Friday 16 June 2006 20:58, Kernel wrote:
| try using the decoder here:
| http://www.unix-ag.uni-kl.de/~massar/bin/cisco-decode
wow, i didn't know this. great, now i have it as ASCII and came a
little bit further setting up vpnc... however it is not yet working
properly:
[EMAIL PROTECTED] damir]# vpnc unibas.conf
Connect Banner:
| You are entering the Intranet of the University of Basel
|
| Unauthorized use is prohibited.
|
| Your actions may be recorded. If you disagree, disconnect now.
|
/etc/vpnc/vpnc-script: line 133: /var/run/vpnc/defaultroute: No such
file or directory
cp: cannot create regular file `/var/run/vpnc/resolv.conf-backup': No
such file or directory
VPNC started in background (pid: 7468)...
and then kpanel crashes
trying to see what happens, i see vpnc stil running, but network is
not working properly:
[EMAIL PROTECTED] damir]# traceroute www.google.com
traceroute: Warning: www.google.com has multiple addresses; using
66.249.85.99
traceroute: findsaddr: Can't find interface "tun0"
i also cannot disconnect (maybe i'm not connected):
[EMAIL PROTECTED] damir]# vpnc-disconnect
no vpnc found running
i did modprobe tun ... so what did i miss? any help would be much
appreachiated,
thanx in advance + greetings,
Damir
--
Avoid reality at all costs.
_______________________________________________
arch mailing list
arch@archlinux.org
http://www.archlinux.org/mailman/listinfo/arch
I'm not sure why, but I had issues with vpnc-0.3.3 . I was never quite able to get it to set the route properly, so I've stayed with version-0.3.2 since it's always worked for me. I'm not a vpnc expert by any stretch, so maybe someone else can chime in with what might be the cause of the errors you're getting. Below are my files used with vpnc-0.3.2 in the event they may help. Sorry, I can't be of more help. I'll dig through some of my notes from when I set this up on my system to see if I come across anything else.
/etc/vpnc.conf:
Interface name tun0
IKE DH Group dh2
Perfect Forward Secrecy nopfs
IPSec gateway <ommited>
IPSec ID <ommitted>
IPSec secret <ommitted>
xauth username <ommitted>
/usr/local/sbin/vpnc-connect
#!/bin/sh
#* VPNGATEWAY -- vpn gateway address (always present)
#* TUNDEV -- tunnel device (always present)
#* INTERNAL_IP4_ADDRESS -- address (always present)
#* INTERNAL_IP4_NETMASK -- netmask (often unset)
#* INTERNAL_IP4_DNS -- list of dns serverss
#* INTERNAL_IP4_NBNS -- list of wins servers
#* CISCO_DEF_DOMAIN -- default domain name
#* CISCO_BANNER -- banner from server
# Load Kernel Module
modprobe tun
fix_ip_get_output () {
sed 's/cache//;s/metric[0-9]\+ [0-9]\+//g' | xargs echo
}
defr=/var/run/vpnc/defaultroute
gateway=/var/run/vpnc/gateway
pid=/var/run/vpnc/pid
if [ -z "$VPNGATEWAY" ]; then
if [ -x "`which vpnc`" ]; then
VPNC="`which vpnc`"
elif [ -x /usr/local/sbin/vpnc ]; then
VPNC=/usr/sbin/vpnc
elif [ -x /usr/sbin/vpnc ]; then
VPNC=/usr/sbin/vpnc
elif [ -x $(dirname $0)/vpnc ]; then
VPNC=$(dirname $0)/vpnc
else
echo No vpnc daemon found, aborting...
exit 1
fi
for i in "$gateway" "$defr" "$pid"; do
mkdir -p $(dirname "$i")
done
PID="$(cat "$pid" 2> /dev/null)"
if [ "$PID" ]; then
if kill -0 "$PID" > /dev/null 2>&1; then
echo "vpnc found running (pid: $PID, pidfile: $pid)"
exit 1
fi
fi
exec "$VPNC" --pid-file "$pid" --script "$0" "$@" || exit 1
fi
# started from vpnc..
ifconfig $TUNDEV inet $INTERNAL_IP4_ADDRESS \
pointopoint $INTERNAL_IP4_ADDRESS \
netmask 255.255.255.255 mtu 1412 up
ip route add $(ip route get $VPNGATEWAY | fix_ip_get_output)
ip route | grep '^default' | fix_ip_get_output > "$defr"
echo "$VPNGATEWAY" > "$gateway"
ip route del default
ip route add default dev $TUNDEV
ip route flush cache
# Setup resolv.conf
/bin/cp /etc/resolv.conf /etc/resolv.conf.prev
/bin/cp /etc/resolv.conf.SANLAB /etc/resolv.conf
exit 0
/usr/local/sbin/vpnc-disconnect
#!/bin/sh
defr=/var/run/vpnc/defaultroute
gateway=/var/run/vpnc/gateway
pid=/var/run/vpnc/pid
if [ $# -ne 0 ]; then
echo "Usage: $0" 1>&2
exit 1
fi
PID="$(cat "$pid" 2> /dev/null)"
if [ -z "$PID" ]; then
echo "no vpnc found running"
exit 1
fi
if ! kill -0 "$PID" > /dev/null 2>&1; then
echo "no vpnc found running"
exit 1
fi
echo "Terminating vpnc daemon (pid: $PID)"
kill $PID
# this still sucks. Invent something to sync route removal/addition with
# vpnc-connect
if [ -s "$defr" ]; then
ip route del default > /dev/null 2>&1
ip route add $(cat "$defr")
test -r "$gateway" && ip route del $(cat "$gateway")
ip route flush cache
fi
rm -f -- "$defr" "$pid" "$gateway"
echo "Copying back previous /etc/resolv.conf file..."
/bin/cp /etc/resolv.conf.prev /etc/resolv.conf
exit 0
****************
jps
_______________________________________________ arch mailing list arch@archlinux.org http://www.archlinux.org/mailman/listinfo/arch
