[pptp-server] pppd and redhat 7.2

Jerry Vonau jvonau at home.com
Sun Jan 6 10:46:54 CST 2002 

Chris:


In your log just above the snip that you posted is there
a line like this?
----from the newsgroup------ 

]Jan  1 17:06:51 clarkconnect pppd[5393]: rcvd [LCP ConfReq
id=0x1 <asyncmap
]0xa0000> <magic 0x10cc4f5> <pcomp> <accomp> <callback
CBCP>]

The Win machine asks for callback (CBCP)

Jan  1 17:06:51 clarkconnect pppd[5393]: sent [LCP ConfAck
id=0x1 <asyncmap
0xa0000> <magic 0x10cc4f5> <pcomp> <accomp> <callback CBCP>]

The Linux machine accepts ( ConfAck= Configuration
acknowledged) but
Linux ppp cannot do server side callback and has no
intention of doing
so in this case.
The authentication proceeds as per the standard for CBCP and
then the
Win machine hangs up. HOwever Linux keeps trying to
negotiate which is
just wrong. The Win machine never answers since it has hung
up waiting
for the callback. 


]Jan  1 17:06:52 clarkconnect pppd[5393]: sent [IPCP ConfReq
id=0x1 <addr
]192.168.1.200> <compress VJ 0f 01>]
]Jan  1 17:06:52 clarkconnect pppd[5393]: sent [CCP ConfReq
id=0x1 <deflate
]15> <deflate(old#) 15> <bsd v1 15>]
]Jan  1 17:06:52 clarkconnect pppd[5393]: CHAP peer
authentication succeeded
]for janne
]Jan  1 17:06:55 clarkconnect pppd[5393]: sent [IPCP ConfReq
id=0x1 <addr
]192.168.1.200> <compress VJ 0f 01>]
]Jan  1 17:06:55 clarkconnect pppd[5393]: sent [CCP ConfReq
id=0x1 <deflate
]15> <deflate(old#) 15> <bsd v1 15>]
]Jan  1 17:06:58 clarkconnect pppd[5393]: sent [IPCP ConfReq
id=0x1 <addr

... 
and so on till the Linux ppp gives up never gettinga
response.

..

]I really am a newbie both with vpn and linux so i hope you
can tell me
]what's going wrong exactly and how to fix it.

I did. What is wrong is that RedHat screwed up, and they
refuse to fix
their screw up. Their cbcp patch is just wrong, and is
causeing this. 
I also told you how to fix it-- get either the original ppp
2.4.1 from
ftp.samba.org/pub/ppp or get the Mandrake ppp 2.4.1 rpm from
their 8.1
distribution. ( they did not install that bad patch that
RedHat did.)

-----thanks to Bill Unruh for the post----------

The callback is the problem, if your pppd is 2.4.1 from
redhat, 
then it is broken. 

Jerry Vonau


Jerry Vonau wrote:
> 
> Chris:
> ---------
> I've configured it to just use CHAP, Optional encryption,
> PPTP VPN.
> ---------
> 
> If you have not patched pppd/kernel, then set the client up
> to be able
> to use no encryption, that is the level of the server at
> this point.
> 
> With win2000, there is an option to use "no encryption
> allowed"
> I'm not sure if that is available with XP, might be KB at MS
> for
> that sort if thing if it is not present.
> 
> What version of pppd is installed? You may have to upgrade
> 2.4.1
> anyway, as others people on the newsgroup comp.protocols.ppp
> have
> said that redhat's version is a little broken out of the
> box.
> I think it has problems parsing any options.xxx files.
> Hope it helps.....
> 
> Jerry Vonau
> 
> Chris Bond wrote:
> >
> > Just setup pptpd - I have not updated pppd or the kernel with the mschap
> > patches.  Connect from a Windows XP VPN Client and I get the following -
> > I've configured it to just use CHAP, Optional encryption, PPTP VPN.
> >
> > For some reason it will not connect, I've got  the following
> > /etc/ppp/options.pptp file:
> >
> > lock
> > debug
> > auth
> > +chap
> > proxyarp
> > nobsdcomp
> > nodeflate
> >
> > /etc/pptpd.conf is:
> > speed 115200
> > option /etc/ppp/options.pptp
> > localip 192.168.0.1
> > remoteip 192.168.0.240-245
> >
> > The error logs when I connect are as follows:
> >
> > Jan  6 15:39:13 vibe pppd[6087]: rcvd [CHAP Response id=0x1
> > <aaa8f4e2c9f52a073a321ab7a4c835b8>, name = "chris"]
> > Jan  6 15:39:13 vibe pppd[6087]: sent [CHAP Success id=0x1 "Welcome to
> > vibe."]
> > Jan  6 15:39:13 vibe pppd[6087]: sent [IPCP ConfReq id=0x1 <addr
> > 192.168.0.1> <compress VJ 0f 01>]
> > Jan  6 15:39:13 vibe pppd[6087]: CHAP peer authentication succeeded for
> > chris
> > Jan  6 15:39:16 vibe pppd[6087]: sent [IPCP ConfReq id=0x1 <addr
> > 192.168.0.1> <compress VJ 0f 01>]
> > Jan  6 15:39:40 vibe last message repeated 8 times
> > Jan  6 15:39:43 vibe pppd[6087]: IPCP: timeout sending Config-Requests
> > Jan  6 15:39:43 vibe pppd[6087]: sent [LCP TermReq id=0x4 "No network
> > protocols
> > running"]
> > Jan  6 15:39:43 vibe pppd[6087]: rcvd [LCP TermAck id=0x4 "No network
> > protocols
> > running"]
> > Jan  6 15:39:43 vibe pppd[6087]: Connection terminated.
> > Jan  6 15:39:43 vibe pppd[6087]: Connect time 0.6 minutes.
> > Jan  6 15:39:43 vibe pppd[6087]: Sent 160 bytes, received 0 bytes.
> > Jan  6 15:39:43 vibe pptpd[6086]: CTRL: Error with select(), quitting
> > Jan  6 15:39:43 vibe pptpd[6086]: CTRL: Client 192.168.0.2 control
> > connection finished
> >
> > It authenticates the client with CHAP successfully but fails to set the
> > network protocols.
> >
> > I think it maybe something to do with Compression but there is no option
> > to disable it on the VPN client.  I've tried enabling them by taking the
> > options out of options.pptp and it just sends LCP requests for deflate
> > and then disconnects eventually. The VPN Client gives a Error 734: The
> > PPP link control protocol was terminated messages.
> >
> > Any ideas how to sort this out without recompiling the kernel or pppd?
> >
> > Kind Regards,
> > Chris Bond
> >
> > > -----Original Message-----
> > > From: pptp-server-admin at lists.schulte.org [mailto:pptp-server-
> > > admin at lists.schulte.org] On Behalf Of Charlie Brady
> > > Sent: 05 January 2002 10:55 PM
> > > To: Chris Bond
> > > Cc: pptp-server at lists.schulte.org
> > > Subject: Re: [pptp-server] pppd and redhat 7.2
> > >
> > >
> > > On Sat, 5 Jan 2002, Chris Bond wrote:
> > >
> > > > Before I go recompiling pppd on my redhat 7.2 system, does anybody
> > know
> > > > if it has the proper patches for chap etc to get PoPToP working?
> > >
> > > Yes, and no.
> > >
> > > --
> > > Charlie Brady                         charlieb at e-smith.com
> > > Lead Product Developer
> > > Network Server Solutions Group        http://www.e-smith.com/
> > > Mitel Networks Corporation            http://www.mitel.com/
> > > Phone: +1 (613) 368 4376 or 564 8000  Fax: +1 (613) 564 7739
> > >
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > --- To unsubscribe, go to the url just above this line. --
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > --- To unsubscribe, go to the url just above this line. --

More information about the pptp-server mailing list