From owner-freebsd-net@FreeBSD.ORG Sun Jun 24 08:31:46 2007 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 65D9416A46C for ; Sun, 24 Jun 2007 08:31:46 +0000 (UTC) (envelope-from artem@aws-net.org.ua) Received: from alf.aws-net.org.ua (alf.aws-net.org.ua [85.90.196.192]) by mx1.freebsd.org (Postfix) with ESMTP id 8612A13C4B7 for ; Sun, 24 Jun 2007 08:31:44 +0000 (UTC) (envelope-from artem@aws-net.org.ua) Received: from [192.168.32.4] (aviko.aws-net.org.ua [192.168.32.4]) by alf.aws-net.org.ua (8.13.8/8.13.8) with ESMTP id l5O8VcCt014206 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Sun, 24 Jun 2007 11:31:42 +0300 (EEST) (envelope-from artem@aws-net.org.ua) Message-ID: <467E2BEC.80305@aws-net.org.ua> Date: Sun, 24 Jun 2007 11:31:40 +0300 From: Artyom Viklenko Organization: Art&Co. User-Agent: Thunderbird 2.0.0.4 (Windows/20070604) MIME-Version: 1.0 To: Jim Stapleton References: <80f4f2b20706230440n5abeceb6n6d94eef41f776265@mail.gmail.com> <467D1700.8050006@aws-net.org.ua> <80f4f2b20706231120u6b6f2659xa427b7a54f20b243@mail.gmail.com> In-Reply-To: <80f4f2b20706231120u6b6f2659xa427b7a54f20b243@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded STARTTLS authentication, not delayed by milter-greylist-3.0 (alf.aws-net.org.ua [192.168.32.253]); Sun, 24 Jun 2007 11:31:42 +0300 (EEST) X-Virus-Scanned: ClamAV 0.90.3/3513/Sun Jun 24 09:11:39 2007 on alf.aws-net.org.ua X-Virus-Status: Clean Cc: freebsd-net@freebsd.org Subject: Re: ppp/peers/* files X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jun 2007 08:31:46 -0000 Jim Stapleton wrote: > I can't find a way to specify mppe-128 for either pptp or pppd in the > man files, and every doc I see (including the man pages examples, > which don't work when I specify it in the file) seem to suggest that I > use either "mppe-128" or "require-mppe-128" for pppd, neither of which > work. Any suggestions? As far as I know, pppd in FreeBSD does not support natively mppc and needs patches. (Maybe this functionality provided by pptp.) But MPD does! And it support it using in-kernel netgraph subsystem. So, I suggest to install mpd and set it up to connect to your Windows VPN server. Your configs may look like this. mpd.conf file: default: load pptp0 pptp0: new -i ng0 pptp0 pptp0 set bundle enable compression set bundle disable multilink set bundle authname "your-username" set bundle password "your-password" set iface disable on-demand set iface idle 0 set iface mtu 1460 set iface route default set link yes acfcomp protocomp set link disable pap set link accept chap-md5 chap-msv1 chap-msv2 chap set link enable no-orig-auth set link mtu 1460 set link mru 1460 set link keep-alive 10 60 set ipcp yes vjcomp set ipcp ranges 0.0.0.0/0 0.0.0.0/0 set ccp yes mppc set ccp yes mpp-e40 set ccp yes mpp-e56 set ccp yes mpp-e128 set ccp yes mpp-stateless set pptp peer set pptp disable incoming set pptp enable originate out-call set pptp disable windowing set pptp disable delayed-ack open iface mpd.links file: pptp0: set link type pptp Also make shure you have loaded (or compiled in kernel): ng_bpf.ko netgraph.ko ng_ether.ko ng_iface.ko ng_ksocket.ko ng_mppc.ko rc4.ko ng_netflow.ko ng_ppp.ko ng_pptpgre.ko ng_socket.ko ng_tee.ko ng_vjc.ko ng_tty.ko ng_async.ko Hope this helps. -- Sincerely yours, Artyom Viklenko. ------------------------------------------------------- artem@aws-net.org.ua | http://www.aws-net.org.ua/~artem FreeBSD: The Power to Serve - http://www.freebsd.org