Guest inVisible mAn Posted April 26, 2006 Report Share Posted April 26, 2006 Hi, We're trying to connect a Linux to a MS VPN but is unable to authenticate, pptpconfig: debug information dump begins WARNING: security sensitive information follows pptpconfig 1.2 2004/06/19 08:57:15 # pppd --version pppd version 2.4.3 # uname -a Linux pojslinux 2.6.3-7mdk #1 Wed Mar 17 15:56:42 CET 2004 i686 unknown unknown GNU/Linux # grep mppe /proc/modules ppp_mppe 13280 0 [unsafe], Live 0xcfafc000 ppp_generic 29552 2 ppp_mppe,ppp_async, Live 0xcfaf3000 # modinfo ppp_mppe license: BSD without advertisement clause vermagic: 2.6.3-7mdk 586 depends: ppp_generic Array ( [name] => Wyless [server] => vpn.wyless.net [domain] => [username] => ostersund [password] => (hidden by pptpconfig) [pppd-options] => noauth refuse-pap refuse-chap refuse-mschap [pptp-options] => [resolv] => [dns-options] => [routing] => routing_client_to_lan [usepeerdns] => 1 [require-mppe] => 1 [nomppe-40] => 1 [nomppe-128] => [refuse-eap] => 1 [mppe-stateful] => [autostart] => [iconify] => [persist] => [debug] => 1 [client-to-lan] => ) # route -n (before pppd) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.229.71.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.229.71.1 0.0.0.0 UG 0 0 0 eth0 pptpconfig: debug information dump ends, starting pppd pppd options in effect: debug # (from /etc/ppp/peers/Wyless) updetach # (from command line) logfd 1 # (from command line) linkname Wyless # (from /etc/ppp/peers/Wyless) dump # (from /etc/ppp/peers/Wyless) noauth # (from /etc/ppp/peers/Wyless) refuse-pap # (from /etc/ppp/peers/Wyless) refuse-chap # (from /etc/ppp/peers/Wyless) refuse-mschap # (from /etc/ppp/peers/Wyless) refuse-eap # (from /etc/ppp/peers/Wyless) name ostersund # (from /etc/ppp/peers/Wyless) remotename Wyless # (from /etc/ppp/peers/Wyless) # (from /etc/ppp/options.pptp) pty pptp vpn.wyless.net --nolaunchpppd # (from /etc/ppp/peers/Wyless) ipparam Wyless # (from /etc/ppp/peers/Wyless) usepeerdns # (from /etc/ppp/peers/Wyless) nobsdcomp # (from /etc/ppp/options.pptp) nodeflate # (from /etc/ppp/options.pptp) # (from /etc/ppp/peers/Wyless) nomppe-40 # (from /etc/ppp/peers/Wyless) using channel 9 Using interface ppp0pptpconfig: monitoring interface ppp0 Connect: ppp0 <--> /dev/pts/2 sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x4a6b5e68> <pcomp> <accomp>] rcvd [LCP ConfReq id=0x0 <mru 1400> <auth eap> <magic 0x46154934> <pcomp> <accomp> <callback CBCP> <mrru 1614> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]> < 17 04 01 5f>] sent [LCP ConfRej id=0x0 <callback CBCP> <mrru 1614> < 17 04 01 5f>] rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x4a6b5e68> <pcomp> <accomp>] rcvd [LCP ConfReq id=0x1 <mru 1400> <auth eap> <magic 0x46154934> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] sent [LCP ConfNak id=0x1 <auth chap MS-v2>] rcvd [LCP ConfReq id=0x2 <mru 1400> <auth chap MS-v2> <magic 0x46154934> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] sent [LCP ConfAck id=0x2 <mru 1400> <auth chap MS-v2> <magic 0x46154934> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] rcvd [CHAP Challenge id=0x0 <4d6251723ad8419911ae18da67e4ee9d>, name = "75394-PUB1"] sent [CHAP Response id=0x0 <a59b0d75c4bef010cffefc21f003cd2e00000000000000000e26f9cc8d643c745fe2886bdb51 aa46139571c2b294392700>, name = "ostersund"] rcvd [CHAP Success id=0x0 "S=28B79F755875DF8F9D6FB25345B4BBA253E8DA1F"] Couldn't set pass-filter in kernel: Invalid argument sent [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>] rcvd [CCP ConfReq id=0x4 <mppe +H -M -S -L -D +C>] MPPE required but peer negotiation failed sent [LCP TermReq id=0x2 "MPPE required but peer negotiation failed"] sent [CCP ConfRej id=0x4 <mppe +H -M -S -L -D +C>] rcvd [IPCP ConfReq id=0x5 <addr 169.254.216.194>] Discarded non-LCP packet when LCP not open rcvd [CCP ConfAck id=0x1 <mppe +H -M +S -L -D -C>] Discarded non-LCP packet when LCP not open rcvd [LCP TermAck id=0x2 "MPPE required but peer negotiation failed"] Connection terminated. Waiting for 1 child processes... script pptp vpn.wyless.net --nolaunchpppd , pid 11116 sending SIGTERM to process 11116 # route -n (after pppd exit) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.229.71.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.229.71.1 0.0.0.0 UG 0 0 0 eth0 pptpconfig: pppd process terminated by signal 10 (failed) pptpconfig: SIGUSR1 # route -n (after completion) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.229.71.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.229.71.1 0.0.0.0 UG 0 0 0 eth0 The meaning as I have found out, is that the Linux machine suggests "128 bit encryption" (+S), but your server reply with "no encryption" (-S) which seems to be not accepted by our machine. What is your opinion? This is the previous log; pptpconfig: debug information dump begins WARNING: security sensitive information follows pptpconfig 1.2 2004/06/19 08:57:15 # pppd --version pppd version 2.4.3 # uname -a Linux pojslinux 2.6.3-7mdk #1 Wed Mar 17 15:56:42 CET 2004 i686 unknown unknown GNU/Linux # grep mppe /proc/modules # modinfo ppp_mppe license: BSD without advertisement clause vermagic: 2.6.3-7mdk 586 depends: ppp_generic Array ( [name] => Wyless [server] => vpn.wyless.net [domain] => [username] => ostersund [password] => (hidden by pptpconfig) [pppd-options] => noauth require-mppe-128 [pptp-options] => [resolv] => [dns-options] => [routing] => routing_client_to_lan [usepeerdns] => 1 [require-mppe] => 1 [nomppe-40] => 1 [nomppe-128] => [refuse-eap] => 1 [mppe-stateful] => [autostart] => [iconify] => [persist] => [debug] => 1 [client-to-lan] => ) # route -n (before pppd) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.233.252.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.233.252.1 0.0.0.0 UG 0 0 0 eth0 pptpconfig: debug information dump ends, starting pppd pppd options in effect: debug # (from /etc/ppp/peers/Wyless) updetach # (from command line) logfd 1 # (from command line) linkname Wyless # (from /etc/ppp/peers/Wyless) dump # (from /etc/ppp/peers/Wyless) noauth # (from /etc/ppp/peers/Wyless) refuse-eap # (from /etc/ppp/peers/Wyless) name ostersund # (from /etc/ppp/peers/Wyless) remotename Wyless # (from /etc/ppp/peers/Wyless) # (from /etc/ppp/options.pptp) pty pptp vpn.wyless.net --nolaunchpppd # (from /etc/ppp/peers/Wyless) ipparam Wyless # (from /etc/ppp/peers/Wyless) usepeerdns # (from /etc/ppp/peers/Wyless) nobsdcomp # (from /etc/ppp/options.pptp) nodeflate # (from /etc/ppp/options.pptp) # (from /etc/ppp/peers/Wyless) # (from /etc/ppp/peers/Wyless) require-mppe-128 # (from /etc/ppp/peers/Wyless) using channel 1 Using interface ppp0pptpconfig: monitoring interface ppp0 Connect: ppp0 <--> /dev/pts/2 sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xad056e15> <pcomp> <accomp>] rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0xad056e15> <pcomp> <accomp>] rcvd [LCP ConfReq id=0x1 <mru 1400> <auth eap> <magic 0x6ced24b3> <pcomp> <accomp> <callback CBCP> <mrru 1614> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]> < 17 04 01 48>] sent [LCP ConfRej id=0x1 <callback CBCP> <mrru 1614> < 17 04 01 48>] rcvd [LCP ConfReq id=0x2 <mru 1400> <auth eap> <magic 0x6ced24b3> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] sent [LCP ConfNak id=0x2 <auth chap MD5>] rcvd [LCP ConfReq id=0x3 <mru 1400> <auth chap MD5> <magic 0x6ced24b3> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] sent [LCP ConfAck id=0x3 <mru 1400> <auth chap MD5> <magic 0x6ced24b3> <pcomp> <accomp> <endpoint [local:f2.95.e2.57.7d.1a.49.97.bd.8f.58.f3.97.c5.59.b2.00.00.00.00]>] rcvd [CHAP Challenge id=0x0 <a959ef841894fff169cd09a85a68c601>, name = "75394-PUB1"] sent [CHAP Response id=0x0 <cf82d5bf8ef37df8ba88a66b052dc1d0>, name = "ostersund"] rcvd [CHAP Success id=0x0 ""] CHAP authentication succeeded Couldn't set pass-filter in kernel: Invalid argument MPPE required, but MS-CHAP[v2] auth not performed. sent [LCP TermReq id=0x2 "MPPE required but not available"] rcvd [CCP ConfReq id=0x5 <mppe +H -M -S -L -D +C>] Discarded non-LCP packet when LCP not open rcvd [IPCP ConfReq id=0x6 <addr 169.254.216.194>] Discarded non-LCP packet when LCP not open rcvd [LCP TermAck id=0x2 "MPPE required but not available"] Connection terminated. Waiting for 1 child processes... script pptp vpn.wyless.net --nolaunchpppd , pid 2352 sending SIGTERM to process 2352 # route -n (after pppd exit) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.233.252.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.233.252.1 0.0.0.0 UG 0 0 0 eth0 pptpconfig: pppd process terminated by signal 10 (failed) pptpconfig: SIGUSR1 # route -n (after completion) Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 81.233.252.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 81.233.252.1 0.0.0.0 UG 0 0 0 eth0 System info; Operating system: Mandrake 10.0 Linux distribution Kernel version 2.6.3-7mdk module ppp_mppe Program pppd version 2.4.3 Program pptpconfig V 1.2 Thanks, Quote Link to comment Share on other sites More sharing options...
Jza Posted April 30, 2006 Report Share Posted April 30, 2006 Microsoft VPN is crippled, and non standard thats why it doesnt authenticate for real. Try getting Cygwin on the windows machine so you can emulate ipsec and true standard VPN technology. Probably a GUI port for windows might also solve it. Quote Link to comment Share on other sites More sharing options...
Guest Bernhard Eriksson Wermlandsdata Posted July 2, 2006 Report Share Posted July 2, 2006 Hi, I do know that you can log in to wyless VPN, even with Linux. But, I tend to loose my connection (even after setting pptpconfig to keep it open *and* using the VPN tunnel every five minutes). I was hoping that some of these would happen: 1. Someone else out there could help out. 2. I can help you getting connected at all (what are your settings in pptpconfig?) 3. If you have some other sollution, another program or so, that you could inform me. I think we both need help. I'll take this in swedish since I assume you are too. (For those who are wondering, the loginname for wyless is the name of a swedish city). Ring mig gärna på 070-6565792 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.