From owner-freebsd-net Tue Jul 18 7:25:43 2000 Delivered-To: freebsd-net@freebsd.org Received: from sr14.nsw-remote.bigpond.net.au (sr14.nsw-remote.bigpond.net.au [24.192.3.29]) by hub.freebsd.org (Postfix) with ESMTP id DF2CD37B61F for ; Tue, 18 Jul 2000 07:25:36 -0700 (PDT) (envelope-from areilly@nsw.bigpond.net.au) Received: from areilly.bpc-users.org (CPE-144-132-171-71.nsw.bigpond.net.au [144.132.171.71]) by sr14.nsw-remote.bigpond.net.au (Pro-8.9.3/8.9.3) with SMTP id XAA24523 for ; Tue, 18 Jul 2000 23:10:29 +1000 (EST) Received: (qmail 17864 invoked by uid 1000); 18 Jul 2000 13:10:31 -0000 From: "Andrew Reilly" Date: Tue, 18 Jul 2000 23:10:31 +1000 To: freebsd-net@freebsd.org Cc: Archie Cobbs Subject: mpd-netgraph port vs Windows-2000 PPTP vpn Message-ID: <20000718231031.A16524@gurney.reilly.home> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="dDRMvlgZJXvWKvBx" Content-Disposition: inline User-Agent: Mutt/1.2i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --dDRMvlgZJXvWKvBx Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi, I've recently built new world and kernel so that I could try the mpd-netgraph port. (My system is now FreeBSD gurney.reilly.home 4.1-RC FreeBSD 4.1-RC #0: Sun Jul 16 10:19:08 EST 2000 root@gurney.reilly.home:/usr/obj/usr/src/sys/GURNEY i386 ) I've gone this way after discovering that the pptpclient port was having trouble connecting to my office's windows-2000 PPTP server (see http://www.FreeBSD.org/cgi/getmsg.cgi?fetch=415346+417548+/usr/local/www/db/text/2000/freebsd-stable/20000709.freebsd-stable) As a reference point, I can successfully connect to this VPN with the dial-up-networking in my Windows-98 laptop, even through my FreeBSD firewall box, thanks to a "-redirect_proto gre" argument to natd... so I know my login name and password. Mpd seems like a wonderful system, and it seems to get much further with the authentication stuff than ppp did, but still not all the way. Any suggestions? It seems possible, given the discussion in the mpd documentation, that my office's Win2000 system might be using the STACK and mppc bits. Is it possible to aquire these at all, or is this something only available internally to Whistle? Exhibit (a) is my mpd.config file, (b) is my mpd.links file, and (c) is the mpd.log trace of my most recent login attempt. Oh: documentation bug report: should the first command in section 4.4 "IPCP layer commands" in the manual read "set ipcp ranges ..." instead of "set iface ranges ..." as it currently does? -- Andrew --dDRMvlgZJXvWKvBx Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="mpd.conf" vpn: new -i ng1 vpn vpn set bundle no multilink set bundle authname andrew # set bundle enable compression # set bundle enable crypt-reqd set iface disable on-demand set iface idle 0 set iface route 192.168.10.0/23 set ipcp ranges 192.168.10.0/23 192.168.10.0/23 set ipcp yes vjcomp set ipcp yes req-pri-dns set ipcp yes req-sec-dns set ipcp yes req-pri-nbns set ipcp yes req-sec-nbns set link enable no-orig-auth set link keep-alive 10 75 set link max-redial 1 set link yes acfcomp protocomp set link no pap set link yes chap # set ccp yes stac # set ccp yes mppc # set ccp yes mpp-compress set ccp yes mpp-e40 set ccp yes mpp-e128 # set ccp yes mpp-stateless # set ecp yes des open --dDRMvlgZJXvWKvBx Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="mpd.links" vpn: set link type pptp set pptp self 144.132.171.71 set pptp peer 210.8.75.9 set pptp enable originate outcall set pptp disable incoming --dDRMvlgZJXvWKvBx Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="mpd.log" Jul 18 22:48:12 gurney mpd: [vpn] device: OPEN event in state DOWN Jul 18 22:48:12 gurney mpd: pptp0: connecting to 210.8.75.9:1723 Jul 18 22:48:12 gurney mpd: [vpn] device is now in state OPENING Jul 18 22:48:12 gurney mpd: pptp0: connected to 210.8.75.9:1723 Jul 18 22:48:12 gurney mpd: pptp0: attached to connection with 210.8.75.9:1723 Jul 18 22:49:16 gurney mpd: pptp0-0: outgoing call connected at -2137614336 bps Jul 18 22:49:16 gurney mpd: [vpn] PPTP call successful Jul 18 22:49:16 gurney mpd: [vpn] device: UP event in state OPENING Jul 18 22:49:16 gurney mpd: [vpn] device is now in state UP Jul 18 22:49:16 gurney mpd: [vpn] link: UP event Jul 18 22:49:16 gurney mpd: [vpn] link: origination is local Jul 18 22:49:16 gurney mpd: [vpn] LCP: Up event Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Starting --> Req-Sent Jul 18 22:49:16 gurney mpd: [vpn] LCP: phase shift DEAD --> ESTABLISH Jul 18 22:49:16 gurney mpd: [vpn] LCP: SendConfigReq #3 Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: MRU 1500 Jul 18 22:49:16 gurney mpd: MAGICNUM cc944b06 Jul 18 22:49:16 gurney mpd: AUTHPROTO CHAP MSOFT Jul 18 22:49:16 gurney mpd: [vpn] LCP: rec'd Configure Request #0 link 0 (Req-Sent) Jul 18 22:49:16 gurney mpd: AUTHPROTO 0xc227 Jul 18 22:49:16 gurney mpd: MAGICNUM 1f174827 Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: CALLBACK Jul 18 22:49:16 gurney mpd: Not supported Jul 18 22:49:16 gurney mpd: MP MRRU 1614 Jul 18 22:49:16 gurney mpd: ENDPOINTDISC [LOCAL] 35 02 eb 33 73 42 4c 06 8b ff e9 df 07 a9 ef 39 00 00 00 00 Jul 18 22:49:16 gurney mpd: UNKNOWN[23] len=4 Jul 18 22:49:16 gurney mpd: [vpn] LCP: SendConfigRej #0 Jul 18 22:49:16 gurney mpd: CALLBACK Jul 18 22:49:16 gurney mpd: MP MRRU 1614 Jul 18 22:49:16 gurney mpd: UNKNOWN[23] len=4 Jul 18 22:49:16 gurney mpd: [vpn] LCP: rec'd Configure Ack #3 link 0 (Req-Sent) Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: MRU 1500 Jul 18 22:49:16 gurney mpd: MAGICNUM cc944b06 Jul 18 22:49:16 gurney mpd: AUTHPROTO CHAP MSOFT Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Req-Sent --> Ack-Rcvd Jul 18 22:49:16 gurney mpd: [vpn] LCP: rec'd Configure Request #1 link 0 (Ack-Rcvd) Jul 18 22:49:16 gurney mpd: AUTHPROTO 0xc227 Jul 18 22:49:16 gurney mpd: MAGICNUM 1f174827 Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: ENDPOINTDISC [LOCAL] 35 02 eb 33 73 42 4c 06 8b ff e9 df 07 a9 ef 39 00 00 00 00 Jul 18 22:49:16 gurney mpd: [vpn] LCP: SendConfigNak #1 Jul 18 22:49:16 gurney mpd: AUTHPROTO CHAP MD5 Jul 18 22:49:16 gurney mpd: [vpn] LCP: rec'd Configure Request #2 link 0 (Ack-Rcvd) Jul 18 22:49:16 gurney mpd: AUTHPROTO CHAP MD5 Jul 18 22:49:16 gurney mpd: MAGICNUM 1f174827 Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: ENDPOINTDISC [LOCAL] 35 02 eb 33 73 42 4c 06 8b ff e9 df 07 a9 ef 39 00 00 00 00 Jul 18 22:49:16 gurney mpd: [vpn] LCP: SendConfigAck #2 Jul 18 22:49:16 gurney mpd: AUTHPROTO CHAP MD5 Jul 18 22:49:16 gurney mpd: MAGICNUM 1f174827 Jul 18 22:49:16 gurney mpd: PROTOCOMP Jul 18 22:49:16 gurney mpd: ACFCOMP Jul 18 22:49:16 gurney mpd: ENDPOINTDISC [LOCAL] 35 02 eb 33 73 42 4c 06 8b ff e9 df 07 a9 ef 39 00 00 00 00 Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Ack-Rcvd --> Opened Jul 18 22:49:16 gurney mpd: [vpn] LCP: phase shift ESTABLISH --> AUTHENTICATE Jul 18 22:49:16 gurney mpd: [vpn] LCP: auth: peer wants CHAP, I want CHAP Jul 18 22:49:16 gurney mpd: [vpn] CHAP: sending CHALLENGE Jul 18 22:49:16 gurney mpd: [vpn] LCP: LayerUp Jul 18 22:49:16 gurney mpd: pptp0: CID 0xa525 in SetLinkInfo not found Jul 18 22:49:16 gurney mpd: [vpn] CHAP: rec'd CHALLENGE #0 Jul 18 22:49:16 gurney mpd: Name: "FIREWALL" Jul 18 22:49:16 gurney mpd: Using authname "andrew" Jul 18 22:49:16 gurney mpd: [vpn] CHAP: sending RESPONSE Jul 18 22:49:16 gurney mpd: [vpn] CHAP: rec'd FAILURE #0 Jul 18 22:49:16 gurney mpd: [vpn] LCP: authorization failed Jul 18 22:49:16 gurney mpd: [vpn] device: CLOSE event in state UP Jul 18 22:49:16 gurney mpd: pptp0-0: clearing call Jul 18 22:49:16 gurney mpd: [vpn] device is now in state CLOSING Jul 18 22:49:16 gurney mpd: [vpn] LCP: rec'd Terminate Request #4 link 0 (Opened) Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Opened --> Stopping Jul 18 22:49:16 gurney mpd: [vpn] LCP: phase shift AUTHENTICATE --> TERMINATE Jul 18 22:49:16 gurney mpd: [vpn] LCP: SendTerminateAck #4 Jul 18 22:49:16 gurney mpd: [vpn] error writing len 8 frame to bypass: Network is down Jul 18 22:49:16 gurney mpd: [vpn] LCP: LayerDown Jul 18 22:49:16 gurney mpd: [vpn] device: DOWN event in state CLOSING Jul 18 22:49:16 gurney mpd: [vpn] device is now in state DOWN Jul 18 22:49:16 gurney mpd: [vpn] link: DOWN event Jul 18 22:49:16 gurney mpd: [vpn] LCP: Down event Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Stopping --> Starting Jul 18 22:49:16 gurney mpd: [vpn] LCP: phase shift TERMINATE --> DEAD Jul 18 22:49:16 gurney mpd: [vpn] giving up after 1 connection attempts Jul 18 22:49:16 gurney mpd: [vpn] LCP: Close event Jul 18 22:49:16 gurney mpd: [vpn] LCP: state change Starting --> Initial Jul 18 22:49:16 gurney mpd: [vpn] LCP: LayerFinish Jul 18 22:49:16 gurney mpd: [vpn] closing link "vpn"... Jul 18 22:49:16 gurney mpd: [vpn] IPCP: Close event Jul 18 22:49:16 gurney mpd: [vpn] IPCP: state change Starting --> Initial Jul 18 22:49:16 gurney mpd: [vpn] IPCP: LayerFinish Jul 18 22:49:16 gurney mpd: [vpn] bundle: CLOSE event in state OPENED Jul 18 22:49:16 gurney mpd: [vpn] link: CLOSE event Jul 18 22:49:16 gurney mpd: [vpn] LCP: Close event Jul 18 22:49:16 gurney mpd: [vpn] device: CLOSE event in state DOWN Jul 18 22:49:16 gurney mpd: [vpn] device is now in state DOWN Jul 18 22:49:16 gurney mpd: pptp0: CID 0xa525 in SetLinkInfo not found Jul 18 22:49:16 gurney mpd: pptp0-0: peer call disconnected res=zero? err=none Jul 18 22:49:16 gurney mpd: pptp0-0: killing channel Jul 18 22:49:16 gurney mpd: pptp0: closing connection with 210.8.75.9:1723 Jul 18 22:49:19 gurney mpd: pptp0: no reply to StopCtrlConnRequest after 3 sec Jul 18 22:49:19 gurney mpd: pptp0: killing connection with 210.8.75.9:1723 Jul 18 22:50:03 gurney mpd: [vpn] IFACE: Close event Jul 18 22:50:03 gurney mpd: [vpn] IPCP: Close event Jul 18 22:50:54 gurney mpd: [vpn] IPCP: Down event Jul 18 22:50:54 gurney mpd: [vpn] IFACE: Close event Jul 18 22:50:54 gurney mpd: mpd: process 16313 terminated --dDRMvlgZJXvWKvBx-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message