Date: Wed, 17 Mar 2004 19:28:20 +0200 From: Alexander Motin <mav@alkar.net> To: freebsd-net@freebsd.org Subject: Re: mpd lcp question Message-ID: <c3a1rl$2qhr$1@pandora.alkar.net> In-Reply-To: <20040314091814.79495.qmail@istanbul.enderunix.org> References: <20040314091814.79495.qmail@istanbul.enderunix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Omer Faruk Sen wrote: > Hi, > I have set up an mpd server. But there is a problem. When I try to > connect with my home pc logs are generated like this: > ------------------------------------------------------ > [pptp] LCP: state change Req-Sent --> Ack-Sent > [pptp] LCP: SendConfigReq #2 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM d3dbc780 > AUTHPROTO CHAP MSOFTv2 > MP MRRU 1600 > MP SHORTSEQ > ENDPOINTDISC [802.1] 00 90 27 d6 1c 0b > [pptp] LCP: rec'd Configure Reject #2 link 0 (Ack-Sent) > MP MRRU 1600 > MP SHORTSEQ > ENDPOINTDISC [802.1] 00 90 27 d6 1c 0b > [pptp] LCP: SendConfigReq #3 > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM d3dbc780 > AUTHPROTO CHAP MSOFTv2 > [pptp] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent) > ACFCOMP > PROTOCOMP > MRU 1500 > MAGICNUM d3dbc780 > AUTHPROTO CHAP MSOFTv2 > [pptp] LCP: state change Ack-Sent --> Opened > ------------------------------------------------- > As you see from above and below (which is a partial copy of above) > [pptp] LCP: rec'd Configure Reject #2 link 0 (Ack-Sent) > MP MRRU 1600 > MP SHORTSEQ > ENDPOINTDISC [802.1] 00 90 27 d6 1c 0b > As far as I understand "mp mrru 1600", "mp shortseq" and "endpoint ..." > capabilities are rejected by mpd server. My windowsXP client sends > connection request with removing those capabilities and vpn connection > is established perfectly.. > But some XP and most Windows2k clients insists on those capabilities > rejected by mpd server thus connection is no established with an LCP error. > Is there a workaround or a way to enable "mp mrru 1600", "mp shortseq" > and "endpoint ..." properties on mpd server? Add set bundle enable multilink into your config file and mpd will support that options. > My configuration is like this: > -----mpd.conf----------- > default: > load pptp > > pptp: > new -i ng0 pptp pptp > set iface disable on-demand > set iface enable proxy-arp > set iface idle 1800 > set iface enable tcpmssfix > # set bundle enable multilink > # enable TCP-Wrapper (hosts_access(5)) to block unfriendly clients > # set bundle enable tcp-wrapper > # use RADIUS servers > # load radius > set link yes acfcomp protocomp > #set iface route default > set iface route 10.0.0.0/22 > set link no pap chap > set link enable chap > set link keep-alive 10 60 > set link mtu 1460 > set link mtu 1500 > set ipcp yes vjcomp > set ipcp ranges 10.0.0.26/32 10.0.0.54/32 > #set ipcp dns 192.168.1.3 > # The five lines below enable Microsoft Point-to-Point encryption > # (MPPE) using the ng_mppc(8) netgraph node type. > # > set bundle enable compression > set ccp yes mppc > set ccp yes mpp-e40 > set ccp yes mpp-e128 > set ccp yes mpp-stateless > -----------mpd.conf------------ > > -----mpd.links------- > pptp: > set link type pptp > set pptp self SERVER_IP > set pptp enable incoming > set pptp disable originate > -------mpd.links--------- > > ----------------------- > Omer Faruk Sen > http://www.EnderUNIX.ORG > Software Development Team @ Turkey > http://www.Faruk.NET > For Public key: http://www.enderunix.org/ofsen/ofsen.asc > ******************************************************** >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?c3a1rl$2qhr$1>