LINUX.ORG.RU

vpn


0

0

ядро 2.6.17-r4
ppp-2.4.3

выковырял из ядра mppe, пропатчил ядро mppe-mppc

собрал ppp с поддержкой mppe-mppc 

конфиги /etc/ppp - рабочие (тунель на Gentoo liveCD поднимается)

#pon <tunel name> 

в логах вижу: 
Oct  1 03:24:26 kiteman pppd[11586]: pppd 2.4.3 started by root, uid 0
Oct  1 03:24:26 kiteman pppd[11586]: using channel 10
Oct  1 03:24:26 kiteman pppd[11586]: Using interface ppp0
Oct  1 03:24:26 kiteman pppd[11586]: Connect: ppp0 <--> /dev/pts/0
Oct  1 03:24:26 kiteman pptp[11588]: anon log[main:pptp.c:276]: The synchronous pptp option is NOT activated
Oct  1 03:24:26 kiteman pptp[11594]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 1 'Start-Control-Connection-Request'
Oct  1 03:24:26 kiteman pptp[11594]: anon log[ctrlp_disp:pptp_ctrl.c:738]: Received Start Control Connection Reply
Oct  1 03:24:26 kiteman pptp[11594]: anon log[ctrlp_disp:pptp_ctrl.c:772]: Client connection established.
Oct  1 03:24:27 kiteman pppd[11586]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x3f8aa92a> <pcomp> <accomp>]
Oct  1 03:24:27 kiteman pptp[11594]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 7 'Outgoing-Call-Request'
Oct  1 03:24:27 kiteman pptp[11594]: anon log[ctrlp_disp:pptp_ctrl.c:857]: Received Outgoing Call Reply.
Oct  1 03:24:27 kiteman pptp[11594]: anon log[ctrlp_disp:pptp_ctrl.c:896]: Outgoing call established (call ID 0, peer's call ID 0).
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [LCP ConfReq id=0x1 <accomp> <pcomp> <asyncmap 0x0> <mru 1500> <magic 0x23c778c1> <auth chap MS-v2>]
Oct  1 03:24:27 kiteman pppd[11586]: sent [LCP ConfAck id=0x1 <accomp> <pcomp> <asyncmap 0x0> <mru 1500> <magic 0x23c778c1> <auth chap MS-v2>]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x3f8aa92a> <pcomp> <accomp>]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [LCP Ident id=0x0 magic=0x23c778c1 "MSRAS-1-SERVER"]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [CHAP Challenge id=0x1 <608e176c004a5b252446d1fe96bb868c>, name = ""]
Oct  1 03:24:27 kiteman pppd[11586]: sent [CHAP Response id=0x1 <48ce77605493bf64f77c5d43004846490000004007a5bf00e212320336e742883e1104d79556
feaa9126172694dac26500>, name = "kiteman"]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [CHAP Failure id=0x1 "E=691 R=0 C=608E176C004A5B252446D1FE96BB868C V=3 M=Invalid!\000"]
Oct  1 03:24:27 kiteman pppd[11586]: MS-CHAP authentication failed: Invalid!
Oct  1 03:24:27 kiteman pppd[11586]: CHAP authentication failed
Oct  1 03:24:27 kiteman pppd[11586]: sent [LCP TermReq id=0x2 "Failed to authenticate ourselves to peer"]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [LCP TermReq id=0x2]
Oct  1 03:24:27 kiteman pppd[11586]: sent [LCP TermAck id=0x2]
Oct  1 03:24:27 kiteman pppd[11586]: rcvd [LCP TermAck id=0x2]
Oct  1 03:24:27 kiteman pppd[11586]: Connection terminated.
Oct  1 03:24:27 kiteman pptp[11594]: anon log[pptp_read_some:pptp_ctrl.c:543]: read returned zero, peer has closed
Oct  1 03:24:27 kiteman pptp[11594]: anon log[callmgr_main:pptp_callmgr.c:255]: Closing connection (shutdown)
Oct  1 03:24:27 kiteman pptp[11594]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 12 'Call-Clear-Request'
Oct  1 03:24:27 kiteman pptp[11594]: anon log[pptp_read_some:pptp_ctrl.c:543]: read returned zero, peer has closed
Oct  1 03:24:27 kiteman pptp[11594]: anon log[call_callback:pptp_callmgr.c:78]: Closing connection (call state)
Oct  1 03:24:27 kiteman pppd[11586]: Script pptp 10.0.0.2 --nolaunchpppd finished (pid 11588), status = 0x0
Oct  1 03:24:27 kiteman pppd[11586]: Exit.


уже  не знаю куда думать...
need help

вот такой лог при запуске тунеля из gentoo livCD:
Sep 30 22:01:02 livecd PPP generic driver version 2.4.2
Sep 30 22:01:02 livecd pppd[2367]: pppd 2.4.2 started by root, uid 0
Sep 30 22:01:02 livecd pptp[2368]: anon log[main:pptp.c:267]: The synchronous pptp option is NOT activated
Sep 30 22:01:02 livecd pptp[2374]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 1 'Start-Control-Connection-Request'
Sep 30 22:01:02 livecd pptp[2374]: anon log[ctrlp_disp:pptp_ctrl.c:738]: Received Start Control Connection Reply
Sep 30 22:01:02 livecd pptp[2374]: anon log[ctrlp_disp:pptp_ctrl.c:772]: Client connection established.
Sep 30 22:01:03 livecd pppd[2367]: using channel 1
Sep 30 22:01:03 livecd pppd[2367]: Using interface ppp0
Sep 30 22:01:03 livecd pppd[2367]: Connect: ppp0 <--> /dev/pts/0
Sep 30 22:01:03 livecd pptp[2374]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 7 'Outgoing-Call-Request'
Sep 30 22:01:03 livecd pptp[2374]: anon log[ctrlp_disp:pptp_ctrl.c:857]: Received Outgoing Call Reply.
Sep 30 22:01:03 livecd pptp[2374]: anon log[ctrlp_disp:pptp_ctrl.c:896]: Outgoing call established (call ID 0, peer's call ID 0).
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x8b3adce8> <pcomp> <accomp>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP ConfReq id=0x1 <accomp> <pcomp> <asyncmap 0x0> <mru 1500> <magic 0x7c11c8ac> <auth chap MS-v2>]
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP ConfAck id=0x1 <accomp> <pcomp> <asyncmap 0x0> <mru 1500> <magic 0x7c11c8ac> <auth chap MS-v2>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x8b3adce8> <pcomp> <accomp>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP code=0xc id=0x0 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP CodeRej id=0x2 0c 00 00 16 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CHAP Challenge id=0x1 <8b03a8baeb0711d0cc586a832bd1a204>, name = ""]
Sep 30 22:01:04 livecd pppd[2367]: sent [CHAP Response id=0x1 <48bb2d01dfb6cb13f9be69cb125960930000000000000000aa90714fcc9b132b345006c4518e
2ab445badddc4b26a17a00>, name = "kiteman"]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CHAP Success id=0x1 "S=0C3FDE584A5901964C7938E220219AAC80713D3C"]
Sep 30 22:01:04 livecd pppd[2367]: sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CCP ConfReq id=0x1 <deflate 15> <predictor 1> <mppe -H +M +S +L -D -C>]
Sep 30 22:01:04 livecd pppd[2367]: sent [CCP ConfReq id=0x1]
Sep 30 22:01:04 livecd pppd[2367]: sent [CCP ConfRej id=0x1 <deflate 15> <mppe -H +M +S +L -D -C>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPCP ConfReq id=0x1 <addr 192.168.11.250> <compress VJ 0f 01> <ms-dns1 10.0.0.2> <ms-dns3 255.255.255.255>]
Sep 30 22:01:04 livecd pppd[2367]: sent [IPCP ConfRej id=0x1 <ms-dns1 10.0.0.2> <ms-dns3 255.255.255.255>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPV6CP ConfReq id=0x1 <addr fe80::0208:c7ff:fec5:12c9>]
Sep 30 22:01:04 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP ProtRej id=0x3 80 57 01 01 00 0e 01 0a 02 08 c7 ff fe c5 12 c9]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP code=0xc id=0x1 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP CodeRej id=0x4 0c 01 00 16 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP code=0xc id=0x2 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP CodeRej id=0x5 0c 02 00 16 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPCP ConfNak id=0x1 <addr 192.168.8.126>]
Sep 30 22:01:04 livecd pppd[2367]: sent [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 192.168.8.126>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CCP ConfAck id=0x1]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CCP ConfReq id=0x2 <predictor 1>]
Sep 30 22:01:04 livecd pppd[2367]: sent [CCP ConfRej id=0x2 <predictor 1>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPCP ConfReq id=0x2 <addr 192.168.11.250> <compress VJ 0f 01>]
Sep 30 22:01:04 livecd pppd[2367]: sent [IPCP ConfAck id=0x2 <addr 192.168.11.250> <compress VJ 0f 01>]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPV6CP TermReq id=0x1]
Sep 30 22:01:04 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP ProtRej id=0x6 80 57 05 01 00 04]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 192.168.8.126>]
Sep 30 22:01:04 livecd pppd[2367]: local  IP address 192.168.8.126
Sep 30 22:01:04 livecd pppd[2367]: remote IP address 192.168.11.250
Sep 30 22:01:04 livecd pppd[2367]: Script /etc/ppp/ip-up started (pid 2395)
Sep 30 22:01:04 livecd pppd[2367]: Script /etc/ppp/ip-up finished (pid 2395), status = 0x1
Sep 30 22:01:04 livecd pppd[2367]: rcvd [LCP code=0xc id=0x3 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: sent [LCP CodeRej id=0x7 0c 03 00 16 7c 11 c8 ac 4d 53 52 41 53 2d 31 2d 53 45 52 56 45 52]
Sep 30 22:01:04 livecd pppd[2367]: rcvd [CCP ConfReq id=0x3]
Sep 30 22:01:04 livecd pppd[2367]: sent [CCP ConfAck id=0x3]
Sep 30 22:01:07 livecd pppd[2367]: rcvd [IPV6CP TermReq id=0x1]
Sep 30 22:01:07 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:07 livecd pppd[2367]: sent [LCP ProtRej id=0x8 80 57 05 01 00 04]
Sep 30 22:01:10 livecd pppd[2367]: rcvd [IPV6CP TermReq id=0x1]
Sep 30 22:01:10 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:10 livecd pppd[2367]: sent [LCP ProtRej id=0x9 80 57 05 01 00 04]
Sep 30 22:01:13 livecd pppd[2367]: rcvd [IPV6CP TermReq id=0x1]
Sep 30 22:01:13 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:13 livecd pppd[2367]: sent [LCP ProtRej id=0xa 80 57 05 01 00 04]
Sep 30 22:01:16 livecd pppd[2367]: rcvd [IPV6CP TermReq id=0x1]
Sep 30 22:01:16 livecd pppd[2367]: Unsupported protocol 0x8057 received
Sep 30 22:01:16 livecd pppd[2367]: sent [LCP ProtRej id=0xb 80 57 05 01 00 04]

Kiteman
() автор топика

Наверно дело в этом:

rcvd [CHAP Failure id=0x1 "E=691 R=0 C=608E176C004A5B252446D1FE96BB868C V=3 M=Invalid!\000"]

MS-CHAP authentication failed: Invalid!

CHAP authentication failed

Т.е плохо пропатчил... Да и вообще зачем надо было патчить? Вроде для клиента и так нормально работает, то что в комплекте с ядрышком. А вот для сервака патчить обязательно... Да и патчить надо собственно сколько не ядро, сколько сам ppp, насколько помню.

gh0stwizard ★★★★★
()
Ответ на: комментарий от cd_we

по этим линкам только настройки, а настройки, которые есть у меня - рабочие, ибо на Genotoo LiveCD тунель поднимается

Kiteman
() автор топика
Ответ на: комментарий от Kiteman

настройки для ms-chap2? я тоже парился с такими настройками, админ настаивает на ms-chapv2, но поддержка chap есть - с chap все работает на ура, с mschap2 - ни разу не прошло автентификацию... естесно что пароли межжду попытками не менял, настройки тоже неоднократно сверял со всякими факами...

короче: в женте для работы мсчап2 не хватает какой-то мелочи (или я ее не знаю)

Muller
()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.