Тема: SUSE 10 VPN (Прочетена 1288 пъти)

natali_73 · « -: Dec 12, 2005, 14:24 »

Ползвам pptp за връзка към нета и всичко беше наред, докато не ми беше сменено АЙ ПИ -то на сървъра.Гейтуейя ми е 192.168.3.44 там беше и VPN сървъра , но сега той е на 192.168.29.2. Пробвах с настройките , чрез YaST, но нищо не се получи и си инсталирах pptpconfig - ето и неговия log:

pptpconfig: debug information dump begins
WARNING: security sensitive information follows
pptpconfig 1.2 2004/06/19 08:57:15
# pppd --version
pppd version 2.4.3
# uname -a
Linux linux 2.6.13-15-default #1 Tue Sep 13 14:56:15 UTC 2005 i686 athlon i386 GNU/Linux
# grep mppe /proc/modules
ppp_mppe 15872 0 - Live 0xd0e8b000
ppp_generic 28052 2 ppp_mppe,ppp_async, Live 0xd0e95000
# modinfo ppp_mppe
filename: /lib/modules/2.6.13-15-default/kernel/drivers/net/ppp_mppe.ko
license: BSD without advertisement clause
vermagic: 2.6.13-15-default 586 REGPARM gcc-4.0
supported: yes
depends: ppp_generic
srcversion: C2822B0B343FAC886FE669B
Array
(
   [name] => networx
   [server] => 192.168.29.2
   [domain] =>
   [username] => sandokan
   [password] => (hidden by pptpconfig)
   [pppd-options] =>
   [pptp-options] =>
   [resolv] =>
   [dns-options] =>
   [routing] => routing_all_to_tunnel
   [usepeerdns] => 1
   [require-mppe] =>
   [nomppe-40] =>
   [nomppe-128] =>
   [refuse-eap] =>
   [mppe-stateful] =>
   [autostart] =>
   [iconify] =>
   [persist] =>
   [debug] => 1
   [client-to-lan] =>
)
# route -n (before pppd)
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.11.3 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.43.3 192.168.43.3 255.255.255.255 UGH 0 0 0 eth0
192.168.11.9 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.3.44 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
192.168.11.2 192.168.43.3 255.255.255.254 UG 0 0 0 eth0
192.168.43.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.24.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.11.8 192.168.43.1 255.255.255.248 UG 0 0 0 eth0
192.168.43.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.3.44 0.0.0.0 UG 0 0 0 eth0
pptpconfig: debug information dump ends, starting pppd
pppd options in effect:
debug# (from /etc/ppp/peers/networx)
updetach# (from command line)
idle 600# (from /etc/ppp/options)
logfd 1# (from command line)
linkname networx# (from /etc/ppp/peers/networx)
dump# (from /etc/ppp/peers/networx)
active-filter xxx # [don't know how to print value]# (from /etc/ppp/filters)
noauth# (from /etc/ppp/options.pptp)
name sandokan# (from /etc/ppp/peers/networx)
remotename networx# (from /etc/ppp/peers/networx)
# (from /etc/ppp/options.pptp)
pty pptp 192.168.29.2 --nolaunchpppd # (from /etc/ppp/peers/networx)
crtscts# (from /etc/ppp/options)
# (from /etc/ppp/options)
asyncmap 0# (from /etc/ppp/options)
mru 1000# (from /etc/ppp/options.pptp)
mtu 1000# (from /etc/ppp/options.pptp)
lcp-echo-failure 10# (from /etc/ppp/options.pptp)
lcp-echo-interval 10# (from /etc/ppp/options.pptp)
lcp-restart 2# (from /etc/ppp/options)
lcp-max-configure 60# (from /etc/ppp/options)
ipparam networx# (from /etc/ppp/peers/networx)
noipdefault# (from /etc/ppp/options)
usepeerdns# (from /etc/ppp/peers/networx)
nobsdcomp# (from /etc/ppp/options.pptp)
nodeflate# (from /etc/ppp/options.pptp)
require-mppe# (from /etc/ppp/options.pptp)
noipx# (from /etc/ppp/options)
using channel 23
Using interface ppp0
pptpconfig: monitoring interface ppp0
Connect: ppp0 <--> /dev/pts/4
sent [LCP ConfReq id=0x1 <mru 1000> <asyncmap 0x0> <magic 0x4addf74b> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xbe9348d2> <pcomp> <accomp>]
sent [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xbe9348d2> <pcomp> <accomp>]
rcvd [LCP ConfRej id=0x1 <mru 1000>]
sent [LCP ConfReq id=0x2 <asyncmap 0x0> <magic 0x4addf74b> <pcomp> <accomp>]
rcvd [LCP ConfAck id=0x2 <asyncmap 0x0> <magic 0x4addf74b> <pcomp> <accomp>]
sent [LCP EchoReq id=0x0 magic=0x4addf74b]
rcvd [LCP EchoReq id=0x0 magic=0xbe9348d2]
sent [LCP EchoRep id=0x0 magic=0x4addf74b]
rcvd [CHAP Challenge id=0xfe <3f278cbb62df8bc0b6904330f28ef4d4>, name = "Day2-Global"]
sent [CHAP Response id=0xfe <9735aacffa4d8061adc67d6dfb5f56970000000000000000e2dff05a9c994260706b46ec9338aab5fc4672
5bd833b0ab00>, name = "sandokan"]
rcvd [LCP EchoRep id=0x0 magic=0xbe9348d2]
rcvd [CHAP Success id=0xfe "S=44DAEC2C08C48BD9604DA3820B8C07FAFEB136DC M=Access granted"]
sent [CCP ConfReq id=0x1 <mppe +H -M +S +L -D -C>]
rcvd [CCP ConfReq id=0x1 <mppe -H -M -S -L -D +C> <bsd v1 15>]
Refusing MPPE stateful mode offered by peer
MPPE required but peer negotiation failed
sent [LCP TermReq id=0x3 "MPPE required but peer negotiation failed"]
sent [CCP ConfRej id=0x1 <mppe -H -M -S -L -D +C> <bsd v1 15>]
rcvd [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 192.168.188.1>]
Discarded non-LCP packet when LCP not open
rcvd [CCP ConfNak id=0x1 <mppe -H -M +S -L -D -C>]
Discarded non-LCP packet when LCP not open
rcvd [LCP TermAck id=0x3]
Connection terminated.
Waiting for 1 child processes...
  script pptp 192.168.29.2 --nolaunchpppd , pid 28281
Script pptp 192.168.29.2 --nolaunchpppd finished (pid 28281), status = 0x0
# route -n (after pppd exit)
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.11.3 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.43.3 192.168.43.3 255.255.255.255 UGH 0 0 0 eth0
192.168.11.9 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.3.44 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
192.168.11.2 192.168.43.3 255.255.255.254 UG 0 0 0 eth0
192.168.43.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.24.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.11.8 192.168.43.1 255.255.255.248 UG 0 0 0 eth0
192.168.43.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.3.44 0.0.0.0 UG 0 0 0 eth0
pptpconfig: pppd process terminated by signal 10 (failed)
pptpconfig: SIGUSR1
# route -n (after completion)
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.11.3 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.43.3 192.168.43.3 255.255.255.255 UGH 0 0 0 eth0
192.168.11.9 192.168.43.1 255.255.255.255 UGH 0 0 0 eth0
192.168.3.44 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
192.168.11.2 192.168.43.3 255.255.255.254 UG 0 0 0 eth0
192.168.43.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.24.2 192.168.43.2 255.255.255.254 UG 0 0 0 eth0
192.168.11.8 192.168.43.1 255.255.255.248 UG 0 0 0 eth0
192.168.43.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.3.44 0.0.0.0 UG 0 0 0 eth0

Искрено се надявам някой да ми помогне да разбера къде ми е грешката и как да разраша проблема!

_ · « **Отговор #1 -:** Dec 12, 2005, 17:09 »

Не разбирам 1 нещо - защо при конфигурацията те интересува ВПН сървъра? Настрой си конфигурацията спрямо Гейтуея - така трябва да достигаш ВПН-а, а тои след това ще те насочи.
Какъв тип връзка се опитваш да настоиш - някакъв сдухан ДСЛ ?
Сиреч - съсредоточи се върху идеята да стигнеш до ВПНа - останалото би трябвало той да го тунелира.
Това ми звучи като допотопен ДСЛ с М$ впн-тунелинг - при него те интересува само Гейтуея и в СУСЕ се настройва през ИАСТ - ДСЛ, изцяло в графика.

« **Отговор #2 -:** Dec 12, 2005, 22:20 »

Съвсем малко съм се занимавал с ppp+mppe, но даденият дневник е много красноречив и сам говори:

Цитат

...
nobsdcomp# (from /etc/ppp/options.pptp)
nodeflate# (from /etc/ppp/options.pptp)
require-mppe# (from /etc/ppp/options.pptp)
...

Демек, не искаме BSD compression, изискваме задължително MPPE.

Цитат

...
sent [CCP ConfReq id=0x1 <mppe +H -M +S +L -D -C>]
rcvd [CCP ConfReq id=0x1 <mppe -H -M -S -L -D +C> <bsd v1 15>]
Refusing MPPE stateful mode offered by peer
MPPE required but peer negotiation failed
sent [LCP TermReq id=0x3 "MPPE required but peer negotiation failed"]
...

А отсрещният не иска нищо от нашите флагове, за сметка на това предлага BSD compression. Отсреща няма MPPE поддръжка, каквато ние искаме задължително! Или се лъжа? Според мен ръководството и описанието на тези флагове H, M, S, L, D, C ще даде ключа към загадката.

nforcer · « **Отговор #3 -:** Dec 15, 2005, 23:15 »

Да използвам темата да задам един въпрос и аз съм с SUSE 10 нагласил съм си интернета от YAST в /etc/ppp/ip-up.local съм написал
следното и съм го направил изпълним :
route add -host 192.168.29.2 gw 192.168.76.1 dev eth1
route add default gw 192.168.190.163 dev dsl0
route add -net 192.168.11.0 netmask 255.255.255.0 gw 192.168.76.1 dev eth1
route add -host 192.168.11.5 gw 192.168.190.163 dev dsl0
но нещо не иска да се стартира този файл автоматично а като го пусна ръчно ми тръгва интернета. Да не би като ползвам YAST да трябва да ползвам друг файл и ако да кой?

Подобни теми
	Заглавие	Започната от	Отговора	Прегледи	Последна публикация
	SuSE 8.2 Pro Настройка на програми	rat	1	8008	Jun 20, 2003, 14:12 от batzas
	LAN pod SuSe 8.2 Настройка на програми	trifa	7	7984	Oct 12, 2003, 20:25 от abator
	SuSe 9.0 Настройка на програми	Йордан	1	7046	Nov 01, 2003, 15:40 от Йордан
	SuSE 9.0 Настройка на програми	chankov	2	6849	Nov 20, 2003, 09:22 от
	SuSE 9.0 Настройка на хардуер	apogza	0	5293	Nov 21, 2003, 20:18 от apogza

Автор Тема: SUSE 10 VPN (Прочетена 1288 пъти)

natali_73

SUSE 10 VPN

_

SUSE 10 VPN

SUSE 10 VPN

nforcer

SUSE 10 VPN