From owner-freebsd-questions Wed Oct 24 14:41:18 2001 Delivered-To: freebsd-questions@freebsd.org Received: from shumai.marcuscom.com (rdu57-28-046.nc.rr.com [66.57.28.46]) by hub.freebsd.org (Postfix) with ESMTP id 0FF7E37B403 for ; Wed, 24 Oct 2001 14:41:08 -0700 (PDT) Received: from localhost (marcus@localhost) by shumai.marcuscom.com (8.11.6/8.11.6) with ESMTP id f9OLfK035295; Wed, 24 Oct 2001 17:41:20 -0400 (EDT) (envelope-from marcus@marcuscom.com) X-Authentication-Warning: shumai.marcuscom.com: marcus owned process doing -bs Date: Wed, 24 Oct 2001 17:41:20 -0400 (EDT) From: Joe Clarke To: Drew Tomlinson Cc: questions@FreeBSD.ORG Subject: Re: VPN Server & Win2K Client Not Connecting In-Reply-To: <005c01c15b28$3f3630a0$cd2a6ba5@lc.ca.gov> Message-ID: <20011024173548.L35166-100000@shumai.marcuscom.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 22 Oct 2001, Drew Tomlinson wrote: > I apologize if this is a duplicate. I'm not sure my first post made it > out as I received an error when sending it. > > I'm trying to setup a VPN server on my home network. I have installed > mpd-netgraph 3.3 from ports and followed the directions in the user > guide and sample files. I'm attempting to connect from a Win2K client > but am not successful. I have searched the list archives and found one > message that was close to my problem but did not find any replies. > Below is my log from an attempted connection. I don't really understand > what's going on and hope someone can point out my error and let me know > where to look next. I usually respond to PPTP/mpd questions. I have this working on FreeBSD 4.4-stable with 2000, 98, and Me clients. I compiled mpd-netgraph 3.2 (I haven't upgraded to 3.3 yet) from ports. I also made sure I had all the crypto sources installed first (this is the only way to get MS CHAP support [that is, you need the DES libs]). This works out of the box with pretty much the default pptp config in mpd.conf. I only had to add user and IP address info. I'm also able to get 128-bit MPPE. It looks like your clients are trying to use MS CHAP, but mpd wasn't compiled with it. Try adding the crypto sources and libraries to your machine, then recompile the port. Joe > > Thanks, > > Drew > > ----------------------------------------------- > Multi-link PPP for FreeBSD, by Archie L. Cobbs. > Based on iij-ppp, by Toshiharu OHNO. > mpd: pid 27386, version 3.3 (root@blacksheep.mykitchentable.net 07:08 > 21-Oct-2001) > [pptp] ppp node is "mpd27386-pptp" > mpd: local IP address for PPTP is 192.168.10.2 > [pptp] using interface ng0 > [pptp:vpn1] mpd: PPTP connection from xxx.xxx.xxx.xxx:2166 > pptp0: attached to connection with xxx.xxx.xxx.xxx:2166 > [pptp] IFACE: Open event > [pptp] IPCP: Open event > [pptp] IPCP: state change Initial --> Starting > [pptp] IPCP: LayerStart > [pptp] IPCP: Open event > [pptp] bundle: OPEN event in state CLOSED > [pptp] opening link "vpn1"... > [vpn1] link: OPEN event > [vpn1] LCP: Open event > [vpn1] LCP: state change Initial --> Starting > [vpn1] LCP: LayerStart > [vpn1] device: OPEN event in state DOWN > [vpn1] attaching to peer's outgoing call > [vpn1] device is now in state OPENING > [vpn1] device: UP event in state OPENING > [vpn1] device is now in state UP > [vpn1] link: UP event > [vpn1] link: origination is remote > [vpn1] LCP: Up event > [vpn1] LCP: state change Starting --> Req-Sent > [vpn1] LCP: phase shift DEAD --> ESTABLISH > [vpn1] LCP: SendConfigReq #1 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > pptp0-0: ignoring SetLinkInfo > [vpn1] LCP: rec'd Configure Request #0 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: SendConfigRej #0 > CALLBACK > MP MRRU 1614 > [vpn1] LCP: SendConfigReq #2 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: rec'd Configure Request #1 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: SendConfigRej #1 > CALLBACK > MP MRRU 1614 > [vpn1] LCP: SendConfigReq #3 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: rec'd Configure Request #2 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: SendConfigRej #2 > CALLBACK > MP MRRU 1614 > [vpn1] LCP: SendConfigReq #4 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: SendConfigReq #5 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: rec'd Configure Request #3 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: SendConfigRej #3 > CALLBACK > MP MRRU 1614 > [vpn1] LCP: SendConfigReq #6 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: SendConfigReq #7 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: rec'd Configure Request #4 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: SendConfigRej #4 > CALLBACK > MP MRRU 1614 > [vpn1] LCP: SendConfigReq #8 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: SendConfigReq #9 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: SendConfigReq #10 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM c45f0870 > AUTHPROTO CHAP MSOFT > [vpn1] LCP: rec'd Configure Request #5 link 0 (Req-Sent) > MAGICNUM 75e54257 > PROTOCOMP > ACFCOMP > CALLBACK > Not supported > MP MRRU 1614 > ENDPOINTDISC [LOCAL] 69 76 c7 95 cb 9d 4c 7f a7 61 ea a3 ef ba a8 b2 00 > 00 00 08 > [vpn1] LCP: not converging > [vpn1] LCP: parameter negotiation failed > [vpn1] LCP: state change Req-Sent --> Stopped > [vpn1] LCP: LayerFinish > [vpn1] device: CLOSE event in state UP > pptp0-0: clearing call > pptp0-0: killing channel > [vpn1] PPTP call terminated > [pptp] IFACE: Close event > [pptp] IPCP: Close event > [pptp] IPCP: state change Starting --> Initial > [pptp] IPCP: LayerFinish > [pptp] IFACE: Close event > pptp0: closing connection with xxx.xxx.xxx.xxx:2166 > [pptp] IFACE: Close event > [vpn1] device is now in state CLOSING > [pptp] bundle: CLOSE event in state OPENED > [pptp] closing link "vpn1"... > [vpn1] device: DOWN event in state CLOSING > [vpn1] device is now in state DOWN > [vpn1] link: CLOSE event > [vpn1] LCP: Close event > [vpn1] LCP: state change Stopped --> Closed > [vpn1] device: DOWN event in state DOWN > [vpn1] device is now in state DOWN > [vpn1] link: DOWN event > [vpn1] LCP: Down event > [vpn1] LCP: state change Closed --> Initial > [vpn1] LCP: phase shift ESTABLISH --> DEAD > pptp0: invalid length 16 for type 4 > pptp0: killing connection with xxx.xxx.xxx.xxx:2166 > [vpn1] link: DOWN event > [vpn1] LCP: Down event > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message