Seferovic Edvin | 1 Mar 13:35 2005
Picon

RE: error in logs

Hi again !

Here is my options.pptp file :

schueler:~ # cat /etc/ppp/options.pptp 
#
# Lock the port
#
lock
debug
name pptpd
proxyarp
asyncmap 0
refuse-chap
refuse-mschap
require-mschap-v2
#
# We want MPPE
#
require-mppe
# Time this thing out of it goes poof
#
lcp-echo-failure 30
lcp-echo-interval 5
ipcp-accept-local
ipcp-accept-remote
ms-dns 81.189.101.10
plugin radius.so
radius-servers 81.189.101.10:1812/1813
radius-retries 5
(Continue reading)

Seferovic Edvin | 1 Mar 23:36 2005
Picon

RE: Re: error in logs

Hi,

thanks for your help, but now I am stuck again, and I cant find any
solution. When I included the dictionary.microsoft my poptop says :

schueler pppd[13826]: rc_read_dictionary: invalid type on line 10 of
dictionary /etc/radiusclient/dictionary.microsoft

schueler pppd[13826]: RADIUS: Can't read dictionary file
/etc/radiusclient/dictionary

on the line 10 there is the first attribute called MS-CHAP-Response. Why
does he use chap instead of chap-v2?

Thank you for your help.

Regards,

Edvin Seferovic

-----Original Message-----
From: poptop-server-admin <at> lists.sourceforge.net
[mailto:poptop-server-admin <at> lists.sourceforge.net] On Behalf Of Peter
Mueller
Sent: Dienstag, 01. März 2005 18:57
To: darko; poptop-server <at> lists.sourceforge.net
Subject: RE: [Poptop-server] Re: error in logs

> It-s same problem I answered. Look at 
> http://sourceforge.net/mailarchive/message.php?msg_id=10511419
(Continue reading)

James Cameron | 2 Mar 00:42 2005
Picon

Re: Re: pptpd-1.2.3-1 RPM repackaged

On Fri, Feb 25, 2005 at 03:01:21PM -0800, Peter Mueller wrote:
> I am testing out ppp-2.4.3 finally.  An upgrade broke on
> pptpd-logwtmp.so for me.  I then pulled the latest poptop (was running
> 1.2.2), 1.2.3.tar.gz.  But this version required ppp-2.4.2 not
> ppp-2.4.3.  I think this a new version of pptpd should be released
> requiring ppp-2.4.3 instead of ppp-2.4.2?

Yes, that was a package release mistake by me.  The configuration
scripts should really provide an option or detection of preferred PPP
version.  I'll take a patch to that effect; TODO item 20040623-0.

> In the interim, if anyone is stuck on this bug you can download the
> source and modify it.  Change pptpd-1.2.3/plugins/patchlevel.h from
> 2.4.2 to 2.4.3.  Then cd ..; make clean && ./configure
> --youroptionshere && make && make install.

Agreed, that's the workaround.

--

-- 
James Cameron                         http://quozl.netrek.org/
HP Open Source, Volunteer             http://opensource.hp.com/
PPTP Client Project, Release Engineer http://pptpclient.sourceforge.net/

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
darko | 1 Mar 18:50 2005
Picon

Re: error in logs

It-s same problem I answered. Look at
http://sourceforge.net/mailarchive/message.php?msg_id=10511419

Darko

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
Peter Mueller | 1 Mar 18:56 2005

RE: Re: error in logs

> It-s same problem I answered. Look at 
> http://sourceforge.net/mailarchive/message.php?msg_id=10511419

This should probably be included in the FAQ.  Feel like making a small
documentation patch? :)

Regards,

P

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
darko | 2 Mar 20:02 2005
Picon

RE: Performance

Hi,

I need help with one of my vpn servers. It is Athlon 2200 with 512 MB
and two 3Com 3c590 NIC. Servers are ppp-2.4.2 and pptpd-1.2.1. Kernel is
2.4.22 with kernelmod-0.8.2 mppe patch. TDB and MULTILINK are commented.
conf.pptpd:

option /etc/ppp/options.pptpd
localip 192.168.20.2
remoteip 192.168.20.200-254

options.pptpd:

192.168.30.2:
auth
lock
name darko
bsdcomp 0
equire-mschap-v2
idle 900
proxyarp
require-mppe-128
mppe-stateful
ms-dns xxxxxxxxx
plugin /usr/local/lib/radius.so
radius-config-file /usr/local/etc/radiusclient/radiusclient.conf

Most of peak time it is:

top - 18:29:07 up 9 days,  5:59,  1 user,  load average: 7.80, 6.13,
(Continue reading)

Marco Minato FuerTux | 3 Mar 00:17 2005

ppp to pptp

hello to everyone. 

I've a question about pptp and inet connections. 

I'm trying to secure my network with vpn solutions.
I have some users connected through a wireless area and I've implemented ppp 
solutions to give inet access to the clients.. to improve security I was 
trying to use pptp instead of ppp to crypt the connection traffic but 
doesn't work.
Is it possible using pptp to connect clients (linux/windows) to inet how the 
picture down there shows?? 

           vpn
   cliens ------> pptp firewall ----> inet 

It was very curious see how ping end name resolutions works and tcp 
coonections don't... 

Thanks !!!

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
Steven Evans | 3 Mar 01:22 2005
Picon

PPTP and PPTPD crashing boxes

Hey guys,

 

I’m having some unusual problems with some boxes I’ve got out in the field running pptp and pptpd.  Both the server computer and the client computer will both die with kernel crashes.  The server side kernel crash screen error code says that the problem was from the PPTPCTRL process, and on the client side it says the problem is to do with the PPTP client program. 

 

What worries me is that this problem affects both the server side and the client side.  This problem happens randomly – the same firewall could crash a couple of times in a day to having no problems for months.  

 

I’m running:

- Kernels from 2.4.19 to 2.4.27 and a 2.6.10 kernel

- PPTPD from v1.1.3 to v1.2.1 on the server side with the standard compile options

- On the client side I am running PPTP v1.2 up to v1.5. 

- Both sides are running PPPD v2.4.1-mppe

- Running the original MPPE encryption patches

 

What I would like to know is has anyone else had these similar problems?  Is there a way to make the PPTP processes not crash the system and just crash itself?

 

What can I do to the PPTPD server side to generate a crash dump or get more information out of the crash vs what is displayed on the kernel crash screen?

 

Cheers,

Steve

Ray Van Dolson | 3 Mar 01:33 2005
Picon

Re: PPTP and PPTPD crashing boxes

Steve, what messages are you getting exactly?  Kernel panics?  If so, can you
capture them and share them?

You can run your boxen with sysrq enabled... 

# sysctl -w kernel.sysrq = 1

Then you can either use a serial console or something like netconsole to echo
the kernel panic messages somewhere else.  Plenty of HOWTO's on setting this
up.

I *used* to get these;  Similar to yours: ?

Unable to handle kernel NULL pointer dereference at virtual address 00000000
 printing eip:
 00000000
<... skip ...>
Process pptpctrl (pid: 16158, threadinfo=ec14e000 task=e6802810)
<... skip ...>
Code:  Bad EIP value.
 <7>divert: no divert_blk to free, ppp253 not ethernet
 Unable to handle kernel paging request at virtual address 7708302c

These problems magically went away when I disabled SMP on my servers.  The
theory was that there was some sort of problem either with the MPPE module or
the underlying CryptoAPI stuff that only showed up when in SMP mode.

More details on your setup?

Ray

On Thu, Mar 03, 2005 at 11:22:10AM +1100, Steven Evans wrote:
>    What can I do to the PPTPD server side to generate a crash dump or get more
>    information  out of the crash vs what is displayed on the kernel crash
>    screen?
> 
> 
>    Cheers,
> 
>    Steve

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
Steven Evans | 3 Mar 01:56 2005
Picon

RE: PPTP and PPTPD crashing boxes

Hi Ray,

Thanks for the tips.  You are correct with your assertion that the
kernels are configured with SMP.  I had configured them with SMP in
order to take advantage of hyper threading and the dual-core war that is
about to take place in the processor market.  Is the SMP code that
poorly tested?

These 3 lines from your email are, from memory, also present on the
crashed boxes:
Unable to handle kernel NULL pointer dereference at virtual address ..
Process pptpctrl (pid: xx, threadinfo=xx task=xx)
Unable to handle kernel paging request at virtual address xx

I don't remember the EIP or divert_blk error lines.  But I'll configure
a serial console with the main boxen that crashes and will try to get a
better capture of the errors.  

What is the divert_blk error btw, I see it a lot in the syslog syslog
yet I cant find a clear explanation of what it actually means.

What other information would you like?

Cheers,
Steve

-----Original Message-----
From: Ray Van Dolson [mailto:rayvd <at> digitalpath.net] 
Sent: Thursday, 3 March 2005 11:33 AM
To: Steven Evans
Cc: poptop-server <at> lists.sourceforge.net
Subject: Re: [Poptop-server] PPTP and PPTPD crashing boxes

Steve, what messages are you getting exactly?  Kernel panics?  If so,
can you
capture them and share them?

You can run your boxen with sysrq enabled... 

# sysctl -w kernel.sysrq = 1

Then you can either use a serial console or something like netconsole to
echo
the kernel panic messages somewhere else.  Plenty of HOWTO's on setting
this
up.

I *used* to get these;  Similar to yours: ?

Unable to handle kernel NULL pointer dereference at virtual address
00000000
 printing eip:
 00000000
<... skip ...>
Process pptpctrl (pid: 16158, threadinfo=ec14e000 task=e6802810)
<... skip ...>
Code:  Bad EIP value.
 <7>divert: no divert_blk to free, ppp253 not ethernet
 Unable to handle kernel paging request at virtual address 7708302c

These problems magically went away when I disabled SMP on my servers.
The
theory was that there was some sort of problem either with the MPPE
module or
the underlying CryptoAPI stuff that only showed up when in SMP mode.

More details on your setup?

Ray

On Thu, Mar 03, 2005 at 11:22:10AM +1100, Steven Evans wrote:
>    What can I do to the PPTPD server side to generate a crash dump or
get more
>    information  out of the crash vs what is displayed on the kernel
crash
>    screen?
> 
> 
>    Cheers,
> 
>    Steve

-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click

Gmane