Anyone using pptp?
Well - I'm still trying to get pptp to cooperate and set up a VPN connection to a Microsoft VPN server. I'm just wondering - is there _anyone_ out there that has met with success using pptp - and, if so, could you share your /etc/ppp/ppp.conf settings? - Many thanks! - - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Thomas David Rivers wrote: > Well - I'm still trying to get pptp to cooperate and set up > a VPN connection to a Microsoft VPN server. > > I'm just wondering - is there _anyone_ out there that has > met with success using pptp - and, if so, could you share > your /etc/ppp/ppp.conf settings? This is a FAQ on -net. There's been a couple of threads on this recently, and configuration examples were posted for mpd. Lars -- Lars Eggert <[EMAIL PROTECTED]> USC Information Sciences Institute smime.p7s Description: S/MIME Cryptographic Signature
Re: Anyone using pptp?
Lars Eggert <[EMAIL PROTECTED]> wrote: > > Thomas David Rivers wrote: > > Well - I'm still trying to get pptp to cooperate and set up > > a VPN connection to a Microsoft VPN server. > > > > I'm just wondering - is there _anyone_ out there that has > > met with success using pptp - and, if so, could you share > > your /etc/ppp/ppp.conf settings? > > This is a FAQ on -net. There's been a couple of threads on this > recently, and configuration examples were posted for mpd. > > Lars Duh!!! I didn't even *think* of -net. Thanks for the pointer! - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
On Wed, May 01, 2002 at 03:47:13PM -0400, Thomas David Rivers wrote: > > Well - I'm still trying to get pptp to cooperate and set up > a VPN connection to a Microsoft VPN server. > > I'm just wondering - is there _anyone_ out there that has > met with success using pptp - and, if so, could you share > your /etc/ppp/ppp.conf settings? http://www.freebsd.org/handbook/pppoa.html > - Many thanks! - >- Dave Rivers - > > -- > [EMAIL PROTECTED]Work: (919) 676-0847 > Get your mainframe programming tools at http://www.dignus.com > > To Unsubscribe: send mail to [EMAIL PROTECTED] > with "unsubscribe freebsd-hackers" in the body of the message -- Dominic To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Dominic Marks <[EMAIL PROTECTED]> wrote: > On Wed, May 01, 2002 at 03:47:13PM -0400, Thomas David Rivers wrote: > > > > Well - I'm still trying to get pptp to cooperate and set up > > a VPN connection to a Microsoft VPN server. > > > > I'm just wondering - is there _anyone_ out there that has > > met with success using pptp - and, if so, could you share > > your /etc/ppp/ppp.conf settings? > > http://www.freebsd.org/handbook/pppoa.html > Thanks *very* much for the pointer I'll definately be looking at that soon! I wonder why a search of "pptp" at FreeBSD.org doesn't find this? Perhaps I mis-typed something? - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
I've always had better success using the mpd port for pptp.. On Wed, 1 May 2002, Thomas David Rivers wrote: > > Well - I'm still trying to get pptp to cooperate and set up > a VPN connection to a Microsoft VPN server. > > I'm just wondering - is there _anyone_ out there that has > met with success using pptp - and, if so, could you share > your /etc/ppp/ppp.conf settings? > > - Many thanks! - >- Dave Rivers - > > -- > [EMAIL PROTECTED]Work: (919) 676-0847 > Get your mainframe programming tools at http://www.dignus.com > > To Unsubscribe: send mail to [EMAIL PROTECTED] > with "unsubscribe freebsd-hackers" in the body of the message > To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
RE: Anyone using pptp?
Dear Thomas, > > Well - I'm still trying to get pptp to cooperate and set up > a VPN connection to a Microsoft VPN server. > > I'm just wondering - is there _anyone_ out there that has > met with success using pptp - and, if so, could you share > your /etc/ppp/ppp.conf settings? > http://kjkoster.org/?page=content/adsl.jsp It's specific for my provider, though. Kees Jan = You can't have everything. Where would you put it? [Steven Wright] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
RE: Anyone using pptp?
> > Dear Thomas, > > > > > Well - I'm still trying to get pptp to cooperate and set up > > a VPN connection to a Microsoft VPN server. > > > > I'm just wondering - is there _anyone_ out there that has > > met with success using pptp - and, if so, could you share > > your /etc/ppp/ppp.conf settings? > > > http://kjkoster.org/?page=content/adsl.jsp It's specific for my provider, > though. > > Kees Jan > Thanks Kees! I read through your web pages - very nicely done, by the way! But - I'm afraid your /etc/ppp/ppp.conf doesn't work for me. Here's the current issue: The Microsoft VPN server I'm talking to is insisting on an encrypted MPPE connection at the LCP level. That connection requires MSChapV2 (0x81). If I add enable MSChapV2 in /etc/ppp/ppp.conf - then our ppp client requires that the peer (the Microsoft VPN server) authenticate using MSChapV2. But, the Microsoft VPN peer refuses that (it's configured to not use MSChapV2. So - I'm in the situation of both requiring and disallowing MSChapV2. Does anyone know if there is a way in /etc/ppp/ppp.conf to accomplish this? Some people on the Linux lists suggested that the FreeBSD ppp might have a "noauth" option, which meant that the peer didn't have to authenticate itself - but I couldn't find such an option. Any pointers would be appreciated! - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Dominic Marks <[EMAIL PROTECTED]> wrote: > On Wed, May 01, 2002 at 03:47:13PM -0400, Thomas David Rivers wrote: > > > > Well - I'm still trying to get pptp to cooperate and set up > > a VPN connection to a Microsoft VPN server. > > > > I'm just wondering - is there _anyone_ out there that has > > met with success using pptp - and, if so, could you share > > your /etc/ppp/ppp.conf settings? > > http://www.freebsd.org/handbook/pppoa.html > Ah yes - that contains the same ppp.conf I have now. And - as I just detailed in other e-mail - it's not working for me... From the ppp.log file - it seems I have to have MSChapV2 both enabled and disabled at the same time. At some points in the negotiation it needs to be disabled (i.e. *not* used for authenticating the peer) - but at other points it needs to be enabled (to allow MPPE encryption - which the Microsoft peer requires.) - Thanks! - - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Julian Elischer <[EMAIL PROTECTED]> wrote: > > I've always had better success using the mpd port for pptp.. > It's installed now :-) I'm going to try and "give it a go" this morning! I'll let everyone know how it goes... - Thanks! - - Dave Rivers - To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Thomas David Rivers wrote: > From the ppp.log file - it seems I have to have MSChapV2 > both enabled and disabled at the same time. At some points > in the negotiation it needs to be disabled (i.e. *not* used > for authenticating the peer) - but at other points it needs > to be enabled (to allow MPPE encryption - which the Microsoft > peer requires.) You will need to add a knob. One knob is not enough. You can not have both tea and no tea at the sme time. -- Terry To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
> > Thomas David Rivers wrote: > > From the ppp.log file - it seems I have to have MSChapV2 > > both enabled and disabled at the same time. At some points > > in the negotiation it needs to be disabled (i.e. *not* used > > for authenticating the peer) - but at other points it needs > > to be enabled (to allow MPPE encryption - which the Microsoft > > peer requires.) > > You will need to add a knob. One knob is not enough. You can > not have both tea and no tea at the sme time. > > -- Terry > Clearly - A AND NOT A is not something that can exist. But - does anyone have an idea what that could be? I was thinking, perhaps incorrectly, that someone, somewhere, has already "been there, done that." - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Thomas David Rivers writes: > If I add > enable MSChapV2 > in /etc/ppp/ppp.conf - then our ppp client requires that the > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > the Microsoft VPN peer refuses that (it's configured to not use > MSChapV2. Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? -Archie __ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
> > Thomas David Rivers writes: > > If I add > > enable MSChapV2 > > in /etc/ppp/ppp.conf - then our ppp client requires that the > > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > > the Microsoft VPN peer refuses that (it's configured to not use > > MSChapV2. > > Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? > > -Archie > Something like that... but - that's the default setting. With the default setting, it seems to pass through CHAP (0x80) Authentication. But - then, the MPPE encryption is not allowed - because MPPE compression requires MSChapV2 (0x81) Authentication... and, the VPN server doesn't authenticate that way. I notice there is a line in the ppp man page: For now, ppp can only get encryption keys from CHAP 81 authentication. But - the (Microsoft Win2000) VPN server I'm trying to talk do doesn't allow CHAP 81 authentication, but wants to use MPPE... - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Thomas David Rivers writes: > > > enable MSChapV2 > > > in /etc/ppp/ppp.conf - then our ppp client requires that the > > > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > > > the Microsoft VPN peer refuses that (it's configured to not use > > > MSChapV2. > > > > Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? > > Something like that... but - that's the default setting. With the > default setting, it seems to pass through CHAP (0x80) Authentication. > > But - then, the MPPE encryption is not allowed - because MPPE > compression requires MSChapV2 (0x81) Authentication... and, the > VPN server doesn't authenticate that way. > > I notice there is a line in the ppp man page: > > For now, ppp can only get encryption keys from CHAP 81 > authentication. > > But - the (Microsoft Win2000) VPN server I'm trying to talk do doesn't > allow CHAP 81 authentication, but wants to use MPPE... In that case you need to use mpd I guess. -Archie __ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Archie Cobbs <[EMAIL PROTECTED]> wrote: > > Thomas David Rivers writes: > > > > enable MSChapV2 > > > > in /etc/ppp/ppp.conf - then our ppp client requires that the > > > > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > > > > the Microsoft VPN peer refuses that (it's configured to not use > > > > MSChapV2. > > > > > > Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? > > > > Something like that... but - that's the default setting. With the > > default setting, it seems to pass through CHAP (0x80) Authentication. > > > > But - then, the MPPE encryption is not allowed - because MPPE > > compression requires MSChapV2 (0x81) Authentication... and, the > > VPN server doesn't authenticate that way. > > > > I notice there is a line in the ppp man page: > > > > For now, ppp can only get encryption keys from CHAP 81 > > authentication. > > > > But - the (Microsoft Win2000) VPN server I'm trying to talk do doesn't > > allow CHAP 81 authentication, but wants to use MPPE... > > In that case you need to use mpd I guess. > > -Archie > Yes - after some other investigation - I arrived at the same idea. mpd fails as well... with something very similar... it seems to send a CCP configuration request and simply gets no answer back from the Microsoft server. From the VPN log (you can see toward the bottom that both IPCP and CCP complain that parameter negotiation failed): [vpn] LCP: authorization successful [vpn] LCP: phase shift AUTHENTICATE --> NETWORK [vpn] up: 1 link, total bandwidth 64000 bps [vpn] IPCP: Up event [vpn] IPCP: state change Starting --> Req-Sent [vpn] IPCP: SendConfigReq #1 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: Open event [vpn] CCP: state change Initial --> Starting [vpn] CCP: LayerStart [vpn] CCP: Up event [vpn] CCP: state change Starting --> Req-Sent [vpn] CCP: SendConfigReq #1 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #2 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #2 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #3 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #3 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #4 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #4 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #5 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #5 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #6 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #6 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #7 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #7 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #8 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #8 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #9 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #9 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #10 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #10 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: state change Req-Sent --> Stopped [vpn] IPCP: LayerFinish [vpn] IPCP: parameter negotiation failed [vpn] IPCP: LayerFinish [vpn] CCP: state change Req-Sent --> Stopped [vpn] CCP: LayerFinish [vpn] CCP: parameter negotiation failed [vpn] CCP: Close event [vpn] CCP: state change Stopped --> Closed [vpn] CCP: encryption required, but MPPE was not negotiated in both directions [vpn] CCP: failed to negotiate required encryption [vpn] CCP: Close event [vpn] CCP: LayerFinish [vpn] IPCP: failed to negotiate required encryption [vpn] IPCP: LayerFinish [vpn] CCP: LayerFinish [vpn] bundle: CLOSE event in state OPENED [vpn] closing link "vpn"... [vpn] bundle: CLOSE event in state CLOSED [vpn] closing link "vpn"... [vpn] link: CLOSE event [vpn] LCP: Close event [vpn] LCP: state change Opened --> Closing [vpn] LCP: phase shift NETWORK --> TERMINATE [vpn] up: 0 links, total bandwidth 9600 bps [vpn] IPCP: Down event [vpn] IPCP: state change Stopped --> Starting [vpn] IPCP: LayerStart [vpn] CCP: Down event [vpn] CCP: state change Closed --> Initial [vpn] CCP: Close event [vpn] closing link "vpn"... [vpn] LCP: SendTerminateReq #4 [vpn] LCP: LayerDown [vpn] bundle: CLOSE event in state CLOSED [vpn] link: CLOSE event [vpn] LCP: Close event [vpn] bundle: OPEN event in state CLOSED [vpn] opening link "vpn"... [vpn] link: CLOSE event [vpn] LCP:
Re: Anyone using pptp?
Thomas David Rivers wrote: > > You will need to add a knob. One knob is not enough. You can > > not have both tea and no tea at the sme time. > > Clearly - A AND NOT A is not something that can exist. > > But - does anyone have an idea what that could be? I was thinking, > perhaps incorrectly, that someone, somewhere, has already "been there, > done that." I think it's more likely that the server has been set up this way in order to make it a pain for non-Windows machines. -- Terry To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
[ note: freebsd-hackers being removed from the cc: list ] Thomas David Rivers writes: > mpd fails as well... with something very similar... it seems to > send a CCP configuration request and simply gets no answer > back from the Microsoft server. From the VPN log (you can see > toward the bottom that both IPCP and CCP complain that > parameter negotiation failed): Maybe the server is having trouble acquiring an IP address for you via DHCP? Sometimes this kind of trace results from the server 'freezing up' due to any random error condition such as no DHCP, network access denied, etc. -Archie __ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Archie Cobbs wrote: > Thomas David Rivers writes: > > If I add > > enable MSChapV2 > > in /etc/ppp/ppp.conf - then our ppp client requires that the > > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > > the Microsoft VPN peer refuses that (it's configured to not use > > MSChapV2. > > Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? The MS PAP/CHAP stuff never made it to RFC because of the protocol layering violations. I think the problem T.D.R. is seeing are a result of not having some covert channel, which is *not* MSChapV2, to get a session key for the VPN session. I guess we need to see a packet trace for a Windows machine being successful, and a FreeBSD machine being unsuccessful, in order to run a side-by-side comparison. -- Terry To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Terry Lambert <[EMAIL PROTECTED]> wrote: > > Archie Cobbs wrote: > > Thomas David Rivers writes: > > > If I add > > > enable MSChapV2 > > > in /etc/ppp/ppp.conf - then our ppp client requires that the > > > peer (the Microsoft VPN server) authenticate using MSChapV2. But, > > > the Microsoft VPN peer refuses that (it's configured to not use > > > MSChapV2. > > > > Don't you want something like "allow MSChapV2" and "disable MSChapV2" ? > > The MS PAP/CHAP stuff never made it to RFC because of the > protocol layering violations. > > I think the problem T.D.R. is seeing are a result of not > having some covert channel, which is *not* MSChapV2, to get > a session key for the VPN session. > > I guess we need to see a packet trace for a Windows machine > being successful, and a FreeBSD machine being unsuccessful, > in order to run a side-by-side comparison. Believe me! I've asked for such a thingy... apparently, the "magic software" needed to do a packet trace on Windows isn't installed on the server. - Dave Rivers - -- [EMAIL PROTECTED]Work: (919) 676-0847 Get your mainframe programming tools at http://www.dignus.com To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Anyone using pptp?
Thomas David Rivers wrote: > > I guess we need to see a packet trace for a Windows machine > > being successful, and a FreeBSD machine being unsuccessful, > > in order to run a side-by-side comparison. > > Believe me! I've asked for such a thingy... apparently, > the "magic software" needed to do a packet trace on Windows > isn't installed on the server. You should be able to do it at the client (your) end, and they should be able to do it with some pain on their end by setting up a "monitoring port" on the switch for the server traffic, and doing a dump on whatever box they have available that can do dumps. -- Terry To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
mpd (was Re: Anyone using pptp?)
Julian Elischer <[EMAIL PROTECTED]> wrote: > > I've always had better success using the mpd port for pptp.. OK - I went through the mpd documentation, etc.. very nice. No problems setting things up, etc... However, mpd isn't working for me either. It makes it through the authentication, then has a complaint that is suspiciously like the problem with pptp-client. I've cut-and-pasted the log here. Any thoughts? - Thanks! - - Dave Rivers - Script started on Thu May 2 11:03:01 2002 office# mpd Multi-link PPP for FreeBSD, by Archie L. Cobbs. Based on iij-ppp, by Toshiharu OHNO. mpd: pid 3199, version 3.2 ([EMAIL PROTECTED] 18:38 13-Sep-2001) [vpn] ppp node is "mpd3199-vpn" [vpn] using interface ng1 mpd: local IP address for PPTP is XXX.XX.XXX.X [vpn] IFACE: Open event [vpn] IPCP: Open event [vpn] IPCP: state change Initial --> Starting [vpn] IPCP: LayerStart [vpn:vpn] [vpn] bundle: OPEN event in state CLOSED [vpn] opening link "vpn"... [vpn] link: OPEN event [vpn] LCP: Open event [vpn] LCP: state change Initial --> Starting [vpn] LCP: LayerStart [vpn] device: OPEN event in state DOWN pptp0: connecting to XXX.XXX.X.XX:1723 [vpn] device is now in state OPENING pptp0: connected to XXX.XXX.X.XX:1723 pptp0: attached to connection with XXX.XXX.X.XX:1723 pptp0-0: outgoing call connected at 14808325 bps [vpn] PPTP call successful [vpn] device: UP event in state OPENING [vpn] device is now in state UP [vpn] link: UP event [vpn] link: origination is local [vpn] LCP: Up event [vpn] LCP: state change Starting --> Req-Sent [vpn] LCP: phase shift DEAD --> ESTABLISH [vpn] LCP: SendConfigReq #1 ACFCOMP PROTOCOMP MRU 1500 MAGICNUM 2ac7d855 AUTHPROTO CHAP MSOFT [vpn] LCP: rec'd Configure Request #0 link 0 (Req-Sent) AUTHPROTO CHAP MSOFT MAGICNUM 07f67cce PROTOCOMP ACFCOMP CALLBACK Not supported MP MRRU 1614 ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 UNKNOWN[23] len=4 [vpn] LCP: SendConfigRej #0 CALLBACK MP MRRU 1614 UNKNOWN[23] len=4 [vpn] LCP: rec'd Configure Ack #1 link 0 (Req-Sent) ACFCOMP PROTOCOMP MRU 1500 MAGICNUM 2ac7d855 AUTHPROTO CHAP MSOFT [vpn] LCP: state change Req-Sent --> Ack-Rcvd [vpn] LCP: rec'd Configure Request #1 link 0 (Ack-Rcvd) AUTHPROTO CHAP MSOFT MAGICNUM 07f67cce PROTOCOMP ACFCOMP ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 [vpn] LCP: SendConfigAck #1 AUTHPROTO CHAP MSOFT MAGICNUM 07f67cce PROTOCOMP ACFCOMP ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 [vpn] LCP: state change Ack-Rcvd --> Opened [vpn] LCP: phase shift ESTABLISH --> AUTHENTICATE [vpn] LCP: auth: peer wants CHAP, I want CHAP [vpn] CHAP: sending CHALLENGE [vpn] LCP: LayerUp [vpn] CHAP: rec'd CHALLENGE #0 Name: "" Using authname "X" [vpn] CHAP: sending RESPONSE pptp0: CID 0xdac8 in SetLinkInfo not found [vpn] CHAP: rec'd SUCCESS #0 [vpn] LCP: rec'd Configure Request #3 link 0 (Opened) AUTHPROTO CHAP MSOFT MAGICNUM 0a8d47f5 PROTOCOMP ACFCOMP CALLBACK Not supported MP MRRU 1614 ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 UNKNOWN[23] len=4 [vpn] LCP: LayerDown [vpn] LCP: SendConfigReq #2 ACFCOMP PROTOCOMP MRU 1500 MAGICNUM 2ac7d855 AUTHPROTO CHAP MSOFT [vpn] LCP: SendConfigRej #3 CALLBACK MP MRRU 1614 UNKNOWN[23] len=4 [vpn] LCP: state change Opened --> Req-Sent [vpn] LCP: phase shift AUTHENTICATE --> ESTABLISH pptp0: CID 0xdac8 in SetLinkInfo not found [vpn] LCP: rec'd Configure Reject #2 link 0 (Req-Sent) AUTHPROTO CHAP MSOFT [vpn] LCP: SendConfigReq #3 ACFCOMP PROTOCOMP MRU 1500 MAGICNUM 2ac7d855 [vpn] LCP: rec'd Configure Request #4 link 0 (Req-Sent) AUTHPROTO CHAP MSOFT MAGICNUM 0a8d47f5 PROTOCOMP ACFCOMP ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 [vpn] LCP: SendConfigAck #4 AUTHPROTO CHAP MSOFT MAGICNUM 0a8d47f5 PROTOCOMP ACFCOMP ENDPOINTDISC [802.1] 00 80 5f 95 ae 21 [vpn] LCP: state change Req-Sent --> Ack-Sent [vpn] LCP: rec'd Configure Ack #3 link 0 (Ack-Sent) ACFCOMP PROTOCOMP MRU 1500 MAGICNUM 2ac7d855 [vpn] LCP: state change Ack-Sent --> Opened [vpn] LCP: phase shift ESTABLISH --> AUTHENTICATE [vpn] LCP: auth: peer wants CHAP, I want nothing [vpn] LCP: LayerUp [vpn] CHAP: rec'd CHALLENGE #0 Name: "" Using authname "X" [vpn] CHAP: sending RESPONSE pptp0: CID 0xdac8 in SetLinkInfo not found [vpn] CHAP: rec'd SUCCESS #0 [vpn] LCP: authorization successful [vpn] LCP: phase shift AUTHENTICATE --> NETWORK [vpn] up: 1 link, total bandwidth 64000 bps [vpn] IPCP: Up event [vpn] IPCP: state change Starting --> Req-Sent [vpn] IPCP: SendConfigReq #1 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: Open event [vpn] CCP: state change Initial --> Starting [vpn] CCP: LayerStart [vpn] CCP: Up event [vpn] CCP: state change Starting --> Req-Sent [vpn] CCP: SendConfigReq #1 MPPC 0x0160: MPPE, 40 bit, 128 bit, stateless [vpn] IPCP: SendConfigReq #2 IPADDR 192.168.1.1 COMPPROTO VJCOMP, 16 comp. channels, no comp-cid [vpn] CCP: SendConfigReq #2 MPPC 0x0160: MPPE, 40 bit, 1
