| View previous topic :: View next topic |
| Author |
Message |
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
 Posted: Thu Jul 26, 2007 7:50 am Post subject: Problems connecting to a VPN [SOLVED] |
 |
|
I want to use rdesktop to connect to my windows computer at work. To do that I need to connect my home computer to the VPN at my work.
I've tried to use this tutorial to set up the VPN:
http://gentoo-wiki.com/HOWTO_Set_up_a_vpn_client_with_mppe_encryption
I did not configure the kernel options as modules, just integrated them in the kernel. Find that a lot easier. (have never really gotten the hang of working with modules). Ought I add them as modules?
After going through the tutorial, Ifconfig won't show any ppp0. And ofcourse then there is no /etc/init.d/net.ppp0.
Running: pon DDS debug dump logfd 2 nodetach
| Quote: |
pppd options in effect:
debug # (from command line)
nodetach # (from command line)
logfd 2 # (from command line)
dump # (from command line)
# (from /etc/ppp/options)
pty pptp HOSTNAME --nolaunchpppd\nname DDSS\\hht\nrequire-mschap-v2\nremotename DDS\nfile /etc/ppp/options.DDS\nipparam DDS\n # (from /etc/ppp/peers/DDS)
using channel 1
Using interface ppp0
Connect: ppp0 <--> /dev/pts/2
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xb9c1bb06> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0xe3 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2> <mrru 1600> <ssnhf> <endpoint [MAC:00:11:95:84:7c:25]>]
No auth is possible
sent [LCP ConfRej id=0xe3 <auth chap MS-v2> <mrru 1600> <ssnhf>]
rcvd [LCP ConfReq id=0xe4 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe4 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xe5 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe5 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xe6 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe6 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xe7 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe7 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xe8 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe8 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xe9 <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xe9 <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xea <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xea <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xeb <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xeb <auth chap MS-v2>]
rcvd [LCP ConfReq id=0xec <accomp> <pcomp> <mru 1500> <magic 0x450ff4dc> <auth chap MS-v2>]
No auth is possible
sent [LCP ConfRej id=0xec <auth chap MS-v2>]
sh: line 1: name: command not found
sh: line 2: require-mschap-v2: command not found
sh: line 3: remotename: command not found
sh: line 5: ipparam: command not found
Modem hangup
Connection terminated.
Script pptp HOSTNAME --nolaunchpppd
name DDSS\hht
require-mschap-v2
remotename DDS
file /etc/ppp/options.DDS
ipparam DDS
finished (pid 5805), status = 0x7f
|
(I've replaced the address with HOSTNAME on purpose.
Does anyone have a clue? Just ask if you need any information
_________________
"May the source be with you!"
Last edited by ops on Thu Aug 23, 2007 10:56 am; edited 1 time in total |
|
| Back to top |
|
 |
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Sun Jul 29, 2007 11:17 am Post subject: |
|
|
Does anyone have any clue? I'm clueless.
_________________
"May the source be with you!" |
|
| Back to top |
|
|
Hu
Administrator
Joined: 06 Mar 2007
Posts: 21859
|
| Posted: Sun Jul 29, 2007 4:15 pm Post subject: Re: Problems connecting to a VPN |
|
|
| ops wrote: |
| Quote: |
sh: line 1: name: command not found
sh: line 2: require-mschap-v2: command not found
sh: line 3: remotename: command not found
sh: line 5: ipparam: command not found
|
|
This part looks like a bad sign. It appears that /bin/sh was fed your configuration file as a shell script.
Also, perhaps an obvious question, but are you using the right VPN client? There are multiple ways to set up a VPN, and if you are using a client for a VPN other than the one your employer uses, it will fail to work. If you can, please post a link to the vendor page which describes the VPN your employer is using. That will let us verify that you are using the right client and check your settings for any known problems with the vendor. |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Tue Jul 31, 2007 4:41 am Post subject: |
|
|
As far as I know, it should be the right client. My emloyer uses PPtP VPN and XP's standard client.
If my configuration file is fed as a shell script, how do I fix it?
_________________
"May the source be with you!" |
|
| Back to top |
|
|
Hu
Administrator
Joined: 06 Mar 2007
Posts: 21859
|
| Posted: Wed Aug 01, 2007 3:37 am Post subject: |
|
|
| ops wrote: | | If my configuration file is fed as a shell script, how do I fix it? |
I do not know the VPN you are using well enough to know how you configured it this way, but I am fairly confident in saying that you need to configure it to read the configuration file as a file, rather than execute it as a script. Can you post the file here? |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Mon Aug 13, 2007 8:41 am Post subject: |
|
|
| Hu wrote: | | ops wrote: | | If my configuration file is fed as a shell script, how do I fix it? |
I do not know the VPN you are using well enough to know how you configured it this way, but I am fairly confident in saying that you need to configure it to read the configuration file as a file, rather than execute it as a script. Can you post the file here? |
Any clue on how this is done?
_________________
"May the source be with you!" |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Fri Aug 17, 2007 10:32 am Post subject: |
|
|
Lack of response...
Okai, two people pointed out that /bin/sh was fed the configuraiton file as a shell sript. Iæm getting no further. How od I fix this? How do I get it to not be fed as a shell sccript?
_________________
"May the source be with you!" |
|
| Back to top |
|
|
JeliJami
Veteran
Joined: 17 Jan 2006
Posts: 1086
Location: Belgium
|
| Posted: Fri Aug 17, 2007 1:06 pm Post subject: |
|
|
| Hu wrote: | | Can you post the file here? |
Please copy-paste the contents of your /etc/ppp/peers/DDS file into your post.
(Beware: mangle passwords/hostnames/ip-addresses)
_________________
Unanswered Post Initiative | Search | FAQ
Former username: davjel |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Fri Aug 17, 2007 1:32 pm Post subject: |
|
|
/etc/ppp/peers/DDS (with scrambled information):
| Quote: | pty "pptp (xxx.dds.no) --nolaunchpppd
name XXX/USERNAME
require-mschap-v2
remotename DDS
#require-mppe-128
refuse.eap
file /etc/ppp/options.DDS
ipparam DDS
|
/etc/ppp/options.DDS
| Quote: | lock
noauth
nobsdcomp
nodeflate
#mppe required,stateless <- use this one for patched kernel <2.6.15
mppe stateless <- may solve unsupported protocol error
|
_________________
"May the source be with you!" |
|
| Back to top |
|
|
Rob1n
l33t
Joined: 29 Nov 2003
Posts: 714
Location: Cambridge, UK
|
| Posted: Fri Aug 17, 2007 1:42 pm Post subject: |
|
|
| ops wrote: | /etc/ppp/peers/DDS (with scrambled information):
| Quote: | pty "pptp (xxx.dds.no) --nolaunchpppd
name XXX/USERNAME
require-mschap-v2
remotename DDS
#require-mppe-128
refuse.eap
file /etc/ppp/options.DDS
ipparam DDS
|
|
At a first glance it would appear you're missing a closing quote - unfortunately I can't check the wiki page as to where it should be though (probably at the end of the first line). |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Fri Aug 17, 2007 3:09 pm Post subject: |
|
|
Correct... it was a missing quote...
I hate when it is these stupid small typing errors that causes the error Thanks!
Now after running pon DDS debug dump logfd 2 nodetach it ends with:
| Quote: | Script pptp XXX.dds.no --nolaunchpppd finished (pid 17663), status = 0x0
Modem hangup
Connection terminated.
|
I guess that is how it should be. But when I run ifconfig I don't get any ppp0 device. I would there to be expect one. Is this correct?
Is there something wrong, or should I continue setting up the routing=
_________________
"May the source be with you!" |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Sat Aug 18, 2007 9:43 am Post subject: |
|
|
Here's the complete output from"pon DDS debug dump logfd 2 nodetach"
| Quote: | pppd options in effect:
debug # (from command line)
nodetach # (from command line)
logfd 2 # (from command line)
dump # (from command line)
noauth # (from /etc/ppp/options.DDS)
name DOMAIN\\USERNAME # (from /etc/ppp/peers/DDS)
remotename DDS # (from /etc/ppp/peers/DDS)
# (from /etc/ppp/options.DDS)
pty pptp HOSTNAME --nolaunchpppd # (from /etc/ppp/peers/DDS)
mru 1000 # (from /etc/ppp/options.DDS)
mtu 1000 # (from /etc/ppp/options.DDS)
lcp-echo-failure 10 # (from /etc/ppp/options.DDS)
lcp-echo-interval 10 # (from /etc/ppp/options.DDS)
ipparam DDS # (from /etc/ppp/peers/DDS)
nobsdcomp # (from /etc/ppp/options.DDS)
nodeflate # (from /etc/ppp/options.DDS)
mppe xxx # [don't know how to print value] # (from /etc/ppp/options.DDS)
using channel 13
Using interface ppp0
Connect: ppp0 <--> /dev/pts/4
sent [LCP ConfReq id=0x1 <mru 1000> <asyncmap 0x0> <magic 0x13cfc38> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1e <accomp> <pcomp> <mru 1500> <magic 0x5b2d6834> <auth chap MS-v2> <mrru 1600> <ssnhf> <endpoint [MAC:00:11:95:84:7c:25]>]
sent [LCP ConfRej id=0x1e <mrru 1600> <ssnhf>]
rcvd [LCP ConfAck id=0x1 <mru 1000> <asyncmap 0x0> <magic 0x13cfc38> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1f <accomp> <pcomp> <mru 1500> <magic 0x5b2d6834> <auth chap MS-v2>]
sent [LCP ConfAck id=0x1f <accomp> <pcomp> <mru 1500> <magic 0x5b2d6834> <auth chap MS-v2>]
sent [LCP EchoReq id=0x0 magic=0x13cfc38]
rcvd [CHAP Challenge id=0x1 <bb1e68754dcf61ce9d3c821cfce676e8>, name = ""]
sent [CHAP Response id=0x1 <ac358632cafea6d18b5fed75f3e63ebe000000000000000072706ff31c471812d08f96e04ac23d24d9c38575a2a4e6f800>, name = "DOMAIN\\USERNAME"]
rcvd [LCP EchoRep id=0x0 magic=0x5b2d6834]
rcvd [CHAP Success id=0x1 "S=21232CA3833AF4FCDA116F1A9A436C2DB4541B2D"]
CHAP authentication succeeded
sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0>]
rcvd [IPCP ConfReq id=0xe <addr 192.168.1.63> <compress VJ 0f 00>]
sent [IPCP ConfAck id=0xe <addr 192.168.1.63> <compress VJ 0f 00>]
rcvd [CCP ConfReq id=0xa <mppe +H -M +S -L -D -C>]
sent [CCP ConfReq id=0x1]
sent [CCP ConfRej id=0xa <mppe +H -M +S -L -D -C>]
rcvd [IPCP ConfNak id=0x1 <addr 192.168.1.67>]
sent [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 192.168.1.67>]
rcvd [CCP ConfAck id=0x1]
Received bad configure-ack:
rcvd [CCP ConfReq id=0xb]
sent [CCP ConfAck id=0xb]
rcvd [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 192.168.1.67>]
local IP address 192.168.1.67
remote IP address 192.168.1.63
Script /etc/ppp/ip-up started (pid 31881)
Script /etc/ppp/ip-up finished (pid 31881), status = 0x1
rcvd [CCP TermReq id=0xc]
sent [CCP TermAck id=0xc]
rcvd [LCP TermReq id=0x20]
LCP terminated by peer
Connect time 0.0 minutes.
Sent 4 bytes, received 4 bytes.
Script /etc/ppp/ip-down started (pid 31882)
sent [LCP TermAck id=0x20]
Script /etc/ppp/ip-down finished (pid 31882), status = 0x1
Script pptp HOSTNAME --nolaunchpppd finished (pid 31866), status = 0x0
Modem hangup
Connection terminated.
|
I guess the termination has something to do with these: "LCP terminated by peer", "Connect time 0.0 minutes."
Is it my configurations that are wrong, or is it the server not acceptig my connection?
_________________
"May the source be with you!" |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Tue Aug 21, 2007 12:55 pm Post subject: |
|
|
Anyone got any clue on where to go from this dump list? I've been trying to figure it out, but now I'm clueless on what to do. Please help!
_________________
"May the source be with you!" |
|
| Back to top |
|
|
Napalm Llama
Guru
Joined: 04 Jun 2005
Posts: 533
Location: Cardiff, UK
|
| Posted: Tue Aug 21, 2007 3:14 pm Post subject: |
|
|
Try switching the commented MPPE option in /etc/ppp/options.DDS?
I was on a PPTP VPN, and I'm fairly sure I had "mppe required,stateless", despite being on a >2.6.15 kernel. Also, properly comment out your comments in that file - put a # before the arrows.
_________________
Ryzen 5600x; Asus TUF Gaming B550-Plus; Geforce 1660 Super
Registered Linux User #381314
# killall humans |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Tue Aug 21, 2007 4:06 pm Post subject: |
|
|
Thank you for your response.
The invalid comments were only on lines that were allready commented out, If I activate "require-mppe-128" I get:
| Quote: | | /usr/sbin/pppd: In file /etc/ppp/options.DDS: unrecognized option 'require-mppe-128' |
The howto saies it should be there, but it doesen't seem to work. Ive also seen it the /etc/ppp/peers/DDS file, but then it also complains. I don't know, but has this been changed recently? Or is something wrong with my files?
But with "mppe required,stateless", making the /etc/ppp/options.DDS look like this:
| Quote: | lock
noauth
nobsdcomp
nodeflate
#require-mppe-128 #<- use this one for kernel 2.6.15+
mppe required,stateless #<- use this one for patched kernel <2.6.15
mppe stateless #<- may solve unsupported protocol error
lcp-echo-failure 10
lcp-echo-interval 10 |
I get
| Quote: | harald etc # pon DDS debug dump logfd 2 nodetach
pppd options in effect:
debug # (from command line)
nodetach # (from command line)
logfd 2 # (from command line)
dump # (from command line)
noauth # (from /etc/ppp/options.DDS)
name DOMAIN\\USER # (from /etc/ppp/peers/DDS)
remotename DDS # (from /etc/ppp/peers/DDS)
# (from /etc/ppp/options.DDS)
pty pptp HOSTNAME --nolaunchpppd # (from /etc/ppp/peers/DDS)
lcp-echo-failure 10 # (from /etc/ppp/options.DDS)
lcp-echo-interval 10 # (from /etc/ppp/options.DDS)
ipparam DDS # (from /etc/ppp/peers/DDS)
nobsdcomp # (from /etc/ppp/options.DDS)
nodeflate # (from /etc/ppp/options.DDS)
mppe xxx # [don't know how to print value] # (from /etc/ppp/options.DDS)
using channel 32
Using interface ppp0
Connect: ppp0 <--> /dev/pts/4
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xdbf68025> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x26 <accomp> <pcomp> <mru 1500> <magic 0x97493f38> <auth chap MS-v2> <mrru 1600> <ssnhf> <endpoint [MAC:00:11:95:84:7c:25]>]
sent [LCP ConfRej id=0x26 <mrru 1600> <ssnhf>]
rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0xdbf68025> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x27 <accomp> <pcomp> <mru 1500> <magic 0x97493f38> <auth chap MS-v2>]
sent [LCP ConfAck id=0x27 <accomp> <pcomp> <mru 1500> <magic 0x97493f38> <auth chap MS-v2>]
sent [LCP EchoReq id=0x0 magic=0xdbf68025]
rcvd [CHAP Challenge id=0x1 <bb1e686ea7ac5ba0712f1ce95e178cc6>, name = ""]
sent [CHAP Response id=0x1 <9e485468a84c8c80431bb6c1fd3f7062000000000000000049b0d8e4488e4c17fb08b80f0ad19236940a1f5e928d0ce700>, name = "hht"]
rcvd [LCP EchoRep id=0x0 magic=0x97493f38]
rcvd [CHAP Success id=0x1 "S=BBF1D3F83C61355633E361B16836F2077B5A95D5"]
CHAP authentication succeeded
sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0>]
rcvd [IPCP ConfReq id=0x91 <addr 192.168.1.63> <compress VJ 0f 00>]
sent [IPCP ConfAck id=0x91 <addr 192.168.1.63> <compress VJ 0f 00>]
rcvd [CCP ConfReq id=0xda <mppe +H -M +S -L -D -C>]
sent [CCP ConfReq id=0x1]
sent [CCP ConfNak id=0xda <mppe +H +M +S +L -D +C>]
rcvd [IPCP ConfNak id=0x1 <addr 192.168.1.64>]
sent [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 192.168.1.64>]
rcvd [CCP ConfAck id=0x1]
Received bad configure-ack:
rcvd [CCP ConfReq id=0xdb <mppe +H -M +S -L -D -C>]
sent [CCP ConfNak id=0xdb <mppe +H +M +S +L -D +C>]
rcvd [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 192.168.1.64>]
local IP address 192.168.1.64
remote IP address 192.168.1.63
Script /etc/ppp/ip-up started (pid 3536)
Script /etc/ppp/ip-up finished (pid 3536), status = 0x1
rcvd [CCP ConfReq id=0xdc <mppe +H -M +S -L -D -C>]
sent [CCP ConfNak id=0xdc <mppe +H +M +S +L -D +C>]
rcvd [CCP ConfReq id=0xdd <mppe +H -M +S -L -D -C>]
sent [CCP ConfNak id=0xdd <mppe +H +M +S +L -D +C>]
rcvd [CCP ConfReq id=0xde <mppe +H -M +S -L -D -C>]
sent [CCP ConfNak id=0xde <mppe +H +M +S +L -D +C>]
rcvd [CCP ConfReq id=0xdf <mppe +H -M +S -L -D -C>]
sent [CCP ConfRej id=0xdf <mppe +H +M +S +L -D +C>]
rcvd [CCP ConfReq id=0xe0]
sent [CCP ConfAck id=0xe0]
rcvd [CCP TermReq id=0xe1]
sent [CCP TermAck id=0xe1]
rcvd [LCP TermReq id=0x28]
LCP terminated by peer
Connect time 0.0 minutes.
Sent 48 bytes, received 48 bytes.
Script /etc/ppp/ip-down started (pid 3545)
sent [LCP TermAck id=0x28]
Script /etc/ppp/ip-down finished (pid 3545), status = 0x1
Script pptp HOSTNAME --nolaunchpppd finished (pid 3508), status = 0x0
Modem hangup
Connection terminated.
|
_________________
"May the source be with you!" |
|
| Back to top |
|
|
ops
Apprentice
Joined: 25 May 2004
Posts: 153
Location: Norway
|
| Posted: Thu Aug 23, 2007 10:56 am Post subject: |
|
|
Ah, I got it figured out. The problem was in the modules being loaded.
The ppp_mppe was not loaded correctly.
Thanks for the help, for those that replied in this thread.
_________________
"May the source be with you!" |
|
| Back to top |
|
|
|
Networking & Security
