From owner-freebsd-questions@FreeBSD.ORG  Thu Sep  1 20:36:27 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3259B106566C
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Sep 2011 20:36:27 +0000 (UTC) (envelope-from mbeis@xs4all.nl)
Received: from smtp-vbr14.xs4all.nl (smtp-vbr14.xs4all.nl [194.109.24.34])
	by mx1.freebsd.org (Postfix) with ESMTP id 8E5CC8FC17
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Sep 2011 20:36:26 +0000 (UTC)
Received: from yokozuna.lan (a80-101-78-208.adsl.xs4all.nl [80.101.78.208])
	by smtp-vbr14.xs4all.nl (8.13.8/8.13.8) with ESMTP id p81KZnlc042461
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Thu, 1 Sep 2011 22:35:54 +0200 (CEST) (envelope-from mbeis@xs4all.nl)
Received: from yokozuna.lan (yokozuna.lan [IPv6:::1])
	by yokozuna.lan (8.14.4/8.14.4) with ESMTP id p81KZn1M006453;
	Thu, 1 Sep 2011 22:35:49 +0200 (CEST) (envelope-from mbeis@xs4all.nl)
Date: Thu, 1 Sep 2011 22:35:49 +0200 (CEST)
From: Marco Beishuizen <mbeis@xs4all.nl>
To: =?KOI8-R?B?68/O2MvP1yDl18fFzsnK?= <kes-kes@yandex.ru>
In-Reply-To: <123778406.20110901225021@yandex.ru>
Message-ID: <alpine.BSF.2.00.1109012218560.2952@yokozuna.lan>
References: <alpine.BSF.2.00.1108302340540.3063@yokozuna.lan>
	<4E5E8A93.1010006@sentex.net>
	<alpine.BSF.2.00.1108312159370.9385@yokozuna.lan>
	<123778406.20110901225021@yandex.ru>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="394277907-1517634111-1314909349=:2952"
X-Virus-Scanned: by XS4ALL Virus Scanner
Cc: freebsd-questions@freebsd.org, Mike Tancsa <mike@sentex.net>
Subject: Re[2]: vpn using pptpclient in FreeBSD
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Marco Beishuizen <mbeis@xs4all.nl>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Sep 2011 20:36:27 -0000

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

--394277907-1517634111-1314909349=:2952
Content-Type: TEXT/PLAIN; charset=windows-1251; format=flowed
Content-Transfer-Encoding: QUOTED-PRINTABLE

On Thu, 1 Sep 2011, the wise =CA=EE=ED=FC=EA=EE=E2 =C5=E2=E3=E5=ED=E8=E9 wr=
ote:

> Notice: [B1] IFACE: Add route 0.0.0.0/0 130.115.3.34 failed: File exists
> You already have default route in your system
> why you set up the default again?
> Notice in conf:
>  set iface route default

With help from Mike Tancsa I've changed the config a bit and getting less=
=20
errors now, but still not a working vpn connection. My mpd.conf is now:
=2E..
# Default configuration is "pptp_client"

default:
 =09load pptp_client

pptp_client:
#
# PPTP client: only outgoing calls, auto reconnect,
# ipcp-negotiated address, one-sided authentication,
# default route points on ISP's end
#

 =09create bundle static B1
 =09set iface route 130.115.0.0/16
 =09set ipcp ranges 0.0.0.0/0 0.0.0.0/0

 =09set bundle enable compression
 =09set ccp yes mppc
 =09set mppc yes e40
 =09set mppc yes e128
 =09set bundle enable crypt-reqd
 =09set mppc yes stateless

 =09create link static L1 pptp
 =09set link action bundle B1
 =09set auth authname xxxxxxxxxxxxxx
 =09set auth password xxxxxxxxxxxxx
 =09set link max-redial 0
 =09set link mtu 1460
 =09set link keep-alive 20 75
 =09set pptp peer vpn-eur-pptp.eur.nl
 =09set pptp disable windowing
 =09open
=2E..

It looks like it's setting up a correct connection, but the site of the=20
library I would like to access isn't accessible when mpd5 is running:
=2E..
process 2965 started, version 5.5 (root@yokozuna.lan 17:08 30-Jul-2011)
CONSOLE: listening on 127.0.0.1 5005
web: listening on 0.0.0.0 5006
[B1] Bundle: Interface ng0 created
[L1] [L1] Link: OPEN event
[L1] LCP: Open event
[L1] LCP: state change Initial --> Starting
[L1] LCP: LayerStart
[L1] PPTP call successful
[L1] Link: UP event
[L1] LCP: Up event
[L1] LCP: state change Starting --> Req-Sent
[L1] LCP: SendConfigReq #1
[L1]   ACFCOMP
[L1]   PROTOCOMP
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: SendConfigReq #2
[L1]   ACFCOMP
[L1]   PROTOCOMP
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: rec'd Configure Reject #2 (Req-Sent)
[L1]   PROTOCOMP
[L1] LCP: SendConfigReq #3
[L1]   ACFCOMP
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: rec'd Configure Reject #3 (Req-Sent)
[L1]   ACFCOMP
[L1] LCP: SendConfigReq #4
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: rec'd Configure Nak #4 (Req-Sent)
[L1]   ACCMAP 0x000a0000
[L1] LCP: SendConfigReq #5
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: rec'd Configure Ack #5 (Req-Sent)
[L1]   ACCMAP 0x000a0000
[L1]   MRU 1500
[L1]   MAGICNUM 0a9219e0
[L1] LCP: state change Req-Sent --> Ack-Rcvd
[L1] LCP: rec'd Configure Request #1 (Ack-Rcvd)
[L1]   AUTHPROTO CHAP MSOFTv2
[L1] LCP: SendConfigAck #1
[L1]   AUTHPROTO CHAP MSOFTv2
[L1] LCP: state change Ack-Rcvd --> Opened
[L1] LCP: auth: peer wants CHAP, I want nothing
[L1] LCP: LayerUp
[L1] CHAP: rec'd CHALLENGE #1 len: 21
[L1]   Name: ""
[L1] CHAP: Using authname "xxxxxxxxxxxxxxxxx"
[L1] CHAP: sending RESPONSE #1 len: 69
[L1] CHAP: rec'd CHALLENGE #2 len: 21
[L1]   Name: ""
[L1] CHAP: Using authname "xxxxxxxxxxxxxxxxxx"
[L1] CHAP: sending RESPONSE #2 len: 69
[L1] rec'd proto IPCP during authenticate phase
[L1] rec'd proto CCP during authenticate phase
[L1] CHAP: sending RESPONSE #2 len: 69
[L1] CHAP: rec'd SUCCESS #2 len: 46
[L1]   MESG: S=3DF1619D8A3373D2F43E6652E992CA564D66B1C1A4
[L1] LCP: authorization successful
[L1] Link: Matched action 'bundle "B1" ""'
[L1] Link: Join bundle "B1"
[B1] Bundle: Status update: up 1 link, total bandwidth 64000 bps
[B1] IPCP: Open event
[B1] IPCP: state change Initial --> Starting
[B1] IPCP: LayerStart
[B1] CCP: Open event
[B1] CCP: state change Initial --> Starting
[B1] CCP: LayerStart
[B1] IPCP: Up event
[B1] IPCP: state change Starting --> Req-Sent
[B1] IPCP: SendConfigReq #1
[B1]   IPADDR 0.0.0.0
[B1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B1] CCP: Up event
[B1] CCP: state change Starting --> Req-Sent
[B1] CCP: SendConfigReq #1
[B1]   MPPC
[B1]     0x01000060:MPPE(40, 128 bits), stateless
[B1] CCP: rec'd Configure Nak #1 (Req-Sent)
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: SendConfigReq #2
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: rec'd Configure Ack #2 (Req-Sent)
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: state change Req-Sent --> Ack-Rcvd
[B1] IPCP: rec'd Configure Request #1 (Req-Sent)
[B1]   IPADDR 130.115.3.35
[B1]     130.115.3.35 is OK
[B1] IPCP: SendConfigAck #1
[B1]   IPADDR 130.115.3.35
[B1] IPCP: state change Req-Sent --> Ack-Sent
[B1] CCP: rec'd Configure Request #1 (Ack-Rcvd)
[B1]   MPPC
[B1]     0x01000060:MPPE(40, 128 bits), stateless
[B1] CCP: SendConfigNak #1
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: rec'd Configure Request #2 (Ack-Rcvd)
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: SendConfigAck #2
[B1]   MPPC
[B1]     0x01000040:MPPE(128 bits), stateless
[B1] CCP: state change Ack-Rcvd --> Opened
[B1] CCP: LayerUp
[B1] CCP: Compress using: mppc (MPPE(128 bits), stateless)
[B1] CCP: Decompress using: mppc (MPPE(128 bits), stateless)
[B1] IPCP: SendConfigReq #2
[B1]   IPADDR 0.0.0.0
[B1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B1] IPCP: rec'd Configure Reject #2 (Ack-Sent)
[B1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B1] IPCP: SendConfigReq #3
[B1]   IPADDR 0.0.0.0
[B1] IPCP: rec'd Configure Nak #3 (Ack-Sent)
[B1]   IPADDR 130.115.85.11
[B1]     130.115.85.11 is OK
[B1] IPCP: SendConfigReq #4
[B1]   IPADDR 130.115.85.11
[B1] IPCP: rec'd Configure Ack #4 (Ack-Sent)
[B1]   IPADDR 130.115.85.11
[B1] IPCP: state change Ack-Sent --> Opened
[B1] IPCP: LayerUp
[B1]   130.115.85.11 -> 130.115.3.35
[B1] IFACE: Up event
=2E..

I also noticed some kernel messages when starting mpd5:
=2E..
WARNING: attempt to domain_add(netgraph) after domainfinalize()
Loop detected on ng0
Loop detected on ng0
Loop detected on ng0
=2E..

So I get the impression that I'm almost there.

Marco

--=20
Let me tell you who the actual "front-runners" are.  On one side, you have
George Bush, who is currently going through a sort of fraternity hazing
wherein he has to perform a series of humiliating stunts to win the approva=
l
of the Republican Right.  For example, they had him make a speech oozing
praise all over William Loeb, deceased publisher of the Manchester (N.H.)
Union Leader and Slime Journalist.  Loeb had dumped viciously all over Geor=
ge
in the 1980 New Hampshire primary.  But when the Right held a big tribute
for Loeb, George came back to the fold, like a man with a bungee cord wrapp=
ed
around his neck.
 =09=09-- Dave Barry
--394277907-1517634111-1314909349=:2952--