Отпечатай - ВПН клиента не може да си намери сървъра

Zna4i okaza se 4e mai trqbva da polzvam pppoe, takai napravih, no neshto ne se poluchava...napravih si interveis ppp0 vyrhu eth1 i mu zadadoh da izpolzva dhcp( kakto e pri windowskite nastroiki i se polu4ava slednoto i neshte da se logn-ne v tunela. Eto edin tcpdump:

Примерен код

20.228964 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP PAP Authenticate-Request
21.009070 10.2.1.3 -> 224.0.0.22 IGMP V3 Membership Report
21.228847 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP PAP Authenticate-Nak
21.229198 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Termination Request
21.249006 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Termination Request
21.249320 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Termination Ack
21.255686 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Termination Ack
21.263932 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Terminate (PADT)
21.267920 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPPoED Active Discovery Terminate (PADT)
21.268511 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Terminate (PADT)
21.694454 10.2.1.3 -> 224.0.0.22 IGMP V3 Membership Report
26.853080 EdimaxTe_30:39:f9 -> Broadcast PPPoED Active Discovery Initiation (PADI)
26.853274 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Offer (PADO)
26.854024 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPPoED Active Discovery Request (PADR)
26.854480 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Session-confirmation (PADS)
26.859136 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Configuration Request
27.837353 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Configuration Request
27.837736 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Configuration Ack
29.859925 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Configuration Request
29.871526 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Configuration Ack
29.871580 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Echo Request
29.871902 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Echo Request
29.872040 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Echo Reply
29.881212 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP PAP Authenticate-Request
29.883694 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Echo Reply
32.873020 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP PAP Authenticate-Request
35.873575 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP PAP Authenticate-Request
38.874118 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP PAP Authenticate-Request
39.880882 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP PAP Authenticate-Nak
39.881222 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Termination Request
39.901017 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Termination Request
39.901069 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPP LCP Termination Ack
39.901340 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPP LCP Termination Ack
39.908956 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Terminate (PADT)
39.913876 EdimaxTe_30:39:f9 -> CompaqCo_5b:1b:25 PPPoED Active Discovery Terminate (PADT)
39.922762 CompaqCo_5b:1b:25 -> EdimaxTe_30:39:f9 PPPoED Active Discovery Terminate (PADT)
43.051942 CompaqCo_5b:1b:25 -> Broadcast ARP Who has 82.147.142.206? Tell 82.147.142.225
44.051733 CompaqCo_5b:1b:25 -> Broadcast ARP Who has 82.147.142.206? Tell 82.147.142.225
96 packets captured

CompaqCo_5b:1b:25 sym az ,a EdimaxTe_30:39:f9 qvno e DHCP server-a

I taka si prodyljava dokato ne padnes pppd-to...server-a postoqnno iska pap-authenticatrion, a moq mai ne mu q dava..vypreki 4e sym zadal v pap-secrets to4no user i pass(tova e napraveno s gui programa za net-config na Fedora-ta)

eto mi i /etc/ppp/options:

Примерен код

# /etc/ppp/options

# The name of this server. Often, the FQDN is used here.
#name <host>

# Enforce the use of the hostname as the name of the local system for
# authentication purposes (overrides the name option).
usehostname

# If no local IP address is given, pppd will use the first IP address
# that belongs to the local hostname. If "noipdefault" is given, this
# is disabled and the peer will have to supply an IP address.
noipdefault

# With this option, pppd will accept the peer's idea of our local IP
# address, even if the local IP address was specified in an option.
ipcp-accept-local

# With this option, pppd will accept the peer's idea of its (remote) IP
# address, even if the remote IP address was specified in an option.
ipcp-accept-remote

# Specify which DNS Servers the incoming Win95 or WinNT Connection should use
# Two Servers can be remotely configured
#ms-dns 192.168.1.1
#ms-dns 192.168.1.2

# Specify which WINS Servers the incoming connection Win95 or WinNT should use
#wins-addr 192.168.1.50
#wins-addr 192.168.1.51

# enable this on a server that already has a permanent default route
#nodefaultroute

# Run the executable or shell command specified after pppd has terminated
# the link. This script could, for example, issue commands to the modem
# to cause it to hang up if hardware modem control signals were not
# available.
# If mgetty is running, it will reset the modem anyway. So there is no need
# to do it here.
#disconnect "chat -- \d+++\d\c OK ath0 OK"

# Increase debugging level (same as -d). The debug output is written
# to syslog LOG_LOCAL2.
debug

# Enable debugging code in the kernel-level PPP driver. The argument n
# is a number which is the sum of the following values: 1 to enable
# general debug messages, 2 to request that the contents of received
# packets be printed, and 4 to request that the contents of transmitted
# packets be printed.
#kdebug n

# Require the peer to authenticate itself before allowing network
# packets to be sent or received.
# Please do not disable this setting. It is expected to be standard in
# future releases of pppd. Use the call option (see manpage) to disable
# authentication for specific peers.
#auth

# authentication can either be pap or chap. As most people only want to
# use pap, you can also disable chap:
require-pap
refuse-chap

# Use hardware flow control (i.e. RTS/CTS) to control the flow of data
# on the serial port.
crtscts

# Specifies that pppd should use a UUCP-style lock on the serial device
# to ensure exclusive access to the device.
lock

# Use the modem control lines.
#modem

# async character map -- 32-bit hex; each bit is a character
# that needs to be escaped for pppd to receive it. 0x00000001
# represents '\x01', and 0x80000000 represents '\x1f'.
# To allow pppd to work over a rlogin/telnet connection, ou should escape
# XON (^Q), XOFF (^S) and ^]: (The peer should use "escape ff".)
#asyncmap 200a0000
asyncmap 0

# Specifies that certain characters should be escaped on transmission
# (regardless of whether the peer requests them to be escaped with its
# async control character map). The characters to be escaped are
# specified as a list of hex numbers separated by commas. Note that
# almost any character can be specified for the escape option, unlike
# the asyncmap option which only allows control characters to be
# specified. The characters which may not be escaped are those with hex
# values 0x20 - 0x3f or 0x5e.
#escape 11,13,ff

# Set the MRU [Maximum Receive Unit] value to <n> for negotiation. pppd
# will ask the peer to send packets of no more than <n> bytes. The
# minimum MRU value is 128. The default MRU value is 1500. A value of
# 296 is recommended for slow links (40 bytes for TCP/IP header + 256
# bytes of data).
#mru 542

# Set the MTU [Maximum Transmit Unit] value to <n>. Unless the peer
# requests a smaller value via MRU negotiation, pppd will request that
# the kernel networking code send data packets of no more than n bytes
# through the PPP network interface.
#mtu <n>

# Set the interface netmask to <n>, a 32 bit netmask in "decimal dot"
# notation (e.g. 255.255.255.0).
netmask 255.255.255.0

# Don't fork to become a background process (otherwise pppd will do so
# if a serial device is specified).
nodetach

# Set the assumed name of the remote system for authentication purposes
# to <n>.
#remotename <n>

# Add an entry to this system's ARP [Address Resolution Protocol]
# table with the IP address of the peer and the Ethernet address of this
# system. {proxyarp,noproxyarp}
proxyarp

# Use the system password database for authenticating the peer using
# PAP. Note: mgetty already provides this option. If this is specified
# then dialin from users using a script under Linux to fire up ppp wont work.
#login

# If this option is given, pppd will send an LCP echo-request frame to
# the peer every n seconds. Under Linux, the echo-request is sent when
# no packets have been received from the peer for n seconds. Normally
# the peer should respond to the echo-request by sending an echo-reply.
# This option can be used with the lcp-echo-failure option to detect
# that the peer is no longer connected.
lcp-echo-interval 30

# If this option is given, pppd will presume the peer to be dead if n
# LCP echo-requests are sent without receiving a valid LCP echo-reply.
# If this happens, pppd will terminate the connection. Use of this
# option requires a non-zero value for the lcp-echo-interval parameter.
# This option can be used to enable pppd to terminate after the physical
# connection has been broken (e.g., the modem has hung up) in
# situations where no hardware modem control lines are available.
lcp-echo-failure 4

# Specifies that pppd should disconnect if the link is idle for n seconds.
idle 600

# Disable the IPXCP and IPX protocols.
noipx

# ---<End of File>---

Linux за българи: Форуми

Linux секция за начинаещи => Настройка на програми => Темата е започната от: int13 в Apr 08, 2005, 23:29