From owner-freebsd-stable@FreeBSD.ORG Tue Apr 5 14:12:48 2005 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9AF8916A4CE for ; Tue, 5 Apr 2005 14:12:48 +0000 (GMT) Received: from w2b.BigIMAP.com (w2b.bigimap.com [67.137.230.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6003D43D2D for ; Tue, 5 Apr 2005 14:12:48 +0000 (GMT) (envelope-from Walentyn@gorsk.com) Received: from [127.0.0.1] (helo=localhost) by w2b.BigIMAP.com with esmtp (Exim 4.32) id 1DIonM-00085O-CM; Tue, 05 Apr 2005 07:12:44 -0700 Received: from pool-151-203-222-74.bos.east.verizon.net (pool-151-203-222-74.bos.east.verizon.net [151.203.222.74]) by w2b.bigimap.com (IMP) with HTTP for ; Tue, 5 Apr 2005 10:12:44 -0400 Message-ID: <1112710364.42529cdc56012@w2b.bigimap.com> Date: Tue, 5 Apr 2005 10:12:44 -0400 From: Walentyn To: freebsd-stable@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.2.4 X-Originating-IP: 151.203.222.74 X-BFI-Originally-From: Subject: Re: FreeBSD mpd PPTP client connection to SnapGearLITE+ X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Apr 2005 14:12:48 -0000 Quoting Daniel O'Connor : > On Tue, 5 Apr 2005 18:55, Walentyn wrote: > > > Any reason you are using mpd? I have only done it with ppp.. > > > > No native FreeBSD ppp MPPE support (for example with PPTP-Client). > > Err yes it does.. > From ppp(8) > Supports MPPE (draft-ietf-pppext-mppe) MPPE is Microsoft Point to Point > Encryption scheme. It is possible to configure ppp to participate in > Microsoft's Windows VPN. For now, ppp can only get encryption keys from > CHAP 81 authentication. ppp must be compiled with DES for MPPE to oper- > ate. > I stand corrected. >From my previous reading, it looked like there were a whole bunch of disparate patches to give ppp MMPE functionality. From the quoted manual section, it seems that it has rudimentary functionality if you compile it yourself. (I prefer NOT to roll my own.) Also from what I read, it would appear that netgraph/mpd, etc. is a more integrated more cleanly coded implementation that should work very well -- if you can get it to work, that is. :) I'll tinker with my set up for another day or two. If I'm able to get it working I'll report. Otherwise, I found that SnapGear may be dead as a company but Cyberguard still supports it and has come out with some very interesting new products, in particular a PCI NIC firewall/VPN (see URL below) which might just be what I need. http://www.cyberguard.com/products/firewall/SG_Family/SG630.html?lang=de_EN Thank you for all your suggestions! -- Walentyn