From owner-freebsd-questions@FreeBSD.ORG  Tue May 25 20:19:54 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C158D106566C
	for <freebsd-questions@freebsd.org>;
	Tue, 25 May 2010 20:19:54 +0000 (UTC)
	(envelope-from drew@mykitchentable.net)
Received: from smtp3.mc.surewest.net (qsmtp.mc.surewest.net [66.60.130.145])
	by mx1.freebsd.org (Postfix) with SMTP id 952918FC0A
	for <freebsd-questions@freebsd.org>;
	Tue, 25 May 2010 20:19:54 +0000 (UTC)
Received: (qmail 11072 invoked from network); 25 May 2010 13:20:09 -0700
Received: by simscan 1.1.0 ppid: 11050, pid: 11051, t: 2.2332s
	scanners: regex: 1.1.0 attach: 1.1.0 spam: 3.1.7-deb
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on 
	smtp3.int.surewest.net.
X-Spam-Level: *
X-Spam-Status: No, score=1.4 required=13.5 tests=RATWARE_GECKO_BUILD 
	autolearn=disabled version=3.1.7-deb
X-Spam-CMAE-Analysis: v=1.0 c=1 a=mI6YO6ZdSLUA:10 a=VphdPIyG4kEA:10 
	a=8nJEP1OIZ-IA:10 a=6I5d2MoRAAAA:8 a=-UJvIwSO7jQeNRL-AakA:9 
	a=2ouB_DF73nUv9umka0IA:7 a=HpTWdEHqwYKlrGLZ2NfOFqVJOWoA:4 
	a=wPNLvfGTeEIA:10 a=Sllw8v0m4fwA:10 a=SV7veod9ZcQA:10
Received: from unknown (HELO blacklamb.mykitchentable.net) (69.62.230.77)
	by smtp3 with SMTP; 25 May 2010 13:20:06 -0700
Received: from [127.0.0.1] (unknown [192.168.2.3])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by blacklamb.mykitchentable.net (Postfix) with ESMTPSA id 3B9821656FF; 
	Tue, 25 May 2010 13:19:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=mykitchentable.net;
	s=default; t=1274818793;
	bh=tf4ZuyIfhK9QjrkTVzrkcVna1p2zNIUxOxUUe14CFNg=;
	h=Message-ID:Date:From:MIME-Version:To:Subject:References:
	In-Reply-To:Content-Type:Content-Transfer-Encoding;
	b=S1pajzNx9SdF6TDqt//hoMRpBemkvCwnqLmpUA2hLtROlEV7PN/yyk0Sxn4+6z7rn
	xNFZ2SfUNQTxCk1X3s20myJ2IZISifUYqxZl+Fmi/h2UTlSb14aZpAtpD7lwUwv84W
	anDWF8L2BhCqhX4h5od1FKSVvkOUyZ1O/dp/sfwM=
Message-ID: <4BFC30ED.7040900@mykitchentable.net>
Date: Tue, 25 May 2010 13:19:57 -0700
From: Drew Tomlinson <drew@mykitchentable.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US;
	rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4
MIME-Version: 1.0
To: Mark <redtick@sbcglobal.net>, 
	FreeBSD Questions <freebsd-questions@freebsd.org>
References: <95300.31117.qm@web81207.mail.mud.yahoo.com>
In-Reply-To: <95300.31117.qm@web81207.mail.mud.yahoo.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Antivirus: avast! (VPS 100525-1, 05/25/2010), Outbound message
X-Antivirus-Status: Clean
Cc: 
Subject: Re: Help With MPD as pptp client
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 25 May 2010 20:19:54 -0000

On 5/25/2010 11:59 AM, Mark wrote:
>
> --- On Tue, 5/25/10, Drew Tomlinson<drew@mykitchentable.net>  wrote:
>
>    
>> From: Drew Tomlinson<drew@mykitchentable.net>
>> Subject: Help With MPD as pptp client
>> To: freebsd-questions@freebsd.org
>> Date: Tuesday, May 25, 2010, 1:02 PM
>> I'm trying to use mpd5 as a client to
>> connect to a VPN server at work which has a routeable class
>> B IP address.  It's a Cisco 3000 and Windows machines
>> connect using the built-in Microsoft dialup networking
>> client.
>>
>> I can successfully connect with mpd5 and after manually
>> manipulating the routing tables, I can connect to machines
>> through the vpn.  But I can't understand how to
>> configure mpd5 so that manual route intervention is not
>> required.
>>
>> Here is my mpd.conf which is based from the sample included
>> with the port.  I have used "aaa.bbb.x.x" to represent
>> my employer's IP addresses.
>>
>> # $Id: mpd.conf.sample,v 1.46 2009/04/29 11:04:17 amotin
>> Exp $
>> #
>> #################################################################
>>
>> startup:
>>          # configure mpd users
>>          set user foo bar admin
>>          set user foo1 bar1
>>          # configure the console
>>          set console self 127.0.0.1
>> 5005
>>          set console open
>>          # configure the web server
>>          set web self 0.0.0.0 5006
>>          set web open
>>
>> #
>> # Default configuration is "dialup"
>>
>> default:
>>          load pptp_client
>>
>> pptp_client:
>> #
>> # PPTP client: only outgoing calls, auto reconnect,
>> # ipcp-negotiated address, one-sided authentication,
>> # default route points on ISP's end
>> #
>>
>>          create bundle static B1
>> #       set iface route default
>>          set iface idle 0
>>          set iface route aaa.bbb.0.0/16
>>          set ipcp ranges 0.0.0.0/0
>> 0.0.0.0/0
>>
>>          create link static L1 pptp
>>          set link action bundle B1
>>          set auth authname ******
>>          set auth password ******
>>          set link max-redial 0
>>          set link mtu 1460
>>          set link keep-alive 20 75
>>          set pptp peer aaa.bbb.18.10
>>          set pptp disable windowing
>>          open
>>
>> Here is my route table after starting mpd5:
>>
>> vm# netstat -rn
>> Routing tables
>>
>> Internet:
>> Destination        Gateway   
>>          Flags    Refs 
>>      Use  Netif Expire
>> default           
>> 192.168.1.2        UGS   
>>       9  3097494    em0
>> 127.0.0.1          link#6 
>>             UH 
>>          0    56291 
>>    lo0
>> aaa.bbb.0.0/16     aaa.bbb.18.10 
>>      UGS     
>>     0        0 
>>    ng0
>> aaa.bbb.18.10      link#8   
>>           UH   
>>        0        2 
>>    ng0
>> aaa.bbb.206.150    link#8     
>>         UHS     
>>     0        0 
>>    lo0
>> 192.168.1.0/24     link#2   
>>           U     
>>       2 12822383    em0
>>
>> I need my route table to look like this (or something
>> equivalent):
>>
>> vm# netstat -rn
>> Routing tables
>>
>> Internet:
>> Destination        Gateway   
>>          Flags    Refs 
>>      Use  Netif Expire
>> default           
>> 192.168.1.2        UGS   
>>      12  3099541    em0
>> 127.0.0.1          link#6 
>>             UH 
>>          0    56299 
>>    lo0
>> aaa.bbb.0.0/16     aaa.bbb.18.10 
>>      UGS     
>>     0       12 
>>    ng0
>> aaa.bbb.18.10      192.168.1.2   
>>      UGHS        3   
>>     77    em0
>> aaa.bbb.206.150    link#8     
>>         UHS     
>>     0        0 
>>    lo0
>> 192.168.1.0/24     link#2   
>>           U     
>>       1 12822495    em0
>>
>>
>> You'll see the main difference is that I have to route
>> aaa.bbb.18.10 out the default gateway of my LAN.
>>
>> What do I need to change or add in my mpd.conf to get the
>> desired routing table?
>>
>> Thanks,
>>
>> Drew
>> _______________________________________________
>> freebsd-questions@freebsd.org
>> mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
>>
>>      
> Comment out   "set iface route aaa.bbb.0.0/16" and see if it works. I use mpd without this setting, it routes it to the default without a setting.
> HTH
>    

Yeah, thanks for your reply but that line creates this entry:

aaa.bbb.0.0/16     aaa.bbb.18.10

which I do need.  Basically I somehow need to say route all 
aaa.bbb.0.0/16 except aaa.bbb.18.10.  I don't know how to accomplish this.

The good news is that after my manual fixes, the tunnel works.

Cheers,

Drew