[pptp-server] Continuing adventures with cvs pppd

Alex King alex at morrison.king.net.nz
Mon May 13 21:36:15 CDT 2002 

OK, I can now get a mschap (v1) and mppe-128 connection between my
Win95/DUN1.4 client and my poptop/cvs pppd server.

However, the worry is (appart from chap-v2 not working) that mppe
encryption is not being enforced.

Here are my pppd options for pptpd:

auth
require-mschap
require-mppe-128
require-mppe
ms-dns 10.0.0.1
ms-wins 10.0.0.1
netmask 255.255.255.0
nodefaultroute
proxyarp
lock
kdebug 7

With "Require encrypted passowrd" and "Require data encryption" not set
on the client, although the server sends CCP requests for MPPE, these
are not answered by the client, and the connection continues
unencrypted.

When "Require encrypted passowrd" and "Require data encryption" are set
in the client, MPPE encryption is properly negoiated, and used.

I would rather have pppd close the connection if the required encryption
is not abvailable......

Alex

-------------- next part --------------
May 14 14:17:59 morrison pptpd[2778]: CTRL (PPPD Launcher): Connection speed = 115200
May 14 14:17:59 morrison pptpd[2778]: CTRL (PPPD Launcher): local address = 10.0.0.1
May 14 14:17:59 morrison pptpd[2778]: CTRL (PPPD Launcher): remote address = 10.0.0.128
May 14 14:17:59 morrison pppd[2778]: pppd 2.4.2b1 started by root, uid 0
May 14 14:17:59 morrison pppd[2778]: using channel 32
May 14 14:17:59 morrison pppd[2778]: Using interface ppp1
May 14 14:17:59 morrison pppd[2778]: Connect: ppp1 <--> /dev/pts/6
May 14 14:17:59 morrison pppd[2778]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0xce767152> <pcomp> <accomp>]
May 14 14:18:02 morrison pppd[2778]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0xce767152> <pcomp> <accomp>]
May 14 14:18:02 morrison pppd[2778]: rcvd [LCP ConfReq id=0x1 <magic 0xa29b95> <pcomp> <accomp>]
May 14 14:18:02 morrison pppd[2778]: sent [LCP ConfAck id=0x1 <magic 0xa29b95> <pcomp> <accomp>]
May 14 14:18:02 morrison pppd[2778]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0xce767152> <pcomp> <accomp>]
May 14 14:18:02 morrison pppd[2778]: sent [CHAP Challenge id=0x1 <c089d12213789868>, name = "morrison"]
May 14 14:18:02 morrison pppd[2778]: rcvd [CHAP Response id=0x1 <5d159d6ea122848cf7fec37c43ea9ff531c15b5ab0b4c7c4752794d970c0654b10ad55d7343ac1a5e5a254819ac13d8701>, name = "workgroup\\alex"]
May 14 14:18:02 morrison pppd[2778]: sent [CHAP Success id=0x1 "Welcome to morrison.itspace."]
May 14 14:18:02 morrison pppd[2778]: sent [IPCP ConfReq id=0x1 <addr 10.0.0.1> <compress VJ 0f 01>]
May 14 14:18:02 morrison pppd[2778]: Disabling 40-bit MPPE; MS-CHAP LM not supported
May 14 14:18:02 morrison pppd[2778]: Disabling 40-bit MPPE; MS-CHAP LM not supported
May 14 14:18:02 morrison pppd[2778]: sent [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>]
May 14 14:18:02 morrison pppd[2778]: CHAP peer authentication succeeded for workgroup\\alex
May 14 14:18:02 morrison pppd[2778]: rcvd [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
May 14 14:18:02 morrison pppd[2778]: sent [IPCP ConfNak id=0x1 <addr 10.0.0.128> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:18:02 morrison pppd[2778]: rcvd [IPCP ConfAck id=0x1 <addr 10.0.0.1> <compress VJ 0f 01>]
May 14 14:18:02 morrison pppd[2778]: rcvd [LCP ProtRej id=0x2 80 fd 01 01 00 0a 12 06 01 00 00 40]
May 14 14:18:02 morrison pppd[2778]: rcvd [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 10.0.0.128> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:18:02 morrison pppd[2778]: sent [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 10.0.0.128> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:18:02 morrison pppd[2778]: Cannot determine ethernet address for proxy ARP
May 14 14:18:02 morrison pppd[2778]: local  IP address 10.0.0.1
May 14 14:18:02 morrison pppd[2778]: remote IP address 10.0.0.128
May 14 14:18:02 morrison pppd[2778]: Script /etc/ppp/ip-up started (pid 2787)
May 14 14:18:04 morrison pppd[2778]: Script /etc/ppp/ip-up finished (pid 2787), status = 0x0
May 14 14:18:08 morrison pppd[2778]: rcvd [LCP TermReq id=0x3]
May 14 14:18:08 morrison pppd[2778]: LCP terminated by peer
May 14 14:18:08 morrison pppd[2778]: Script /etc/ppp/ip-down started (pid 2799)
May 14 14:18:08 morrison pppd[2778]: sent [LCP TermAck id=0x3]
May 14 14:18:08 morrison pppd[2778]: Modem hangup
May 14 14:18:08 morrison pppd[2778]: Connection terminated.
May 14 14:18:08 morrison pppd[2778]: Connect time 0.2 minutes.
May 14 14:18:08 morrison pppd[2778]: Sent 100 bytes, received 152 bytes.
May 14 14:18:08 morrison pppd[2778]: Waiting for 1 child processes...
May 14 14:18:08 morrison pppd[2778]:   script /etc/ppp/ip-down, pid 2799
May 14 14:18:08 morrison pppd[2778]: Script /etc/ppp/ip-down finished (pid 2799), status = 0x0
May 14 14:18:08 morrison pppd[2778]: Connect time 0.2 minutes.
May 14 14:18:08 morrison pppd[2778]: Sent 100 bytes, received 152 bytes.
May 14 14:18:08 morrison pppd[2778]: Exit.
-------------- next part --------------
May 14 14:30:51 morrison pptpd[2884]: CTRL (PPPD Launcher): Connection speed = 115200
May 14 14:30:51 morrison pptpd[2884]: CTRL (PPPD Launcher): local address = 10.0.0.1
May 14 14:30:51 morrison pptpd[2884]: CTRL (PPPD Launcher): remote address = 10.0.0.129
May 14 14:30:51 morrison pppd[2884]: pppd 2.4.2b1 started by root, uid 0
May 14 14:30:51 morrison pppd[2884]: using channel 35
May 14 14:30:51 morrison pppd[2884]: Using interface ppp1
May 14 14:30:51 morrison pppd[2884]: Connect: ppp1 <--> /dev/pts/6
May 14 14:30:51 morrison pppd[2884]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0x798ef0d5> <pcomp> <accomp>]
May 14 14:30:54 morrison pppd[2884]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0x798ef0d5> <pcomp> <accomp>]
May 14 14:30:54 morrison pppd[2884]: rcvd [LCP ConfReq id=0x1 <magic 0xae6584> <pcomp> <accomp>]
May 14 14:30:54 morrison pppd[2884]: sent [LCP ConfAck id=0x1 <magic 0xae6584> <pcomp> <accomp>]
May 14 14:30:54 morrison pppd[2884]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS> <magic 0x798ef0d5> <pcomp> <accomp>]
May 14 14:30:54 morrison pppd[2884]: sent [CHAP Challenge id=0x1 <c3983e653260a878>, name = "morrison"]
May 14 14:30:54 morrison pppd[2884]: rcvd [CHAP Response id=0x1 <b7ab54e184b065c3407c3447211ee9409f7fa1f8895b8ed7939232ea1ba1e08e408ed00b8a8948a1679dd83d9f7c40b501>, name = "workgroup\\alex"]
May 14 14:30:54 morrison pppd[2884]: sent [CHAP Success id=0x1 "Welcome to morrison.itspace."]
May 14 14:30:54 morrison pppd[2884]: sent [IPCP ConfReq id=0x1 <addr 10.0.0.1> <compress VJ 0f 01>]
May 14 14:30:54 morrison pppd[2884]: Disabling 40-bit MPPE; MS-CHAP LM not supported
May 14 14:30:54 morrison pppd[2884]: Disabling 40-bit MPPE; MS-CHAP LM not supported
May 14 14:30:54 morrison pppd[2884]: sent [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>]
May 14 14:30:54 morrison pppd[2884]: CHAP peer authentication succeeded for workgroup\\alex
May 14 14:30:54 morrison pppd[2884]: rcvd [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
May 14 14:30:54 morrison pppd[2884]: sent [IPCP ConfNak id=0x1 <addr 10.0.0.129> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:30:54 morrison pppd[2884]: rcvd [CCP ConfReq id=0x1 <mppe +H -M +S +L +D -C>]
May 14 14:30:54 morrison pppd[2884]: sent [CCP ConfNak id=0x1 <mppe +H -M +S -L -D -C>]
May 14 14:30:54 morrison pppd[2884]: rcvd [IPCP ConfAck id=0x1 <addr 10.0.0.1> <compress VJ 0f 01>]
May 14 14:30:54 morrison pppd[2884]: rcvd [CCP ConfAck id=0x1 <mppe +H -M +S -L -D -C>]
May 14 14:30:54 morrison pppd[2884]: rcvd [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 10.0.0.129> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:30:54 morrison pppd[2884]: sent [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 10.0.0.129> <ms-dns1 10.0.0.1> <ms-wins 10.0.0.1> <ms-dns3 10.0.0.1> <ms-wins 10.0.0.1>]
May 14 14:30:54 morrison pppd[2884]: Cannot determine ethernet address for proxy ARP
May 14 14:30:54 morrison pppd[2884]: local  IP address 10.0.0.1
May 14 14:30:54 morrison pppd[2884]: remote IP address 10.0.0.129
May 14 14:30:54 morrison pppd[2884]: Script /etc/ppp/ip-up started (pid 2893)
May 14 14:30:54 morrison pppd[2884]: rcvd [CCP ConfReq id=0x2 <mppe +H -M +S -L -D -C>]
May 14 14:30:54 morrison pppd[2884]: sent [CCP ConfAck id=0x2 <mppe +H -M +S -L -D -C>]
May 14 14:30:54 morrison pppd[2884]: MPPE 128-bit stateless compression enabled
May 14 14:30:57 morrison pppd[2884]: Script /etc/ppp/ip-up finished (pid 2893), status = 0x0
May 14 14:32:14 morrison pppd[2884]: rcvd [LCP TermReq id=0x2]
May 14 14:32:14 morrison pppd[2884]: LCP terminated by peer
May 14 14:32:14 morrison pppd[2884]: Script /etc/ppp/ip-down started (pid 2908)
May 14 14:32:14 morrison pppd[2884]: sent [LCP TermAck id=0x2]
May 14 14:32:14 morrison pppd[2884]: Script /etc/ppp/ip-down finished (pid 2908), status = 0x0
May 14 14:32:14 morrison pppd[2884]: Modem hangup
May 14 14:32:14 morrison pppd[2884]: Connection terminated.
May 14 14:32:14 morrison pppd[2884]: Connect time 1.4 minutes.
May 14 14:32:14 morrison pppd[2884]: Sent 4952 bytes, received 969 bytes.
May 14 14:32:14 morrison pppd[2884]: Connect time 1.4 minutes.
May 14 14:32:14 morrison pppd[2884]: Sent 4952 bytes, received 969 bytes.
May 14 14:32:14 morrison pppd[2884]: Exit.

More information about the pptp-server mailing list