| View previous topic :: View next topic |
| Author |
Message |
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
 Posted: Mon Jan 24, 2005 6:08 pm Post subject: pptpd vpn from windows |
 |
|
have a pptpd server. I am using Webmin to administer it. I created the connection but I can't get connected. I stopped the firewall to make sure it was being blocked.
is there a simple how-to for an easy connection setup? |
|
| Back to top |
|
 |
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Mon Jan 24, 2005 9:06 pm Post subject: |
|
|
Hi,
you want to check the poptop docs or describe more detailed what's not working and maybe we can help you...
Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Wed Jan 26, 2005 3:10 am Post subject: |
|
|
| I looked at the docs and actually used some of the samples as guides. I get a 619 error in windows saying the user/password is wrong. I created a user but it still doesn't work. I don't have a log file to send though. |
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Wed Jan 26, 2005 7:22 am Post subject: |
|
|
There *must* be some logs on the server side. Check /var/log/daemon.log or /var/log/messages.
Again, please tell us more detailed what you did and what happens.
Send some server configs whatsoever... Error 619 from Windows is as good as nothing...
Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
KsE
Apprentice
Joined: 18 Mar 2003
Posts: 269
Location: St. Cloud, MN
|
| Posted: Wed Jan 26, 2005 5:15 pm Post subject: |
|
|
What settings do you have to get it to connect? Right now I'm an error
| Code: |
Error 743: Your computer and the remote computer could not agree on PPP controls protocols.
|
|
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Fri Jan 28, 2005 2:23 pm Post subject: |
|
|
I found an error after i cleared the /var/log/messages and rebooted the service. I tried to log into the vpn 2 times. Here are the errors.
| Quote: | Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: Client 192.168.0.2 control connec
tion started
Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: Starting call (launching pppd, op
ening GRE)
Jan 28 08:16:21 lukesteiner pppd[2518]: The remote system is required to authent
icate itself
Jan 28 08:16:21 lukesteiner pppd[2518]: but I couldn't find any suitable secret
(password) for it to use to do so.
Jan 28 08:16:21 lukesteiner pptpd[2517]: GRE: read(fd=4,buffer=804e620,len=8196)
from PTY failed: status = -1 error = Input/output error
Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: PTY read or GRE write failed (pty
,gre)=(4,5)
Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: Closing child BCrelay with pid 0
Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: Closing child ppp with pid 2518
Jan 28 08:16:21 lukesteiner pptpd[2517]: CTRL: Client 192.168.0.2 control connec
tion finished
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: Client 192.168.0.2 control connec
tion started
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: Starting call (launching pppd, op
ening GRE)
Jan 28 08:16:28 lukesteiner pppd[2522]: The remote system is required to authent
icate itself
Jan 28 08:16:28 lukesteiner pppd[2522]: but I couldn't find any suitable secret
(password) for it to use to do so.
Jan 28 08:16:28 lukesteiner pptpd[2521]: GRE: read(fd=4,buffer=804e620,len=8196)
from PTY failed: status = -1 error = Input/output error
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: PTY read or GRE write failed (pty
,gre)=(4,5)
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: Closing child BCrelay with pid 0
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: Closing child ppp with pid 2522
Jan 28 08:16:28 lukesteiner pptpd[2521]: CTRL: Client 192.168.0.2 control connec
tion finished
|
|
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Fri Jan 28, 2005 8:19 pm Post subject: |
|
|
What does your /etc/ppp/chap-secrets on the server look like?
Each line must be of this form:
client server secret IP_address
e.g.
marc pptp 54=-keg97+/TEQWTG2 10.20.10.30
Make sure you don't use domain authentication on your windows client
Hth, Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Fri Jan 28, 2005 11:29 pm Post subject: |
|
|
| Quote: |
# cat /etc/ppp/chap-secrets
# Secrets for authentication using CHAP
# client server secret IP addresses
luke pptpd password "*" |
|
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Sat Jan 29, 2005 7:27 am Post subject: |
|
|
Would you please post your /etc/ppp/pptpd-options and /etc/pptpd.conf
Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Sat Jan 29, 2005 11:06 pm Post subject: |
|
|
| Quote: | cat /etc/ppp/options-pptp
#192.168.1.0:
netmask 255.255.255.0
#debug
#kdebug 1
lock
mtu 1490
mru 1490
proxyarp
auth
require-chap
passive
ipcp-accept-local
ipcp-accept-remote
lcp-echo-failure 3
lcp-echo-interval 5
deflate 0
#ms-dns 192.168.1.1
#ms-wins 192.168.1.1
|
| Quote: | cat /etc/pptpd.conf
################################################################################
#
# Sample PoPToP configuration file
#
# for PoPToP version 1.1.4-b3
#
################################################################################
# TAG: speed
#
# Specifies the speed for the PPP daemon to talk at.
#
#speed 115200
# TAG: option
#
# Specifies the location of the PPP options file.
# By default PPP looks in '/etc/ppp/options'
#
#option /etc/ppp/options.pptp
# TAG: stimeout
#
# Specifies timeout (in seconds) on starting ctrl connection
#
# stimeout 10
# TAG: debug
#
# Turns on (more) debugging to syslog
#
#debug
# TAG: bcrelay <if>
#
# Turns on broadcast relay to clients from interface <if>
#
#bcrelay eth1
# TAG: localip
# TAG: remoteip
#
# Specifies the local and remote IP address ranges.
#
# You can specify single IP addresses seperated by commas or you can
# specify ranges, or both. For example:
#
# 192.168.0.234,192.168.0.245-249,192.168.0.254
#
# IMPORTANT RESTRICTIONS:
#
# 1. No spaces are permitted between commas or within addresses.
#
# 2. If you give more IP addresses than MAX_CONNECTIONS, it will
# start at the beginning of the list and go until it gets
# MAX_CONNECTIONS IPs. Others will be ignored.
#
# 3. No shortcuts in ranges! ie. 234-8 does not mean 234 to 238,
# you must type 234-238 if you mean this.
#
# 4. If you give a single localIP, that's ok - all local IPs will
# be set to the given one. You MUST still give at least one remote
# IP for each simultaneous client.
#
localip 192.168.0.4
remoteip 192.168.0.10-64
# or
#localip 192.168.0.234-238,192.168.0.245
#remoteip 192.168.1.234-238,192.168.1.245
|
|
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Sun Jan 30, 2005 8:34 am Post subject: |
|
|
Try
in your /etc/ppp/options-pptp
Read man pppd (search "name name") for details
Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Sun Jan 30, 2005 4:38 pm Post subject: |
|
|
I get this error now
| Quote: | /usr/sbin/pppd: The remote system is required to authenticate
itself
/usr/sbin/pppd: but I couldn't find any suitable secret (password) for it to use
to do so.
|
I'm going to look into it now but if you can give more advice. Thanks for all the help, it is starting to have less errors. |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Sun Jan 30, 2005 8:03 pm Post subject: |
|
|
I got a different error now. I entered a new module into the kernel.
Now I get an encryption issue.
Error 742: The remote host does not support encryption
It may have to deal with encryption on the server.
Any ideas?
Where would the key be if encryption was wrong on the client end? |
|
| Back to top |
|
|
nightcanton
Apprentice
Joined: 26 Feb 2003
Posts: 249
|
| Posted: Sun Jan 30, 2005 8:17 pm Post subject: |
|
|
I got the client to connect to the VPN but it does not have encryption. Also I want to be able to surf the internet through the VPN server.
1) encryption
2) Internet surfing
Those are the last 2 things. |
|
| Back to top |
|
|
tuxmin
l33t
Joined: 24 Apr 2004
Posts: 838
Location: Heidelberg
|
| Posted: Wed Feb 02, 2005 2:50 pm Post subject: |
|
|
Look here for the patches you need.
http://www.polbox.com/h/hs001/
I advise you browse the forum. This topic has been discussed hundreds of times.
Alex!!!
_________________
ALT-F4 |
|
| Back to top |
|
|
|
Networking & Security
