Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
HOWTO pptpclient with MS vpn server
View unanswered posts
View posts from last 24 hours

Goto page 1, 2, 3, 4, 5  Next  
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Mon Feb 21, 2005 12:21 am    Post subject: HOWTO pptpclient with MS vpn server Reply with quote

I thought I would write this 'cause it took me a while to get this working. I didn't find any posts on the forums, or docs, including the official at http://pptpclient.sourceforge.net/howto-gentoo.phtml that worked right to get gentoo to connect with MS vpn server.

We will assume the vpn is on network 10.10.0.0/24 and the client is on network 10.0.0.0/24.

First, add the use flag mppe-mppc for ppp.
Code:

# echo 'net-dialup/ppp mppe-mppc' >> /etc/portage/package.use

We'll probably want to use the newest versions of ppp and pptpclient.
Code:

# echo 'net-dialup/ppp ~x86' >> /etc/portage/package.keywords
# echo 'net-dialup/pptpclient ~x86' >> /etc/portage/package.keywords

Install pptpclient.
Code:

# emerge -v net-dialup/pptpclient

Now we need to patch our kernel with mppe support. You can get the patches from here http://www.polbox.com/h/hs001/. You need to use the patch that matches your kernel. We might as well get a current kernel also.
Code:

# emerge -v gentoo-dev-sources
# cd /usr/src
# rm linux
# ln -s linux-2.6.10-gentoo-r6 linux
# cd linux
# wget http://www.polbox.com/h/hs001/linux-2.6.10-mppe-mppc-1.2.patch.gz
# gzip -d linux-2.6.10-mppe-mppc-1.2.patch.gz
# patch -p1 < linux-2.6.10-mppe-mppc-1.2.patch

Be sure to copy your old .config over to your new kernel.

Now we need to configure our kernel.
Code:

Cryptographic options --->
[*] Cryptographic API
[*] HMAC support
<M> MD5 digest algorithm
--- SHA1 digest algorithm
<M> SHA256 digest algorithm
<M> SHA384 and SHA512 digest algorithms
<M> DES and Triple DES EDE cipher algorithms
<M> ARC4 cipher algorithm
<M> Deflate compression algorithm

Device Drivers --->
Networking support --->
<*> PPP (point-to-point protocol) support
[ ] PPP multilink support (EXPERIMENTAL)
[*] PPP filtering
<M> PPP support for async serial ports
<M> PPP support for sync tty ports
<M> PPP Deflate compression
<M> PPP BSD-Compress compression
<M> Microsoft PPP compression/encryption (MPPC/MPPE)

Compile and install.
Code:

# make && make modules_install
# mount /boot
# cp arch/i386/boot/bzImage /boot

# mv /boot/bzImage /boot/gentoo-dev-sources-2.6.10-r6

Add this in your grub/lilo config file.

Add this to modules.d.
Code:

# nano -w /etc/modules.d/ppp
ppp-compress-18
ppp_mppe

Now we need to configure pptpclient and pppd.
Code:

# nano -w /etc/ppp/chap-secrets
<domain>\\<user> PPTP <pass> *
PPTP <domain>\\<user> <pass> *

Code:

# nano -w /etc/ppp/options.pptp
lock
noauth
nobsdcomp
nodeflate

Code:

# nano -w /etc/ppp/peers/my_peer
pty "pptp <vpn ip addr> --nolaunchpppd"
name <domain>\\<user>
remotename PPTP
#require-mppe-128
file /etc/ppp/options.pptp
ipparam my_peer

You don't need "require-mppe-128". If you have it, ppp will complain. It's already been built in.

This should be all we need for it to run. We start/stop is with pon/poff respectively.
Code:

# pon my_peer

You should be able to see if you're connected now.
Code:

# ifconfig
ppp0      Link encap:Point-to-Point Protocol
          inet addr:10.10.0.86  P-t-P:10.10.0.74  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:3250 errors:6 dropped:0 overruns:0 frame:0
          TX packets:3048 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3
          RX bytes:3484232 (3.3 Mb)  TX bytes:242834 (237.1 Kb)

You should also be able to ping both the inet addr, and the P-t-P.

Now we need to make routes.
Code:

# route add -net 10.10.0.0/24 dev ppp0

Add this to ip-up also.
Code:

# echo 'route add -net 10.10.0.0/24 dev ppp0' >> /etc/ppp/ip-up

If you have iptables running, we'll need to add statements for that.
Code:

iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
iptables -A FORWARD -i eth1 -o ppp0 -s 10.0.0.0/24 -m state --state NEW -j ACCEPT

If you can't ping the other side, you can start pppd with logging to see what's going on.
Code:

pppd call my_peer logfd 2 nodetach debug dump


Last edited by KsE on Fri Apr 01, 2005 3:49 am; edited 2 times in total
Back to top
View user's profile Send private message
rookbluff
n00b
n00b


Joined: 20 Feb 2004
Posts: 9
Location: Virginia

PostPosted: Tue Feb 22, 2005 9:20 pm    Post subject: Reply with quote

Quote:
Add this in your grub/lilo config file.


Hey, is there a missing param I need to pass to the kernel in my grub.conf, because when I patched my kernel and added the various modules and then tried to reboot I got a kernel panic. I may try to compile the kernel patch from source if I can't fix the problem.

If anyone has any suggestions just let me know.

Thanks! :wink:
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Wed Feb 23, 2005 4:03 pm    Post subject: Reply with quote

Can you post more of the error?
Do you have a raid controller?
Were you using genkernel before?
Did you emerge a new kernel? If so, did you copy the .config file from the old one?
When you start up the live cd on that computer, does it recognize your hdd's right away? Or do you need to modprobe something first?

...just need some more information.
Back to top
View user's profile Send private message
rev138
l33t
l33t


Joined: 19 Jun 2003
Posts: 848
Location: Vermont, USA

PostPosted: Fri Feb 25, 2005 2:02 am    Post subject: Re: HOWTO pptpclient with MS vpn server Reply with quote

KsE wrote:
Add this to ip-up also.
Code:
# echo 'route add -net 10.10.0.0/24 dev ppp0' >> /etc/ppp/ip-up


I've added the above to my /etc/ppp/ip-up script, as shown here, but it doesn't actually add that to the routing table when I connect. I have to do it manually. Other than that, it works fine.

Any ideas?

Thanks in advance!
Back to top
View user's profile Send private message
rev138
l33t
l33t


Joined: 19 Jun 2003
Posts: 848
Location: Vermont, USA

PostPosted: Fri Feb 25, 2005 2:09 am    Post subject: Reply with quote

Nevermind.... I needed to a '/sbin/' before the route command in the script. Works now :)
Back to top
View user's profile Send private message
jingo
Tux's lil' helper
Tux's lil' helper


Joined: 04 Dec 2002
Posts: 134
Location: Denmark

PostPosted: Sun Feb 27, 2005 2:30 pm    Post subject: Reply with quote

I seem not to be able to connect!

Code:
Connect: ppp0 <--> /dev/pts/1
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x0 <mru 1400> <auth eap> <magic 0x151e7e2f> <pcomp> <accomp> <callback CBCP> <mrru 1614> <endpoint [local:ab.31.1e.be.eb.ad.4e.d0.b1.a2.ae.e7.24.52.f5.e8.00.00.00.00]> < 17 04 05 4d>]
No auth is possible
sent [LCP ConfRej id=0x0 <auth eap> <callback CBCP> <mrru 1614> < 17 04 05 4d>]
rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
rcvd [LCP TermReq id=0x1 15 1e 7e 2f 00 3c cd 74 00 00 03 97]
sent [LCP TermAck id=0x1]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4d83e5d6> <pcomp> <accomp>]
Script pptp <IP_OF_THE_VPN_SERVER> --nolaunchpppd finished (pid 11545), status = 0x0
Modem hangup
Connection terminated.


Any ideas?

/Jingo
_________________
I'm not a perfectionist, even though my parents were
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Sun Feb 27, 2005 5:25 pm    Post subject: Reply with quote

Are you connecting to a MS vpn server?

Can you post your configs? (take out sensitive info)

It doesn't look like it's trying to authenticate.
Back to top
View user's profile Send private message
jingo
Tux's lil' helper
Tux's lil' helper


Joined: 04 Dec 2002
Posts: 134
Location: Denmark

PostPosted: Sun Feb 27, 2005 6:11 pm    Post subject: Reply with quote

/etc/ppp/peers/my_peer:
Code:

pty "pptp <server_name> --nolaunchpppd"
name <domain>\\<user>
remotename PPTP
#require-mppe-128
refuse-eap
file /etc/ppp/options.pptp
ipparam my_peer


/etc/ppp/options.pptp

Code:

lock
noauth
nobsdcomp
nodeflate

#require-mppe
#refuse-eap
#mppe required,stateless


"refuse-eap" and "mppe required,stateless" didn't help the problem! Tried with and without them, same output.

found this link http://64.179.4.149/questions/history/231909 but it didn't help me!

how does eap authentication work?
What does "LCP Term.req" mean?

Help apreciated

/Jingo
_________________
I'm not a perfectionist, even though my parents were
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Mon Feb 28, 2005 3:25 am    Post subject: Reply with quote

Hmm, you might want to email the pptpclient mailing list.

http://pptpclient.sourceforge.net/contact.phtml

The developers of pptpclient will be able to help you there. I'm not sure what's going on there.
Back to top
View user's profile Send private message
RypPn
n00b
n00b


Joined: 25 Nov 2004
Posts: 11

PostPosted: Tue Mar 01, 2005 4:03 am    Post subject: Re PPTP Reply with quote

Hi there,

When I originally worked on the documentation for the pptp.sourceforge site in January it became evident that Copyright Issues were going to restrict what algorithms could be documented. If you need compression support also, I include the information I had worked on at the time but couldn't be included, hope this is of help...

Best Regards,

John R.

These are instructions for installing PPTP Client on Gentoo Linux.
Most of the software is available on portage, please remember to add USE flag mppe-mppc to /etc/make.conf to apply the mppe-mppc patch to ppp.

MPPE is Microsoft Point-To-Point Encryption, and is described in
RFC3078.
Microsoft Windows VPN Server requires MPPE.
You will need to patch your kernel if your PPTP Server requires it. The patch is available from http://www.polbox.com/h/hs001/<p>

Kernel Configuration

Apply the patch to the kernel:

$ cd /usr/src
$ ln -s linux-2.6.X-gentoo-rX linux-2.6.X
$ patch -p0 < linux-2.6.X-mppe-mppc-1.X.patch.gz

Configure the kernel:

$ make menuconfig
Cryptographic options --->
[*] Cryptographic API
[*] HMAC support
[M] MD5 digest algorithm
--- SHA1 digest algorithm
[M] SHA256 digest algorithm
[M] SHA384 and SHA512 digest algorithms
[M] DES and Triple DES EDE cipher algorithms
--- ARC4 cipher algorithm
[M] Deflate compression algorithm

and

Device Drivers --->
Networking support --->
[*] PPP (point-to-point protocol) support
[*] PPP filtering
[M] PPP support for async serial ports
[M] PPP support for sync tty ports
[M] PPP Deflate compression
[M] PPP BSD-Compress compression
[M] Microsoft PPP compression/encryption (MPPC/MPPE)

Emerge ppp:

$ emerge ppp


If you have enabled the mppe-mppc USE flag correctly output from this should look like this...
>>> emerge (1 of 1) net-dialup/ppp-2.4.2-r9 to /
>>> md5 src_uri ;-) ppp-2.4.2.tar.gz
>>> md5 src_uri ;-) ppp-2.4.2-mppe-mppc-1.1.patch.gz
>>> md5 src_uri ;-) ppp-dhcpc.tgz
>>> Unpacking source...
>>> Unpacking ppp-2.4.2.tar.gz to /var/tmp/portage/ppp-2.4.2-r9/work
>>> Unpacking ppp-2.4.2-mppe-mppc-1.1.patch.gz to /var/tmp/portage/ppp-2.4.2-r9/work
>>> Unpacking ppp-dhcpc.tgz to /var/tmp/portage/ppp-2.4.2-r9/work
* Applying cbcp-dosfix.patch ... [ ok ]
* Applying mpls.patch.gz ... [ ok ]
* Applying killaddr-smarter.patch.gz ... [ ok ]
* Applying cflags.patch ... [ ok ]
* Applying control_c.patch ... [ ok ]
mppe-mppc
* Enabling mppe-mppc support
* Applying ppp-2.4.2-mppe-mppc-1.1.patch.gz ... [ ok ]

(Final tip, edit /etc/ppp/peers/$TUNNEL and change require-mppe to mppe required stateless)

Installation

Update your portage tree:

$ emerge sync

Install pptpclient:

$ emerge -a pptpclient

Install pptpconfig (GUI):

$ emerge -a pptpconfig

Run as root and the window should appear:

$ pptpconfig


Or follow the last part on the pptp website to setup a desktop entry.
Back to top
View user's profile Send private message
jkelly
n00b
n00b


Joined: 25 Feb 2005
Posts: 6
Location: Suisse

PostPosted: Fri Mar 04, 2005 1:24 pm    Post subject: Reply with quote

Thanks to both John R. and KsE for the pointers. I'm still stuck in the water, after closely following John R.'s post (except for omitting "stateless" on "mppe required stateless", cuz that gave me an error), but my situation is a bit different: I'm trying to connect to a Debian machine that is acting as a PPTP server with MPPE compiled in (so that the boss can use the VPN from home from his Windows machine).

My colleague who set up the firewall/VPN server told me that I'd need MPPE, so I figured I'd follow standard directions PPTP w/MPPE. But when I try connecting using pptpconfig, I get this:

Code:
rcvd [LCP EchoRep id=0x0 magic=0x64c5c003]
rcvd [CHAP Success id=0x78 "Access granted"]
CHAP authentication succeeded: Access granted
MPPE required, but MS-CHAP[v2] auth not performed.
sent [LCP TermReq id=0x2 "MPPE required but not available"]


And then utter failure. Here's the entire output of pptpconfig:

Code:
pptpconfig: debug information dump begins
WARNING: security sensitive information follows
pptpconfig 1.2 2004/06/19 08:57:15
# pppd --version
pppd version 2.4.2
# uname -a
Linux spike 2.6.8-gentoo-r3 #4 Fri Feb 25 14:22:20 CET 2005 i686 Intel(R) Pentium(R) M processor 1600MHz GenuineIntel GNU/Linux
# grep mppe /proc/modules
ppp_mppe_mppc 14272 0 - Live 0xfd258000
# modinfo ppp_mppe
Array
(
    [name] => fnintranet
    [server] => firewall
    [domain] =>
    [username] => [******]
    [password] => (hidden by pptpconfig)
    [pppd-options] =>
    [pptp-options] =>
    [resolv] =>
    [dns-options] =>
    [routing] => routing_client_to_lan
    [usepeerdns] => 1
    [require-mppe] => 1
    [nomppe-40] =>
    [nomppe-128] =>
    [refuse-eap] =>
    [mppe-stateful] =>
    [autostart] =>
    [iconify] =>
    [persist] =>
    [debug] => 1
    [client-to-lan] =>
)
# route -n (before pppd)
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.100.0   0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       127.0.0.1       255.0.0.0       UG    0      0        0 lo
0.0.0.0         192.168.100.1   0.0.0.0         UG    0      0        0 eth0
pptpconfig: debug information dump ends, starting pppd
pppd options in effect:
debug      # (from /etc/ppp/peers/fnintranet)
updetach      # (from command line)
logfd 1      # (from command line)
linkname fnintranet      # (from /etc/ppp/peers/fnintranet)
dump      # (from /etc/ppp/peers/fnintranet)
noauth      # (from /etc/ppp/options.pptp)
name [******]      # (from /etc/ppp/peers/fnintranet)
remotename fnintranet      # (from /etc/ppp/peers/fnintranet)
      # (from /etc/ppp/options.pptp)
pty pptp firewall --nolaunchpppd       # (from /etc/ppp/peers/fnintranet)
mru 1000      # (from /etc/ppp/options.pptp)
mtu 1000      # (from /etc/ppp/options.pptp)
lcp-echo-failure 10      # (from /etc/ppp/options.pptp)
lcp-echo-interval 10      # (from /etc/ppp/options.pptp)
ipparam fnintranet      # (from /etc/ppp/peers/fnintranet)
usepeerdns      # (from /etc/ppp/peers/fnintranet)
nobsdcomp      # (from /etc/ppp/options.pptp)
nodeflate      # (from /etc/ppp/options.pptp)
mppe xxx # [don't know how to print value]      # (from /etc/ppp/peers/fnintranet)
using channel 18
Using interface ppp0pptpconfig: monitoring interface ppp0

Connect: ppp0 <--> /dev/pts/8
Warning - secret file /etc/ppp/pap-secrets has world and/or group access
sent [LCP ConfReq id=0x1 <mru 1000> <asyncmap 0x0> <magic 0x16a5017e> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <mru 1450> <asyncmap 0x0> <auth chap MD5> <magic 0x64c5c003> <pcomp> <accomp>]
sent [LCP ConfAck id=0x1 <mru 1450> <asyncmap 0x0> <auth chap MD5> <magic 0x64c5c003> <pcomp> <accomp>]
rcvd [LCP ConfAck id=0x1 <mru 1000> <asyncmap 0x0> <magic 0x16a5017e> <pcomp> <accomp>]
sent [LCP EchoReq id=0x0 magic=0x16a5017e]
rcvd [LCP EchoReq id=0x0 magic=0x64c5c003]
sent [LCP EchoRep id=0x0 magic=0x16a5017e]
rcvd [CHAP Challenge id=0x78 <21935979a4f9cb69a9de1f2b89eec32e1e094063>, name = "firewall"]
Warning - secret file /etc/ppp/chap-secrets has world and/or group access
sent [CHAP Response id=0x78 <a811e88120759afebb859fb2511d0a7d>, name = "[******]"]
rcvd [LCP EchoRep id=0x0 magic=0x64c5c003]
rcvd [CHAP Success id=0x78 "Access granted"]
CHAP authentication succeeded: Access granted
MPPE required, but MS-CHAP[v2] auth not performed.
sent [LCP TermReq id=0x2 "MPPE required but not available"]
rcvd [LCP TermReq id=0x2 "MPPE required but not available"]
sent [LCP TermAck id=0x2]
rcvd [LCP TermAck id=0x2]
Connection terminated.
Waiting for 1 child processes...
  script pptp firewall --nolaunchpppd , pid 16995
Script pptp firewall --nolaunchpppd  finished (pid 16995), status = 0x0
# route -n (after pppd exit)
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.100.0   0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       127.0.0.1       255.0.0.0       UG    0      0        0 lo
0.0.0.0         192.168.100.1   0.0.0.0         UG    0      0        0 eth0
pptpconfig: pppd process terminated by signal 10 (failed)
pptpconfig: SIGUSR1
# route -n (after completion)
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.100.0   0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       127.0.0.1       255.0.0.0       UG    0      0        0 lo
0.0.0.0         192.168.100.1   0.0.0.0         UG    0      0        0 eth0



I don't know if it's useful info, but an lsmod gives me this:
Code:

Module                  Size  Used by
ppp_synctty             8128  0
ppp_deflate             4736  0
zlib_deflate           21912  1 ppp_deflate
zlib_inflate           21248  1 ppp_deflate
ppp_mppe_mppc          14272  0
ppp_async               9344  0
crc_ccitt               1792  1 ppp_async
ndiswrapper            73280  0
usbserial              22752  0
intel_agp              19424  1
agpgart                28072  1 intel_agp
fglrx                 233788  21
dummy                   2116  0
yenta_socket           18624  0
ds                     14212  4
pcmcia_core            54604  2 yenta_socket,ds
cpuid                   2436  0
cifs                  178028  0
ide_cd                 36768  0


Thanks in advance for any nudges in the right direction. I'd be more than happy to post any other config files if need be.

-Kelly
Back to top
View user's profile Send private message
RypPn
n00b
n00b


Joined: 25 Nov 2004
Posts: 11

PostPosted: Fri Mar 04, 2005 2:39 pm    Post subject: Reply with quote

If you'd like to work on this with me come on IRC to #gentoo on freenode, you'll find me under the nick RypPn. As long as you post the eventual solution back here for others to follow ;)

Best Regards,

John
Back to top
View user's profile Send private message
R4miu5
Apprentice
Apprentice


Joined: 01 Feb 2005
Posts: 263
Location: Mödling / Austria

PostPosted: Mon Mar 14, 2005 6:36 pm    Post subject: Reply with quote

i was trying to connect to the vpn of my school but when i do pon my_peer nothing happens.

ifconfig ppp0:
tells me no ip just no packages arrived departed and so on...

i think theres an error about my chap-secrets, because i dont know exactly what to write in it.

my domain is mb my user name is skellxig and how does my file have to look if my password were test?

but its a good tutorial. its not your fault that im so stupid:D
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Tue Mar 15, 2005 4:49 pm    Post subject: Reply with quote

Code:

mb\\skellxig PPTP test *
PPTP mb\\skellxig test *


Keep in mind that you need to keep PPTP, and the other vars consistant throughout.
Back to top
View user's profile Send private message
R4miu5
Apprentice
Apprentice


Joined: 01 Feb 2005
Posts: 263
Location: Mödling / Austria

PostPosted: Tue Mar 15, 2005 5:01 pm    Post subject: Reply with quote

sorry my english is not the best. i dont really understand what you wanted to tell me.

but if i do pon my_peer and ifconfig ppp0 i see what i told you and after 1 second it disappears
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Tue Mar 15, 2005 7:43 pm    Post subject: Reply with quote

You're going to have to do some debugging to see what the problem is.

I explained this as the last code segment in the howto.
Code:

pppd call my_peer logfd 2 nodetach debug dump

Also, just do "ifconfig" with out the ppp0 part. Who knows for sure what it'll come up as.
Back to top
View user's profile Send private message
R4miu5
Apprentice
Apprentice


Joined: 01 Feb 2005
Posts: 263
Location: Mödling / Austria

PostPosted: Tue Mar 15, 2005 9:59 pm    Post subject: Reply with quote

i get an error like
Code:
Unknown MS-CHAP authenticatino failure: E=61 R=1 C=<many letters and numbers> V=3
sent [LCP TermReq id=0x2 "Failed to authenticate ourselves to peer"
rcvd [LCP TermAck id=0x2 "Failed to authenticate ourselves to peer"
Connection terminated

<then some less important strings>

*** glibc detected *** double free or curruption (fasttop): 0x08ß58748
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Wed Mar 16, 2005 7:13 pm    Post subject: Reply with quote

Well, your chap authentication isn't working. What kernel do you have? Which patch did you use? Did you build the necessary kernel options?

I'd need to see your whole output for that. Also, you can try the pptp-client mailing list. The actual developers will answer your questions there, and they'll probably have more of an idea.
Back to top
View user's profile Send private message
R4miu5
Apprentice
Apprentice


Joined: 01 Feb 2005
Posts: 263
Location: Mödling / Austria

PostPosted: Wed Mar 16, 2005 8:15 pm    Post subject: Reply with quote

kernel: 2.6.11-r3
patch: http://www.polbox.com/h/hs001/linux-2.6.11-mppe-mppc-1.3.patch.gz
all modules activated

i'm sorry. but i cant copy and paste from the console. ill try the mailing list. thanks for help
Back to top
View user's profile Send private message
MultiMike
n00b
n00b


Joined: 31 May 2004
Posts: 38

PostPosted: Thu Mar 17, 2005 3:44 am    Post subject: Reply with quote

After applying the patch, recompiling kernel and installing modules, I have no 'ppp_mppe' module that I can load. I have 'ppp-compress-18', but not the other. I am unable to successfully connect to the VPN, so is that why? How do I get this module?
Back to top
View user's profile Send private message
R4miu5
Apprentice
Apprentice


Joined: 01 Feb 2005
Posts: 263
Location: Mödling / Austria

PostPosted: Fri Mar 18, 2005 6:45 pm    Post subject: Reply with quote

i retried now and i get the following message:

Code:
no auth is possible
<then some retries>
and at the end tcflush failed Bad file descriptor
Back to top
View user's profile Send private message
KsE
Apprentice
Apprentice


Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN

PostPosted: Fri Mar 18, 2005 8:36 pm    Post subject: Reply with quote

MultiMike wrote:
After applying the patch, recompiling kernel and installing modules, I have no 'ppp_mppe' module that I can load. I have 'ppp-compress-18', but not the other. I am unable to successfully connect to the VPN, so is that why? How do I get this module?

It should be there. Are you sure you applied it to the right kernel?
Back to top
View user's profile Send private message
nichocouk
Guru
Guru


Joined: 10 Mar 2005
Posts: 585
Location: Glasgow

PostPosted: Sun Mar 20, 2005 2:09 pm    Post subject: Reply with quote

Hi there,

I am about to install PPP to connect to my college's VPN server. I'm not sure if it is a Windows server or not. The admin says that in order to connect to VPN I 'will require to have MPOA installed in the linux kernel'. Has it something to do with MPPE? atm i'm using linux-2.6.10-gentoo-r6.

sorry if it's a stupid question... :?
_________________
nichocouk

L'Etat, c'est moi.
Back to top
View user's profile Send private message
neilhwatson
l33t
l33t


Joined: 06 Feb 2003
Posts: 719
Location: Canada

PostPosted: Sun Mar 20, 2005 3:29 pm    Post subject: Reply with quote

My pptp tunnel connects and is stable. However, I cannot route any traffic through it. I attempt to add a route but, that causes the tunnel to drop. For more info: https://forums.gentoo.org/viewtopic-t-311222-highlight-.html
_________________
The true guru is a teacher.
Neil Watson
Back to top
View user's profile Send private message
nichocouk
Guru
Guru


Joined: 10 Mar 2005
Posts: 585
Location: Glasgow

PostPosted: Tue Mar 22, 2005 10:31 am    Post subject: Reply with quote

OK, sorry, my question was stupid... :roll:
It has nothing to do, these are two different options in the kernel config (and you don't need a patch to enable MPOA in the kernel).
_________________
nichocouk

L'Etat, c'est moi.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Goto page 1, 2, 3, 4, 5  Next
Page 1 of 5

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum