From owner-freebsd-net@FreeBSD.ORG  Wed Sep  5 16:10:44 2007
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 847B616A41B
	for <freebsd-net@freebsd.org>; Wed,  5 Sep 2007 16:10:44 +0000 (UTC)
	(envelope-from mihai@duras.ro)
Received: from mail.duras.ro (mail.duras.ro [86.105.56.133])
	by mx1.freebsd.org (Postfix) with ESMTP id 0831D13C481
	for <freebsd-net@freebsd.org>; Wed,  5 Sep 2007 16:10:43 +0000 (UTC)
	(envelope-from mihai@duras.ro)
Received: from localhost (localhost [127.0.0.1])
	by mail.duras.ro (Postfix) with ESMTP id 6CEF116756A;
	Wed,  5 Sep 2007 19:10:29 +0300 (EEST)
Received: from mail.duras.ro ([127.0.0.1])
	by localhost (mail [127.0.0.1]) (amavisd-new, port 10024) with ESMTP
	id 12578-01; Wed, 5 Sep 2007 19:10:27 +0300 (EEST)
Received: from [86.105.56.194] (ma.plimb.cu.barca.prin.padure.ro
	[86.105.56.194]) by mail.duras.ro (Postfix) with ESMTP id A5BB2CDD;
	Wed,  5 Sep 2007 19:10:27 +0300 (EEST)
Message-ID: <46DED51F.9080809@duras.ro>
Date: Wed, 05 Sep 2007 19:11:11 +0300
From: Mihai Tanasescu <mihai@duras.ro>
User-Agent: Thunderbird 1.5.0.13 (Windows/20070809)
MIME-Version: 1.0
To: Mihai Tanasescu <mihai@duras.ro>
References: <46DEBEA7.1020201@duras.ro>
In-Reply-To: <46DEBEA7.1020201@duras.ro>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new-20030616-p10 (RedHat) at duras.ro
Cc: freebsd-net@freebsd.org
Subject: Re: Freebsd MPD PPTP
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Sep 2007 16:10:44 -0000

Mihai Tanasescu wrote:
> Hello,
>
>
> I'm using MPD4 to establish a PPTP VPN from my FreeBSD 6.2 server to 
> some clients and I've started encountering some strange problems.
>
> The connection goes well, everything functions accordingly but after a 
> while (very random, can be 5 minutes, 1 hour, 8 hours) I loose 
> connectivity (the clients' Windows icon show packet are being sent, 
> but nothing is received). A tcpdump on the external interface shows no 
> packets going out and the same for tcpdump on ng0 (although I'm not 
> sure if it should display something here).
>
> For what I've seen the ip address on the ng0 interface disappears.
>
> My config looks like the following:
>
> FreeBSD cs.duras.ro 6.2-RELEASE FreeBSD 6.2-RELEASE #0
>
> - standard kernel
> - rc.conf: mpd_enable="YES"
>
>
> mpd.conf
> pptp1:
>        new -i ng0 pptp1 pptp1
>        set iface disable proxy-arp
>        set ipcp ranges 192.168.1.129/32 192.168.1.130/32
>        set iface route 192.168.1.130/32
>        load pptp_standard
>
> pptp_standard:
>        set iface idle 0
>        set iface disable on-demand
>        set iface enable tcpmssfix
>        set bundle disable multilink
>        set bundle enable compression
>        set bundle enable noretry
>        set bundle max-logins 0
>        set link no pap chap
>        set link enable chap
>        set link keep-alive 0 0 // tried before with 10 and 60 and now 
> I've disabled the keepalives
>        set link max-redial -1
>        set link yes acfcomp protocomp
>        set link enable chap-md5 chap-msv1 chap-msv2 chap
>        set link mtu 1460
>        set link mtu 1460 //here I also tried without these
>        set link mru 1460 // here I also tried without these
>        set link latency 0
>        set ipcp dns dns-ip-address
>        set ipcp yes vjcomp
>        set ccp yes mppc
>        set ccp yes mpp-e40
>        set ccp yes mpp-e128
>        set ccp yes mpp-stateless
>        set pptp disable delayed-ack
>
> mpd.links
>
> pptp1:
>       set link type pptp
>       set pptp self my-server-ip-address
>       set pptp enable incoming
>       set pptp disable originate
>       set pptp disable windowing
>
> I'm also using pf for NAT:
> scrub in all fragment reassemble no-df max-mss 1452
> #nonat = local table with lan ip addresses
> nat on $ext_if from 192.168.1.128/25 to ! <nonat> -> ($ext_if)
>
> I get no packet errors during the communication.
>
> Can anyone help in debugging this ?
>
>
> Thanks,
> Mihai
>
>
>
>
>

Forgot to mention this:

As far as I'm seeing it now, this only happens when 2 users try to be 
simultaneously connected.

I have defined:

pptp1:
        new -i ng0 pptp1 pptp1
        set iface disable proxy-arp
        set ipcp ranges 192.168.1.129/32 192.168.1.130/32
        load pptp_standard
pptp2:
        new -i ng0 pptp2 pptp2
        set iface disable proxy-arp
        set ipcp ranges 192.168.1.131/32 192.168.1.132/32
        load pptp_standard

pptp1:
       set link type pptp
       set pptp self 86.105.56.134
       set pptp enable incoming
       set pptp disable originate
       set pptp disable windowing
pptp2:
       set link type pptp
       set pptp self 86.105.56.134
       set pptp enable incoming
       set pptp disable originate
       set pptp disable windowing