[pptp-server] Require chapms-v2

Bo Byrd byrdr at corp.earthlink.net
Thu Apr 11 12:02:33 CDT 2002 

My rh7.1 2.4.2 poptop server refuses pap and chapms, but accepts chap
and chapms-v2  I want it to refuse everything but champs-v2 with
mppe-128-stateless...
I used the instructions at http://www.shorewall.net/PPTP.htm and applied
4 patches:

ppp-2.4.1-openssl-0.9.6-mppe.patch to ppp-2.4.1
ppp-2.4.1-MSCHAPv2-fix.patch to ppp-2.4.1
require-mppe.diff to ppp-2.4.1
linux-2.4.4-openssl-0.9.6b-mppe.patch to the kernel


I cant figure out how to get it to refuse chap...heres my config:

debug
lock
mtu 1490
mru 1490
ms-dns 207.69.188.186
ms-dns 207.69.188.188
proxyarp
auth
-pap
-chap
-chapms
refuse-pap
refuse-chap
refuse-chapms
require-chapms-v2
+chapms-v2
lcp-echo-failure 30
lcp-echo-interval 5
deflate 0
mppe-128
mppe-stateless
require-mppe
require-mppe-stateless


Is this normal?

Thanks,
Bo



I used the instructions at http://www.shorewall.net/PPTP.htm and applied
4 patches:
ppp-2.4.1-openssl-0.9.6-mppe.patch to ppp-2.4.1
ppp-2.4.1-MSCHAPv2-fix.patch to ppp-2.4.1
require-mppe.diff to ppp-2.4.1
linux-2.4.4-openssl-0.9.6b-mppe.patch to the kernel

-----Original Message-----
From: pptp-server-admin at lists.schulte.org
[mailto:pptp-server-admin at lists.schulte.org] On Behalf Of Francesco
Sent: Thursday, April 11, 2002 1:07 AM
To: Pptp-Server
Subject: [pptp-server] 10Mbit VPN line


Hello,

i am using a vpn pptp connection between two linux gateways to join a
remote branch office to the central quarter. The connection is based
over two ALDS lines. The enterprise wants to improve this VPN and, as in
that city there is the optical fibre internet connections available,
they are thinking buying two 10Mb optical fibre lines.

Two problem: can poptop support this kind of fast connections or i will
have a reduction of the bandwith available? To crypt/decrypt the data in
case of heavy traffic on the vpn, do you think the two pentium 166/64Mb
RAM i have are enough or i must have to furnish two better machines?

Thank you, hoping hear from you soon.

Bye,

Francesco Collini

_______________________________________________
pptp-server maillist  -  pptp-server at lists.schulte.org
http://lists.schulte.org/mailman/listinfo/pptp-server
--- To unsubscribe, go to the url just above this line. --

More information about the pptp-server mailing list