Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 7 Feb 2001 22:06:53 +0100 
From:      Olivier Cherrier <Olivier.Cherrier@cediti.be>
To:        Olivier Cherrier <Olivier.Cherrier@cediti.be>
Cc:        'freebsd-net' <freebsd-net@FreeBSD.ORG>
Subject:   RE: pptp server
Message-ID:  <BB863FBA3E3CAE4DAC430686AD28EA56038669@brisefer.cediti.be>
next in thread | raw e-mail | index | archive | help 
>
>Yes, I've already asked him .... I am a little bit confused 
>that I don't
>succeed ... :(
>Maybe it is my fuc... windows 2k which is the problem ....
>

Ho, I think that I found my problem ... maybe
In fact, the "mppe encryption" is included in the MS-Chap protocol, isn't it
?

The encryption, as mpd 3.2 calls it, isn't supported by windows clients.
I tcpdumped a session between my pptp server and a windows client : I got :
<<
...
22:14:37.382601 193.190.156.147 > mirador.cediti.be: gre-proto-0x880B (gre
encap)
22:14:37.383061 mirador.cediti.be > 193.190.156.147: gre-proto-0x880B (gre
encap)
22:14:37.383187 193.190.156.147 > mirador.cediti.be: gre-proto-0x880B (gre
encap)
22:14:37.383325 193.190.156.147 > mirador.cediti.be: gre-proto-0x880B (gre
encap)
22:14:37.383667 193.190.156.147 > mirador.cediti.be: gre-proto-0x880B (gre
encap)
22:14:37.383773 193.190.156.147 > mirador.cediti.be: gre-proto-0x880B (gre
encap)
22:14:37.384508 mirador.cediti.be > 193.190.156.147: gre-proto-0x880B (gre
encap)
22:14:37.384949 mirador.cediti.be > 193.190.156.147: gre-proto-0x880B (gre
encap)
...
>>

Is this the proof that the communication is encrypted ? (sorry for this
newbie question but I am't a guru .... not yet -:)

It is surprising because on the windows client side, I set in the security
option :
	_ Optional encryption  (If I want "require encryption", the error
"encryption not supported by server" occurs)
	_ Allow these protocols: MS-CHAP

So, if I am right, MS-CHAP includes MPPE encryption even if encryption is
not explicitely set; don't it ?


Thanks a lot for your help.

Olivier.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BB863FBA3E3CAE4DAC430686AD28EA56038669>