headers
James Cameron | 1 Sep 2005 02:27
Picon
Favicon

Re: From Ubuntu to XP via WatchGuard Firebox 1000

Wrong mailing list.  poptop-server is for people running a VPN server.

Search on the client mailing list archives, the client problem solving
FAQ, and ask on the client mailing list.

http://pptpclient.sourceforge.net/

According to the FAQ, the next idea is to find out what is happening.

--

-- 
James Cameron                         http://quozl.netrek.org/
HP Open Source, Volunteer             http://opensource.hp.com/
PPTP Client Project, Release Engineer http://pptpclient.sourceforge.net/

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Permalink | Reply | 0 comments |
headers
Martin Schweizer | 1 Sep 2005 23:26
Picon
Favicon

PopTop doesn't work under FreeBSD 4.11

Hello

I use FreeBSD and PopTop in the past years without problems. Now I did an 
update from FreeBSD 4.10 to 4.11. Afterwoods I can't no longer vpn to the 
lan. After downgrading all works perfect again. Which log and config do you 
need for inspection?

--

-- 

Regards

Martin Schweizer
<info <at> pc-service.ch>

PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon
Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch;
public key : http://www.pc-service.ch/pgp/public_key.asc; 
fingerprint: EC21 CA4D 5C78 BC2D 73B7  10F9 C1AE 1691 D30F D239;
Permalink | Reply | 0 comments |
headers
Mircea Popescu | 2 Sep 2005 14:57
Picon

poptop server ...

Hi!
 
I followed the instructions listed at http://linux-bsd-central.com/index.php/content/view/8/  and I've adapted the configuration files to my situation. Also, the firewall is totally down, every port is accessible (this is verified).
 
I get the following error message in /var/log/messages:
 
GRE: read(fd=8,buffer=804d520,len=8196) from PTY failed: status = 0 error = No error
CTRL: PTY read or GRE write failed (pty,gre)=(8,6)
 
On the windows side, when I try to establish a connection I get "Verifying name and password ..." after which the following error message is displayed:
 
"ERROR 619: a connection to the remote computer cannot be established, so the port used for connection was closed."
 
Can anyone help?
 
thx
Permalink | Reply | 0 comments |
headers
Ron Gardner | 3 Sep 2005 02:15

Routing Issues (Split tunneling)

Hi all,
 
Hoping for some help.
 
I have Fedora linux box running  poptop/pptpd as a server for a VPN..  I'm using a WinXP client machine to connect over a firewall to this pptpd server..   All is well with the connection and routing if I have "use default gateway" checked on the Windows XP box for the VPN connection..    All my traffic is routed over the VPN..   which is the way it should function.
 
However, my goal here is to use the VPN to allow remote access to my Windows XP machine through this VPN connection while still keeping the normal default gateway intact..   I'm told this is called Split Tunneling so I can access both my Intranet and the Internet at the same time..
 
Here are the specifics:
 
 
(linux server)            -    216.53.188.249-254       I'm using 216.53.188.250 as the PPTPD bound IP (server side of the VPN)
 
 
(WindowsXP client)  -    216.53.188.251     is the IP given to a client when it connects..
 
Since I have the "use default gateway on remote network" NOT checked..    Windows sets up a route of:
 
216.53.188.0  255.255.255.0    Gateway of  216.53.188.251
 
and I am able to PING the .250 address on the remote side as well as the other hosts on that network..
However I can not reach the VPN's client from the Internet when going through the server.    my trace stops at   216.53.188.249
 
This will however work fine if default gateway is checked when the client connects to the VPN server.  So this tells me the server is setup correctly and routing works fine..     only when I turn off the default gateway on the client does this routing problem come up.
 
Does anyone know what routes I'd need to manual add to get this to work?  I'm told I'd need to add the routes on the client side..  but when I try, windows complains that the gateway doesnt' match the network and mask I'm trying to use..  Here is the route tables for both the server and the windows client after a VPN connection is made:
 
LINUX SERVER
 
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
vpn1.stopspammi *               255.255.255.255 UH    0      0        0 ppp0
216.53.188.0    *               255.255.255.0   U     0      0        0 eth0
169.254.0.0     *               255.255.0.0     U     0      0        0 eth0
default         216.53.188.1    0.0.0.0         UG    0      0        0 eth0
 
(keep in mind that hostname  vpn1.stopspammi   is just a hostname that would be resolved as  216.53.188.251)
 
 
Windows CLIENT
 
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     172.25.167.1  172.25.167.121       20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
     172.25.167.0    255.255.255.0   172.25.167.121  172.25.167.121       20
   172.25.167.121  255.255.255.255        127.0.0.1       127.0.0.1       20
   172.25.255.255  255.255.255.255   172.25.167.121  172.25.167.121       20
     216.53.188.0    255.255.255.0   216.53.188.251  216.53.188.251       1
   216.53.188.250  255.255.255.255     172.25.167.1  172.25.167.121       20
   216.53.188.251  255.255.255.255        127.0.0.1       127.0.0.1       50
   216.53.188.255  255.255.255.255   216.53.188.251  216.53.188.251       50
        224.0.0.0        240.0.0.0   172.25.167.121  172.25.167.121       20
        224.0.0.0        240.0.0.0   216.53.188.251  216.53.188.251       50
  255.255.255.255  255.255.255.255   172.25.167.121  172.25.167.121       1
  255.255.255.255  255.255.255.255   216.53.188.251  216.53.188.251       1
Default Gateway:      172.25.167.1
===========================================================================
 
I just can't make sense of all this..
 
My question is..  When the VPN is connected I can ping between the 2 inferfaces  (the vpn server side and the client side)..   and I can access IPs on the servers lan from the client..       but no one from outside on the Internet can route through the internet to the vpn server,.... OVER the VPN to the client.. 
 
Do you know if this would be a route needed to be added to the client, server, both or is something else the cause?
 
Thanks for looking,
 
Ron
 
Permalink | Reply | 0 comments |
headers
Derek Gordon | 3 Sep 2005 07:48

ip assigning;routing

Ok, is there a way I can disable poptop from administering IPs?  I use this machine also as a router and it has DHCP running doing the routing...I still cannot get either the server or the client to ping one another although the VPN connects and stays connected (and it's using default route as VPN). 
Permalink | Reply | 0 comments |
headers
Seferovic Edvin | 4 Sep 2005 12:34
Picon

MPPE/MPPC patches

Hi,

 

can anyone tell me ( or maybe send me ) where I can find the latest patches from Jan Dubiec ( mppe/mppc patch for kernel and pppd ). I have been working with them on my test machine until my deskstar became deathstar.. so I’ve lost them and Jan’s page seems to be offline. I would really appreciate your help !

 

Thank you in advance !

 

Regards,

 

Edvin Seferovic

 

 

Permalink | Reply | 0 comments |
headers
Stefan Kuhne | 4 Sep 2005 14:00
Picon

Re: MPPE/MPPC patches

Seferovic Edvin schrieb:
> 
> can anyone tell me ( or maybe send me ) where I can find the latest 
> patches from Jan Dubiec ( mppe/mppc patch for kernel and pppd ). I have 
> been working with them on my test machine until my deskstar became 
> deathstar.. so I’ve lost them and Jan’s page seems to be offline. I 
> would really appreciate your help !
> 
http://www.polbox.com/h/hs001/

Stefan Kuhne

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Permalink | Reply | 0 comments |
headers
Seferovic Edvin | 4 Sep 2005 14:11
Picon

RE: MPPE/MPPC patches

Hi,

unfortunately I am not able to open that website :( Timeout every time I
try.

But now I have found a solution ( maybe ). If I use the latest kernel with
mm patch and the latest pppd I do NOT need Dubiecs patches anymore, right?
Can anyone confirm this please?

Thank you in advance !

Regards,

Edvin Seferovic

-----Original Message-----
From: Stefan Kuhne [mailto:stefan.kuhne <at> gmx.net] 
Sent: Sonntag, 04. September 2005 14:01
To: edvin.seferovic <at> kolp.at; poptop-server <at> lists.sourceforge.net
Subject: Re: [Poptop-server] MPPE/MPPC patches

Seferovic Edvin schrieb:
> 
> can anyone tell me ( or maybe send me ) where I can find the latest 
> patches from Jan Dubiec ( mppe/mppc patch for kernel and pppd ). I have 
> been working with them on my test machine until my deskstar became 
> deathstar.. so I've lost them and Jan's page seems to be offline. I 
> would really appreciate your help !
> 
http://www.polbox.com/h/hs001/

Stefan Kuhne

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Permalink | Reply | 501 comments |
headers
James Cameron | 4 Sep 2005 14:46
Picon
Favicon

Re: MPPE/MPPC patches

On Sun, Sep 04, 2005 at 02:11:04PM +0200, Seferovic Edvin wrote:
> unfortunately I am not able to open that website :( Timeout every time I
> try.

I get connection reset by peer, not a timeout.

> But now I have found a solution ( maybe ). If I use the latest kernel
> with mm patch and the latest pppd I do NOT need Dubiecs patches
> anymore, right? Can anyone confirm this please?

It depended on why you needed the patches.  If you want MPPE, then the
latest mm patch has it.  If you want MPPC, you won't find it at
kernel.org until a patent expires.

--

-- 
James Cameron                         http://quozl.netrek.org/
HP Open Source, Volunteer             http://opensource.hp.com/
PPTP Client Project, Release Engineer http://pptpclient.sourceforge.net/

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Permalink | Reply | 501 comments |
headers
Seferovic Edvin | 4 Sep 2005 14:56
Picon

RE: MPPE/MPPC patches

Heh.. firefox just knows that one about time ;)

Im running a poptop gateway on my LAN, so MPPC would not be bad at all, but
I can live without it. Too bad I didn't save those patches elsewhere..
shees.

I am compiling the new kernel with MPPE support in it, Ill let you know it
everything went okay only with ppp_mppe ( instead of ppp_mppe_mppc ).

Regards,

Edvin Seferovic

-----Original Message-----
From: poptop-server-admin <at> lists.sourceforge.net
[mailto:poptop-server-admin <at> lists.sourceforge.net] On Behalf Of James
Cameron
Sent: Sonntag, 04. September 2005 14:46
To: poptop-server <at> lists.sourceforge.net
Subject: Re: [Poptop-server] MPPE/MPPC patches

On Sun, Sep 04, 2005 at 02:11:04PM +0200, Seferovic Edvin wrote:
> unfortunately I am not able to open that website :( Timeout every time I
> try.

I get connection reset by peer, not a timeout.

> But now I have found a solution ( maybe ). If I use the latest kernel
> with mm patch and the latest pppd I do NOT need Dubiecs patches
> anymore, right? Can anyone confirm this please?

It depended on why you needed the patches.  If you want MPPE, then the
latest mm patch has it.  If you want MPPC, you won't find it at
kernel.org until a patent expires.

-- 
James Cameron                         http://quozl.netrek.org/
HP Open Source, Volunteer             http://opensource.hp.com/
PPTP Client Project, Release Engineer http://pptpclient.sourceforge.net/

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Poptop-server mailing list
Poptop-server <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/poptop-server

-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
Permalink | Reply | 0 comments |

Gmane