From owner-freebsd-questions@FreeBSD.ORG Wed May 26 20:19:31 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E35B01065672 for ; Wed, 26 May 2010 20:19:31 +0000 (UTC) (envelope-from drew@mykitchentable.net) Received: from smtp3.mc.surewest.net (qsmtp.mc.surewest.net [66.60.130.145]) by mx1.freebsd.org (Postfix) with SMTP id B8BB58FC14 for ; Wed, 26 May 2010 20:19:31 +0000 (UTC) Received: (qmail 6176 invoked from network); 26 May 2010 13:19:46 -0700 Received: by simscan 1.1.0 ppid: 6146, pid: 6149, t: 2.1937s scanners: regex: 1.1.0 attach: 1.1.0 spam: 3.1.7-deb X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on smtp3.int.surewest.net. X-Spam-Level: * X-Spam-Status: No, score=1.4 required=13.5 tests=RATWARE_GECKO_BUILD autolearn=disabled version=3.1.7-deb X-Spam-CMAE-Analysis: v=1.0 c=1 a=lHmZjhUvrzIA:10 a=ood2b7iyd8MA:10 a=VphdPIyG4kEA:10 a=8nJEP1OIZ-IA:10 a=a66jc5MsnkA1bNv1OzoA:9 a=1R5i3ExdCHLpWKCYw0cA:7 a=EWmx7pCbg6deHz6Z872axTpZUDIA:4 a=wPNLvfGTeEIA:10 Received: from unknown (HELO blacklamb.mykitchentable.net) (69.62.230.77) by smtp3 with SMTP; 26 May 2010 13:19:44 -0700 Received: from [127.0.0.1] (unknown [192.168.2.3]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by blacklamb.mykitchentable.net (Postfix) with ESMTPSA id 7817E1658EB for ; Wed, 26 May 2010 13:19:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=mykitchentable.net; s=default; t=1274905170; bh=GqQz3Mct3cevLEuL2j0brVOh/nuDZGR1A7HCbdhKsO4=; h=Message-ID:Date:From:MIME-Version:To:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=hAtPXDJaOxlo5E+dO5r++j8PYaVeDVk0PFABGqwwHs0O/jBrOGKSAEfrifVXEQ1SG B/3u7+2iHtEmpx7R6r8irRJ7iL11GD1k4FzhyGFe8//c27z959vOgXlNo+sso29hvx 6YnO/gn/u5nKX2b/PxVeKnoRS4g9W7tEHjKcYNos= Message-ID: <4BFD8252.2060505@mykitchentable.net> Date: Wed, 26 May 2010 13:19:30 -0700 From: Drew Tomlinson User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4 MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <4BFC10C5.1040202@mykitchentable.net> In-Reply-To: <4BFC10C5.1040202@mykitchentable.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Antivirus: avast! (VPS 100526-1, 05/26/2010), Outbound message X-Antivirus-Status: Clean Subject: Re: Help With MPD as pptp client -- SOLVED X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2010 20:19:32 -0000 On 5/25/2010 11:02 AM, Drew Tomlinson wrote: > I'm trying to use mpd5 as a client to connect to a VPN server at work > which has a routeable class B IP address. It's a Cisco 3000 and > Windows machines connect using the built-in Microsoft dialup > networking client. > > I can successfully connect with mpd5 and after manually manipulating > the routing tables, I can connect to machines through the vpn. But I > can't understand how to configure mpd5 so that manual route > intervention is not required. > > Here is my mpd.conf which is based from the sample included with the > port. I have used "aaa.bbb.x.x" to represent my employer's IP addresses. > > # $Id: mpd.conf.sample,v 1.46 2009/04/29 11:04:17 amotin Exp $ > # > ################################################################# > > startup: > # configure mpd users > set user foo bar admin > set user foo1 bar1 > # configure the console > set console self 127.0.0.1 5005 > set console open > # configure the web server > set web self 0.0.0.0 5006 > set web open > > # > # Default configuration is "dialup" > > default: > load pptp_client > > pptp_client: > # > # PPTP client: only outgoing calls, auto reconnect, > # ipcp-negotiated address, one-sided authentication, > # default route points on ISP's end > # > > create bundle static B1 > # set iface route default > set iface idle 0 > set iface route aaa.bbb.0.0/16 > set ipcp ranges 0.0.0.0/0 0.0.0.0/0 > > create link static L1 pptp > set link action bundle B1 > set auth authname ****** > set auth password ****** > set link max-redial 0 > set link mtu 1460 > set link keep-alive 20 75 > set pptp peer aaa.bbb.18.10 > set pptp disable windowing > open > > Here is my route table after starting mpd5: > > vm# netstat -rn > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif > Expire > default 192.168.1.2 UGS 9 3097494 em0 > 127.0.0.1 link#6 UH 0 56291 lo0 > aaa.bbb.0.0/16 aaa.bbb.18.10 UGS 0 0 ng0 > aaa.bbb.18.10 link#8 UH 0 2 ng0 > aaa.bbb.206.150 link#8 UHS 0 0 lo0 > 192.168.1.0/24 link#2 U 2 12822383 em0 > > I need my route table to look like this (or something equivalent): > > vm# netstat -rn > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif > Expire > default 192.168.1.2 UGS 12 3099541 em0 > 127.0.0.1 link#6 UH 0 56299 lo0 > aaa.bbb.0.0/16 aaa.bbb.18.10 UGS 0 12 ng0 > aaa.bbb.18.10 192.168.1.2 UGHS 3 77 em0 > aaa.bbb.206.150 link#8 UHS 0 0 lo0 > 192.168.1.0/24 link#2 U 1 12822495 em0 > > > You'll see the main difference is that I have to route aaa.bbb.18.10 > out the default gateway of my LAN. > > What do I need to change or add in my mpd.conf to get the desired > routing table? For the archives: I was able to accomplish manipulation of the routing tables with scripts. See 'set iface up-script' in mpd5 docs for more info. HTH someone. Cheers, Drew