LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
LinkBack Search this Thread
Old 01-06-2004, 12:05 PM   #1
Raphael_T
LQ Newbie
 
Registered: Oct 2003
Distribution: Mandrake 9.1, Red Hat 7.3
Posts: 21

Rep: Reputation: 15
I want to make a linux vpn server for my windows client


At my office, we have a network protected by a linux firewall. We want to create a vpn server, running linux, to give access to the files server to the laptop users.

the laptop is running windows xp.

We already look at OpenVPN but it seems to need to be installed on all computer who need access to the vpn, and all the how-to we saw on tldp need to open a ssh connection first.

What we really want is to allow people to create a vpn connection using the windows wizard connection.

We want to know if its possible and if it is, how to make it.

Raphael Theriault


 
Old 01-09-2004, 06:03 AM   #2
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 47
The quickest one is Poptop

It matches the PPTP option in the Win wizard.
 
Old 01-15-2004, 08:34 AM   #3
Raphael_T
LQ Newbie
 
Registered: Oct 2003
Distribution: Mandrake 9.1, Red Hat 7.3
Posts: 21

Original Poster
Rep: Reputation: 15
client disconnect

I installed Poptop and it worked fine for one thing, after 2.4 minutes, my windows client disconnect. Maybe it's in the configuration. I made the configuration it is said in the doc on the web site andj that's what happen.

If somebody can help me, I would really appreciate it.

Oh yes, I heard too pptp have some security issue. Is it true ?
 
Old 01-15-2004, 08:44 AM   #4
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 47
Time to watch the log files on the pptp server and look for errors...

And to add Debug to both conf files to get some extra output..

And the security bug in poptop was fixed a long time back, but there are some outstanding issues with M$ PPTP server version.
 
Old 01-15-2004, 08:55 AM   #5
Raphael_T
LQ Newbie
 
Registered: Oct 2003
Distribution: Mandrake 9.1, Red Hat 7.3
Posts: 21

Original Poster
Rep: Reputation: 15
this is the log I get

this is the log I get for the connection on my vpn server.

But I must admit my vpn server is behind a firewall. maybe it's my firewall

-------------------------------------------------

/var/log/messages

Jan 15 09:04:46 Files pppd[14454]: Exit.
Jan 15 09:06:44 Files pptpd[14479]: CTRL: Client [remote net ip addresss] control connection started
Jan 15 09:06:44 Files pptpd[14479]: CTRL: Starting call (launching pppd, opening GRE)
Jan 15 09:06:44 Files pppd[14480]: pppd 2.4.1 started by root, uid 0
Jan 15 09:06:44 Files pppd[14480]: Using interface ppp0
Jan 15 09:06:44 Files pppd[14480]: Connect: ppp0 <--> /dev/pts/0
Jan 15 09:06:44 Files pptpd[14479]: GRE: Discarding duplicate packet
Jan 15 09:06:44 Files /etc/hotplug/net.agent: assuming ppp0 is already up
Jan 15 09:06:47 Files pptpd[14479]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jan 15 09:06:47 Files pppd[14480]: found interface eth0 for proxy arp
Jan 15 09:06:47 Files pppd[14480]: local IP address 192.168.0.1
Jan 15 09:06:47 Files pppd[14480]: remote IP address 192.168.0.201
Jan 15 09:09:05 Files pptpd[14479]: CTRL: Session timed out, ending call
Jan 15 09:09:05 Files pptpd[14479]: CTRL: Client [remote net ip addresss] control connection finished
Jan 15 09:09:05 Files pppd[14480]: Terminating on signal 2.
Jan 15 09:09:05 Files pppd[14480]: Modem hangup
Jan 15 09:09:05 Files pppd[14480]: Connection terminated.
Jan 15 09:09:05 Files pppd[14480]: Connect time 2.4 minutes.
Jan 15 09:09:05 Files pppd[14480]: Sent 149 bytes, received 2732 bytes.
Jan 15 09:09:05 Files /etc/hotplug/net.agent: NET unregister event not supported
Jan 15 09:09:05 Files pppd[14480]: Exit.

--------------------------------------------------------------
 
Old 01-15-2004, 09:01 AM   #6
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 47
Do you have the Debug option set in both conf files?
There will be extra packet info about LCP, link control protocol...
 
Old 01-15-2004, 09:43 AM   #7
Raphael_T
LQ Newbie
 
Registered: Oct 2003
Distribution: Mandrake 9.1, Red Hat 7.3
Posts: 21

Original Poster
Rep: Reputation: 15
Here is the best log I can get

------------------------------------------------------------
/var/log/messages

Jan 15 10:31:06 Files pptpd: pptpd startup succeeded
Jan 15 10:32:50 Files pptpd[15264]: CTRL: Client 205.237.70.170 control connection started
Jan 15 10:32:50 Files pptpd[15264]: CTRL: Starting call (launching pppd, opening GRE)
Jan 15 10:32:50 Files pppd[15265]: pppd 2.4.1 started by root, uid 0
Jan 15 10:32:50 Files pppd[15265]: Using interface ppp0
Jan 15 10:32:50 Files pppd[15265]: Connect: ppp0 <--> /dev/pts/1
Jan 15 10:32:50 Files /etc/hotplug/net.agent: assuming ppp0 is already up
Jan 15 10:32:52 Files pptpd[15264]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jan 15 10:32:52 Files pppd[15265]: found interface eth0 for proxy arp
Jan 15 10:32:52 Files pppd[15265]: local IP address 192.168.0.1
Jan 15 10:32:52 Files pppd[15265]: remote IP address 192.168.0.200
Jan 15 10:35:15 Files pptpd[15264]: CTRL: Session timed out, ending call
Jan 15 10:35:15 Files pptpd[15264]: CTRL: Client 205.237.70.170 control connection finished
Jan 15 10:35:15 Files pppd[15265]: Terminating on signal 2.
Jan 15 10:35:15 Files pppd[15265]: Modem hangup
Jan 15 10:35:15 Files pppd[15265]: Connection terminated.
Jan 15 10:35:15 Files pppd[15265]: Connect time 2.5 minutes.
Jan 15 10:35:16 Files pppd[15265]: Sent 149 bytes, received 3889 bytes.
Jan 15 10:35:16 Files /etc/hotplug/net.agent: NET unregister event not supported
Jan 15 10:35:16 Files pppd[15265]: Exit.

------------------------------------------------------------------
 
Old 01-16-2004, 06:42 AM   #8
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 47
My logs show a lot more coz of the debug option added...
Necessary for finding problems...


Jan 14 15:43:57 gwardian pptpd[30548]: MGR: Launching /usr/sbin/pptpctrl to handle client
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: local address = 192.168.2.5
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: remote address = 192.168.2.10
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: pppd options file = /etc/ppp/options.pptpd
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Client x.x.x.x control connection started
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Received PPTP Control Message (type: 1)
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Made a START CTRL CONN RPLY packet
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: I wrote 156 bytes to the client.
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Sent packet to client
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Received PPTP Control Message (type: 7)
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Set parameters to 1525 maxbps, 64 window size
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Made a OUT CALL RPLY packet
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Starting call (launching pppd, opening GRE)
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: pty_fd = 5
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: tty_fd = 6
Jan 14 15:43:57 gwardian pptpd[30549]: CTRL (PPPD Launcher): Connection speed = 115200
Jan 14 15:43:57 gwardian pptpd[30549]: CTRL (PPPD Launcher): local address = 192.168.2.5
Jan 14 15:43:57 gwardian pptpd[30549]: CTRL (PPPD Launcher): remote address = 192.168.2.10
Jan 14 15:43:57 gwardian pppd[30549]: pppd 2.4.1 started by root, uid 0
Jan 14 15:43:57 gwardian pppd[30549]: using channel 169
Jan 14 15:43:57 gwardian pppd[30549]: Using interface ppp0
Jan 14 15:43:57 gwardian pppd[30549]: Connect: ppp0 <--> /dev/pts/0
Jan 14 15:43:57 gwardian pppd[30549]: sent [LCP ConfReq id=0x1 <mru 1450> <asyncmap 0x0> <auth chap 81> <magic 0x8ca651d7> <pcomp> <accomp>]
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: I wrote 32 bytes to the client.
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Sent packet to client
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Received PPTP Control Message (type: 15)
Jan 14 15:43:57 gwardian pptpd[30548]: CTRL: Got a SET LINK INFO packet with standard ACCMs
Jan 14 15:43:57 gwardian pptpd[30548]: GRE: Discarding duplicate packet
Jan 14 15:43:57 gwardian pppd[30549]: rcvd [LCP ConfAck id=0x1 <mru 1450> <asyncmap 0x0> <auth chap 81> <magic 0x8ca651d7> <pcomp> <accomp>]
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x4d960487> <pcomp> <accomp> <callback CBCP>]
Jan 14 15:43:59 gwardian pppd[30549]: sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x4d960487> <pcomp> <accomp> <callback CBCP>]
Jan 14 15:43:59 gwardian pppd[30549]: sent [LCP EchoReq id=0x0 magic=0x8ca651d7]
Jan 14 15:43:59 gwardian pppd[30549]: cbcp_lowerup
Jan 14 15:43:59 gwardian pppd[30549]: want: 2
Jan 14 15:43:59 gwardian pppd[30549]: sent [CHAP Challenge id=0x1 <1020e7f19949fab6e5307e5908ab61b2>, name = "pptpd"]
Jan 14 15:43:59 gwardian pptpd[30548]: CTRL: Received PPTP Control Message (type: 15)
Jan 14 15:43:59 gwardian pptpd[30548]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [LCP code=0xc id=0x2 4d 96 04 87 4d 53 52 41 53 56 35 2e 31 30]
Jan 14 15:43:59 gwardian pppd[30549]: sent [LCP CodeRej id=0x2 0c 02 00 12 4d 96 04 87 4d 53 52 41 53 56 35 2e 31 30]
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [LCP code=0xc id=0x3 4d 96 04 87 4d 53 52 41 53 2d 31 2d 41 43 45 52 4d 41 4c 4f 4e 47 49 45 47 4f]
Jan 14 15:43:59 gwardian pppd[30549]: sent [LCP CodeRej id=0x3 0c 03 00 1e 4d 96 04 87 4d 53 52 41 53 2d 31 2d 41 43 45 52 4d 41 4c 4f 4e 47 49 45 47 4f]
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [LCP EchoRep id=0x0 magic=0x4d960487]
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [CHAP Response id=0x1 <xxxxxxx>, name = "xxxxx"]
Jan 14 15:43:59 gwardian pppd[30549]: sent [CHAP Success id=0x1 "S=xxxxxxx"]
Jan 14 15:43:59 gwardian pppd[30549]: cbcp_open
Jan 14 15:43:59 gwardian pppd[30549]: cbcp_req CONF_NO
Jan 14 15:43:59 gwardian pppd[30549]: sent [CBCP Request id=0x1 < NoCallback>]
Jan 14 15:43:59 gwardian pppd[30549]: MSCHAP-v2 peer authentication succeeded for xxxxx
Jan 14 15:43:59 gwardian pppd[30549]: rcvd [CBCP Response id=0x1 < NoCallback>]
Jan 14 15:43:59 gwardian pppd[30549]: CBCP_RESP received
Jan 14 15:43:59 gwardian pppd[30549]: length: 2
Jan 14 15:43:59 gwardian pppd[30549]: Callback: none
Jan 14 15:43:59 gwardian pppd[30549]: cbcp_ack cb_type=2
Jan 14 15:43:59 gwardian pppd[30549]: cbcp_ack CONF_NO
Jan 14 15:43:59 gwardian pppd[30549]: sent [CBCP Ack id=0x1 < NoCallback>]
Jan 14 15:43:59 gwardian pppd[30549]: sent [IPCP ConfReq id=0x1 <addr 192.168.2.5> <compress VJ 0f 01>]
Jan 14 15:43:59 gwardian pppd[30549]: sent [CCP ConfReq id=0x1 <mppe 1 0 0 40> <bsd v1 15>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [CCP ConfReq id=0x4 <mppe 1 0 0 e1>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [CCP ConfNak id=0x4 <mppe 1 0 0 40>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [IPCP ConfReq id=0x5 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [IPCP ConfRej id=0x5 <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [CCP ConfRej id=0x1 <bsd v1 15>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [CCP ConfReq id=0x2 <mppe 1 0 0 40>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [CCP ConfReq id=0x6 <mppe 1 0 0 40>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [CCP ConfAck id=0x6 <mppe 1 0 0 40>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [IPCP ConfReq id=0x7 <addr 0.0.0.0>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [IPCP ConfNak id=0x7 <addr 192.168.2.10>]
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [CCP ConfAck id=0x2 <mppe 1 0 0 40>]
Jan 14 15:44:00 gwardian pppd[30549]: MPPE 128 bit, stateless compression enabled
Jan 14 15:44:00 gwardian pppd[30549]: rcvd [IPCP ConfReq id=0x8 <addr 192.168.2.10>]
Jan 14 15:44:00 gwardian pppd[30549]: sent [IPCP ConfAck id=0x8 <addr 192.168.2.10>]
Jan 14 15:44:02 gwardian pppd[30549]: sent [IPCP ConfReq id=0x1 <addr 192.168.2.5> <compress VJ 0f 01>]
Jan 14 15:44:02 gwardian pppd[30549]: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
Jan 14 15:44:02 gwardian pppd[30549]: sent [IPCP ConfReq id=0x2 <addr 192.168.2.5>]
Jan 14 15:44:03 gwardian pppd[30549]: rcvd [IPCP ConfAck id=0x2 <addr 192.168.2.5>]
Jan 14 15:44:03 gwardian pppd[30549]: found interface eth0 for proxy arp
Jan 14 15:44:03 gwardian pppd[30549]: local IP address 192.168.2.5
Jan 14 15:44:03 gwardian pppd[30549]: remote IP address 192.168.2.10
Jan 14 15:44:03 gwardian pppd[30549]: Script /etc/ppp/ip-up started (pid 30550)
Jan 14 15:44:04 gwardian pppd[30549]: sent [LCP EchoReq id=0x1 magic=0x8ca651d7]
Jan 14 15:44:04 gwardian pppd[30549]: rcvd [LCP EchoRep id=0x1 magic=0x4d960487]
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
can not connect to my pureftp server from Linux client, but i can from windows client bonito Suse/Novell 5 03-16-2005 09:45 PM
Windows VPN Client, on Linux ChaseCrum Linux - Networking 1 10-13-2004 06:02 PM
Linux client over vpn to win2000/2003 server xristos Linux - Wireless Networking 1 05-21-2004 05:45 AM
How do i connect Ciscos VPN client to Checkpoint VPN server Klas Linux - Networking 1 11-29-2003 08:00 AM
Linux Client Configuration for MS VPN Server friendklay Linux - Networking 0 01-31-2003 03:07 AM


All times are GMT -5. The time now is 07:30 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration