From owner-freebsd-questions@FreeBSD.ORG Sun Jul 27 17:48:42 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D05A81065688 for ; Sun, 27 Jul 2008 17:48:42 +0000 (UTC) (envelope-from SRS0=qCeVrO=YH=webzone.net.au=andrewd@smtp.webzone.net.au) Received: from smtp.webzone.net.au (smtp.webzone.net.au [210.8.36.14]) by mx1.freebsd.org (Postfix) with ESMTP id 9216A8FC1A for ; Sun, 27 Jul 2008 17:48:42 +0000 (UTC) (envelope-from SRS0=qCeVrO=YH=webzone.net.au=andrewd@smtp.webzone.net.au) Received: from ppp121-45-156-210.lns11.adl6.internode.on.net ([121.45.156.210] helo=[192.168.202.99]) by smtp.webzone.net.au with esmtpa (Exim 4.69 (FreeBSD)) (envelope-from ) id 1KNACD-00015B-Qm for freebsd-questions@freebsd.org; Mon, 28 Jul 2008 03:08:14 +0930 Message-ID: <488CB283.80400@webzone.net.au> Date: Mon, 28 Jul 2008 03:08:11 +0930 From: Andrew D User-Agent: Thunderbird 2.0.0.16 (Windows/20080708) MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-AUTH-WEBZONE: andrewd@webzone.net.au successfully authed as username:andrewd Subject: pptp and routing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Jul 2008 17:48:42 -0000 G'Day all, got a freebsd Box FreeBSD gw.ade.eltrak.com.au 7.0-STABLE FreeBSD 7.0-STABLE #0: Wed Jul 9 03:46:03 CST 2008 root@gw.ade.eltrak.com.au:/usr/obj/usr/src/sys/ELKERN i386 that has a poptop server on it. When a client logs in they get authed fine and get issued an IP. However when connecting or pinging no data comes back from the server. arpproxy is set, as is forwarding. net.inet.ip.forwarding: 1 net.link.ether.inet.proxyall: 1 The server for some reason puts a route for the client ip on the ethernet interface rather than the tun interface the client has come in on. /etc/ppp/ppp.conf loop: set timeout 0 set log phase chat connect lcp ipcp command set device localhost:pptp set dial set login set ifaddr 10.10.1.5 10.10.1.20-10.10.1.60 255.255.255.0 add default HISADDR set server /tmp/loop "" 0177 loop-in: set timeout 0 set log phase lcp ipcp command allow mode direct pptp: load loop disable pap enable passwdauth disable ipv6cp enable proxy accept dns enable MSChapV2 enable mppe disable deflate pred1 deny deflate pred1 set dns 10.10.1.5 set device !/etc/ppp/secure /etc/ppp/secure #!/bin/sh exec /usr/sbin/ppp -direct loop-in /usr/local/etc/pptpd.conf localip 10.10.1.5 remoteip 10.10.1.20-60 pidfile /var/run/pptpd.pid noipparam debug $ ifconfig fxp0: flags=8943 metric 0 mtu 1500 options=8 ether 00:04:ac:98:d2:c6 inet 10.10.1.5 netmask 0xffffff00 broadcast 10.10.1.255 media: Ethernet autoselect (100baseTX ) status: active re0: flags=8802 metric 0 mtu 1500 options=399b ether 00:40:ca:23:ed:5f media: Ethernet autoselect (100baseTX ) status: no carrier lo0: flags=8049 metric 0 mtu 16384 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff000000 tun0: flags=8051 metric 0 mtu 1500 inet 10.8.0.1 --> 10.8.0.2 netmask 0xffffffff Opened by PID 775 tun1: flags=8051 metric 0 mtu 1398 inet 10.10.1.5 --> 10.10.1.34 netmask 0xffffff00 Opened by PID 14740 $ netstat -nr Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 10.10.1.254 UGS 0 29107 fxp0 10.8.0.0/24 10.8.0.2 UGS 0 215 tun0 10.8.0.2 10.8.0.1 UH 2 45 tun0 10.10.1.0/24 link#1 UC 0 0 fxp0 10.10.1.5 00:04:ac:98:d2:c6 UHLW 2 322 lo0 10.10.1.34 10.10.1.5 UGH 0 0 fxp0 10.10.1.254 00:1e:be:97:95:23 UHLW 2 0 fxp0 10.10.2.0/24 10.8.0.2 UGS 0 918 tun0 127.0.0.1 127.0.0.1 UH 0 208 lo0 As you can see the client (10.10.1.34) is routed on the fxp0 interface rather than the tun1. Anyone got any Ideas? Cheers cya Andrew