the central quarter. The connection is based over two ALDS lines. The enterprise wants to improve this VPN and, as in that city there is the optical fibre internet connections available, they are thinking buying two 10Mb optical fibre lines. Two problem: can poptop support this kind of fast connections or i will have a reduction of the bandwith available? To crypt/decrypt the data in case of heavy traffic on the vpn, do you think the two pentium 166/64Mb RAM i have are enough or i must have to furnish two better machines? Thank you, hoping hear from you soon. Bye, Francesco Collini _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From lists at colliniconsulting.it Thu Apr 11 14:20:00 2002 From: lists at colliniconsulting.it (Francesco) Date: Thu, 11 Apr 2002 21:20:00 +0200 Subject: [pptp-server] strange problem! Message-ID: Hello, i am very worried in this spring evening! My VPN between a two linux poptop server and pptp client has been working fine since 10 days until today, at 12.15 when it fail. I rebooted the two server and tried to connect from my windows pptp client connection: everything on the server side works find. I cannot say the same from the client side, where pptp client still does not connect! In the server i find this log: Apr 11 21:13:29 hub pptpd[1408]: GRE: read(fd=4,buffer=804d8a0,len=8196) from PTY failed: status = -1 error = Errore di input/ output Apr 11 21:13:29 hub pptpd[1408]: CTRL: PTY read or GRE write failed (pty,gre)=(4,5) Apr 11 21:13:29 hub pptpd[1408]: CTRL: Client xxx.xxx.xxx.xxx control connection finished Apr 11 21:13:33 hub modprobe: modprobe: Can't locate module block-major-3 but also sometimes ago i found this message. Could you help me please? I am sure i won't sleep well tonight! Bye and thank you very much everything! Francesco From jeremy at thepulsegroup.net Thu Apr 11 20:48:22 2002 From: jeremy at thepulsegroup.net (Jeremy Nelson) Date: Fri, 12 Apr 2002 11:48:22 +1000 Subject: [pptp-server] Incorrect IP listed in process status Message-ID: <21CFAEE4AD228C41B78FDEBA4C82B77421F1@luci.thepulsegroup.net> Hi All I have an issue that isnt breaking pptpd but is just annoying. I have assigned one user a static IP in my chap-secrets file. When he logs in everything is ok and he is assigned that IP but when I check the process status it is saying that a different ip is assigned. Any ideas ?? Thanks Jeremy Nelson The Pulse Group Sydney, Australia From lists at colliniconsulting.it Fri Apr 12 06:41:34 2002 From: lists at colliniconsulting.it (Lists) Date: Fri, 12 Apr 2002 11:41:34 GMT Subject: [pptp-server] Can't locate module block-major-3 Message-ID: <20020412114134.20995.qmail@mail.itcserra.org> Hi, in a pptp vpn connection between a poptop server and a pptp linux router client i often find out in my logs this messages, repeated many times: Can't locate module block-major-3 Here i post my conf.modules: alias scsi_hostadapter aic7xxx alias eth0 eepro100 alias parport_lowlevel parport_pc alias char-major-108 off alias ppp-compress-18 ppp_mppe alias ppp-compress-21 bsd_comp alias ppp-compress-24 ppp_deflate alias ppp-compress-26 ppp_deflate Furthermore, i would like to ask you why sometimes the vpn connection fails and, this is THE BIG problem, on the server side the ppp0 interface goes down BUT by typing ps -ax i can see the pppd connection process still active! If i don't kill the pppd connection the client cannot reconnect. Thank you in advance for your kind interest, best regards! Francesco From r.devroede at linvision.com Fri Apr 12 04:03:24 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 12 Apr 2002 11:03:24 +0200 Subject: [pptp-server] strange problem! In-Reply-To: References: Message-ID: <1018602204.2472.10.camel@richard> module block-major-3 is ide-probe and therefore has nothing to do with your problem. You have to look somewhere else. *Check your firewall for accepting both port 1723 and protocol 47. *Check your configfiles: /etc/ppp/options.pptp /etc/pptpd.conf /etc/modules.conf *Have you applied all patches? 1 kernel patch (mppe) 2 ppp patches (mppe & chapms-v2) These pointers and the FAQs should help you to solve it. Good luck! Richard On Thu, 2002-04-11 at 21:20, Francesco wrote: > Hello, > > i am very worried in this spring evening! > > My VPN between a two linux poptop server and pptp client has been working > fine since 10 days until today, at 12.15 when it fail. > > I rebooted the two server and tried to connect from my windows pptp client > connection: everything on the server side works find. > > I cannot say the same from the client side, where pptp client still does not > connect! > > In the server i find this log: > > Apr 11 21:13:29 hub pptpd[1408]: GRE: read(fd=4,buffer=804d8a0,len=8196) > from PTY failed: status = -1 error = Errore di input/ > output > Apr 11 21:13:29 hub pptpd[1408]: CTRL: PTY read or GRE write failed > (pty,gre)=(4,5) > Apr 11 21:13:29 hub pptpd[1408]: CTRL: Client xxx.xxx.xxx.xxx control > connection finished > Apr 11 21:13:33 hub modprobe: modprobe: Can't locate module block-major-3 > > but also sometimes ago i found this message. > > Could you help me please? > > I am sure i won't sleep well tonight! > > Bye and thank you very much everything! > > Francesco > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From kolya at peredelkino.ru Fri Apr 12 10:18:09 2002 From: kolya at peredelkino.ru (Martynov Nikolay) Date: Fri, 12 Apr 2002 19:18:09 +0400 Subject: [pptp-server] pptp died :( Message-ID: <003a01c1e235$417debc0$0d40a8c0@home> Hello. Last night I had strange problem... pptpd stopted to make connection with clients... I can't see exac time, but there is something strange in logs: Apr 11 23:23:33 xxx.host pppd[22310]: MPPE 128 bit, stateless compression enabled Apr 11 19:25:55 xxx.host /usr/local/named/sbin/named[667]: socket.c:1660: unexpected error: Apr 11 19:25:55 xxx.host /usr/local/named/sbin/named[667]: internal_accept: accept() failed: Connection reset by peer Apr 11 23:25:58 xxx.host sshd[640]: error: accept: Connection reset by peer Apr 11 23:26:40 xxx.host pptpd[695]: MGR: accept() failed Apr 11 23:39:00 xxx.host pppd[22129]: LCP terminated by peer As we can see, everething was fine... Then three different proccesses couldn't make accept() call... But named and sshd sirvived and pptpd died (I think that it died exactly here, because there was no connection after this time... but I'm not completly sure). Some info: Uptime of the system is about 12 days. pptpd 1.0.1 -- I've used it for about a half of a year and did't have any problems. Kernel -- 2.2.20, updated about 12 days ago. System -- RH 6.0, but most of the software upgraged. CPU -- PIII-500, Mem -- 320. So I think that may be this is not pptpd problem, but it's new kernel problem... Or may be this computer is being attacked? Any ideas? Thanks. Bye. From r.devroede at linvision.com Fri Apr 12 10:31:46 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 12 Apr 2002 17:31:46 +0200 Subject: [pptp-server] pptp died :( In-Reply-To: <003a01c1e235$417debc0$0d40a8c0@home> References: <003a01c1e235$417debc0$0d40a8c0@home> Message-ID: <1018625506.2531.31.camel@richard> Get RedHat 7.2. Get the nice RPMs from http://planetmirror.com/ppp-mppe/. Tweak the configfiles and your all set. Regards, Richard On Fri, 2002-04-12 at 17:18, Martynov Nikolay wrote: > Hello. > > Last night I had strange problem... > pptpd stopted to make connection with clients... I can't see exac time, > but there is something strange in logs: > > Apr 11 23:23:33 xxx.host pppd[22310]: MPPE 128 bit, stateless compression > enabled > Apr 11 19:25:55 xxx.host /usr/local/named/sbin/named[667]: socket.c:1660: > unexpected error: > Apr 11 19:25:55 xxx.host /usr/local/named/sbin/named[667]: internal_accept: > accept() failed: Connection reset by peer > Apr 11 23:25:58 xxx.host sshd[640]: error: accept: Connection reset by peer > Apr 11 23:26:40 xxx.host pptpd[695]: MGR: accept() failed > Apr 11 23:39:00 xxx.host pppd[22129]: LCP terminated by peer > > As we can see, everething was fine... Then three different proccesses > couldn't make accept() call... But named and sshd sirvived and pptpd died (I > think that it died exactly here, because there was no connection after this > time... but I'm not completly sure). > Some info: > Uptime of the system is about 12 days. > pptpd 1.0.1 -- I've used it for about a half of a year and did't have any > problems. > Kernel -- 2.2.20, updated about 12 days ago. > System -- RH 6.0, but most of the software upgraged. > CPU -- PIII-500, Mem -- 320. > > So I think that may be this is not pptpd problem, but it's new kernel > problem... Or may be this computer is being attacked? Any ideas? > > Thanks. Bye. > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From christopher at schulte.org Fri Apr 12 12:49:59 2002 From: christopher at schulte.org (Christopher Schulte) Date: Fri, 12 Apr 2002 12:49:59 -0500 Subject: [pptp-server] server crash - subscriber changes lost for ~5 days Message-ID: <5.1.0.14.0.20020412124200.04ccc910@pop3s.schulte.org> I had a server lockup/crash today which corrupted the pptp-server list config python database. The fallback database was also hosed over. I restored from the most recent backup, which was about 5 days ago. Thus, all user changes (subscriptions, un-subscriptions, preferences, etc) after Apr 7 were lost. Several messages were delivered twice, also. Sorry for the inconvenience. --Chris From igor.maciel at mailbr.com.br Fri Apr 12 20:27:35 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Fri, 12 Apr 2002 22:27:35 -0300 Subject: [pptp-server] Maximum number of users References: <001b01c1e019$137196a0$9ffea8c0@pcsolution.com.br> Message-ID: <001c01c1e28a$6857e700$3b70b8c8@igor> Hi all, I need your help. I have a server with the following configuration: Dual Pentium III 500Mhz, 512MB of RAM, 9GB of SCSI Hard-drive. RedHat 6.2 / 2.2.20 / ppp 2.4.1 / pptpd 1.0.1 And I'm in serious troubles about the maximum number of connections. I need to make this server accepts more than 100 connections (from ppp0 to ppp99). I tought that just changing the MAXUSERCONNECTIONS (something like that) into defaults.h (pptpd source code) and recompiling it would solve my problem. But right now I have 100 users connected into my server, and it's impossible to connect. I get lot's of this error into /var/log/messages: Apr 13 00:29:35 vpn02 kernel: ppp_alloc failed Apr 13 00:29:36 vpn02 kernel: ppp: dev_alloc_name failed (-23) Apr 13 00:29:36 vpn02 kernel: ppp_alloc failed I saw into the linux kernel that ppp_alloc is a function of the kernel (drivers/net/ppp.c). So I suppose that I need to change the kernel source code to increase the number of connections. Please help me to increase this limit. I need this hurry. Thanks a lot for your help. Regards, Igor -- igor.maciel at mailbr.com.br From tarun at telexcell.com Sat Apr 13 11:02:36 2002 From: tarun at telexcell.com (Tarun Lalwani) Date: Sat,13 Apr 2002 11:02:36 PM Subject: [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Message-ID: <200204130532.g3D5WFh15836@host24.hostingcheck.com> charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Check this screen saver Happy Valentines day See u Tarun Lalwani ----- Original Message ----- From: "Screen Saver" To: Sent: Friday, February 11, 2002 8:38 PM Subject: Melt the Heart of your Valentine with this beautiful Screen saver <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> This e-mail is never sent unsolicited. If you need to unsubscribe, follow the instructions at the bottom of the message. *********************************************************** Melt the Heart of your loved ones with these beautiful Screen saver from www.screensaverin.com * To remove yourself from this mailing list, point your browser to: http://screensaverin.com/remove?freescreensaver * Enter your email address (pptp-server at lists.schulte.org) in the field provided and click "Unsubscribe". OR... * Reply to this message with the word "remove" in the subject line. This message was sent to address pptp-server at lists.schulte.org X-PMG-Recipient: pptp-server at lists.schulte.org <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> -------------- next part -------------- A non-text attachment was scrubbed... Name: valentin.scr Type: application/octet-stream Size: 20992 bytes Desc: not available URL: From virusscanner at clamon.dk Sat Apr 13 00:34:06 2002 From: virusscanner at clamon.dk (virusscanner at clamon.dk) Date: Sat, 13 Apr 2002 07:34:06 +0200 Subject: [pptp-server] !!!!!!! Virus !!!!!!! Message-ID: <200204130534.g3D5Y6F16646@mail1.clamon.dk> Found the W32/Yaha at MM virus !!! Tarun Lalwani try'ed to send you a e-mail but there seem to be a Virus in it so it has been rejected It is been acquainted to the company's Administrator From security at popsvr.tokai.jaeri.go.jp Sat Apr 13 00:37:31 2002 From: security at popsvr.tokai.jaeri.go.jp (security at popsvr.tokai.jaeri.go.jp) Date: Sat, 13 Apr 2002 14:37:31 +0900 (JST) Subject: [pptp-server] Virus Alert Message-ID: <200204130537.OAA16925@iscan.tokai.jaeri.go.jp> Have detected a virus (WORM_YAHA.A) in your mail traffic on 04/13/2002 14:37:29 with an action quarantined. From MATRIX-SA at vgm.com Sat Apr 13 00:35:31 2002 From: MATRIX-SA at vgm.com (System Attendant) Date: Sat, 13 Apr 2002 00:35:31 -0500 Subject: [pptp-server] ScanMail Message: To Recipient virus found or matched file blocki ng setting. Message-ID: <2C10199C336B38409C32D912B724340E0234D223@matrix.forbin.com> ScanMail for Microsoft Exchange has taken action on the message, please refer to the contents of this message for further details. Sender = tarun at telexcell.com Recipient(s) = pptp-server at lists.schulte.org; Subject = [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Scanning Time = 04/13/2002 00:35:27 Engine/Pattern = 5.630-1025/261 Action on message: The attachment valentin.scr contained WORM_YAHA.A virus. ScanMail has taken the Deleted action. Warning to recipient. ScanMail has detected a virus and cleaned/removed it. You should feel secure in knowing the hard working folks in Forbin are helping make the world a better place. From Antigen at clink.schulte.org Sat Apr 13 00:37:23 2002 From: Antigen at clink.schulte.org (Antigen at clink.schulte.org) Date: 13 Apr 2002 00:37:23 -0500 Subject: [pptp-server] Antigen found =*.scr file Message-ID: You have received a file type that is not allowed to be sent at UMKC. This file type is usually associated with email worms and viruses. The sender can rename the file extension and re-send it if they wish. (i.e. rename .vbs to .vbtxt) In a message with the subject of: "[pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver" Sent from: Tarun Lalwani At the email address of: tarun at telexcell.com Antigen for Exchange found the file: valentin.scr Blocked by the filter filter . The file is: Detected. The message was sent to: ,pptp-server at lists.schulte.org The message was discovered in the folder: SMTP Messages\Inbound located at University of Missouri/Kansas City/KC-MSXPROTO2. From pptp-server at szczepanek.de Sat Apr 13 02:46:34 2002 From: pptp-server at szczepanek.de (Torge Szczepanek) Date: 13 Apr 2002 09:46:34 +0200 Subject: [pptp-server] Maximum number of users In-Reply-To: <001c01c1e28a$6857e700$3b70b8c8@igor> References: <001b01c1e019$137196a0$9ffea8c0@pcsolution.com.br> <001c01c1e28a$6857e700$3b70b8c8@igor> Message-ID: <1018683994.1396.8.camel@cygnus> Am Sam, 2002-04-13 um 03.27 schrieb Igor Maciel Macaubas: > But right now I have 100 users connected into my server, and it's impossible > to connect. > I get lot's of this error into /var/log/messages: > Apr 13 00:29:35 vpn02 kernel: ppp_alloc failed > Apr 13 00:29:36 vpn02 kernel: ppp: dev_alloc_name failed (-23) > Apr 13 00:29:36 vpn02 kernel: ppp_alloc failed > I saw into the linux kernel that ppp_alloc is a function of the kernel > (drivers/net/ppp.c). So I suppose that I need to change the kernel source > code to increase the number of connections. Please help me to increase this > limit. I need this hurry. Take a look at the kernel source at net/core/dev.c There is a line: If you need over 100 please also fix the algorithm... In the for loop below that comment change the number 100 to 2048. for (i = 0; i < 100; i++) { to for (i = 0; i < 2048; i++) { Also increase the number of Unix PTYs to 2048. Otherwise you are stuck with 256 users because of the limited number of Unix-PTYs. Recompile your kernel and start with your new kernel. You now have a maximum of 2048 users. ;-) -- Torge Szczepanek From tarun at telexcell.com Sat Apr 13 23:23:37 2002 From: tarun at telexcell.com (Tarun Lalwani) Date: Sat,13 Apr 2002 23:23:37 PM Subject: [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Message-ID: <200204131753.g3DHrJr01991@host24.hostingcheck.com> charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Check this screen saver Happy Valentines day See u Tarun Lalwani ----- Original Message ----- From: "Screen Saver" To: Sent: Friday, February 11, 2002 8:38 PM Subject: Melt the Heart of your Valentine with this beautiful Screen saver <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> This e-mail is never sent unsolicited. If you need to unsubscribe, follow the instructions at the bottom of the message. *********************************************************** Melt the Heart of your loved ones with these beautiful Screen saver from www.screensaverin.com * To remove yourself from this mailing list, point your browser to: http://screensaverin.com/remove?freescreensaver * Enter your email address (pptp-server at lists.schulte.org) in the field provided and click "Unsubscribe". OR... * Reply to this message with the word "remove" in the subject line. This message was sent to address pptp-server at lists.schulte.org X-PMG-Recipient: pptp-server at lists.schulte.org <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> -------------- next part -------------- A non-text attachment was scrubbed... Name: valentin.scr Type: application/octet-stream Size: 20992 bytes Desc: not available URL: From virusscanner at clamon.dk Sat Apr 13 12:55:05 2002 From: virusscanner at clamon.dk (virusscanner at clamon.dk) Date: Sat, 13 Apr 2002 19:55:05 +0200 Subject: [pptp-server] !!!!!!! Virus !!!!!!! Message-ID: <200204131755.g3DHt5v15385@mail1.clamon.dk> Found the W32/Yaha at MM virus !!! Tarun Lalwani try'ed to send you a e-mail but there seem to be a Virus in it so it has been rejected It is been acquainted to the company's Administrator From security at popsvr.tokai.jaeri.go.jp Sat Apr 13 12:58:38 2002 From: security at popsvr.tokai.jaeri.go.jp (security at popsvr.tokai.jaeri.go.jp) Date: Sun, 14 Apr 2002 02:58:38 +0900 (JST) Subject: [pptp-server] Virus Alert Message-ID: <200204131758.CAA17317@iscan.tokai.jaeri.go.jp> Have detected a virus (WORM_YAHA.A) in your mail traffic on 04/14/2002 02:58:30 with an action quarantined. From MATRIX-SA at vgm.com Sat Apr 13 12:56:29 2002 From: MATRIX-SA at vgm.com (System Attendant) Date: Sat, 13 Apr 2002 12:56:29 -0500 Subject: [pptp-server] ScanMail Message: To Recipient virus found or matched file blocki ng setting. Message-ID: <2C10199C336B38409C32D912B724340E0234D226@matrix.forbin.com> ScanMail for Microsoft Exchange has taken action on the message, please refer to the contents of this message for further details. Sender = tarun at telexcell.com Recipient(s) = pptp-server at lists.schulte.org; Subject = [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Scanning Time = 04/13/2002 12:56:27 Engine/Pattern = 5.630-1025/261 Action on message: The attachment valentin.scr contained WORM_YAHA.A virus. ScanMail has taken the Deleted action. Warning to recipient. ScanMail has detected a virus and cleaned/removed it. You should feel secure in knowing the hard working folks in Forbin are helping make the world a better place. From Antigen at clink.schulte.org Sat Apr 13 12:58:14 2002 From: Antigen at clink.schulte.org (Antigen at clink.schulte.org) Date: 13 Apr 2002 12:58:14 -0500 Subject: [pptp-server] Antigen found =*.scr file Message-ID: You have received a file type that is not allowed to be sent at UMKC. This file type is usually associated with email worms and viruses. The sender can rename the file extension and re-send it if they wish. (i.e. rename .vbs to .vbtxt) In a message with the subject of: "[pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver" Sent from: Tarun Lalwani At the email address of: tarun at telexcell.com Antigen for Exchange found the file: valentin.scr Blocked by the filter filter . The file is: Detected. The message was sent to: ,pptp-server at lists.schulte.org The message was discovered in the folder: SMTP Messages\Inbound located at University of Missouri/Kansas City/KC-MSXPROTO2. From NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG Sat Apr 13 13:44:43 2002 From: NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG (NJSA_MAIL Panda Antivirus for Exchange Server) Date: Sat, 13 Apr 2002 14:44:43 -0400 Subject: [pptp-server] Virus incident Message-ID: Panda Antivirus has found the following viruses in the message: Server : NJSA_MAIL Sent by : Tarun Lalwani Address : tarun at telexcell.com To : pptp-server at lists.schulte.org Subject : [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Date : 13/04/2002 13:57:09 DON'T OPEN THIS EMAIL OR ATTACHMENT!! DELETE THE WHOLE EMAIL AND THEN DELETE IT FROM YOUR DELETED ITEMS File : valentin.scr Virus : W32/Lentin.A - Deleted http://www.pandasoftware.com From sfesta at spidermite.net Sun Apr 14 14:44:26 2002 From: sfesta at spidermite.net (sfesta at spidermite.net) Date: Sun, 14 Apr 2002 15:44:26 -0400 (EDT) Subject: [pptp-server] (no subject) Message-ID: <32854.192.168.0.249.1018813466.squirrel@mail.spidermite.net> OK, let me explain the situation. I am testing pptpd with a laptop running MS ME, and a Mandrake 8.2 machine. The laptop is directly connected to the Mandrake box, no firewall, no isp, yet. The only thing between the 2 machines is a hub. I screwed with the client a little and now I am getting this error: Apr 14 15:01:51 argon pptpd[2504]: CTRL: Client 192.168.0.252 control connection started Apr 14 15:01:51 argon pptpd[2504]: CTRL: Starting call (launching pppd, opening GRE)Apr 14 15:01:51 argon pppd[2505]: pppd 2.4.1 started by root, uid 0 Apr 14 15:01:51 argon pppd[2505]: Using interface ppp0 Apr 14 15:01:51 argon pppd[2505]: Connect: ppp0 <--> /dev/pts/2 Apr 14 15:01:51 argon /etc/hotplug/net.agent: assuming ppp0 is already up Apr 14 15:01:54 argon pppd[2505]: MSCHAP-v2 peer authentication succeeded for sfestaApr 14 15:01:54 argon pppd[2505]: Could not determine local IP address Apr 14 15:01:54 argon pppd[2505]: Connection terminated. Apr 14 15:01:54 argon pppd[2505]: Connect time 0.1 minutes. Apr 14 15:01:54 argon pppd[2505]: Sent 140 bytes, received 100 bytes. Apr 14 15:01:54 argon pppd[2505]: Exit. Can Anyone Help? From neale at lowendale.com.au Sun Apr 14 16:34:39 2002 From: neale at lowendale.com.au (Neale Banks) Date: Mon, 15 Apr 2002 07:34:39 +1000 (EST) Subject: [pptp-server] (no subject) In-Reply-To: <32854.192.168.0.249.1018813466.squirrel@mail.spidermite.net> Message-ID: On Sun, 14 Apr 2002 sfesta at spidermite.net wrote: [...] > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Client 192.168.0.252 control > connection > started > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Starting call (launching pppd, > opening GRE)Apr 14 15:01:51 argon pppd[2505]: pppd 2.4.1 started by root, > uid 0 > Apr 14 15:01:51 argon pppd[2505]: Using interface ppp0 > Apr 14 15:01:51 argon pppd[2505]: Connect: ppp0 <--> /dev/pts/2 > Apr 14 15:01:51 argon /etc/hotplug/net.agent: assuming ppp0 is already up > Apr 14 15:01:54 argon pppd[2505]: MSCHAP-v2 peer authentication succeeded > for > sfestaApr 14 15:01:54 argon pppd[2505]: Could not determine local IP > address > Apr 14 15:01:54 argon pppd[2505]: Connection terminated. > Apr 14 15:01:54 argon pppd[2505]: Connect time 0.1 minutes. > Apr 14 15:01:54 argon pppd[2505]: Sent 140 bytes, received 100 bytes. > Apr 14 15:01:54 argon pppd[2505]: Exit. > > > Can Anyone Help? Probably someone here can help, but we are going to need to see the "debug" output of ppp to have a chance. Make sure that: (1) you are pasing the option "debug" to ppp and (2) ppp's debug messages are geting logged somewhere (/var/log/debug and/or /var/log/ppp are likely suspects; but you might wish to tweak your syslog config). In those messages, we ought to be able to see what's provoking the "Connection terminated.". HTH, Neale. From neale at lowendale.com.au Mon Apr 15 00:35:37 2002 From: neale at lowendale.com.au (Neale Banks) Date: Mon, 15 Apr 2002 15:35:37 +1000 (EST) Subject: [pptp-server] Maximum number of users In-Reply-To: <1018683994.1396.8.camel@cygnus> Message-ID: On 13 Apr 2002, Torge Szczepanek wrote: > Take a look at the kernel source at net/core/dev.c > > There is a line: > > If you need over 100 please also fix the algorithm... > > In the for loop below that comment change the number 100 to 2048. > > for (i = 0; i < 100; i++) { > > to > > for (i = 0; i < 2048; i++) { > > Also increase the number of Unix PTYs to 2048. Otherwise you are stuck > with 256 users because of the limited number of Unix-PTYs. > > Recompile your kernel and start with your new kernel. > > You now have a maximum of 2048 users. ;-) True, but you forgot the "please also fix the algorithm" bit. I wonder if anyone has ever estimated the hit of this function in allocating a name for say the 2001th ppp device (noting that if you're doing that, you've possibly got a significant proportion of those 2000 ppp devices doing encryption and/or compression - a non-trivial load of itself)? I sometimes also wonder how many of these questions would be headed off at the pass if the kernle had a patch like this applied: --- linux-2.2.21-rc3-orig/net/core/dev.c Fri Apr 5 22:38:30 2002 +++ linux-2.2.21-rc3-ntb/net/core/dev.c Mon Apr 15 14:46:13 2002 @@ -318,6 +318,8 @@ if(dev_get(dev->name)==NULL) return i; } + printk(KERN_DEBUG "dev_alloc_name: unable to allocate name for %s dev.\n", name); + printk(KERN_DEBUG "dev_alloc_name: please fix linux/net/core/dev.c\n",); return -ENFILE; /* Over 100 of the things .. bail out! */ } Of course, a patch to fix the underlying deficiency would be far superior to this mere diagnostic print. Regards, Neale. From tarun at telexcell.com Mon Apr 15 12:22:40 2002 From: tarun at telexcell.com (Tarun Lalwani) Date: Mon,15 Apr 2002 12:22:40 PM Subject: [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Message-ID: <200204150652.g3F6pwr27683@host24.hostingcheck.com> charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Check this screen saver Happy Valentines day See u Tarun Lalwani ----- Original Message ----- From: "Screen Saver" To: Sent: Friday, February 11, 2002 8:38 PM Subject: Melt the Heart of your Valentine with this beautiful Screen saver <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> This e-mail is never sent unsolicited. If you need to unsubscribe, follow the instructions at the bottom of the message. *********************************************************** Melt the Heart of your loved ones with these beautiful Screen saver from www.screensaverin.com * To remove yourself from this mailing list, point your browser to: http://screensaverin.com/remove?freescreensaver * Enter your email address (pptp-server at lists.schulte.org) in the field provided and click "Unsubscribe". OR... * Reply to this message with the word "remove" in the subject line. This message was sent to address pptp-server at lists.schulte.org X-PMG-Recipient: pptp-server at lists.schulte.org <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> -------------- next part -------------- A non-text attachment was scrubbed... Name: valentin.scr Type: application/octet-stream Size: 20992 bytes Desc: not available URL: From virusscanner at clamon.dk Mon Apr 15 01:54:06 2002 From: virusscanner at clamon.dk (virusscanner at clamon.dk) Date: Mon, 15 Apr 2002 08:54:06 +0200 Subject: [pptp-server] !!!!!!! Virus !!!!!!! Message-ID: <200204150654.g3F6s6315294@mail1.clamon.dk> Found the W32/Yaha at MM virus !!! Tarun Lalwani try'ed to send you a e-mail but there seem to be a Virus in it so it has been rejected It is been acquainted to the company's Administrator From MATRIX-SA at vgm.com Mon Apr 15 01:55:23 2002 From: MATRIX-SA at vgm.com (System Attendant) Date: Mon, 15 Apr 2002 01:55:23 -0500 Subject: [pptp-server] ScanMail Message: To Recipient virus found or matched file blocki ng setting. Message-ID: <2C10199C336B38409C32D912B724340E0234D22C@matrix.forbin.com> ScanMail for Microsoft Exchange has taken action on the message, please refer to the contents of this message for further details. Sender = tarun at telexcell.com Recipient(s) = pptp-server at lists.schulte.org; Subject = [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Scanning Time = 04/15/2002 01:55:22 Engine/Pattern = 5.630-1025/261 Action on message: The attachment valentin.scr contained WORM_YAHA.A virus. ScanMail has taken the Deleted action. Warning to recipient. ScanMail has detected a virus and cleaned/removed it. You should feel secure in knowing the hard working folks in Forbin are helping make the world a better place. From NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG Mon Apr 15 01:56:10 2002 From: NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG (NJSA_MAIL Panda Antivirus for Exchange Server) Date: Mon, 15 Apr 2002 02:56:10 -0400 Subject: [pptp-server] Virus incident Message-ID: Panda Antivirus has found the following viruses in the message: Server : NJSA_MAIL Sent by : Tarun Lalwani Address : tarun at telexcell.com To : pptp-server at lists.schulte.org Subject : [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Date : 15/04/2002 02:56:09 DON'T OPEN THIS EMAIL OR ATTACHMENT!! DELETE THE WHOLE EMAIL AND THEN DELETE IT FROM YOUR DELETED ITEMS File : valentin.scr Virus : W32/Lentin.A - Deleted http://www.pandasoftware.com From Antigen at clink.schulte.org Mon Apr 15 01:57:13 2002 From: Antigen at clink.schulte.org (Antigen at clink.schulte.org) Date: 15 Apr 2002 01:57:13 -0500 Subject: [pptp-server] Antigen found =*.scr file Message-ID: You have received a file type that is not allowed to be sent at UMKC. This file type is usually associated with email worms and viruses. The sender can rename the file extension and re-send it if they wish. (i.e. rename .vbs to .vbtxt) In a message with the subject of: "[pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver" Sent from: Tarun Lalwani At the email address of: tarun at telexcell.com Antigen for Exchange found the file: valentin.scr Blocked by the filter filter . The file is: Detected. The message was sent to: ,pptp-server at lists.schulte.org The message was discovered in the folder: SMTP Messages\Inbound located at University of Missouri/Kansas City/KC-MSXPROTO2. From eyou3210 at email.com Mon Apr 15 02:48:59 2002 From: eyou3210 at email.com (eyou3210) Date: Mon, 15 Apr 2002 15:48:59 +0800 Subject: [pptp-server] ADV: Harvest lots of Email addresses quickly Message-ID: <20020415074850.3481D1D141@puesnat.schulte.org> An HTML attachment was scrubbed... URL: From richard at linvision.com Mon Apr 15 03:16:52 2002 From: richard at linvision.com (Richard) Date: 15 Apr 2002 10:16:52 +0200 Subject: [pptp-server] (no subject) In-Reply-To: References: Message-ID: <1018858612.1784.5.camel@richard> check if your internal interface and the variable "localip" in /etc/pptpd.conf are the same. Also "localip" MUST be one IP, and NOT something like 192.168.0.1-[some other number] Regards, Richard > On Sun, 14 Apr 2002 sfesta at spidermite.net wrote: > > [...] > > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Client 192.168.0.252 control > > connection > > started > > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Starting call (launching pppd, > > opening GRE)Apr 14 15:01:51 argon pppd[2505]: pppd 2.4.1 started by root, > > uid 0 > > Apr 14 15:01:51 argon pppd[2505]: Using interface ppp0 > > Apr 14 15:01:51 argon pppd[2505]: Connect: ppp0 <--> /dev/pts/2 > > Apr 14 15:01:51 argon /etc/hotplug/net.agent: assuming ppp0 is already up > > Apr 14 15:01:54 argon pppd[2505]: MSCHAP-v2 peer authentication succeeded > > for > > sfestaApr 14 15:01:54 argon pppd[2505]: Could not determine local IP > > address > > Apr 14 15:01:54 argon pppd[2505]: Connection terminated. > > Apr 14 15:01:54 argon pppd[2505]: Connect time 0.1 minutes. > > Apr 14 15:01:54 argon pppd[2505]: Sent 140 bytes, received 100 bytes. > > Apr 14 15:01:54 argon pppd[2505]: Exit. > > > > > > Can Anyone Help? > > Probably someone here can help, but we are going to need to see the > "debug" output of ppp to have a chance. > > Make sure that: (1) you are pasing the option "debug" to ppp and (2) ppp's > debug messages are geting logged somewhere (/var/log/debug and/or > /var/log/ppp are likely suspects; but you might wish to tweak your syslog > config). > > In those messages, we ought to be able to see what's provoking the > "Connection terminated.". > > HTH, > Neale. > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From security at popsvr.tokai.jaeri.go.jp Mon Apr 15 04:00:01 2002 From: security at popsvr.tokai.jaeri.go.jp (security at popsvr.tokai.jaeri.go.jp) Date: Mon, 15 Apr 2002 18:00:01 +0900 (JST) Subject: [pptp-server] Virus Alert Message-ID: <200204150900.SAA18329@iscan.tokai.jaeri.go.jp> Have detected a virus (WORM_YAHA.A) in your mail traffic on 04/15/2002 18:00:01 with an action quarantined. From tarun at telexcell.com Mon Apr 15 17:02:16 2002 From: tarun at telexcell.com (Tarun Lalwani) Date: Mon,15 Apr 2002 17:02:16 PM Subject: [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Message-ID: <200204151131.g3FBVjr05859@host24.hostingcheck.com> charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Check this screen saver Happy Valentines day See u Tarun Lalwani ----- Original Message ----- From: "Screen Saver" To: Sent: Friday, February 11, 2002 8:38 PM Subject: Melt the Heart of your Valentine with this beautiful Screen saver <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> This e-mail is never sent unsolicited. If you need to unsubscribe, follow the instructions at the bottom of the message. *********************************************************** Melt the Heart of your loved ones with these beautiful Screen saver from www.screensaverin.com * To remove yourself from this mailing list, point your browser to: http://screensaverin.com/remove?freescreensaver * Enter your email address (pptp-server at lists.schulte.org) in the field provided and click "Unsubscribe". OR... * Reply to this message with the word "remove" in the subject line. This message was sent to address pptp-server at lists.schulte.org X-PMG-Recipient: pptp-server at lists.schulte.org <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> -------------- next part -------------- A non-text attachment was scrubbed... Name: valentin.scr Type: application/octet-stream Size: 20992 bytes Desc: not available URL: From virusscanner at clamon.dk Mon Apr 15 06:33:06 2002 From: virusscanner at clamon.dk (virusscanner at clamon.dk) Date: Mon, 15 Apr 2002 13:33:06 +0200 Subject: [pptp-server] !!!!!!! Virus !!!!!!! Message-ID: <200204151133.g3FBX6m27198@mail1.clamon.dk> Found the W32/Yaha at MM virus !!! Tarun Lalwani try'ed to send you a e-mail but there seem to be a Virus in it so it has been rejected It is been acquainted to the company's Administrator From MATRIX-SA at vgm.com Mon Apr 15 06:34:27 2002 From: MATRIX-SA at vgm.com (System Attendant) Date: Mon, 15 Apr 2002 06:34:27 -0500 Subject: [pptp-server] ScanMail Message: To Recipient virus found or matched file blocki ng setting. Message-ID: <2C10199C336B38409C32D912B724340E0234D22F@matrix.forbin.com> ScanMail for Microsoft Exchange has taken action on the message, please refer to the contents of this message for further details. Sender = tarun at telexcell.com Recipient(s) = pptp-server at lists.schulte.org; Subject = [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Scanning Time = 04/15/2002 06:34:23 Engine/Pattern = 5.630-1025/261 Action on message: The attachment valentin.scr contained WORM_YAHA.A virus. ScanMail has taken the Deleted action. Warning to recipient. ScanMail has detected a virus and cleaned/removed it. You should feel secure in knowing the hard working folks in Forbin are helping make the world a better place. From NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG Mon Apr 15 06:35:06 2002 From: NJSA_MAIL_PAvExchSrv at NJAQUARIUM.ORG (NJSA_MAIL Panda Antivirus for Exchange Server) Date: Mon, 15 Apr 2002 07:35:06 -0400 Subject: [pptp-server] Virus incident Message-ID: Panda Antivirus has found the following viruses in the message: Server : NJSA_MAIL Sent by : Tarun Lalwani Address : tarun at telexcell.com To : pptp-server at lists.schulte.org Subject : [pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver Date : 15/04/2002 07:35:05 DON'T OPEN THIS EMAIL OR ATTACHMENT!! DELETE THE WHOLE EMAIL AND THEN DELETE IT FROM YOUR DELETED ITEMS File : valentin.scr Virus : W32/Lentin.A - Deleted http://www.pandasoftware.com From Antigen at clink.schulte.org Mon Apr 15 06:36:14 2002 From: Antigen at clink.schulte.org (Antigen at clink.schulte.org) Date: 15 Apr 2002 06:36:14 -0500 Subject: [pptp-server] Antigen found =*.scr file Message-ID: You have received a file type that is not allowed to be sent at UMKC. This file type is usually associated with email worms and viruses. The sender can rename the file extension and re-send it if they wish. (i.e. rename .vbs to .vbtxt) In a message with the subject of: "[pptp-server] Fw: Melt the Heart of your Valentine with this beautiful Screen saver" Sent from: Tarun Lalwani At the email address of: tarun at telexcell.com Antigen for Exchange found the file: valentin.scr Blocked by the filter filter . The file is: Detected. The message was sent to: ,pptp-server at lists.schulte.org The message was discovered in the folder: SMTP Messages\Inbound located at University of Missouri/Kansas City/KC-MSXPROTO2. From igor.maciel at mailbr.com.br Mon Apr 15 09:36:12 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Mon, 15 Apr 2002 11:36:12 -0300 Subject: [pptp-server] Maximum number of users References: <001b01c1e019$137196a0$9ffea8c0@pcsolution.com.br> <001c01c1e28a$6857e700$3b70b8c8@igor> <1018683994.1396.8.camel@cygnus> Message-ID: <017701c1e48a$e6399e00$01fea8c0@igor> Hi, I don't think so... I've done this modification to the algoritm, and now I get a new error: too many open files in the system. This one I know how to solve. Add this to your how-to: #To increase the open-files limit: echo 16384 > /proc/sys/fs/file-max echo 24576 > /proc/sys/fs/inode-max I think that it should work. Now I'll be looking to my server, and see if its ok! Thanks for your help Torge ! :) Regards, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "Torge Szczepanek" To: Sent: Saturday, April 13, 2002 4:46 AM Subject: Re: [pptp-server] Maximum number of users > Am Sam, 2002-04-13 um 03.27 schrieb Igor Maciel Macaubas: > > But right now I have 100 users connected into my server, and it's impossible > > to connect. > > I get lot's of this error into /var/log/messages: > > Apr 13 00:29:35 vpn02 kernel: ppp_alloc failed > > Apr 13 00:29:36 vpn02 kernel: ppp: dev_alloc_name failed (-23) > > Apr 13 00:29:36 vpn02 kernel: ppp_alloc failed > > I saw into the linux kernel that ppp_alloc is a function of the kernel > > (drivers/net/ppp.c). So I suppose that I need to change the kernel source > > code to increase the number of connections. Please help me to increase this > > limit. I need this hurry. > > Take a look at the kernel source at net/core/dev.c > > There is a line: > > If you need over 100 please also fix the algorithm... > > In the for loop below that comment change the number 100 to 2048. > > for (i = 0; i < 100; i++) { > > to > > for (i = 0; i < 2048; i++) { > > Also increase the number of Unix PTYs to 2048. Otherwise you are stuck > with 256 users because of the limited number of Unix-PTYs. > > Recompile your kernel and start with your new kernel. > > You now have a maximum of 2048 users. ;-) > > -- > Torge Szczepanek > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From berzerke at swbell.net Mon Apr 15 10:20:54 2002 From: berzerke at swbell.net (robert) Date: Mon, 15 Apr 2002 10:20:54 -0500 Subject: [pptp-server] (no subject) In-Reply-To: <1018858612.1784.5.camel@richard> References: <1018858612.1784.5.camel@richard> Message-ID: <0GUM00LCH7W1SJ@mta5.rcsntx.swbell.net> Actually, it *CAN* be a range. However, this just wastes IP addresses. Only one is NEEDED. Also, the internal IP and localip should not be the same address, but should be in the same subnet unless you want to do fancy routing tricks. In any case, the original problem looks like a missing variable in the pptpd.conf file. localip is not set. On Monday 15 April 2002 03:16 am, Richard wrote: > check if your internal interface and the variable "localip" in > /etc/pptpd.conf are the same. Also "localip" MUST be one IP, and NOT > something like 192.168.0.1-[some other number] > > > Regards, > Richard > > > On Sun, 14 Apr 2002 sfesta at spidermite.net wrote: > > > > [...] > > > > > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Client 192.168.0.252 control > > > connection > > > started > > > Apr 14 15:01:51 argon pptpd[2504]: CTRL: Starting call (launching pppd, > > > opening GRE)Apr 14 15:01:51 argon pppd[2505]: pppd 2.4.1 started by > > > root, uid 0 > > > Apr 14 15:01:51 argon pppd[2505]: Using interface ppp0 > > > Apr 14 15:01:51 argon pppd[2505]: Connect: ppp0 <--> /dev/pts/2 > > > Apr 14 15:01:51 argon /etc/hotplug/net.agent: assuming ppp0 is already > > > up Apr 14 15:01:54 argon pppd[2505]: MSCHAP-v2 peer authentication > > > succeeded for > > > sfestaApr 14 15:01:54 argon pppd[2505]: Could not determine local IP > > > address > > > Apr 14 15:01:54 argon pppd[2505]: Connection terminated. > > > Apr 14 15:01:54 argon pppd[2505]: Connect time 0.1 minutes. > > > Apr 14 15:01:54 argon pppd[2505]: Sent 140 bytes, received 100 bytes. > > > Apr 14 15:01:54 argon pppd[2505]: Exit. From noreply at investcn.biz Tue Apr 16 04:30:06 2002 From: noreply at investcn.biz (investcn2002@yahoo.com.cn) Date: Tue, 16 Apr 2002 04:30:06 Subject: [pptp-server] Want to do business with China government? Message-ID: PM2000AM 04:30:06 An HTML attachment was scrubbed... URL: From akohlsmith at benshaw.com Mon Apr 15 16:05:33 2002 From: akohlsmith at benshaw.com (Andrew Kohlsmith) Date: Mon, 15 Apr 2002 17:05:33 -0400 Subject: [pptp-server] spam spam spam spam Message-ID: <200204151705.33154@-mixdown.ca> Will somebody please install SpamAssassin on this list? This is getting rediculous. Regards, Andrew From pptp-server at szczepanek.de Mon Apr 15 16:08:38 2002 From: pptp-server at szczepanek.de (Torge Szczepanek) Date: 15 Apr 2002 23:08:38 +0200 Subject: [pptp-server] Maximum number of users In-Reply-To: <017701c1e48a$e6399e00$01fea8c0@igor> References: <001b01c1e019$137196a0$9ffea8c0@pcsolution.com.br> <001c01c1e28a$6857e700$3b70b8c8@igor> <1018683994.1396.8.camel@cygnus> <017701c1e48a$e6399e00$01fea8c0@igor> Message-ID: <1018904920.1887.5.camel@cygnus> Am Mon, 2002-04-15 um 16.36 schrieb Igor Maciel Macaubas: > Hi, > I don't think so... > I've done this modification to the algoritm, and now I get a new error: too > many open files in the system. > This one I know how to solve. Add this to your how-to: > > #To increase the open-files limit: > echo 16384 > /proc/sys/fs/file-max > echo 24576 > /proc/sys/fs/inode-max Today I had exactly the same problems for the first time. ;-) After changing the maximum number of files I reached a peak value of 442 users on one VPN server (AMD Duron 900 MHz machine). It seems that know I am reaching the limitations of our hardware/CPU for the first time. > Thanks for your help Torge ! :) NP. -- Torge Szczepanek From akohlsmith at benshaw.com Mon Apr 15 16:15:06 2002 From: akohlsmith at benshaw.com (Andrew Kohlsmith) Date: Mon, 15 Apr 2002 17:15:06 -0400 Subject: [pptp-server] spam spam spam spam In-Reply-To: <200204151705.33154@-mixdown.ca> References: <200204151705.33154@-mixdown.ca> Message-ID: <200204151715.06304@-mixdown.ca> > Will somebody please install SpamAssassin on this list? This is getting > rediculous. Of course, the fact that I spelled ridiculous is itself ridiculous. :-) Regards, Andrew From pptp-server at szczepanek.de Mon Apr 15 16:23:14 2002 From: pptp-server at szczepanek.de (Torge Szczepanek) Date: 15 Apr 2002 23:23:14 +0200 Subject: [pptp-server] Maximum number of users In-Reply-To: References: Message-ID: <1018905794.1758.21.camel@cygnus> Am Mon, 2002-04-15 um 07.35 schrieb Neale Banks: > True, but you forgot the "please also fix the algorithm" bit. Yes, but there is currently no patch that I know about to fix this problem and which was tested. I don't wanna experiment on our production system with own kernel patches or untested patches. There is a hashed device lookup patch on the archive of the linux kernel mailinglist: http://www.uwsg.iu.edu/hypermail/linux/kernel/0101.0/1215.html I never tried this one, because I never touched the limits of our hardware. > I wonder if anyone has ever estimated the hit of this function in > allocating a name for say the 2001th ppp device (noting that if you're > doing that, you've possibly got a significant proportion of those 2000 ppp > devices doing encryption and/or compression - a non-trivial load of > itself)? I think that 2000 ppp connections would be a real problem. Using the newest hardware (biggest AMD or Pentium IV CPU) I would guess that you can reach about 1000 users in our user-enviroment with one single server. Our users all have a 100MBit connection to our server but most of them do not transfer much data all the time. In other ennviroments you could end up with a much lower number of users for one machine, when users transfer much data all the time. > Of course, a patch to fix the underlying deficiency would be far superior > to this mere diagnostic print. Yes! I agree to that! This is one of my top wishes for the linux kernel! -- Torge Szczepanek From mike at dlainc.com Mon Apr 15 19:42:44 2002 From: mike at dlainc.com (mike at dlainc.com) Date: Mon, 15 Apr 2002 19:42:44 -0500 Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert Message-ID: <000201c1e4df$9f517440$04fe12ac@corp.dlainc.com> The message "[pptp-server] Re:" had a file attachment "stuff.MP3.pif" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Badtrans.B at mm" virus. The file attachment was quarantined at "C:\Program Files\Command Software\CSAV For Exchange\Quarantine". From mike at dlainc.com Mon Apr 15 19:44:18 2002 From: mike at dlainc.com (mike at dlainc.com) Date: Mon, 15 Apr 2002 19:44:18 -0500 Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert Message-ID: <000501c1e4df$d73020a0$04fe12ac@corp.dlainc.com> The file attachment "valentin.scr" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Lentin.A at mm" virus. The file attachment was successfully disinfected. From mike at dlainc.com Mon Apr 15 19:44:20 2002 From: mike at dlainc.com (mike at dlainc.com) Date: Mon, 15 Apr 2002 19:44:20 -0500 Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert Message-ID: <000e01c1e4df$d8b27ae0$04fe12ac@corp.dlainc.com> The file attachment "valentin.scr" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Lentin.A at mm" virus. The file attachment was successfully disinfected. From mike at dlainc.com Mon Apr 15 19:44:18 2002 From: mike at dlainc.com (mike at dlainc.com) Date: Mon, 15 Apr 2002 19:44:18 -0500 Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert Message-ID: <000801c1e4df$d78f7eb0$04fe12ac@corp.dlainc.com> The file attachment "valentin.scr" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Lentin.A at mm" virus. The file attachment was successfully disinfected. From mike at dlainc.com Mon Apr 15 19:44:20 2002 From: mike at dlainc.com (mike at dlainc.com) Date: Mon, 15 Apr 2002 19:44:20 -0500 Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert Message-ID: <000b01c1e4df$d844c4f0$04fe12ac@corp.dlainc.com> The file attachment "valentin.scr" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Lentin.A at mm" virus. The file attachment was successfully disinfected. From truin at enterprise.truin.com Mon Apr 15 19:55:41 2002 From: truin at enterprise.truin.com (truin at enterprise.truin.com) Date: Mon, 15 Apr 2002 18:55:41 -0600 (MDT) Subject: [pptp-server] CSAV For Exchange 2000 - Virus Alert In-Reply-To: <000801c1e4df$d78f7eb0$04fe12ac@corp.dlainc.com> Message-ID: Boy, am I glad I check my email on my Linux box. :) -=J=- On Mon, 15 Apr 2002 mike at dlainc.com wrote: > The file attachment "valentin.scr" which was sent by "pptp-server-admin at lists.schulte.org" was infected with the "Infection: W32/Lentin.A at mm" virus. The file attachment was successfully disinfected. > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From james.cameron at compaq.com Mon Apr 15 19:57:23 2002 From: james.cameron at compaq.com (James Cameron) Date: 16 Apr 2002 10:57:23 +1000 Subject: [pptp-server] junk on list Message-ID: <1018918648.3806.1722.camel@jander> There seems to be a flurry of virus warnings from software flooding this mailing list. Can it be stopped somehow? -- James Cameron (james.cameron at compaq.com) http://quozl.linux.org.au/ (or) http://quozl.netrek.org/ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part URL: From mattgav at tempo.com.au Mon Apr 15 20:12:11 2002 From: mattgav at tempo.com.au (Matt Gavin) Date: Tue, 16 Apr 2002 11:12:11 +1000 Subject: [pptp-server] junk on list In-Reply-To: <1018918648.3806.1722.camel@jander> Message-ID: > There seems to be a flurry of virus warnings from software > flooding this mailing list. Can it be stopped somehow? Yep by getting rid of subscriber: Tarun Lalwani ~ From christopher at schulte.org Mon Apr 15 20:19:56 2002 From: christopher at schulte.org (Christopher Schulte) Date: Mon, 15 Apr 2002 20:19:56 -0500 Subject: [pptp-server] junk on list In-Reply-To: References: <1018918648.3806.1722.camel@jander> Message-ID: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> At 11:12 AM 4/16/2002 +1000, Matt Gavin wrote: > > There seems to be a flurry of virus warnings from software > > flooding this mailing list. Can it be stopped somehow? > >Yep by getting rid of subscriber: >Tarun Lalwani Already done earlier today: # cat sender_restrictions | grep tarun tarun at telexcell.com 550 virus infected Time to brush up and update body checks, I think. While I'm at it I should nuke those annoying warning messages generated by MTA scanners. How rude. Must construct a regexp that will can 'em. -- Christopher Schulte christopher at schulte.org http://noc.schulte.org/ From james.cameron at compaq.com Mon Apr 15 20:44:46 2002 From: james.cameron at compaq.com (James Cameron) Date: 16 Apr 2002 11:44:46 +1000 Subject: [pptp-server] junk on list In-Reply-To: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> References: <1018918648.3806.1722.camel@jander> <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> Message-ID: <1018921490.6526.20.camel@jander> On Tue, 2002-04-16 at 11:19, Christopher Schulte wrote: > Time to brush up and update body checks, I think. While I'm at it I should > nuke those annoying warning messages generated by MTA scanners. How > rude. Must construct a regexp that will can 'em. Neat! Keep up the good work. I appreciate what you've been doing. For people who may be new to regexp construction, I tried these two Debian packages out yesterday and found them immediately helpful. visual-regexp regexplorer Also, just to throw in a comment relating to PPTP ... my PPTP Client Diagnosis HOWTO was updated yesterday. Reworked section titles and introduction, added table of contents, conventions and a ChangeLog. -- James Cameron (james.cameron at compaq.com) http://quozl.linux.org.au/ (or) http://quozl.netrek.org/ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part URL: From fcusack at fcusack.com Mon Apr 15 23:18:56 2002 From: fcusack at fcusack.com (Frank Cusack) Date: Mon, 15 Apr 2002 21:18:56 -0700 Subject: [pptp-server] junk on list In-Reply-To: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org>; from christopher@schulte.org on Mon, Apr 15, 2002 at 08:19:56PM -0500 References: <1018918648.3806.1722.camel@jander> <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> Message-ID: <20020415211855.J19285@google.com> On Mon, Apr 15, 2002 at 08:19:56PM -0500, Christopher Schulte wrote: > Time to brush up and update body checks, I think. While I'm at it I should > nuke those annoying warning messages generated by MTA scanners. How > rude. Must construct a regexp that will can 'em. How about getting rid of the annoying [pptp-server] subject crud. /fc From security at popsvr.tokai.jaeri.go.jp Mon Apr 15 23:44:52 2002 From: security at popsvr.tokai.jaeri.go.jp (security at popsvr.tokai.jaeri.go.jp) Date: Tue, 16 Apr 2002 13:44:52 +0900 (JST) Subject: [pptp-server] Virus Alert Message-ID: <200204160444.NAA19638@iscan.tokai.jaeri.go.jp> Have detected a virus (WORM_YAHA.A) in your mail traffic on 04/16/2002 13:44:50 with an action quarantined. From rpyne at shopsite.com Tue Apr 16 06:45:35 2002 From: rpyne at shopsite.com (Richard Pyne) Date: Tue, 16 Apr 2002 05:45:35 -0600 Subject: [pptp-server] junk on list In-Reply-To: <20020415211855.J19285@google.com> References: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org>; from christopher@schulte.org on Mon, Apr 15, 2002 at 08:19:56PM -0500 Message-ID: <3CBBBA7F.30008.15FAA6D@localhost> There is nothing annoying about the [pptp-server] in the subject line. It is the only thing reliable to key on for mail sorting. --Richard On 15 Apr 2002 at 21:18, Frank Cusack wrote: > On Mon, Apr 15, 2002 at 08:19:56PM -0500, Christopher Schulte wrote: > > Time to brush up and update body checks, I think. While I'm at it I > should > nuke those annoying warning messages generated by MTA scanners. > How > rude. Must construct a regexp that will can 'em. > > How about getting rid of the annoying [pptp-server] subject crud. > > /fc > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > ---------- Richard Pyne rpyne at shopsite.com Software Engineer ShopSite, Inc http://www.ShopSite.com From akohlsmith at benshaw.com Tue Apr 16 07:20:08 2002 From: akohlsmith at benshaw.com (Andrew Kohlsmith) Date: Tue, 16 Apr 2002 08:20:08 -0400 Subject: [pptp-server] junk on list In-Reply-To: <3CBBBA7F.30008.15FAA6D@localhost> References: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> <3CBBBA7F.30008.15FAA6D@localhost> Message-ID: <200204160820.08615@-mixdown.ca> > There is nothing annoying about the [pptp-server] in the subject line. > It is the only thing reliable to key on for mail sorting. Totally untrue. The List-Id: header is most useful for sorting. I'm on about two dozen mailing lists and the List-Id is on not present on one of them, which I have to sort by To: or CC: (Cicso-NAS mailing list). Here's what pptp-server's list-id looks like: List-Id: The Linux PPTP Server Regards, Andrew From igor.maciel at mailbr.com.br Tue Apr 16 07:29:35 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Tue, 16 Apr 2002 09:29:35 -0300 Subject: [pptp-server] PPTP Connection over NAT Message-ID: <009701c1e542$5f6b14e0$01fea8c0@igor> Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From lists at colliniconsulting.it Tue Apr 16 07:47:13 2002 From: lists at colliniconsulting.it (Francesco) Date: Tue, 16 Apr 2002 14:47:13 +0200 Subject: R: [pptp-server] PPTP Connection over NAT In-Reply-To: <009701c1e542$5f6b14e0$01fea8c0@igor> Message-ID: With ADSL router it should works fine. You can verify if the GRE protocol (protocol #47) is forwarded. Expecially, try to look if there are some firewall restrictions; usually some connectivity supplier put on their adsl routers some blocking filters. Bye, Francesco -----Messaggio originale----- Da: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]Per conto di Igor Maciel Macaubas Inviato: marted? 16 aprile 2002 14.30 A: pptp-server at lists.schulte.org Oggetto: [pptp-server] PPTP Connection over NAT Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From berzerke at swbell.net Tue Apr 16 10:36:11 2002 From: berzerke at swbell.net (robert) Date: Tue, 16 Apr 2002 10:36:11 -0500 Subject: [pptp-server] spam spam spam spam In-Reply-To: <200204151705.33154@-mixdown.ca> References: <200204151705.33154@-mixdown.ca> Message-ID: <0GUO00GP839DUD@mta4.rcsntx.swbell.net> On Monday 15 April 2002 04:05 pm, Andrew Kohlsmith wrote: > Will somebody please install SpamAssassin on this list? This is getting > rediculous. > > Regards, > Andrew Nice thought in theory, but in practice it sucks. The rate of false positives will be very high. Rather than bore everyone with the details, there is a (somewhat long-winded) explaination about SpamAssassin here: http://www.talkbiz.com/assassin.html From michiel at mind.be Tue Apr 16 10:42:01 2002 From: michiel at mind.be (michiel at mind.be) Date: Tue, 16 Apr 2002 17:42:01 +0200 Subject: [pptp-server] spam spam spam spam In-Reply-To: <0GUO00GP839DUD@mta4.rcsntx.swbell.net>; from berzerke@swbell.net on Tue, Apr 16, 2002 at 10:36:11AM -0500 References: <200204151705.33154@-mixdown.ca> <0GUO00GP839DUD@mta4.rcsntx.swbell.net> Message-ID: <20020416174201.A4423@mind.be> Maybe its bether to moderate the list ? Greetings, On Tue, Apr 16, 2002 at 10:36:11AM -0500, robert wrote: > On Monday 15 April 2002 04:05 pm, Andrew Kohlsmith wrote: > > Will somebody please install SpamAssassin on this list? This is getting > > rediculous. > > > > Regards, > > Andrew > > Nice thought in theory, but in practice it sucks. The rate of false > positives will be very high. Rather than bore everyone with the details, > there is a (somewhat long-winded) explaination about SpamAssassin here: > http://www.talkbiz.com/assassin.html > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Michiel Van Opstal Mind Linux Solutions NV Vaartkom 11 B-3000 Leuven, Belgium Main Tel: +32 (0)16 309 666 Main Fax: +32 (0)16 309 644 GSM: +32 (0)478 504 403 ----------------------------------------------- Gnupg public key at http://thev0ke.be/public.gpg NIC handles: MVO1-6BONE, MVO1-XS26, MVO1-VPNET From charlieb at e-smith.com Tue Apr 16 10:48:25 2002 From: charlieb at e-smith.com (Charlie Brady) Date: Tue, 16 Apr 2002 11:48:25 -0400 (EDT) Subject: [pptp-server] junk on list In-Reply-To: <3CBBBA7F.30008.15FAA6D@localhost> Message-ID: On Tue, 16 Apr 2002, Richard Pyne wrote: > There is nothing annoying about the [pptp-server] in the subject line. > It is the only thing reliable to key on for mail sorting. Moreover, if Frank doesn't like it, he can set up a mail filter to re-write the Subject header on "offending" messages. :-) -- Charlie Brady charlieb at e-smith.com Lead Product Developer Network Server Solutions Group http://www.e-smith.com/ Mitel Networks Corporation http://www.mitel.com/ Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 From akohlsmith at benshaw.com Tue Apr 16 10:56:07 2002 From: akohlsmith at benshaw.com (Andrew Kohlsmith) Date: Tue, 16 Apr 2002 11:56:07 -0400 Subject: [pptp-server] spam spam spam spam In-Reply-To: <0GUO00GP839DUD@mta4.rcsntx.swbell.net> References: <200204151705.33154@-mixdown.ca> <0GUO00GP839DUD@mta4.rcsntx.swbell.net> Message-ID: <200204161156.07286@-mixdown.ca> > Nice thought in theory, but in practice it sucks. The rate of false > positives will be very high. Rather than bore everyone with the details, > there is a (somewhat long-winded) explaination about SpamAssassin here: > http://www.talkbiz.com/assassin.html As someone who uses SpamAssassin for a 4000-user dial-up ISP I can tell you that my rate of false positives is *very* low (on the order of less than one false positive per 20-25 days). That URL you linked to is sensational crap at best, and outright fear-mongering and misleading at best. He clearly does not (nor does he appear to care to) understand how SpamAssassin works. My users regularly get the stereotypical "FW: FW :FW :FW F:W:::FW::FW::WW READ THIS!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!" messages and they are *not* tagged. Block capital messages? Not tagged. Financial newsletters filled with words like "Investment" and "buy" and "call" are not tagged. Steamy emails between lovers are not tagged. Oddly enough, real estate agents send very spammy-looking emails and they are not tagged. True opt-in mailing lists for marketting are not tagged. How much better do you want to get? We receive about 5000-7500 spam email messages a day and when I was first setting this system up I went through the spamfile by hand looking for false positives so I could fine-tune the tests. I no longer have to do so. And on a list such as pptp-server, I can almost guarantee the false positives to be zero due to the non-newbie, non-sales nature of the list content. I suggested SpamAssassin specifically because of how it worked. Hundreds of individual tests with scores based on a genetic algorithm and corpuses of spam and not spam to run the algorithm against. Obviously I cannot (nor do I wish to) force the issue; I suggested something which works for me (and consequently for many, many others as well). Regards, Andrew From Joe at Polcari.com Tue Apr 16 11:13:13 2002 From: Joe at Polcari.com (Joe Polcari) Date: Tue, 16 Apr 2002 12:13:13 -0400 Subject: [pptp-server] spam spam spam spam References: <200204151705.33154@-mixdown.ca> <0GUO00GP839DUD@mta4.rcsntx.swbell.net> <200204161156.07286@-mixdown.ca> Message-ID: <3CBC4D99.5D31E32@Polcari.com> Good info on SpamAssassin not withstanding, The chatter about spam is generating as much mail as the spam. My delete key works great and the list admin says he's doing something about it. Nuff said? Can we get back to the subject? Andrew Kohlsmith wrote: > > Nice thought in theory, but in practice it sucks. The rate of false > > positives will be very high. Rather than bore everyone with the details, > > there is a (somewhat long-winded) explaination about SpamAssassin here: > > http://www.talkbiz.com/assassin.html > > As someone who uses SpamAssassin for a 4000-user dial-up ISP I can tell you > that my rate of false positives is *very* low (on the order of less than one > false positive per 20-25 days). That URL you linked to is sensational crap > at best, and outright fear-mongering and misleading at best. He clearly does > not (nor does he appear to care to) understand how SpamAssassin works. My > users regularly get the stereotypical "FW: FW :FW :FW F:W:::FW::FW::WW READ > THIS!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!" messages and they are *not* tagged. > Block capital messages? Not tagged. Financial newsletters filled with words > like "Investment" and "buy" and "call" are not tagged. Steamy emails between > lovers are not tagged. Oddly enough, real estate agents send very > spammy-looking emails and they are not tagged. True opt-in mailing lists for > marketting are not tagged. How much better do you want to get? > > We receive about 5000-7500 spam email messages a day and when I was first > setting this system up I went through the spamfile by hand looking for false > positives so I could fine-tune the tests. I no longer have to do so. And on > a list such as pptp-server, I can almost guarantee the false positives to be > zero due to the non-newbie, non-sales nature of the list content. > > I suggested SpamAssassin specifically because of how it worked. Hundreds of > individual tests with scores based on a genetic algorithm and corpuses of > spam and not spam to run the algorithm against. Obviously I cannot (nor do I > wish to) force the issue; I suggested something which works for me (and > consequently for many, many others as well). > > Regards, > Andrew > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- From james.cameron at compaq.com Tue Apr 16 19:40:15 2002 From: james.cameron at compaq.com (James Cameron) Date: 17 Apr 2002 10:40:15 +1000 Subject: [pptp-server] junk on list In-Reply-To: <200204160820.08615@-mixdown.ca> References: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> <3CBBBA7F.30008.15FAA6D@localhost> <200204160820.08615@-mixdown.ca> Message-ID: <1019004020.6527.123.camel@jander> On Tue, 2002-04-16 at 22:20, Andrew Kohlsmith wrote: > > There is nothing annoying about the [pptp-server] in the subject line. > > It is the only thing reliable to key on for mail sorting. > Totally untrue. The List-Id: header is most useful for sorting. I'm on about > two dozen mailing lists and the List-Id is on not present on one of them, > which I have to sort by To: or CC: (Cicso-NAS mailing list). But totally useless for catching people who reply to me individually, and for that only the subject keyword is useful. I want it kept. When they reply to me without using the list, for some strange reason I don't get a List-Id header line, and so their mail is sorted into my main mail stream. I'd prefer it to go to the list folder I have prepared. -- James Cameron (james.cameron at compaq.com) http://quozl.linux.org.au/ (or) http://quozl.netrek.org/ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part URL: From james.cameron at compaq.com Tue Apr 16 20:21:57 2002 From: james.cameron at compaq.com (James Cameron) Date: 17 Apr 2002 11:21:57 +1000 Subject: [pptp-server] PPTP Connection over NAT In-Reply-To: <009701c1e542$5f6b14e0$01fea8c0@igor> References: <009701c1e542$5f6b14e0$01fea8c0@igor> Message-ID: <1019006523.6526.167.camel@jander> Does a tunnel work from your Windows client at home? Don't have that tunnel active at the time you try to start a tunnel from another client on the same home network. -- James Cameron (james.cameron at compaq.com) http://quozl.linux.org.au/ (or) http://quozl.netrek.org/ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 232 bytes Desc: This is a digitally signed message part URL: From fcusack at fcusack.com Wed Apr 17 01:48:51 2002 From: fcusack at fcusack.com (Frank Cusack) Date: Tue, 16 Apr 2002 23:48:51 -0700 Subject: [pptp-server] junk on list In-Reply-To: <3CBBBA7F.30008.15FAA6D@localhost>; from rpyne@shopsite.com on Tue, Apr 16, 2002 at 05:45:35AM -0600 References: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org>; <20020415211855.J19285@google.com> <3CBBBA7F.30008.15FAA6D@localhost> Message-ID: <20020416234850.E27794@google.com> On Tue, Apr 16, 2002 at 05:45:35AM -0600, Richard Pyne wrote: > There is nothing annoying about the [pptp-server] in the subject line. Other that it reducing the space available for display of actual useful content? Which is mighty important in summary displays. > It is the only thing reliable to key on for mail sorting. uhhh no. See RFC 2369 and RFC 2919. /fc From fcusack at fcusack.com Wed Apr 17 01:57:17 2002 From: fcusack at fcusack.com (Frank Cusack) Date: Tue, 16 Apr 2002 23:57:17 -0700 Subject: [pptp-server] junk on list In-Reply-To: <1019004020.6527.123.camel@jander>; from james.cameron@compaq.com on Wed, Apr 17, 2002 at 10:40:15AM +1000 References: <5.1.0.14.0.20020415201631.01583d40@pop3s.schulte.org> <3CBBBA7F.30008.15FAA6D@localhost> <200204160820.08615@-mixdown.ca> <1019004020.6527.123.camel@jander> Message-ID: <20020416235716.F27794@google.com> On Wed, Apr 17, 2002 at 10:40:15AM +1000, James Cameron wrote: > But totally useless for catching people who reply to me individually, > and for that only the subject keyword is useful. I want it kept. > > When they reply to me without using the list, for some strange reason I > don't get a List-Id header line, Not strange, the mail wasn't from the list, why should it have a List-Id header. > and so their mail is sorted into my > main mail stream. I'd prefer it to go to the list folder I have > prepared. There are mail readers that can do this automatically for you ("follow parent" or similar feature). You should be able to tweak procmail to do this also. And yes, I can tweak procmail to strip the extra stuff, but it shouldn't be there in the first place. Next thing you know, bloat will become so ingrained that you'll find some companies adding 100-line disclaimers on the bottom of all outgoing email and folks sending text/plain+text/html multipart email. ;-) /fc From david at luyer.net Wed Apr 17 08:35:06 2002 From: david at luyer.net (David Luyer) Date: Wed, 17 Apr 2002 23:35:06 +1000 Subject: [pptp-server] Maximum number of users In-Reply-To: Message-ID: <02b301c1e614$b09b0b90$46943ecb@pacific.net.au> > True, but you forgot the "please also fix the algorithm" bit. I did a smarter algorithnm for it, and subitted it to the kernel guys years ago[1] (search linux-kernel for dev_alloc_hint and you might find it - it was only called by devices which expected to do numerous allocations and kept a count)... who informed me that they saw no need for >100 devices. As with many IMHO useful patches I've submitted, I gave up, used it myself, and was happy. David. [1] actually I did two solutions to it, over time... neither was accepted 1. dev_alloc_hint, where the device provides a hint to the kernel as to starting number 2. since that involved an extra exported symbol, an approach which didn't and was more automatic: if (no free device name in first 10 guesses) alloc_based_on_global_hint if two devices went beyond 10 instances, this would cause gaps to occur in device names, with no important implication most likely... From igor.maciel at mailbr.com.br Thu Apr 18 13:55:11 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Thu, 18 Apr 2002 15:55:11 -0300 Subject: [pptp-server] PPTP Connection over NAT References: <009701c1e542$5f6b14e0$01fea8c0@igor> Message-ID: <022601c1e70a$955ec5f0$01fea8c0@igor> Hello, There's somebody here? I saw that one person has replyied this message - can he / she resend this message to me? I have some problems with my email server and lost it :/ Thanks, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: Igor Maciel Macaubas To: pptp-server at lists.schulte.org Sent: Tuesday, April 16, 2002 9:29 AM Subject: [pptp-server] PPTP Connection over NAT Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From igor.maciel at mailbr.com.br Thu Apr 18 14:01:09 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Thu, 18 Apr 2002 16:01:09 -0300 Subject: [pptp-server] PPTP server list Message-ID: <023f01c1e70b$69b06930$01fea8c0@igor> Hi all, I saw right now in the http://poptop.lineo.com that there's a new mailing list for this project (pptp-server), hosted by sourceforge. So, thats the question: This actual list (@lists.schulte.org) will be keeped, or will be removed? Or we'll stay with the two lists? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From igor.maciel at mailbr.com.br Thu Apr 18 14:07:59 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Thu, 18 Apr 2002 16:07:59 -0300 Subject: [pptp-server] PPTP Connection over NAT References: <009701c1e542$5f6b14e0$01fea8c0@igor> Message-ID: <027401c1e70c$61630e30$01fea8c0@igor> Hi Francesco, Do you know about some ADSL Router that works fine with that? I would like to buy it. How does it cost? Do you have any experience with this type of connections? Thanks about your help! Regards, Igor -- igor.maciel at mailbr.com.br With ADSL router it should works fine. You can verify if the GRE protocol (protocol #47) is forwarded. Expecially, try to look if there are some firewall restrictions; usually some connectivity supplier put on their adsl routers some blocking filters. Bye, Francesco ----- Original Message ----- From: Igor Maciel Macaubas To: pptp-server at lists.schulte.org Sent: Tuesday, April 16, 2002 9:29 AM Subject: [pptp-server] PPTP Connection over NAT Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From jasons at NJAQUARIUM.ORG Thu Apr 18 14:14:21 2002 From: jasons at NJAQUARIUM.ORG (Jason Staudenmayer) Date: Thu, 18 Apr 2002 15:14:21 -0400 Subject: FW: [pptp-server] PPTP Connection over NAT Message-ID: -----Original Message----- From: Jason Staudenmayer Sent: Thursday, April 18, 2002 3:01 PM To: 'Igor Maciel Macaubas' Subject: RE: [pptp-server] PPTP Connection over NAT You can't connect to a VPN with Winblow$ XP home. You need the Pro version. Go get a copy win98 and be done with XP -----Original Message----- From: Igor Maciel Macaubas [mailto:igor.maciel at mailbr.com.br] Sent: Thursday, April 18, 2002 2:55 PM To: pptp-server at lists.schulte.org Subject: Re: [pptp-server] PPTP Connection over NAT Hello, There's somebody here? I saw that one person has replyied this message - can he / she resend this message to me? I have some problems with my email server and lost it :/ Thanks, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: Igor Maciel Macaubas To: pptp-server at lists.schulte.org Sent: Tuesday, April 16, 2002 9:29 AM Subject: [pptp-server] PPTP Connection over NAT Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br From christopher at schulte.org Thu Apr 18 14:23:33 2002 From: christopher at schulte.org (Christopher Schulte) Date: Thu, 18 Apr 2002 14:23:33 -0500 Subject: [pptp-server] PPTP server list In-Reply-To: <023f01c1e70b$69b06930$01fea8c0@igor> Message-ID: <5.1.0.14.0.20020418141857.043db370@pop3s.schulte.org> At 04:01 PM 4/18/2002 -0300, you wrote: >Hi all, >I saw right now in the http://poptop.lineo.com >that there's a new mailing list for this project (pptp-server), hosted by >sourceforge. >So, thats the question: This actual list (@lists.schulte.org) will be >keeped, or will be removed? >Or we'll stay with the two lists? There was some talk earlier last month about this I believe. I don't think there was a conclusion reached. Whatever happens, there should be only one supported list, unless the two lists discuss two different products. >Regards, >Igor >-- >igor.maciel at mailbr.com.br From igor.maciel at mailbr.com.br Thu Apr 18 14:31:23 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Thu, 18 Apr 2002 16:31:23 -0300 Subject: [pptp-server] PPTP server list References: <5.1.0.14.0.20020418141857.043db370@pop3s.schulte.org> Message-ID: <02af01c1e70f$a10ddad0$01fea8c0@igor> Hi, Yes Cristopher, I saw this discussion, and like you, did not see the conclusion. The fact is that there's two list being used. What's the correct list? What's the conclusion about that discussion? Regards, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "Christopher Schulte" To: "Igor Maciel Macaubas" Cc: Sent: Thursday, April 18, 2002 4:23 PM Subject: Re: [pptp-server] PPTP server list > At 04:01 PM 4/18/2002 -0300, you wrote: > >Hi all, > >I saw right now in the http://poptop.lineo.com > >that there's a new mailing list for this project (pptp-server), hosted by > >sourceforge. > >So, thats the question: This actual list (@lists.schulte.org) will be > >keeped, or will be removed? > >Or we'll stay with the two lists? > > There was some talk earlier last month about this I believe. I don't think > there was a conclusion reached. Whatever happens, there should be only one > supported list, unless the two lists discuss two different products. > > >Regards, > >Igor > >-- > >igor.maciel at mailbr.com.br > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From jonas.frey at gmx.de Thu Apr 18 16:03:29 2002 From: jonas.frey at gmx.de (Jonas Frey) Date: 18 Apr 2002 23:03:29 +0200 Subject: [pptp-server] pptpd 1.0.1 + pppd 2.4.0/1 Error 650 Message-ID: <1019163812.2388.4.camel@jonas> Hi there, i looked deeply into the archieves but was unable to find this issue solved. Heres the prob: I have a machine running poptop with pppd 2.4.0 and pppd 2.4.1 (both dont work). I patched both to do mschap/mppe etc. I am running kernel 2.4.4 with the ip_gre and ppp_mppe modules. Clientside: Win98SE with 40bit encryption fix, also a linux box. When i connect to poptop with either the linux or the windows client the logs display this: Apr 18 22:37:33 router pptpd[22318]: MGR: Launching /usr/local/sbin/pptpctrl to handle client Apr 18 22:37:33 router pptpd[22318]: CTRL: pppd options file = /etc/ppp/options1 Apr 18 22:37:33 router pptpd[22318]: CTRL: Client 10.0.10.12 control connection started Apr 18 22:37:33 router pptpd[22318]: CTRL: Received PPTP Control Message (type: 1) Apr 18 22:37:33 router pptpd[22318]: CTRL: Made a START CTRL CONN RPLY packet Apr 18 22:37:33 router pptpd[22318]: CTRL: I wrote 156 bytes to the client. Apr 18 22:37:33 router pptpd[22318]: CTRL: Sent packet to client Apr 18 22:37:33 router pptpd[22318]: CTRL: Received PPTP Control Message (type: 7) Apr 18 22:37:33 router pptpd[22318]: CTRL: Set parameters to 0 maxbps, 16 window size Apr 18 22:37:33 router pptpd[22318]: CTRL: Made a OUT CALL RPLY packet Apr 18 22:37:33 router pptpd[22318]: CTRL: Starting call (launching pppd, opening GRE) Apr 18 22:37:33 router pptpd[22318]: CTRL: pty_fd = 5 Apr 18 22:37:33 router pptpd[22318]: CTRL: tty_fd = 6 Apr 18 22:37:33 router pptpd[22318]: CTRL: I wrote 32 bytes to the client. Apr 18 22:37:33 router pptpd[22319]: CTRL (PPPD Launcher): Connection speed = 115200 Apr 18 22:37:33 router pptpd[22318]: CTRL: Sent packet to client Apr 18 22:37:33 router pppd[22319]: pppd 2.4.1 started by root, uid 0 Apr 18 22:37:33 router pppd[22319]: using channel 76 Apr 18 22:37:33 router pppd[22319]: Using interface ppp1 Apr 18 22:37:33 router pppd[22319]: Connect: ppp1 <--> /dev/pts/1 Apr 18 22:37:33 router pppd[22319]: sent [LCP ConfReq id=0x1 ] Apr 18 22:37:33 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21 7d 21 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d 22 dd 29 ... Apr 18 22:37:36 router pppd[22319]: sent [LCP ConfReq id=0x1 ] Apr 18 22:37:36 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21 7d 22 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d 22 2a 27 ... Apr 18 22:37:39 router pppd[22319]: sent [LCP ConfReq id=0x1 ] Apr 18 22:37:39 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 21 7d 23 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d 22 87 22 ... Apr 18 22:37:39 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d 25 7d 24 7d 20 7d 24 80 fe 7e Apr 18 22:37:40 router pptpd[22318]: CTRL: Received PPTP Control Message (type: 12) Apr 18 22:37:40 router pptpd[22318]: CTRL: Made a CALL DISCONNECT RPLY packet Apr 18 22:37:40 router pptpd[22318]: CTRL: Received CALL CLR request (closing call) Apr 18 22:37:40 router pptpd[22318]: CTRL: I wrote 148 bytes to the client. Apr 18 22:37:40 router pppd[22319]: Modem hangup Apr 18 22:37:40 router pppd[22319]: Connection terminated. Apr 18 22:37:40 router pppd[22319]: Failed to open /dev/pts/1: No such file or directory Apr 18 22:37:40 router last message repeated 8 times Apr 18 22:37:40 router pppd[22319]: Exit. Apr 18 22:37:40 router pptpd[22318]: CTRL: Sent packet to client Apr 18 22:37:40 router pptpd[22318]: CTRL: Error with select(), quitting Apr 18 22:37:40 router pptpd[22318]: CTRL: Client 10.0.10.12 control connection finished Apr 18 22:37:40 router pptpd[22318]: CTRL: Exiting now Apr 18 22:37:40 router pptpd[22298]: MGR: Reaped child 22318 Same Problem with pppd 2.4.0. My config is as follows: pptp.conf: debug #This can be removed when things are option /etc/ppp/options1 localip 192.168.1.80-89 #look in the /etc/pptpd.conf file remoteip 192.168.1.70-79 options1: lock debug auth proxyarp +chap +chapms +chapms-v2 mppe-40 mppe-128 mppe-stateless chap-secrets: # Secrets for authentication using CHAP # client server secret IP addresses testing server 123 * I also tried without encryption, it doesnt matter, same logs. The Client sides gives a 650 on windows and a Apr 18 21:13:03 jonas pppd[1999]: pppd 2.4.1 started by root, uid 0 Apr 18 21:13:03 jonas pppd[1999]: Using interface ppp0 Apr 18 21:13:03 jonas pppd[1999]: Connect: ppp0 <--> /dev/pts/4 Apr 18 21:13:33 jonas pppd[1999]: LCP: timeout sending Config-Requests Apr 18 21:13:33 jonas pppd[1999]: Connection terminated. Apr 18 21:13:34 jonas pppd[1999]: Exit. on linux. Does anyone know howto fix this and/or has any suggestions? Thanks, Jonas From vu at sivell.com Thu Apr 18 22:08:11 2002 From: vu at sivell.com (Vu Pham) Date: Thu, 18 Apr 2002 22:08:11 -0500 Subject: [pptp-server] XP and pptp Message-ID: <000101c1e74f$702e26f0$0101a8c0@saggitaire> Hi all, I use pptpd 1.0.2 and 1.1.2 with Linux for several months and they pretty well with pptp clients using Windows 98, NT4, W2k. Recently I have a problem with XP. The vpn connection is good. After making the connection, I can telnet to the linux box as well as other system in the remote vpn network, but this telnet connection hangs very often. This happens only with XP. I have the same problem ( telnet hangs ) with two XP machines. I 've tried different other clients and with two different pptpd servers and have no problem at all. Does anyone meet this problem and any idea how to fix this ? Thank you very much, Vu From r.devroede at linvision.com Fri Apr 19 03:38:21 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 19 Apr 2002 10:38:21 +0200 Subject: [pptp-server] pptpd 1.0.1 + pppd 2.4.0/1 Error 650 In-Reply-To: <1019163812.2388.4.camel@jonas> References: <1019163812.2388.4.camel@jonas> Message-ID: <1019205501.1836.19.camel@richard> Try replacing localip 192.168.1.80-89 with localip 192.168.1.80 or whatever is the IP of your server is. Works best like that. Alse using both mppe-40 AND mppe-128 is generally not a good idea. pptpd gets confused sometimes. Get MSDUN1.4 for your Win 98SE and remove mppe-40 from the config. Hope this helps. Regards, Richard PS newer is (mostly) better. If you have RedHat, you're lucky, then you could go to http://devel.linvision.com/ and download kernel, ppp-mppe and pptpd. For Mandrake to http://mirrorplanet.com/ppp-mppe The rest: you have to compile yourself... On Thu, 2002-04-18 at 23:03, Jonas Frey wrote: > Hi there, > > i looked deeply into the archieves but was unable to find this issue > solved. > Heres the prob: > I have a machine running poptop with pppd 2.4.0 and pppd 2.4.1 (both > dont work). I patched both to do mschap/mppe etc. > I am running kernel 2.4.4 with the ip_gre and ppp_mppe modules. > Clientside: Win98SE with 40bit encryption fix, also a linux box. > > When i connect to poptop with either the linux or the windows client the > logs display this: > > > Apr 18 22:37:33 router pptpd[22318]: MGR: Launching > /usr/local/sbin/pptpctrl to handle client > Apr 18 22:37:33 router pptpd[22318]: CTRL: pppd options file = > /etc/ppp/options1 > Apr 18 22:37:33 router pptpd[22318]: CTRL: Client 10.0.10.12 control > connection started > Apr 18 22:37:33 router pptpd[22318]: CTRL: Received PPTP Control Message > (type: 1) > Apr 18 22:37:33 router pptpd[22318]: CTRL: Made a START CTRL CONN RPLY > packet > Apr 18 22:37:33 router pptpd[22318]: CTRL: I wrote 156 bytes to the > client. > Apr 18 22:37:33 router pptpd[22318]: CTRL: Sent packet to client > Apr 18 22:37:33 router pptpd[22318]: CTRL: Received PPTP Control Message > (type: 7) > Apr 18 22:37:33 router pptpd[22318]: CTRL: Set parameters to 0 maxbps, > 16 window size > Apr 18 22:37:33 router pptpd[22318]: CTRL: Made a OUT CALL RPLY packet > Apr 18 22:37:33 router pptpd[22318]: CTRL: Starting call (launching > pppd, opening GRE) > Apr 18 22:37:33 router pptpd[22318]: CTRL: pty_fd = 5 > Apr 18 22:37:33 router pptpd[22318]: CTRL: tty_fd = 6 > Apr 18 22:37:33 router pptpd[22318]: CTRL: I wrote 32 bytes to the > client. > Apr 18 22:37:33 router pptpd[22319]: CTRL (PPPD Launcher): Connection > speed = 115200 > Apr 18 22:37:33 router pptpd[22318]: CTRL: Sent packet to client > Apr 18 22:37:33 router pppd[22319]: pppd 2.4.1 started by root, uid 0 > Apr 18 22:37:33 router pppd[22319]: using channel 76 > Apr 18 22:37:33 router pppd[22319]: Using interface ppp1 > Apr 18 22:37:33 router pppd[22319]: Connect: ppp1 <--> /dev/pts/1 > Apr 18 22:37:33 router pppd[22319]: sent [LCP ConfReq id=0x1 > ] > Apr 18 22:37:33 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d > 21 7d 21 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d > 22 dd 29 ... > Apr 18 22:37:36 router pppd[22319]: sent [LCP ConfReq id=0x1 > ] > Apr 18 22:37:36 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d > 21 7d 22 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d > 22 2a 27 ... > Apr 18 22:37:39 router pppd[22319]: sent [LCP ConfReq id=0x1 > ] > Apr 18 22:37:39 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d > 21 7d 23 7d 20 7d 2e 7d 25 7d 26 7d 20 61 dd 7d 35 7d 27 7d 22 7d 28 7d > 22 87 22 ... > Apr 18 22:37:39 router pppd[22319]: rcvd [proto=0x7eff] 7d 23 c0 21 7d > 25 7d 24 7d 20 7d 24 80 fe 7e > Apr 18 22:37:40 router pptpd[22318]: CTRL: Received PPTP Control Message > (type: 12) > Apr 18 22:37:40 router pptpd[22318]: CTRL: Made a CALL DISCONNECT RPLY > packet > Apr 18 22:37:40 router pptpd[22318]: CTRL: Received CALL CLR request > (closing call) > Apr 18 22:37:40 router pptpd[22318]: CTRL: I wrote 148 bytes to the > client. > Apr 18 22:37:40 router pppd[22319]: Modem hangup > Apr 18 22:37:40 router pppd[22319]: Connection terminated. > Apr 18 22:37:40 router pppd[22319]: Failed to open /dev/pts/1: No such > file or directory > Apr 18 22:37:40 router last message repeated 8 times > Apr 18 22:37:40 router pppd[22319]: Exit. > Apr 18 22:37:40 router pptpd[22318]: CTRL: Sent packet to client > Apr 18 22:37:40 router pptpd[22318]: CTRL: Error with select(), quitting > Apr 18 22:37:40 router pptpd[22318]: CTRL: Client 10.0.10.12 control > connection finished > Apr 18 22:37:40 router pptpd[22318]: CTRL: Exiting now > Apr 18 22:37:40 router pptpd[22298]: MGR: Reaped child 22318 > > > Same Problem with pppd 2.4.0. > > > > My config is as follows: > > pptp.conf: > > debug #This can be removed when things are > option /etc/ppp/options1 > localip 192.168.1.80-89 #look in the /etc/pptpd.conf file > remoteip 192.168.1.70-79 > > options1: > > lock > debug > auth > proxyarp > +chap > +chapms > +chapms-v2 > mppe-40 > mppe-128 > mppe-stateless > > chap-secrets: > > # Secrets for authentication using CHAP > # client server secret IP addresses > testing server 123 * > > > I also tried without encryption, it doesnt matter, same logs. > The Client sides gives a 650 on windows and a > Apr 18 21:13:03 jonas pppd[1999]: pppd 2.4.1 started by root, uid 0 > Apr 18 21:13:03 jonas pppd[1999]: Using interface ppp0 > Apr 18 21:13:03 jonas pppd[1999]: Connect: ppp0 <--> /dev/pts/4 > Apr 18 21:13:33 jonas pppd[1999]: LCP: timeout sending Config-Requests > Apr 18 21:13:33 jonas pppd[1999]: Connection terminated. > Apr 18 21:13:34 jonas pppd[1999]: Exit. > on linux. > > > Does anyone know howto fix this and/or has any suggestions? > > Thanks, > Jonas > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From dodorisio at cox.net Fri Apr 19 06:39:37 2002 From: dodorisio at cox.net (Daniel O'Dorisio (Home)) Date: Fri, 19 Apr 2002 07:39:37 -0400 Subject: [pptp-server] Problems with winXP and ME Message-ID: <000a01c1e796$e2b778b0$0a01a8c0@daniel> Hey guys, I am new here and I am having a heck of a time with getting PPTPD to work with windows xp and windows me. I have installed a new kernel and patched pppd as well as pptpd (all downloaded from ftp.planetmirror.com/pub/mppe, I got the rpms for redhat 7.2 by richard de vrode) it all works for a few windows 98 clients and a windows 2k client but on windows xp and windows me it dosnt want to connect on xp I get a 619 error and on me I get a 629 error, no there is no firewalls that are blocking it.. I checked into that.. My logs look something like this: Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: Starting call (launching pppd, opening GRE) Apr 18 12:25:19 Linux1 pppd[3884]: pppd 2.4.1 started by root, uid 0 Apr 18 12:25:19 Linux1 pppd[3884]: Using interface ppp0 Apr 18 12:25:19 Linux1 pppd[3884]: Connect: ppp0 <--> /dev/pts/2 Apr 18 12:25:19 Linux1 pptpd[3883]: Error writing GRE packet: Operation not permitted Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: GRE read or PTY write failed (gre,pty)=(6,5) Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: Client *.*.*.* control connection finished Apr 18 12:25:19 Linux1 pppd[3884]: Modem hangup Apr 18 12:25:19 Linux1 pppd[3884]: Connection terminated. Apr 18 12:25:19 Linux1 pppd[3884]: Exit. This was when the win me system tried to connect and I got the 629 error. My options files are as follows: ***********/etc/ppp/options***************** lock noauth proxyarp +chap +chapms-v2 mppe-40 mppe-128 mppe-stateless ************end************** ***********/etc/ppp/options.pptpd*********** ## CHANGE TO SUIT YOUR SYSTEM lock ## turn pppd syslog debugging on debug ## change 'pptpd' to whatever you specify as your server name in chap-secrets name pptpd auth require-chap proxyarp -chap -chapms +chapms-v2 mppe-128 mppe-stateless #ms-wins your.server.here #ms-dns your.server.here ******end************ I am a beginner and trying my hardest to learn this stuff, and I hate to ask for help but I have looke dup and down and don?t know where to turn next. Thanks in advance for any advice!! Daniel ----------------------------- Daniel O'Dorisio daniel at odorisio-networks.com www.odorisio-networks.com ----------------------------- From adrian at close.wattle.id.au Fri Apr 19 20:27:36 2002 From: adrian at close.wattle.id.au (Adrian Close) Date: Sat, 20 Apr 2002 11:27:36 +1000 (EST) Subject: [pptp-server] Getting BSD PPP + MPPE to work? Message-ID: Hi all, I've been searching the archives but haven't found what I need so far. If someone could tell me the special magic to get MPPE working with a Windows Me client and BSD (OpenBSD 3.1-current) server using userland PPP, I'd really appreciate it. I have PPTP working fine without payload encryption (encrypted auth works for me). But when I turn it on ('set mppe * *'), the Windows side seems to think it's negotiated a connection, but the link doesn't seem to work (no ping) and the BSD PPP logs fill up with rejection messages for constant changing bogus protocol numbers. I'm sure I've missed something trivial... Thanks, Adrian Close email: adrian at close.wattle.id.au 1 Old Gippsland Rd. web: http://www.close.wattle.id.au/~adrian Lilydale, VIC, 3140, Australia mobile: +61 412 385 201 From lists at colliniconsulting.it Sun Apr 21 03:35:37 2002 From: lists at colliniconsulting.it (Francesco) Date: Sun, 21 Apr 2002 10:35:37 +0200 Subject: R: [pptp-server] PPTP Connection over NAT In-Reply-To: <027401c1e70c$61630e30$01fea8c0@igor> Message-ID: Well, both for server and client side i think Zyxel Prestige 642R+ works fine; the only thing you must to do after buying it is upgrading firmware to the latest version, which is optimized for PPTP encapsulation. Bye, Francesco -----Messaggio originale----- Da: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]Per conto di Igor Maciel Macaubas Inviato: gioved? 18 aprile 2002 21.08 A: lists at colliniconsulting.it Cc: pptp-server at lists.schulte.org Oggetto: Re: [pptp-server] PPTP Connection over NAT Hi Francesco, Do you know about some ADSL Router that works fine with that? I would like to buy it. How does it cost? Do you have any experience with this type of connections? Thanks about your help! Regards, Igor -- igor.maciel at mailbr.com.br With ADSL router it should works fine. You can verify if the GRE protocol (protocol #47) is forwarded. Expecially, try to look if there are some firewall restrictions; usually some connectivity supplier put on their adsl routers some blocking filters. Bye, Francesco ----- Original Message ----- From: Igor Maciel Macaubas To: pptp-server at lists.schulte.org Sent: Tuesday, April 16, 2002 9:29 AM Subject: [pptp-server] PPTP Connection over NAT Hi all, I'd like to know if is possible to stablish a pptp connection over a nat. Let me explain: I have, at home, a simple ADSL modem (Ericsson HM220dp) and would like to connect to our VPNServer (with a real address) in the office to access my office network. This modem does simple NAT, so I have a fake address (right now it's 192.168.254.1 - the modem has 192.168.254.254) and when I try to connect to my VPN Server, it stays Verifying Username and password, and nothing happens. I'd like to know if there is some way to connect to my VPNServer even when I have a fake address and are doing NAT to navigate. All works fine with this modem (send/receive files in mIRC/ICQ/MSN - yes I have Winblows @ home). Can anyone helps me? Regards, Igor -- igor.maciel at mailbr.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From Entchen at entchen.com Sun Apr 21 04:18:09 2002 From: Entchen at entchen.com (Andreas Grote) Date: Sun, 21 Apr 2002 11:18:09 +0200 Subject: [pptp-server] Macintosh client and Poptop with encrytion? Message-ID: <04ea01c1e915$7484cd90$03a8a8c0@test1> Has anyone a positiv backfeed for Tunnelbuilder (MacOS9) or Diggitunneln (MacOSX) working with Poptop and encrytion?? So far I only managed to get Tunnelbuilder working without encryption! With encrytion i get a LCP Protocol-rej error I am running a SUSE LINUX 7.3 (also 8.0 tested) with ppp 2.4.1 .Poptop 1.2.1. The mppe patch seems to be applied allready. So I fiugre that they applied the Kernel pacth for mppe too! DOes anyone know how i can find this out for sure? thx , Andreas -------------- next part -------------- An HTML attachment was scrubbed... URL: From romie522 at hotmail.com Mon Apr 22 14:47:03 2002 From: romie522 at hotmail.com (Jerome Rock) Date: Mon, 22 Apr 2002 19:47:03 +0000 Subject: [pptp-server] PPTP Forwarding Message-ID: Does RedHat 7.1 (kernel 2.4.2-2) forward GRE packets to the outside world? I have my linux box set up for NAT and I'm wanting to make sure that my current kernel will allow GRE (PPTP) packets to the net. Thx Jerome _________________________________________________________________ Join the world?s largest e-mail service with MSN Hotmail. http://www.hotmail.com From vieira_nelson at hotmail.com Mon Apr 22 15:34:54 2002 From: vieira_nelson at hotmail.com (Nelson Vieira) Date: Mon, 22 Apr 2002 15:34:54 -0500 Subject: [pptp-server] PPTP Forwarding References: Message-ID: Just load the ip_masq_pptp module. It will allow pptp clients inside your private network to connect to pptp servers on the outside world. as root: modprobe ip_masq_pptp you can check if its loaded with: lsmod - ----- Original Message ----- From: "Jerome Rock" To: Sent: Monday, April 22, 2002 2:47 PM Subject: [pptp-server] PPTP Forwarding > Does RedHat 7.1 (kernel 2.4.2-2) forward GRE packets to the outside world? > I have my linux box set up for NAT and I'm wanting to make sure that my > current kernel will allow GRE (PPTP) packets to the net. > > Thx > Jerome > > > > _________________________________________________________________ > Join the world's largest e-mail service with MSN Hotmail. > http://www.hotmail.com > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- > From krusty at telus.net Mon Apr 22 15:47:20 2002 From: krusty at telus.net (James Nedila) Date: Mon, 22 Apr 2002 13:47:20 -0700 Subject: [pptp-server] Error 619 (win2000), Error 629 (winNT) using PoPToP 1.0.1 on OpenBSD 3.0 Message-ID: <3CC476D8.9030602@telus.net> Hi all, I've tried searching the archives, but I didn't see anything that helps with the errors i'm getting. poptop 1.0.1 on openbsd 3.0 pf is installed, but is wide open, as I can see all incoming packets using tcpdump. Here is my log file: Apr 22 13:39:39 winston pptpd[28694]: GRE: read(fd=5,buffer=6544,len=8196) from PTY failed: status = 0 error = No error Apr 22 13:39:39 winston ppp[32219]: tun0: Warning: Del route failed: ff02::%tun0/32: Non-existent Apr 22 13:39:39 winston ppp[32219]: tun0: Warning: ff02::%tun0/32: Change route failed: errno: Network is unreachable Apr 22 13:39:39 winston ppp[32219]: tun0: Warning: Del route failed: ff02::%tun0/32: Non-existent Apr 22 13:39:39 winston pptpd[28694]: CTRL: PTY read or GRE write failed (pty,gre)=(5,4) So the problem is with ppp here. I'm not trying to use anything fancy, just straight CHAP. I get error 619 on win2000, and error 629 on winnt. Any ideas? James Here is the relevent file info: /etc/pptpd.conf: debug speed 115200 localip 10.0.2.1 remoteip 10.0.2.150-200 /etc/ppp/options: debug auth require-chap proxyarp /etc/ppp/ppp.conf: default: set log Phase Chat LCP IPCP CCP tun command set device /dev/cua01 set speed 115200 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK-AT-OK ATE1Q0 OK \\dATDT\\T TIMEOUT 40 CONNECT" loop: set timeout 0 set log phase chat connect lcp ipcp command set device localhost:pptp set dial set login set ifaddr 10.0.2.1 10.0.2.150-10.0.2.200 255.255.255.0 set server /tmp/loop "" 0177 loop-in: set timeout 0 set log phase lcp ipcp command allow mode direct pptp: load loop enable chap disable pap enable proxy set dns 192.75.245.2 set device !/etc/ppp/secure From adrian at close.wattle.id.au Mon Apr 22 21:51:50 2002 From: adrian at close.wattle.id.au (Adrian Close) Date: Tue, 23 Apr 2002 12:51:50 +1000 (EST) Subject: [pptp-server] Error 619 (win2000), Error 629 (winNT) using PoPToP 1.0.1 on OpenBSD 3.0 In-Reply-To: <3CC476D8.9030602@telus.net> Message-ID: On Mon, 22 Apr 2002, James Nedila wrote: > poptop 1.0.1 on openbsd 3.0 pf is installed, but is wide open, as I can > see all incoming packets using tcpdump. > > Apr 22 13:39:39 winston pptpd[28694]: CTRL: PTY read or GRE write failed (pty,gre)=(5,4) Rebuild your kernel without GRE support? Otherwise the kernel snarfs those packets from pptpd. It would be nice to have support for the integrated in-kernel GRE, just in case you wanted to do something else with GRE on that box, but for now, just recompile with it. > So the problem is with ppp here. > I'm not trying to use anything fancy, just straight CHAP. If I'm right, it only _looks_ like the problem is with PPP. CHAP auth works. MSCHAPv2 will also work. And data payload encryption works if you set the right magic in /etc/ppp/ppp.conf (for me, "set mppe 128 stateless"). > /etc/pptpd.conf: > localip 10.0.2.1 > remoteip 10.0.2.150-200 There's no need to specify this here, since settings in ppp.conf control the addressing. > /etc/ppp/options: This is a file for the kernel PPP (i.e. 'pppd') stuff. It won't do anything for the userland PPP you're using. It won't hurt, either. > /etc/ppp/ppp.conf: > set device localhost:pptp I know this is in the sample configuration, but as far as I can tell it doesn't actually do anything (except confuse) since it's overridden by the 'set device !/etc/ppp/secure' later on. Besides, there's no "pptp" in /etc/services anyway... ;) Hope this helps. Adrian Close email: adrian at close.wattle.id.au 1 Old Gippsland Rd. web: http://www.close.wattle.id.au/~adrian Lilydale, VIC, 3140, Australia mobile: +61 412 385 201 Echelon teaser: MD5 RX-7 SSL Kiwi TRD DEADBEEF Bubba From mjo at pbj.dk Tue Apr 23 06:06:57 2002 From: mjo at pbj.dk (Mikael Johnsen) Date: Tue, 23 Apr 2002 13:06:57 +0200 Subject: [pptp-server] Error 619 Message-ID: <1DA605F7E2EAD411B7A9009027DDD2C3223DD0@PBJ-EXCHG> Hi Guys What is the typical reason for an error 619? Med venlig hilsen / Best regards Mikael Johnsen Systemadministrator / System Administrator PBJ Consult A/S Roholmsvej 10G DK-2620 Albertslund Phone: +45 43 62 74 00, Fax: +45 43 62 74 24 Email: mjo at pbj.dk, Homepage: www.pbj.dk -------------- next part -------------- An HTML attachment was scrubbed... URL: From r.devroede at linvision.com Tue Apr 23 06:25:33 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 23 Apr 2002 13:25:33 +0200 Subject: [pptp-server] Error 619 In-Reply-To: <1DA605F7E2EAD411B7A9009027DDD2C3223DD0@PBJ-EXCHG> References: <1DA605F7E2EAD411B7A9009027DDD2C3223DD0@PBJ-EXCHG> Message-ID: <1019561133.2099.67.camel@richard> This can be a lot of things. But if everything seems allright and you've managed to connect at least one time with a windows client, then your problem is ip_conntrack. The connection is being cached, and something goes wrong, for example more clients behind a NATted connection. There is a patch out there, but I haven't seen any testresults yet. Regards, Richard de Vroede On Tue, 2002-04-23 at 13:06, Mikael Johnsen wrote: > Hi Guys > > What is the typical reason for an error 619? > > > Med venlig hilsen / Best regards > Mikael Johnsen > Systemadministrator / System Administrator > > PBJ Consult A/S > Roholmsvej 10G > DK-2620 Albertslund > Phone: +45 43 62 74 00, Fax: +45 43 62 74 24 > Email: mjo at pbj.dk, Homepage: > www.pbj.dk > > > -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From r.devroede at linvision.com Tue Apr 23 06:38:19 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 23 Apr 2002 13:38:19 +0200 Subject: SV: [pptp-server] Error 619 In-Reply-To: <1DA605F7E2EAD411B7A9009027DDD2C3223DD2@PBJ-EXCHG> References: <1DA605F7E2EAD411B7A9009027DDD2C3223DD2@PBJ-EXCHG> Message-ID: <1019561899.2020.72.camel@richard> Exactly what I said. You've managed to connect one time, then your linuxbox cached the connection in /proc/net/ip_conntrack, then you tried again and it failed. Somewhere across the connection from client to server it got NATted or masqueraded, and the second time the server got confused. It should work when the entry is gone from ip_contrack. That should take about 10 minutes I think. Regards, Richard On Tue, 2002-04-23 at 13:28, Mikael Johnsen wrote: > But the client have already been on and then something went wrong > > -----Oprindelig meddelelse----- > Fra: R. de Vroede [mailto:r.devroede at linvision.com] > Sendt: 23. april 2002 13:26 > Til: Mikael Johnsen > Cc: pptp-server at lists.schulte.org > Emne: Re: [pptp-server] Error 619 > > > This can be a lot of things. But if everything seems allright and you've > managed to connect at least one time with a windows client, then your > problem is ip_conntrack. The connection is being cached, and something goes > wrong, for example more clients behind a NATted connection. There is a patch > out there, but I haven't seen any testresults yet. > > Regards, > Richard de Vroede > > > On Tue, 2002-04-23 at 13:06, Mikael Johnsen wrote: > > Hi Guys > > > > What is the typical reason for an error 619? > > > > > > Med venlig hilsen / Best regards > > Mikael Johnsen > > Systemadministrator / System Administrator > > > > PBJ Consult A/S > > Roholmsvej 10G > > DK-2620 Albertslund > > Phone: +45 43 62 74 00, Fax: +45 43 62 74 24 > > Email: mjo at pbj.dk, Homepage: > > www.pbj.dk > > > > > > > > -- > Richard de Vroede > (r.devroede at linvision.com) > ------------------------------------------------ > Linvision BV Provides Linux Solutions > Elektronicaweg 16D > 2628 XG Delft > T: +31157502310 info at linvision.com > F: +31157502319 http://devel.linvision.com > ------------------------------------------------ > > _______________________________________________ > pptp-server maillist - pptp-server at lists.schulte.org > http://lists.schulte.org/mailman/listinfo/pptp-server > --- To unsubscribe, go to the url just above this line. -- -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ From r.devroede at linvision.com Tue Apr 23 07:14:18 2002 From: r.devroede at linvision.com (R. de Vroede) Date: 23 Apr 2002 14:14:18 +0200 Subject: SV: SV: [pptp-server] Error 619 In-Reply-To: <1DA605F7E2EAD411B7A9009027DDD2C3223DD3@PBJ-EXCHG> References: <1DA605F7E2EAD411B7A9009027DDD2C3223DD3@PBJ-EXCHG> Message-ID: <1019564058.2020.77.camel@richard> Yups, but then you would have to restart after every connection. That's not an option. Try applying the netfilter kernelpatch I attached. It's for kernel 2.4.x Please tell me if it solves your problem. If so, I will include it in the next mppe-kernel RPM. Regards, Richard On Tue, 2002-04-23 at 13:48, Mikael Johnsen wrote: > Would restarting the linux server help? > > -----Oprindelig meddelelse----- > Fra: R. de Vroede [mailto:r.devroede at linvision.com] > Sendt: 23. april 2002 13:38 > Til: Mikael Johnsen > Cc: pptp-server at lists.schulte.org > Emne: Re: SV: [pptp-server] Error 619 > > > Exactly what I said. You've managed to connect one time, then your linuxbox > cached the connection in /proc/net/ip_conntrack, then you tried again and it > failed. Somewhere across the connection from client to server it got NATted > or masqueraded, and the second time the server got confused. It should work > when the entry is gone from ip_contrack. That should take about 10 minutes I > think. > > Regards, > Richard > > > On Tue, 2002-04-23 at 13:28, Mikael Johnsen wrote: > > But the client have already been on and then something went wrong > > > > -----Oprindelig meddelelse----- > > Fra: R. de Vroede [mailto:r.devroede at linvision.com] > > Sendt: 23. april 2002 13:26 > > Til: Mikael Johnsen > > Cc: pptp-server at lists.schulte.org > > Emne: Re: [pptp-server] Error 619 > > > > > > This can be a lot of things. But if everything seems allright and > > you've managed to connect at least one time with a windows client, > > then your problem is ip_conntrack. The connection is being cached, and > > something goes wrong, for example more clients behind a NATted > > connection. There is a patch out there, but I haven't seen any > > testresults yet. > > > > Regards, > > Richard de Vroede > > > > > > On Tue, 2002-04-23 at 13:06, Mikael Johnsen wrote: > > > Hi Guys > > > > > > What is the typical reason for an error 619? > > > > > > > > > Med venlig hilsen / Best regards > > > Mikael Johnsen > > > Systemadministrator / System Administrator > > > > > > PBJ Consult A/S > > > Roholmsvej 10G > > > DK-2620 Albertslund > > > Phone: +45 43 62 74 00, Fax: +45 43 62 74 24 > > > Email: mjo at pbj.dk, Homepage: > > > www.pbj.dk > > > > > > > > > > > > > -- > > Richard de Vroede > > (r.devroede at linvision.com) > > ------------------------------------------------ > > Linvision BV Provides Linux Solutions > > Elektronicaweg 16D > > 2628 XG Delft > > T: +31157502310 info at linvision.com > > F: +31157502319 http://devel.linvision.com > > ------------------------------------------------ > > > > _______________________________________________ > > pptp-server maillist - pptp-server at lists.schulte.org > > http://lists.schulte.org/mailman/listinfo/pptp-server > > --- To unsubscribe, go to the url just above this line. -- > -- > Richard de Vroede > (r.devroede at linvision.com) > ------------------------------------------------ > Linvision BV Provides Linux Solutions > Elektronicaweg 16D > 2628 XG Delft > T: +31157502310 info at linvision.com > F: +31157502319 http://devel.linvision.com > ------------------------------------------------ -- Richard de Vroede (r.devroede at linvision.com) ------------------------------------------------ Linvision BV Provides Linux Solutions Elektronicaweg 16D 2628 XG Delft T: +31157502310 info at linvision.com F: +31157502319 http://devel.linvision.com ------------------------------------------------ -------------- next part -------------- A non-text attachment was scrubbed... Name: netfilter_pptp_2_4_12.patch.gz Type: application/x-gzip Size: 11569 bytes Desc: not available URL: From romie522 at hotmail.com Tue Apr 23 09:51:53 2002 From: romie522 at hotmail.com (Jerome Rock) Date: Tue, 23 Apr 2002 14:51:53 +0000 Subject: [pptp-server] Passing GRE Packets Message-ID: Can anybody instruct me or dirrect me to a web site that can descibe to me how to get my 2.4.2-2 kernel under RH7.1 to work as a router and forward GRE (PPTP) packets? Jerome _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. From dodorisio at cox.net Tue Apr 23 12:51:40 2002 From: dodorisio at cox.net (Daniel O'Dorisio (Home)) Date: Tue, 23 Apr 2002 13:51:40 -0400 Subject: [pptp-server] Problems with winXP and ME In-Reply-To: <0GUU00IVJ1K3FM@mta5.rcsntx.swbell.net> Message-ID: <000201c1eaef$86045a00$0a01a8c0@daniel> Well I was going to.. But I have been bumped for now.. :-( they hired a contractor to come in and demo a sun box with checkpoint.. So redhat 7.2 and pptpd is out.. Really it was the best move for the company since I cant guarentee that I can get pptpd to work with xp or me.. But someday after I graduate when I can play with sun hardware and 1000 dollar software packages maybe I can do something similar:-) I definitely have learned a lot from this endavour.. But I still cant compile a kernel successuflly.. One of these days:-) im trying to switch my focus from MS (only thing I had for the first 3 years of my learning) to UNIX... And specializing in security:-) anywayz.. Thanks for all you guys help and especially the dedication you have to the open source community.. I cant explain how happy I was when I found vroede's kernel rpms on planetmirror.com at 12:00 at night.. Zzzz.. Anywayz.. Someday if my dreams come true you will know of me again.. O'Dorisio Networks -- a top security firm... That does the job right:-) till then.. Its just daniel ----------------------------- Daniel O'Dorisio daniel at odorisio-networks.com www.odorisio-networks.com ----------------------------- :-----Original Message----- :From: robert [mailto:berzerke at swbell.net] :Sent: Friday, April 19, 2002 4:45 PM :To: Daniel O'Dorisio (Home); pptp-server at lists.schulte.org :Subject: Re: [pptp-server] Problems with winXP and ME : : :Double check on firewalls. I know windows 2k comes with a :primative one. :Does xp come with one too? The clue is in the line: :> Apr 18 12:25:19 Linux1 pptpd[3883]: Error writing GRE :packet: Operation :> not permitted : :Something is blocking GRE. Can you do a GRE traceroute? : : :On Friday 19 April 2002 06:39 am, Daniel O'Dorisio (Home) wrote: :> Hey guys, :> I am new here and I am having a heck of a time with getting PPTPD to :> work with windows xp and windows me. I have installed a new :kernel and :> patched pppd as well as pptpd (all downloaded from :> ftp.planetmirror.com/pub/mppe, I got the rpms for redhat 7.2 :by richard :> de vrode) it all works for a few windows 98 clients and a windows 2k :> client but on windows xp and windows me it dosnt want to :connect on xp I :> get a 619 error and on me I get a 629 error, no there is no firewalls :> that are blocking it.. I checked into that.. My logs look something :> like this: :> :> Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: Starting call :(launching pppd, :> opening GRE) :> Apr 18 12:25:19 Linux1 pppd[3884]: pppd 2.4.1 started by root, uid 0 :> Apr 18 12:25:19 Linux1 pppd[3884]: Using interface ppp0 :> Apr 18 12:25:19 Linux1 pppd[3884]: Connect: ppp0 <--> /dev/pts/2 :> Apr 18 12:25:19 Linux1 pptpd[3883]: Error writing GRE :packet: Operation :> not permitted :> Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: GRE read or PTY :write failed :> (gre,pty)=(6,5) :> Apr 18 12:25:19 Linux1 pptpd[3883]: CTRL: Client *.*.*.* control :> connection finished :> Apr 18 12:25:19 Linux1 pppd[3884]: Modem hangup :> Apr 18 12:25:19 Linux1 pppd[3884]: Connection terminated. :> Apr 18 12:25:19 Linux1 pppd[3884]: Exit. :> :> This was when the win me system tried to connect and I got the 629 :> error. :> :> My options files are as follows: :> ***********/etc/ppp/options***************** :> lock :> noauth :> proxyarp :> +chap :> +chapms-v2 :> mppe-40 :> mppe-128 :> mppe-stateless :> ************end************** :> :> ***********/etc/ppp/options.pptpd*********** :> ## CHANGE TO SUIT YOUR SYSTEM :> lock :> :> ## turn pppd syslog debugging on :> debug :> :> ## change 'pptpd' to whatever you specify as your server name in :> chap-secrets :> name pptpd :> :> auth :> require-chap :> proxyarp :> -chap :> -chapms :> +chapms-v2 :> mppe-128 :> mppe-stateless :> #ms-wins your.server.here :> #ms-dns your.server.here :> ******end************ :> :> I am a beginner and trying my hardest to learn this stuff, :and I hate to :> ask for help but I have looke dup and down and don?t know :where to turn :> next. Thanks in advance for any advice!! :> :> Daniel : From mcgregorandrew at yahoo.ca Tue Apr 23 23:41:48 2002 From: mcgregorandrew at yahoo.ca (Andrew McGregor) Date: Wed, 24 Apr 2002 00:41:48 -0400 (EDT) Subject: [pptp-server] Cannot Connect A Second Time Message-ID: <20020424044148.49435.qmail@web13106.mail.yahoo.com> Hello All, Using Redhat 7.2 with PPTP Client 1.0.3 to connect to a Redhat 7.0 system running PopTop v1.0.1, I have an odd problem. The client connects fine the first time and everything works (telnet, ftp, etc...). But after disconnecting, the client cannot reconnect (using the pptp_command PERL script). It responds with the message: [root at localhost ppp]# ./pptp-command 1.) start 2.) stop 3.) setup 4.) quit What task would you like to do?: 1 1.) px Start a tunnel to which server?: 1 warn[open_inetsock:pptp_callmgr.c:305]: connect: Connection refused fatal[callmgr_main:pptp_callmgr.c:128]: Could not open control connection to 64.230.110.60 fatal[open_callmgr:pptp.c:243]: Call manager exited with error 256 On the server side, there are absolutely no messages after the first disconnect. netstat says all sockets are released, ps -ef says the pptp processes are gone. The only clue on the server side is the error message below, which occurs during the disconnect: Apr 23 22:53:37 romulus pptpd[1049]: CTRL: EOF or bad error reading ctrl packet length. Apr 23 22:53:37 romulus pptpd[1049]: CTRL: couldn't read packet header (exit) Apr 23 22:53:37 romulus pptpd[1049]: CTRL: CTRL read failed Apr 23 22:53:37 romulus pptpd[1049]: CTRL: Client 64.230.107.116 control connection finished Apr 23 22:53:37 romulus pppd[1050]: Modem hangup Apr 23 22:53:37 romulus pppd[1050]: Connection terminated. Apr 23 22:53:37 romulus pppd[1050]: Connect time 2.2 minutes. Apr 23 22:53:37 romulus pppd[1050]: Sent 428 bytes, received 508 bytes. Apr 23 22:53:37 romulus pppd[1050]: Exit. Any clues? ______________________________________________________________________ Only a few days left to file! http://taxes.yahoo.ca From xfzhu at seu.edu.cn Wed Apr 24 03:14:41 2002 From: xfzhu at seu.edu.cn (Zhu Xiaofeng) Date: Wed, 24 Apr 2002 16:14:41 +0800 Subject: [pptp-server] help . max 100 pptp connections on Linux 2.4.7-10? Message-ID: <002801c1eb68$15bd2cd0$781877ca@sunshine> Hi! I am currently using pptp on Linux 2.4.7-10 .I followed FAQ to patch dev_alloc_name() : <100 to <1024 . But when installed the new kernel , there was no difference between then new kernel and the old none. Still Only 100 connections!!!!!! Following is my step: 1 modify /usr/src/linux-2.4/net/core/dev.c dev_alloc_name( ) 2 make dep; make clean ;make bzImage ; make modules ;make modules_install 3 cp bzImage /boot/bzImage.1024 4 edit /etc/lilo.conf and run lilo 5 reboot Are there any mistakes? Or some special steps I missed ? Thanks! xfzhu From igor.maciel at mailbr.com.br Wed Apr 24 07:55:54 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Wed, 24 Apr 2002 09:55:54 -0300 Subject: [pptp-server] help . max 100 pptp connections on Linux 2.4.7-10? References: <002801c1eb68$15bd2cd0$781877ca@sunshine> Message-ID: <011201c1eb8f$6007a910$01fea8c0@igor> Hello, It's because you should not fixed the maxfiles open. Just make: echo 8192 > /proc/sys/kernel/file-max echo 16384 > /proc/sys/kernel/inode-max And put this two lines in your rc.local (or similar) file. Regards, Igor -- igor.maciel at mailbr.com.br ----- Original Message ----- From: "Zhu Xiaofeng" To: Cc: "Gill, Vern" Sent: Wednesday, April 24, 2002 5:14 AM Subject: [pptp-server] help . max 100 pptp connections on Linux 2.4.7-10? > Hi! > I am currently using pptp on Linux 2.4.7-10 .I followed FAQ to patch dev_alloc_name() : <100 to <1024 . But when installed the new kernel , > there was no difference between then new kernel and the old none. > Still Only 100 connections!!!!!! > Following is my step: > > 1 modify /usr/src/linux-2.4/net/core/dev.c dev_alloc_name( ) > 2 make dep; make clean ;make bzImage ; make modules ;make modules_install > 3 cp bzImage /boot/bzImage.1024 > 4 edit /etc/lilo.conf and run lilo > 5 reboot > > > Are there any mistakes? Or some special steps I missed ? > > Thanks! > > xfzhu > ????z??Y??????????[?????X????z??f?f?X???????N???r?z > ??????n??? -------------- next part -------------- An HTML attachment was scrubbed... URL: From igor.maciel at mailbr.com.br Wed Apr 24 16:41:01 2002 From: igor.maciel at mailbr.com.br (Igor Maciel Macaubas) Date: Wed, 24 Apr 2002 18:41:01 -0300 Subject: [pptp-server] PPPd problems Message-ID: <007501c1ebd8$bb8fa0a0$01fea8c0@igor> Hi all, I'm having problems in connection of some Windows 98 clients. Here is the log messages: Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Client 200.200.200.200 control connection started Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Starting call (launching pppd, opening GRE) Apr 24 18:05:46 vpn1 pppd[16871]: pppd 2.4.1b2 started by root, uid 0 Apr 24 18:05:46 vpn1 pppd[16871]: Using interface ppp2 Apr 24 18:05:46 vpn1 pppd[16871]: Connect: ppp2 <--> /dev/pts/3 Apr 24 18:06:03 vpn1 pppd[16871]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 0a 34 d7 dd 07 02 08 02 Apr 24 18:06:03 vpn1 pppd[16839]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 37 7b f9 6f 07 02 08 02 What's that? PPPd = ppp-2.4.1b2 PPTPd = 1.0.1 /etc/ppp/options: lock debug auth require-chap refuse-pap proxyarp ms-dns mydns.xxx.com ms-dns mydns2.xxx.com Someone can help me? -------------- next part -------------- An HTML attachment was scrubbed... URL: From macaubas at br.inter.net Wed Apr 24 16:54:34 2002 From: macaubas at br.inter.net (Igor Maciel Macaubas) Date: Wed, 24 Apr 2002 18:54:34 -0300 Subject: [pptp-server] Problems with pptp / ppp Message-ID: <00a101c1ebda$a8438640$01fea8c0@igor> Hi all, I'm having problems in connection of some Windows 98 clients. Here is the log messages: Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Client 200.200.200.200 control connection started Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Starting call (launching pppd, opening GRE) Apr 24 18:05:46 vpn1 pppd[16871]: pppd 2.4.1b2 started by root, uid 0 Apr 24 18:05:46 vpn1 pppd[16871]: Using interface ppp2 Apr 24 18:05:46 vpn1 pppd[16871]: Connect: ppp2 <--> /dev/pts/3 Apr 24 18:06:03 vpn1 pppd[16871]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 0a 34 d7 dd 07 02 08 02 Apr 24 18:06:03 vpn1 pppd[16839]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 37 7b f9 6f 07 02 08 02 What's that? PPPd = ppp-2.4.1b2 PPTPd = 1.0.1 /etc/ppp/options: lock debug auth require-chap refuse-pap proxyarp ms-dns mydns.xxx.com ms-dns mydns2.xxx.com Can someone help me? Windows 2000 / XP connects fine (no warnings, no problems). []'z Igor -- igor at fastbee.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: From jasons at NJAQUARIUM.ORG Thu Apr 25 08:08:26 2002 From: jasons at NJAQUARIUM.ORG (Jason Staudenmayer) Date: Thu, 25 Apr 2002 09:08:26 -0400 Subject: [pptp-server] Problems with pptp / ppp Message-ID: have you updated the win98 DUN? there was a fix for some connection problems -----Original Message----- From: Igor Maciel Macaubas [mailto:macaubas at br.inter.net] Sent: Wednesday, April 24, 2002 5:55 PM To: pptp-server at lists.schulte.org Subject: [pptp-server] Problems with pptp / ppp Hi all, I'm having problems in connection of some Windows 98 clients. Here is the log messages: Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Client 200.200.200.200 control connection started Apr 24 18:05:46 vpn1 pptpd[16870]: CTRL: Starting call (launching pppd, opening GRE) Apr 24 18:05:46 vpn1 pppd[16871]: pppd 2.4.1b2 started by root, uid 0 Apr 24 18:05:46 vpn1 pppd[16871]: Using interface ppp2 Apr 24 18:05:46 vpn1 pppd[16871]: Connect: ppp2 <--> /dev/pts/3 Apr 24 18:06:03 vpn1 pppd[16871]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 0a 34 d7 dd 07 02 08 02 Apr 24 18:06:03 vpn1 pppd[16839]: Received bad configure-ack: 02 06 00 00 00 00 03 05 c2 23 05 05 06 37 7b f9 6f 07 02 08 02 What's that? PPPd = ppp-2.4.1b2 PPTPd = 1.0.1 /etc/ppp/options: lock debug auth require-chap refuse-pap proxyarp ms-dns mydns.xxx.com ms-dns mydns2.xxx.com Can someone help me? Windows 2000 / XP connects fine (no warnings, no problems). []'z Igor -- igor at fastbee.com.br From farooq_bhatti at yahoo.com Sat Apr 27 05:35:15 2002 From: farooq_bhatti at yahoo.com (Muhammad Bhatti) Date: Sat, 27 Apr 2002 03:35:15 -0700 (PDT) Subject: [pptp-server] Help me Message-ID: <20020427103515.43805.qmail@web14808.mail.yahoo.com> Dear All I have to install a VPN on LAN switch between Windows 2000 as client and Linux Redhat 7.1 as pptp server. Please help me how can I install and configure both client and server boxes. I am new bie in VPN tehcnology. please help me Thanx in advance Bhatti __________________________________________________ Do You Yahoo!? Yahoo! Health - your guide to health and wellness http://health.yahoo.com From mej at kainx.org Mon Apr 29 13:02:26 2002 From: mej at kainx.org (Michael Jennings) Date: Mon, 29 Apr 2002 14:02:26 -0400 Subject: [pptp-server] PoPToP on RedHat 7.2 Message-ID: <20020429180226.GG8957@kainx.org> Trying to set up PPTP on a brand new Redhat 7.2 installation. The following appears in the syslog when the remote user tries to connect (IP address changed to protect the innocent): pptpd[12788]: CTRL: Client 11.22.33.44 control connection started pptpd[12788]: CTRL: Starting call (launching pppd, opening GRE) pppd[12789]: pppd 2.4.1 started by root, uid 0 pppd[12789]: Using interface ppp0 pppd[12789]: Connect: ppp0 <--> /dev/pts/1 pptpd[12788]: Error writing GRE packet: Operation not permitted pptpd[12788]: CTRL: GRE read or PTY write failed (gre,pty)=(5,4) pptpd[12788]: CTRL: Client 11.22.33.44 control connection finished pppd[12789]: Modem hangup pppd[12789]: Connection terminated. pppd[12789]: Exit. The ip_gre.o module is loaded, as are the relavent PPP modules. Any thoughts as to what I've missed? Thanks, Michael -- Michael Jennings (a.k.a. KainX) http://www.kainx.org/ n+1, Inc., http://www.nplus1.net/ Author, Eterm (www.eterm.org) ----------------------------------------------------------------------- "Love, like a road that never ends. How it leads me back again to heartache, I don't understand." -- Peter Cetera and Amy Grant, "Next Time I Fall" From romie522 at hotmail.com Mon Apr 29 15:07:16 2002 From: romie522 at hotmail.com (Jerome Rock) Date: Mon, 29 Apr 2002 20:07:16 +0000 Subject: [pptp-server] IPX Message-ID: Does anybody know if you can use POPTOP to act as an IPX PPTP server? Jerome _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. From charlieb at e-smith.com Mon Apr 29 15:12:45 2002 From: charlieb at e-smith.com (Charlie Brady) Date: Mon, 29 Apr 2002 16:12:45 -0400 (EDT) Subject: [pptp-server] Help me In-Reply-To: <20020427103515.43805.qmail@web14808.mail.yahoo.com> Message-ID: On Sat, 27 Apr 2002, Muhammad Bhatti wrote: > Please help me how can I install and configure both > client and server boxes. Here's a reasonable place to start: http://www.poptop.org/ That's if you want to do it yourself. OTOH, if you want someone to do the thinking for you, I'm sure there are consultants who will be happy to quote a price for you. -- Charlie Brady charlieb at e-smith.com Lead Product Developer Network Server Solutions Group http://www.e-smith.com/ Mitel Networks Corporation http://www.mitel.com/ Phone: +1 (613) 592 5660 or 592 2122 Fax: +1 (613) 592 1175 From fabio at ipway.com.br Mon Apr 29 15:17:46 2002 From: fabio at ipway.com.br (Fabio Oliveira) Date: Mon, 29 Apr 2002 17:17:46 -0300 Subject: RES: [pptp-server] IPX In-Reply-To: Message-ID: How PPTP is a layer-2 protocol so it should support any layer-3 protocol, like IPX. I have made no test with IPX networks, but I believe that it works. However you will need of a PPP daemon which supports IPX. There is a tag for you declare IPX networks in pptpd.conf, that is ipxnets. I hope this help... regards, Fabio Oliveira IPWay - Internet Services fabio at ipway.com.br (o- (o- (o- (o- (o- //\ //\ //\ //\ //\ V_/_ V_/_ V_/_ V_/_ V_/_ Live with freedom, choice Linux -----Mensagem original----- De: pptp-server-admin at lists.schulte.org [mailto:pptp-server-admin at lists.schulte.org]Em nome de Jerome Rock Enviada em: segunda-feira, 29 de abril de 2002 17:07 Para: pptp-server at lists.schulte.org Assunto: [pptp-server] IPX Does anybody know if you can use POPTOP to act as an IPX PPTP server? Jerome _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. _______________________________________________ pptp-server maillist - pptp-server at lists.schulte.org http://lists.schulte.org/mailman/listinfo/pptp-server --- To unsubscribe, go to the url just above this line. -- From aleksey_poptop at yahoo.com Mon Apr 29 15:55:50 2002 From: aleksey_poptop at yahoo.com (aleksey zakharov) Date: Mon, 29 Apr 2002 13:55:50 -0700 (PDT) Subject: [pptp-server] Help on Testing pptp Message-ID: <20020429205550.77601.qmail@web20207.mail.yahoo.com> First of all I must thank all of you who gave me support, helpful hints, and very detailed docs (www.jara.cc) I finally got my pptp running along with Shorewall Firewall (www.shorewall.org) According to my Window's ppp client my VPN system is using MS-ChapV2 for authentication and MPPE 128 for encryption. I can also see the same thing while vueving my logs on the VPN. I was wondering if there is a way to test the connections to see if it is ectually does send encrypted data over the tunnel. Please let me know. Thanks allot. --------------------------------- Do You Yahoo!? Yahoo! Health - your guide to health and wellness -------------- next part -------------- An HTML attachment was scrubbed... URL: From ables at pressureprofile.com Mon Apr 29 17:58:13 2002 From: ables at pressureprofile.com (David Ables) Date: Mon, 29 Apr 2002 15:58:13 -0700 Subject: [pptp-server] Trying to get started Message-ID: <005801c1efd1$57fdf8f0$6d39a8c0@PPSDOMAIN.local> Hi All, This appears to have been asked & answered, but in digging through the archives I still couldn't find what I'm doing wrong. I've RTFM, but they all seem to be a bit different. :) I can successfully establish the VPN connection from my Win98 & Win2k clients to my Linux box running pptpd, but that's all I can do. I can't ping anything from the client, including the server, while the server and various other Windows boxes on our intranet can all ping the client's internal address. Here are my particulars: Server running on Debian Linux Firewall (Testing/Woody with 2.2.20 kernel) Samba running on same machine as pptp server Internal network: 192.168.57.0 pptpd.conf speed 115200 option /etc/ppp/pptpd-options debug localip 192.168.57.200-209 remoteip 192.168.57.210-219 pptpd-options debug name servername domain DOMAIN auth require-chap ms-dns 192.168.57.1 ms-wins 192.168.57.1 netmask 255.255.255.0 nodefaultroute proxyarp lock When I ping the server from the client, I get Reply from 192.168.57.1: Destination port unreachable. When I ping an internal machine (e.g. 192.168.57.109) from the client, I get Reply from 192.168.57.200: Destination port unreachable. Looking at syslog after establishing the VPN connection, it does mention that it assigns the remote ip and internal ip correctly (verified using winipcfg.exe on the client machine), and it also notes the ms-wins and ms-dns settings as making it. Is it just something simple like not having my firewall settings done? I'm masquerading for the internal machines, and I'm allowing all port 1723 and protocol 47 traffic to the server/firewall. Thanks in advance. I finally convinced everyone that having a Linux machine playing firewall and Samba server would be a major upgrade for our new office, and if we can just get VPN working we"ll be in great shape! -david --- David C. Ables Director of Engineering Pressure Profile Systems, Inc. ables at pressureprofile.com http://www.pressureprofile.com From Progman2000 at usa.net Mon Apr 29 20:28:09 2002 From: Progman2000 at usa.net (Daniel Johnson) Date: Mon, 29 Apr 2002 20:28:09 -0500 Subject: [pptp-server] IPX In-Reply-To: Message-ID: <3CCDACD9.20690.C18A2B9@localhost> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 29 Apr 2002 at 20:07, Jerome Rock wrote: > Does anybody know if you can use POPTOP to act as an IPX PPTP > server? > > Jerome Yes, it works quite well (or did, the last time I tried it). Only major difference between IP and IPX is you must have IPX support in your kernel (or as a module), and you need the IPX interface tools running. The IPX RIP daemon wouldn't be a bad idea... One glitch: Win9x systems did not always see our Netware servers in time to auto-login. I think this delay is caused by ipxripd, but I'm not certain. - -- Through the modem, off the server, over the T1, past the frame-relay, < < NOTHIN' BUT NET > > Daniel Johnson Progman2000 at usa.net http://dannyj.come.to/ Public PGP Keys & other info: http://dannyj.come.to/pgp/ -----BEGIN PGP SIGNATURE----- Version: 6.5.8ckt Build 07 - http://www.ipgpp.com/ Comment: http://dannyj.come.to/pgp Comment: KeyID: 0xEAF19C50163E81EF iQA/AwUBPM3NEurxnFAWPoHvEQKOtgCgjiIYcMGQ3Qg00VrwZmbA1EULS UoAnRtr W8r03Ubq9DrYWcNutStkDC8M =LkFL -----END PGP SIGNATURE-----