hi,
you must be sure that IOS running on 7204 support encryption.
try this:
on interface virtual-template you use for auth add: ppp encrypt xxx
where xxx can be auto, 40 or 128
cheers,
giovanni
wangyan wrote:
Hi, I have a problem about Cisco PPTP VPN with MPPE Authentication.
I use FreeRadius 1.0.4 with MySQL 4.1.10.
I want to establish a PPTP VPN authenticated by FreeRadius.
The problem is when I use pix525(os6.34), I can establish the PPTP VPN
with MPPE 128, MS-CHAP.
But when I use cisco7204(12.2-29), I can only establish the PPTP VPN
without MPPE, MS-CHAP.
When I use cisco7204 local db for authentication, I can establish the
PPTP VPN with MPPE 128, MS-CHAP.
I use the same configuration on radius server.
I think the problem is freeradius.
But it is strange. Because FreeRadius support mppe key and the pix
test succeed.
7204 configuration
interface Virtual-Template1
ip unnumbered FastEthernet1/0
peer default ip address pool test
ppp encrypt mppe auto stateful
ppp authentication ms-chap chap
windowsxp vpn client
MS-CHAP, maximum strength encryption.
It displayed the encrytion type is not match.
7204 debug ppp mppe event
5:41:33: Vi1 MS-CHAP: O SUCCESS id 29 len 4
15:41:33: Vi1 MPPE: don't understand all options, NAK
15:41:33: Vi1 MPPE: RADIUS keying material missing
Any one can help me?
- List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html