[pptp-server] Having trouble getting encryption working.

R. de Vroede r.devroede at linvision.com
Fri Jun 7 04:10:09 CDT 2002


Did I mention that you should use MSDun-1.4 for win9x to get it to do
128-bits encryption?
Also you could try Windows XP, to see if that works, if it doesn't
damned if I know what then...

Regards,
Richard


On Thu, 2002-06-06 at 17:07, Robert Green wrote:
> I went ahead and tried the pptpd-1.1.2 and that didn't help.  I am posting
> the log.
> 
> Jun  5 10:07:57 flame pptpd[3271]: MGR: Launching /usr/local/sbin/pptpctrl
> to handle client
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: local address = 192.168.0.2
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: remote address = 192.168.1.2
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: pppd speed = 115200
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: pppd options file =
> /etc/ppp/options.pptp
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Client 192.168.101.50 control
> connection started
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Received PPTP Control Message
> (type: 1)
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Made a START CTRL CONN RPLY packet
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: I wrote 156 bytes to the client.
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Sent packet to client
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Received PPTP Control Message
> (type: 7)
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: 0 min_bps, 0 max_bps, 32 window
> size
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Made a OUT CALL RPLY packet
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Starting call (launching pppd,
> opening GRE)
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: pty_fd = 5
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: tty_fd = 6
> Jun  5 10:07:57 flame pptpd[3272]: CTRL (PPPD Launcher): Connection speed =
> 115200
> Jun  5 10:07:57 flame pptpd[3272]: CTRL (PPPD Launcher): local address =
> 192.168.0.2
> Jun  5 10:07:57 flame pptpd[3272]: CTRL (PPPD Launcher): remote address =
> 192.168.1.2
> Jun  5 10:07:57 flame pppd[3272]: pppd 2.4.1 started by root, uid 0
> Jun  5 10:07:57 flame pppd[3272]: Using interface ppp0
> Jun  5 10:07:57 flame pppd[3272]: Connect: ppp0 <--> /dev/pts/1
> Jun  5 10:07:57 flame pppd[3272]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xac22a8bc> <pcomp> <accomp>]
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: I wrote 32 bytes to the client.
> Jun  5 10:07:57 flame pptpd[3271]: CTRL: Sent packet to client
> Jun  5 10:07:57 flame pptpd[3271]: Buffering out-of-order packet; got 1
> after 4294967295
> Jun  5 10:08:00 flame pppd[3272]: sent [LCP ConfReq id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xac22a8bc> <pcomp> <accomp>]
> Jun  5 10:08:00 flame pptpd[3271]: Packet reorder timeout waiting for 0
> Jun  5 10:08:00 flame pptpd[3271]: Buffering out-of-order packet; got 2
> after 0
> Jun  5 10:08:00 flame pppd[3272]: rcvd [LCP ConfReq id=0x1 <magic 0x9547>
> <pcomp> <accomp>]
> Jun  5 10:08:00 flame pppd[3272]: sent [LCP ConfAck id=0x1 <magic 0x9547>
> <pcomp> <accomp>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0>
> <auth chap 81> <magic 0xac22a8bc> <pcomp> <accomp>]
> Jun  5 10:08:00 flame pppd[3272]: sent [CHAP Challenge id=0x1
> <572811b06969278d3b9ff2b6ad10718b>, name = "flame"]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CHAP Response id=0x1
> <8958847f34663961012a2bfd2e4c004f00000000000000003b7cafb23f5f4088abd6f79046d785ea16631f7c42bffb9304>,
> name = "rng"]
> Jun  5 10:08:00 flame pppd[3272]: sent [CHAP Success id=0x1
> "S=9FE5ED19EB9ED845C90B076550BDCF47E216621C"]
> Jun  5 10:08:00 flame pppd[3272]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.2> <compress VJ 0f 01>]
> Jun  5 10:08:00 flame kernel: PPP BSD Compression module registered 
> Jun  5 10:08:00 flame kernel: PPP Deflate Compression module registered 
> Jun  5 10:08:00 flame pppd[3272]: sent [CCP ConfReq id=0x1 <deflate 15>
> <deflate(old#) 15> <bsd v1 15>]
> Jun  5 10:08:00 flame pppd[3272]: MSCHAP-v2 peer authentication succeeded
> for rng
> Jun  5 10:08:00 flame pppd[3272]: rcvd [IPCP ConfReq id=0x1 <addr 0.0.0.0>
> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> Jun  5 10:08:00 flame pppd[3272]: sent [IPCP ConfRej id=0x1 <ms-dns1
> 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CCP ConfReq id=0x1 <mppe 1 0 0 30>]
> Jun  5 10:08:00 flame pppd[3272]: sent [CCP ConfRej id=0x1 <mppe 1 0 0 60>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f
> 01>]
> Jun  5 10:08:00 flame pppd[3272]: sent [IPCP ConfReq id=0x2 <addr
> 192.168.0.2>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CCP ConfRej id=0x1 <deflate 15>
> <deflate(old#) 15> <bsd v1 15>]
> Jun  5 10:08:00 flame pppd[3272]: sent [CCP ConfReq id=0x2]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [IPCP ConfReq id=0x2 <addr 0.0.0.0>]
> Jun  5 10:08:00 flame pppd[3272]: sent [IPCP ConfNak id=0x2 <addr
> 192.168.201.240>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CCP ConfReq id=0x2]
> Jun  5 10:08:00 flame pppd[3272]: sent [CCP ConfAck id=0x2]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [IPCP ConfAck id=0x2 <addr
> 192.168.0.2>]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CCP ConfAck id=0x2]
> Jun  5 10:08:00 flame pppd[3272]: rcvd [IPCP ConfReq id=0x3 <addr
> 192.168.201.240>]
> Jun  5 10:08:00 flame pppd[3272]: sent [IPCP ConfAck id=0x3 <addr
> 192.168.201.240>]
> Jun  5 10:08:00 flame pppd[3272]: found interface eth0 for proxy arp
> Jun  5 10:08:00 flame pppd[3272]: local  IP address 192.168.0.2
> Jun  5 10:08:00 flame pppd[3272]: remote IP address 192.168.201.240
> Jun  5 10:08:00 flame pppd[3272]: Script /etc/ppp/ip-up started (pid 3275)
> Jun  5 10:08:00 flame pppd[3272]: rcvd [CCP TermReq id=0x3]
> Jun  5 10:08:00 flame pppd[3272]: CCP terminated by peer
> Jun  5 10:08:00 flame pppd[3272]: sent [CCP TermAck id=0x3]
> Jun  5 10:08:00 flame pppd[3272]: Compression disabled by peer.
> Jun  5 10:08:01 flame pppd[3272]: Script /etc/ppp/ip-up finished (pid 3275),
> status = 0x0
> Jun  5 10:08:05 flame pppd[3272]: rcvd [LCP TermReq id=0x2]
> Jun  5 10:08:05 flame pppd[3272]: LCP terminated by peer
> Jun  5 10:08:05 flame pppd[3272]: Script /etc/ppp/ip-down started (pid 3305)
> Jun  5 10:08:05 flame pppd[3272]: sent [LCP TermAck id=0x2]
> Jun  5 10:08:05 flame pptpd[3271]: CTRL: Received PPTP Control Message
> (type: 12)
> Jun  5 10:08:05 flame pptpd[3271]: CTRL: Made a CALL DISCONNECT RPLY packet
> Jun  5 10:08:05 flame pptpd[3271]: CTRL: Received CALL CLR request (closing
> call)
> Jun  5 10:08:05 flame pptpd[3271]: CTRL: I wrote 148 bytes to the client.
> Jun  5 10:08:05 flame pptpd[3271]: CTRL: Sent packet to client
> Jun  5 10:08:05 flame pppd[3272]: Modem hangup
> Jun  5 10:08:05 flame pppd[3272]: Connection terminated.
> Jun  5 10:08:05 flame pppd[3272]: Connect time 0.2 minutes.
> Jun  5 10:08:05 flame pppd[3272]: Sent 499 bytes, received 452 bytes.
> Jun  5 10:08:05 flame pppd[3272]: Waiting for 1 child processes...
> Jun  5 10:08:05 flame pppd[3272]:   script /etc/ppp/ip-down, pid 3305
> Jun  5 10:08:05 flame pppd[3272]: Script /etc/ppp/ip-down finished (pid
> 3305), status = 0x0
> Jun  5 10:08:05 flame pppd[3272]: Exit.
> Jun  5 10:08:10 flame pptpd[3271]: GRE: read error: Bad file descriptor
> Jun  5 10:08:10 flame pptpd[3271]: CTRL: PTY read or GRE write failed
> (pty,gre)=(-1,-1)
> Jun  5 10:08:10 flame pptpd[3271]: CTRL: Client 192.168.101.50 control
> connection finished
> Jun  5 10:08:10 flame pptpd[3271]: CTRL: Exiting now
> Jun  5 10:08:10 flame pptpd[3154]: MGR: Reaped child 3271
> 
> 
> On Thu, Jun 06, 2002 at 10:40:19AM +0200, R. de Vroede wrote:
> > That log looks fishy..
> > The reaped child problem was fixed in 1.1.2.
> > http://planetmirror.com/pub/mppe
> > You should get it.
> > 
> > Regards,
> > Richard
> > 
> > 
> > > OK,  I have been having a lot of trouble getting encryption working with a
> > > RH6.2 box and a win98 box.
> > > 
> > > I have the following setup:
> > > RH 6.2 box running with a 2.2.20 kernel
> > > pptp-1.0.1
> > > pppd-2.4.1
> > > and I had to go here to find the kernel patches for ppp and mppe
> > >    http://ftp.samba.org/ftp/unpacked/ppp/
> > > (pppd compiles from this archive but does not work right.  The kernel
> > > modules seem to work though)
> > > 
> > > The problem is I turn on encryption on the windows box and then try
> > > connecting.  I get the dreaded Error 742 message.  I look at my linux box
> > > and all of the modules are present (ppp_deflate, bsd_comp, ppp_mppe, ppp,
> > > slhc).
> > > 
> > > My options file looks like this:
> > > 
> > > lock
> > > debug 
> > > name flame
> > > procyarp
> > > +chapms-v2
> > > mppe-40
> > > mppe-128
> > > mppe-stateless
> > > 
> > > I have tried several combinations of removing the mppe lines with no
> > > success.  
> > > 
> > > What am I doing wrong?  Also is there a cononoical archive of all the right
> > > patches/kernel modules/etc that I need to be looking at?  I can't help but
> > > think that there might be something that didn't compile right. 
> > > 
> > > TIA,
> > > Robert
> > > 
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > --- To unsubscribe, go to the url just above this line. --
> > -- 
> > Richard de Vroede
> > (r.devroede at linvision.com)
> > ------------------------------------------------
> > Linvision BV         Provides Linux Solutions
> > Elektronicaweg 16D
> > 2628 XG Delft
> > T: +31157502310      info at linvision.com
> > F: +31157502319      http://devel.linvision.com
> > ------------------------------------------------
> > 
-- 
Richard de Vroede
(r.devroede at linvision.com)
------------------------------------------------
Linvision BV         Provides Linux Solutions
Elektronicaweg 16D
2628 XG Delft
T: +31157502310      info at linvision.com
F: +31157502319      http://devel.linvision.com
------------------------------------------------




More information about the pptp-server mailing list