From owner-freebsd-net@FreeBSD.ORG Tue Jun 26 12:04:09 2007 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 3C8D716A46C for ; Tue, 26 Jun 2007 12:04:09 +0000 (UTC) (envelope-from stapleton.41@gmail.com) Received: from mu-out-0910.google.com (mu-out-0910.google.com [209.85.134.189]) by mx1.freebsd.org (Postfix) with ESMTP id AB54013C4BA for ; Tue, 26 Jun 2007 12:04:08 +0000 (UTC) (envelope-from stapleton.41@gmail.com) Received: by mu-out-0910.google.com with SMTP id w9so1995577mue for ; Tue, 26 Jun 2007 05:04:07 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=dQ4twUD3JXIQ7khziAl7x1h8roFqzeBrgyqeWvSA6UNvQbRmhqxFFQ/7FGBQZ6wGZza9t46cKBxBcv2f24U8yUZ0vkjP56w3639GXuinlIWAViTcWPYrp4172W0JS8hNPcHcRd7KZpKP0d2K4KPQ8WNLY8qQ68Fh47w8u3MXajA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=sohh4C64AIvB+UYWyBWw+PkXmRpMPlk1rl+QLmTLYX8SjZePmjkIe0/Z08hvGQQqOE6SuuN5EziZi/WaWER7N+dKyb3sXcpH7Z/47koZLBS/EUei9DJJLaMS/z0zbXL9TkMkTDByg+BMMeE7zE5MqENOpKxapY7ra4l45DGLGC4= Received: by 10.82.106.14 with SMTP id e14mr14781304buc.1182859447412; Tue, 26 Jun 2007 05:04:07 -0700 (PDT) Received: by 10.82.191.14 with HTTP; Tue, 26 Jun 2007 05:04:07 -0700 (PDT) Message-ID: <80f4f2b20706260504m782e25a2odadaa91be4856e37@mail.gmail.com> Date: Tue, 26 Jun 2007 08:04:07 -0400 From: "Jim Stapleton" To: "Artyom Viklenko" In-Reply-To: <467E2BEC.80305@aws-net.org.ua> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <80f4f2b20706230440n5abeceb6n6d94eef41f776265@mail.gmail.com> <467D1700.8050006@aws-net.org.ua> <80f4f2b20706231120u6b6f2659xa427b7a54f20b243@mail.gmail.com> <467E2BEC.80305@aws-net.org.ua> Cc: freebsd-net@freebsd.org Subject: Re: ppp/peers/* files X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2007 12:04:09 -0000 That partially worked. I could only ping 192.168.1.1 on my local setup (router). I used $ mpd pptp0 However, I couldn't access the work DNS either. The latter output of MPD looked like: ========== pptp0] IPCP: rec'd Configure Ack #4 link 0 (Ack-Sent) IPADDR [pptp0] IPCP: state change Ack-Sent --> Opened [pptp0] IPCP: LayerUp -> [pptp0] IFACE: Up event [pptp0] setting interface ng0 MTU to 1396 bytes [pptp0] exec: /sbin/ifconfig ng0 netmask 0xffffffff -link0 [pptp0] exec: /sbin/route add -iface lo0 [pptp0] exec: /sbin/route add 0.0.0.0 [pptp0] exec: command returned 256 ========== I could ping and after running mpd, but I could not ping them before running it, or after shutting it down. Both are valid IP addresses on my works internal network. Aside from my nve0 and l0 devices, which look normal, ifconfig displays the following: ========== ng0: flags=88d1 mtu 1396 inet --> netmask 0xffffffff ========== I could not ping the DNS servers. Any suggestions? Thanks, -Jim Stapleton On 6/24/07, Artyom Viklenko wrote: > Jim Stapleton wrote: > > I can't find a way to specify mppe-128 for either pptp or pppd in the > > man files, and every doc I see (including the man pages examples, > > which don't work when I specify it in the file) seem to suggest that I > > use either "mppe-128" or "require-mppe-128" for pppd, neither of which > > work. Any suggestions? > > As far as I know, pppd in FreeBSD does not support natively mppc and > needs patches. (Maybe this functionality provided by pptp.) > > But MPD does! And it support it using in-kernel netgraph subsystem. > So, I suggest to install mpd and set it up to connect to your Windows > VPN server. > > Your configs may look like this. > > mpd.conf file: > > default: > load pptp0 > > pptp0: > new -i ng0 pptp0 pptp0 > set bundle enable compression > set bundle disable multilink > set bundle authname "your-username" > set bundle password "your-password" > set iface disable on-demand > set iface idle 0 > set iface mtu 1460 > set iface route default > set link yes acfcomp protocomp > set link disable pap > set link accept chap-md5 chap-msv1 chap-msv2 chap > set link enable no-orig-auth > set link mtu 1460 > set link mru 1460 > set link keep-alive 10 60 > set ipcp yes vjcomp > set ipcp ranges 0.0.0.0/0 0.0.0.0/0 > set ccp yes mppc > set ccp yes mpp-e40 > set ccp yes mpp-e56 > set ccp yes mpp-e128 > set ccp yes mpp-stateless > set pptp peer > set pptp disable incoming > set pptp enable originate out-call > set pptp disable windowing > set pptp disable delayed-ack > open iface > > mpd.links file: > > pptp0: > set link type pptp > > > Also make shure you have loaded (or compiled in kernel): > > ng_bpf.ko > netgraph.ko > ng_ether.ko > ng_iface.ko > ng_ksocket.ko > ng_mppc.ko > rc4.ko > ng_netflow.ko > ng_ppp.ko > ng_pptpgre.ko > ng_socket.ko > ng_tee.ko > ng_vjc.ko > ng_tty.ko > ng_async.ko > > Hope this helps. > > -- > Sincerely yours, > Artyom Viklenko. > ------------------------------------------------------- > artem@aws-net.org.ua | http://www.aws-net.org.ua/~artem > FreeBSD: The Power to Serve - http://www.freebsd.org >