| View previous topic :: View next topic |
| Author |
Message |
gctaylor
n00b
Joined: 20 Nov 2004
Posts: 40
|
 Posted: Tue Oct 18, 2005 10:36 pm Post subject: How do I set routes after PPTP Tunnel established? |
 |
|
I'm having trouble getting the routing set up after a PPTP tunnel is
established. Can anyone point out what in the world I'm doing wrong or give
me adivce on how to troubleshoot this? The only address I can ping after the
tunnel is established is the IP address I get from the PPTP server and one DNS
address on the same subnet (as displayed by the debug output) when starting the
PPTP tunnel. I've also enclosed the output from using Windows XP (which
works) route print, in the hopes someone can glean something from it. I've
tried all sorts of routing combinations(that I haven't included) but just can't get the hang of it.
The AAA.BB address is a class B address.
| Code: | speedy12 ~ # pppd call my_work logfd 2 nodetach debug dump
pppd options in effect:
debug debug # (from command line)
nodetach # (from command line)
logfd 2 # (from command line)
linkname my_work # (from /etc/ppp/peers/my_work)
dump # (from command line)
noauth # (from /etc/ppp/options.pptp)
name VPN\\gary # (from /etc/ppp/peers/my_work)
remotename my_work # (from /etc/ppp/peers/my_work)
# (from /etc/ppp/options.pptp)
pty pptp vpn-bel1.my_work.com --nolaunchpppd #
(from /etc/ppp/peers/my_work)
mru 1000 # (from /etc/ppp/options.pptp)
mtu 1000 # (from /etc/ppp/options.pptp)
lcp-echo-failure 10 # (from /etc/ppp/options.pptp)
lcp-echo-interval 10 # (from /etc/ppp/options.pptp)
ipparam my_work # (from
/etc/ppp/peers/my_work)
usepeerdns # (from /etc/ppp/peers/my_work)
nobsdcomp # (from /etc/ppp/options.pptp)
nodeflate # (from /etc/ppp/options.pptp)
using channel 4
Using interface ppp0
Connect: ppp0 <--> /dev/pts/7
Warning - secret file /etc/ppp/pap-secrets has world and/or
group access
sent [LCP ConfReq id=0x1 <mru 1000> <asyncmap 0x0> <magic
0x6e4c7225> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x0 <auth chap MS-v2> <magic 0x26257e40>
<pcomp> <accomp> <mrru 1614> <endpoint
[MAC:00:03:47:08:79:63]>]
sent [LCP ConfRej id=0x0 <mrru 1614>]
rcvd [LCP ConfNak id=0x1 <mru 1500>]
sent [LCP ConfReq id=0x2 <asyncmap 0x0> <magic 0x6e4c7225>
<pcomp> <accomp>]
rcvd [LCP ConfAck id=0x2 <asyncmap 0x0> <magic 0x6e4c7225>
<pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <auth chap MS-v2> <magic 0x26257e40>
<pcomp> <accomp> <mrru 1614> <endpoint
[MAC:00:03:47:08:79:63]>]
sent [LCP ConfRej id=0x1 <mrru 1614>]
rcvd [LCP ConfReq id=0x2 <auth chap MS-v2> <magic 0x26257e40>
<pcomp> <accomp> <endpoint [MAC:00:03:47:08:79:63]>]
sent [LCP ConfAck id=0x2 <auth chap MS-v2> <magic 0x26257e40>
<pcomp> <accomp> <endpoint [MAC:00:03:47:08:79:63]>]
sent [LCP EchoReq id=0x0 magic=0x6e4c7225]
rcvd [CHAP Challenge id=0x0
<e8701b5f6f8b94c28200977b88ab8ec2>, name = "VPN-BEL1"]
Warning - secret file /etc/ppp/chap-secrets has world and/or
group access
sent [CHAP Response id=0x0
<3c680d9c5fb4bab896d0b688b4662fdd000000b6010000112fa7fd6031cfda0f6aaa90087e5987eac9a2bff006d2df368e>,
name = "VPN\\gary"]
rcvd [LCP EchoRep id=0x0 magic=0x26257e40]
rcvd [CHAP Success id=0x0
"S=0437EE7DC3F94C6ABFF9E31200F4B2CF4BF841E7"]
CHAP authentication succeeded
sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr
192.168.1.3> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
rcvd [IPXCP ConfReq id=0x4 <network 3fcdf27e> <node
000000000001>]
Unsupported protocol 'Novell IPX Control Protocol' (0x802b)
received
sent [LCP ProtRej id=0x3 80 2b 01 04 00 12 01 06 3f cd f2 7e
02 08 00 00 00 00 00 01]
rcvd [CCP ConfReq id=0x5 <mppe +H -M -S -L -D +C>]
sent [CCP ConfReq id=0x1]
sent [CCP ConfRej id=0x5 <mppe +H -M -S -L -D +C>]
rcvd [IPCP ConfReq id=0x6 <addr AAA.BB.77.63>]
sent [IPCP ConfAck id=0x6 <addr AAA.BB.77.63>]
rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
sent [IPCP ConfReq id=0x2 <addr 192.168.1.3> <ms-dns1 0.0.0.0>
<ms-dns3 0.0.0.0>]
rcvd [CCP ConfAck id=0x1]
Received bad configure-ack:
rcvd [CCP TermReq
id=0x7"&%~@\000<\37777777715t\000\000\002\37777777734"]
sent [CCP TermAck id=0x7]
rcvd [IPCP ConfNak id=0x2 <ms-dns1 AAA.BB.77.40> <ms-dns3
AAA.BB.6.41>]
sent [IPCP ConfReq id=0x3 <addr 192.168.1.3> <ms-dns1
AAA.BB.77.40> <ms-dns3 AAA.BB.6.41>]
rcvd [IPCP ConfAck id=0x3 <addr 192.168.1.3> <ms-dns1
AAA.BB.77.40> <ms-dns3 AAA.BB.6.41>]
local IP address 192.168.1.3
remote IP address AAA.BB.77.63
primary DNS address AAA.BB.77.40
secondary DNS address AAA.BB.6.41
Script /etc/ppp/ip-up started (pid 9722)
Script /etc/ppp/ip-up finished (pid 9722), status = 0x1
rcvd [IPCP ConfReq id=0x8 <addr AAA.BB.77.63>]
Connect time 0.1 minutes.
Sent 0 bytes, received 10 bytes.
Script /etc/ppp/ip-down started (pid 9730)
sent [IPCP ConfReq id=0x4 <compress VJ 0f 01> <addr
192.168.1.3> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
sent [IPCP ConfAck id=0x8 <addr AAA.BB.77.63>]
Script /etc/ppp/ip-down finished (pid 9730), status = 0x1
rcvd [IPCP ConfRej id=0x4 <compress VJ 0f 01>]
sent [IPCP ConfReq id=0x5 <addr 192.168.1.3> <ms-dns1 0.0.0.0>
<ms-dns3 0.0.0.0>]
rcvd [IPCP ConfNak id=0x5 <ms-dns1 AAA.BB.77.40> <ms-dns3
AAA.BB.6.41>]
sent [IPCP ConfReq id=0x6 <addr 192.168.1.3> <ms-dns1
AAA.BB.77.40> <ms-dns3 AAA.BB.6.41>]
rcvd [IPCP ConfAck id=0x6 <addr 192.168.1.3> <ms-dns1
AAA.BB.77.40> <ms-dns3 AAA.BB.6.41>]
local IP address 192.168.1.3
remote IP address AAA.BB.77.63
primary DNS address AAA.BB.77.40
secondary DNS address AAA.BB.6.41
Script /etc/ppp/ip-up started (pid 9733)
sent [CCP ConfReq id=0x1]
Script /etc/ppp/ip-up finished (pid 9733), status = 0x1
rcvd [CCP TermAck id=0x1]
sent [CCP TermReq id=0x2"No compression negotiated"]
rcvd [CCP TermAck id=0x2"No compression negotiated"]
sent [LCP EchoReq id=0x1 magic=0x6e4c7225]
rcvd [LCP EchoRep id=0x1 magic=0x26257e40]
Terminating on signal 2
Connect time 0.2 minutes.
Sent 33 bytes, received 33 bytes.
Script /etc/ppp/ip-down started (pid 9757)
sent [LCP TermReq id=0x4 "User request"]
Script pptp vpn-bel1.my_work.com --nolaunchpppd finished
(pid 9699), status = 0x0
Modem hangup
Connection terminated.
Script /etc/ppp/ip-down finished (pid 9757), status = 0x1
|
| Code: |
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
AAA.BB.77.63 * 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
loopback localhost 255.0.0.0 UG 0 0 0 lo
default 192.168.1.254 0.0.0.0 UG 0 0 0 eth0
# route add -net AAA.BB.77.0/24 dev ppp0
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
AAA.BB.77.63 * 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
AAA.BB.77.0 * 255.255.255.0 U 0 0 0 ppp0
loopback localhost 255.0.0.0 UG 0 0 0 lo
default 192.168.1.254 0.0.0.0 UG 0 0 0 eth0
|
--
WinXP working example.
| Code: |
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 d0 b7 1c c7 5c ...... Intel(R) PRO/100+ Management Adapter - Packet Scheduler Miniport
0x40004 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 AAA.BB.77.79 AAA.BB.77.79 1
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.6 21
vpnserver 255.255.255.255 192.168.1.254 192.168.1.6 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
AAA.BB.77.79 255.255.255.255 127.0.0.1 127.0.0.1 50
AAA.BB.255.255 255.255.255.255 AAA.BB.77.79 AAA.BB.77.79 50
192.168.1.0 255.255.255.0 192.168.1.6 192.168.1.6 20
192.168.1.6 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.6 192.168.1.6 20
224.0.0.0 240.0.0.0 192.168.1.6 192.168.1.6 20
224.0.0.0 240.0.0.0 AAA.BB.77.79 AAA.BB.77.79 1
255.255.255.255 255.255.255.255 192.168.1.6 192.168.1.6 1
Default Gateway: AAA.BB.77.79
===========================================================================
Persistent Routes:
None
Windows IP Configuration
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : private.network
IP Address. . . . . . . . . . . . : 192.168.1.6
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
PPP adapter my_work:
Connection-specific DNS Suffix . :
IP Address. . . . . . . . . . . . : AAA.BB.77.79
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : AAA.BB.77.79
|
Thank-you for reading this far and I appreciate any advice.
Gary |
|
| Back to top |
|
 |
keyson
l33t
Joined: 10 Jun 2003
Posts: 830
Location: Sweden
|
| Posted: Wed Oct 19, 2005 11:43 am Post subject: |
|
|
Hi.
Well it is a tunnel, so the gateway is the gateway for the network
you belong to via the tunnel.
So change the default gateway to the net gateway.
route add default gw AAA.BB.77.79
( In the XP setup you can se that this is set to default gateway.)
A gentoo howto on setup of pptp client.
http://pptpclient.sourceforge.net/howto-gentoo.phtml
And also about different routing.
http://pptpclient.sourceforge.net/routing.phtml
Kjell
EDIT: Check the ip as it is the ip you get when you start the pptp. |
|
| Back to top |
|
|
gctaylor
n00b
Joined: 20 Nov 2004
Posts: 40
|
| Posted: Wed Oct 19, 2005 12:09 pm Post subject: |
|
|
So this is what I did, but after doing this I can't ping even the IP address I get from the PPTP server. Do I misunderstand what you are saying?
| Code: |
# route add default gw AAA.BB.77.63 dev ppp0
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
AAA.BB.77.63 * 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
loopback localhost 255.0.0.0 UG 0 0 0 lo
default AAA.BB.77.63 0.0.0.0 UG 0 0 0 ppp0
default 192.168.1.254 0.0.0.0 UG 0 0 0 eth0
# ping AAA.BB.77.63
PING AAA.BB.77.63 (AAA.BB.77.63) 56(84) bytes of data.
--- AAA.BB.77.63 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 3014ms
|
|
|
| Back to top |
|
|
keyson
l33t
Joined: 10 Jun 2003
Posts: 830
Location: Sweden
|
| Posted: Wed Oct 19, 2005 1:55 pm Post subject: |
|
|
Nop.
But you must have the net route also.
route add -net AAA.BB.77.0/24 dev ppp0
Kjell |
|
| Back to top |
|
|
gctaylor
n00b
Joined: 20 Nov 2004
Posts: 40
|
| Posted: Thu Oct 20, 2005 12:36 am Post subject: |
|
|
Shouldn't this work? I tried adding -net first too and that didn't help. Is there something else going on here? Do I need something from my Network admin?
EDIT: I just tried nmap on the AAA.BB.77.0 network and there are about 10 hosts alive. I think this means that I just need ask the network admins about the right entry point into the network to add and then I can see everything? At least until I come up with a better theory, I'll do that.
| Code: |
# route add default gw AAA.BB.77.63
# route add -net AAA.BB.77.0/24 dev ppp0
# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
AAA.BB.77.63 * 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
AAA.BB.77.0 * 255.255.255.0 U 0 0 0 ppp0
loopback localhost 255.0.0.0 UG 0 0 0 lo
default AAA.BB.77.63 0.0.0.0 UG 0 0 0 ppp0
default 192.168.1.254 0.0.0.0 UG 0 0 0 eth0
# ping AAA.BB.77.63
PING AAA.BB.77.63 (AAA.BB.77.63) 56(84) bytes of data.
--- AAA.BB.77.63 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 3014ms
# ping 192.168.1.254
PING 192.168.1.254 (192.168.1.254) 56(84) bytes of data.
64 bytes from 192.168.1.254: icmp_seq=1 ttl=64 time=1.11 ms
64 bytes from 192.168.1.254: icmp_seq=2 ttl=64 time=0.678 ms
--- 192.168.1.254 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1005ms
rtt min/avg/max/mdev = 0.678/0.895/1.113/0.219 ms
# ping AAA.BB.77.13
PING AAA.BB.77.13 (AAA.BB.77.13) 56(84) bytes of data.
--- AAA.BB.77.13 ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 2012ms
# route add -host AAA.BB.77.13
SIOCADDRT: No such device
|
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
