From owner-freebsd-net Thu Jan 31 16:49: 3 2002 Delivered-To: freebsd-net@freebsd.org Received: from cluttered.com (w024.z064002058.sjc-ca.dsl.cnc.net [64.2.58.24]) by hub.freebsd.org (Postfix) with ESMTP id 1E1F237B416 for ; Thu, 31 Jan 2002 16:48:56 -0800 (PST) Received: from orgasmotron.cluttered.com (jsd [10.10.10.3]) by cluttered.com (Postfix) with ESMTP id 58781C983A for ; Thu, 31 Jan 2002 16:49:00 -0800 (PST) Message-Id: <4.3.2.7.2.20020131164433.00c62678@10.10.10.1> X-Sender: jsd@10.10.10.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Thu, 31 Jan 2002 16:48:56 -0800 To: freebsd-net@freebsd.org From: Jon Drukman Subject: pptp + mschap Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org my company recently switched from a nortel vpn system to a radius based scheme that is very windows-centric. i had no problems connecting to the nortel using pptpclient (from the ports). now it seems i'm being thrown by ms-chap authentication. i don't really know how to set this up. as far as i can see from reading the documentation that comes with pptpclient, this should suffice: cnet: set authname cnet\\jdrukman set authkey xxxxx set timeout 0 set login enable chap set log LCP i type "pptp vpn-sf.cnet.com cnet" to initiate the connection. the log file shows: Jan 31 16:19:22 cluttered ppp[32201]: Phase: Using interface: tun0 Jan 31 16:19:22 cluttered ppp[32201]: Phase: deflink: Created in closed state Jan 31 16:19:23 cluttered ppp[32201]: LCP: FSM: Using "deflink" as a transport Jan 31 16:19:23 cluttered ppp[32201]: LCP: deflink: State change Initial --> Closed Jan 31 16:19:23 cluttered ppp[32201]: LCP: deflink: State change Closed --> Stopped Jan 31 16:19:24 cluttered ppp[32201]: LCP: deflink: LayerStart Jan 31 16:19:24 cluttered ppp[32201]: LCP: deflink: SendConfigReq(1) state = Stopped Jan 31 16:19:24 cluttered ppp[32201]: LCP: ACFCOMP[2] Jan 31 16:19:24 cluttered ppp[32201]: LCP: PROTOCOMP[2] Jan 31 16:19:24 cluttered ppp[32201]: LCP: ACCMAP[6] 0x00000000 Jan 31 16:19:24 cluttered ppp[32201]: LCP: MRU[4] 1500 Jan 31 16:19:24 cluttered ppp[32201]: LCP: MAGICNUM[6] 0x451f9b67 Jan 31 16:19:24 cluttered ppp[32201]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05) Jan 31 16:19:24 cluttered ppp[32201]: LCP: deflink: State change Stopped --> Req-Sent Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: RecvConfigReq(77) state = Req-Sent Jan 31 16:19:25 cluttered ppp[32201]: LCP: MRU[4] 1500 Jan 31 16:19:25 cluttered ppp[32201]: LCP: ACCMAP[6] 0x000a0000 Jan 31 16:19:25 cluttered ppp[32201]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x81) Jan 31 16:19:25 cluttered ppp[32201]: Warning: CHAP 0x81 not supported Jan 31 16:19:25 cluttered ppp[32201]: LCP: MAGICNUM[6] 0x2567e117 Jan 31 16:19:25 cluttered ppp[32201]: LCP: PROTOCOMP[2] Jan 31 16:19:25 cluttered ppp[32201]: LCP: ACFCOMP[2] Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: SendConfigNak(77) state = Req-Sent Jan 31 16:19:25 cluttered ppp[32201]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05) Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: SendTerminateReq(1) state = Req-Sent Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: State change Req-Sent --> Closing Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: LayerFinish Jan 31 16:19:25 cluttered ppp[32201]: LCP: deflink: State change Closing --> Initial and i'm not connected. the tech support people at my company are not very helpful. they said, use windows. i can get it to work fine from windows but it's so annoying (it interrupts existing connections and forces everything to go through the vpn regardless of whether it makes any sense). it used to work great with freebsd... any help appreciated!! thanks -jsd- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message