From owner-freebsd-questions@FreeBSD.ORG  Sun Nov  9 15:45:22 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 71A1316A4CE
	for <questions@FreeBSD.ORG>; Sun,  9 Nov 2003 15:45:22 -0800 (PST)
Received: from InterJet.dellroad.org (public.cpe.mvllo.al.charter.com
	[24.196.18.187])
	by mx1.FreeBSD.org (Postfix) with ESMTP id F318B43FAF
	for <questions@FreeBSD.ORG>; Sun,  9 Nov 2003 15:45:19 -0800 (PST)
	(envelope-from archie@dellroad.org)
Received: from arch20m.dellroad.org (arch20m.dellroad.org [10.2.2.20])
	by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id PAA29736;
	Sun, 9 Nov 2003 15:37:34 -0800 (PST)
Received: from arch20m.dellroad.org (localhost [127.0.0.1])
	by arch20m.dellroad.org (8.12.8/8.12.6) with ESMTP id hA9NbXdh003785;
	Sun, 9 Nov 2003 15:37:33 -0800 (PST)
	(envelope-from archie@arch20m.dellroad.org)
Received: (from archie@localhost)
	by arch20m.dellroad.org (8.12.8/8.12.8/Submit) id hA9NbWAZ003784;
	Sun, 9 Nov 2003 17:37:32 -0600 (CST)
From: Archie Cobbs <archie@dellroad.org>
Message-Id: <200311092337.hA9NbWAZ003784@arch20m.dellroad.org>
In-Reply-To: <1068334731.37279.19.camel@shumai.marcuscom.com>
To: Joe Marcus Clarke <marcus@marcuscom.com>
Date: Sun, 9 Nov 2003 17:37:32 -0600 (CST)
X-Mailer: ELM [version 2.4ME+ PL99b (25)]
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII
cc: questions@FreeBSD.ORG
Subject: Re: MPD problems connecting to a Cisco 3000 concentrator
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 09 Nov 2003 23:45:22 -0000

Joe Marcus Clarke wrote:
> I'm trying to establish an encrypted PPTP connection to a Cisco VPN
> concentrator using mpd-3.14.  It works fine when I disable all
> encryption, but with even 40-bit stateless, I get errors like:
> 
> [vpn] LCP: rec'd Protocol Reject #2 link 0 (Opened)
> [vpn] LCP: protocol 0x32f7 was rejected
> [vpn] LCP: rec'd Protocol Reject #10 link 0 (Opened)
> [vpn] LCP: protocol 0xa785 was rejected
> [vpn] LCP: rec'd Protocol Reject #11 link 0 (Opened)
> [vpn] LCP: protocol 0x5a41 was rejected
> [vpn] LCP: rec'd Protocol Reject #12 link 0 (Opened)
> [vpn] LCP: protocol 0x5ceb was rejected

Almost certain that either the MPD side is incorrectly decrypting the
packets or the Cisco side is incorrectly encrypting them. All known MPD
bugs in this regard are fixed in the latest version of MPD & FreeBSD...
try upgrading the Cisco box?? Or try MS-CHAPv1 instead of v2?

-Archie

__________________________________________________________________________
Archie Cobbs     *    Halloo Communications    *     http://www.halloo.com