From owner-freebsd-questions@FreeBSD.ORG  Thu Nov  9 23:50:08 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 311F116A40F
	for <freebsd-questions@freebsd.org>;
	Thu,  9 Nov 2006 23:50:08 +0000 (UTC)
	(envelope-from sebster@sebster.com)
Received: from smtp.profdata.nl (server.profdata.nl [213.196.2.244])
	by mx1.FreeBSD.org (Postfix) with SMTP id 6C20343D5A
	for <freebsd-questions@freebsd.org>;
	Thu,  9 Nov 2006 23:50:06 +0000 (GMT)
	(envelope-from sebster@sebster.com)
Received: (qmail 59622 invoked from network); 9 Nov 2006 23:50:05 -0000
Received: from unknown (HELO piglet.sebster.com) (85.147.225.232)
	by server.profdata.nl with SMTP; 9 Nov 2006 23:50:04 -0000
Received: (qmail 28025 invoked from network); 9 Nov 2006 23:50:58 -0000
Received: from unknown (HELO ?192.168.1.6?) (192.168.1.6)
	by 10.0.0.1 with SMTP; 9 Nov 2006 23:50:58 -0000
Message-ID: <4553BEAD.70906@sebster.com>
Date: Fri, 10 Nov 2006 00:50:05 +0100
From: Sebastiaan van Erk <sebster@sebster.com>
User-Agent: Thunderbird 1.5.0.7 (X11/20060918)
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Content-Type: multipart/mixed; boundary="------------080400050906030500080708"
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: Problem setting up PPTP server
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Nov 2006 23:50:08 -0000

This is a multi-part message in MIME format.
--------------080400050906030500080708
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Hi,

I'm trying to set up mpd (3.18) on a FreeBSD server to allow windows and
linux clients to connect. Currently I've only been trying to make the
linux connection succeed (Ubuntu with ppp-2.4.4), but I get the
following output from linux pppd:

CHAP authentication succeeded
sent [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>]
rcvd [IPCP ConfReq id=0x1 <addr 10.0.0.1> <compress VJ 0f 00>]
sent [IPCP TermAck id=0x1]
rcvd [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>]
sent [CCP ConfAck id=0x1 <mppe +H -M +S -L -D -C>]
rcvd [CCP ConfRej id=0x1 <mppe +H -M +S -L -D -C>]
MPPE required but peer refused
sent [LCP TermReq id=0x2 "MPPE required but peer refused"]
rcvd [LCP TermAck id=0x4]
Connection terminated.

I don't understand why the linux client sends a TermAck on IPCP without
getting a TermReq first, but apart from that mpd seems to be failing to
negotiate MPPE even though I configured both the linux client and mpd to
allow ONLY mppe-128, i.e., in my mpd.conf I have the following:

    # Microsoft Point to Point Encryption
    set bundle enable compression
    set ccp enable mppc
    set ccp enable mpp-e128
    set ccp yes mpp-stateless
    set ccp no mpp-e40

The linux client is requesting exactly that: MPPE 128 bit stateless as
can been seen from the mpd log:

[pptp0] CCP: rec'd Configure Request #1 link 0 (Req-Sent)
   MPPC
     0x01000040: MPPE, 128 bit, stateless

Am I doing something obviously wrong? Does anybody know how to fix this
problem? Any advice is welcome!

Thanks in advance,
Sebastiaan

P.S.: I have attached the mpd.conf, mpd.links, mpd.log and ppp.log files
for completeness.



--------------080400050906030500080708
Content-Type: text/plain;
 name="mpd.conf"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="mpd.conf"

startup:
  
default:
  load client0

client0:
  new -i ng0 pptp0 pptp
  set ipcp ranges 10.0.0.1/32 10.0.0.128/32
  load pptp_common

pptp_common:
  set iface disable on-demand
  set iface enable proxy-arp			
  set iface idle 0
  set iface enable tcpmssfix
  set link yes acfcomp protocomp
  set link disable pap
  set link enable chap
  set link no chap-md5
  set link mtu 1460
  set link keep-alive 10 60
  set ipcp dns 192.168.1.10 192.168.1.1
  set ipcp nbns 10.0.0.1

  # Microsoft Point to Point Encryption
  set bundle enable compression
  set ccp enable mppc
  set ccp enable mpp-e128
  set ccp yes mpp-stateless
  set ccp no mpp-e40

  # Require encryption or drop connection
  set bundle enable encryption
  set bundle enable crypt-reqd



--------------080400050906030500080708
Content-Type: text/plain;
 name="mpd.links"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="mpd.links"

pptp:
        set link type pptp
        set pptp self 192.168.1.10
        set pptp enable incoming
        set pptp disable originate



--------------080400050906030500080708--