Discussion list for Poptop, an open source implementation of PPTP (Point to Point Tunnelling Protocol), used for setting up VPNs ()

Brian Lavender | 7 Oct 2010 23:37

what options for hping?

I have a user that is failing to connect. We have previously had
issues with GRE packets not going through.

How do you use hping to test the connection for GRE?
What options?

brian
--

-- 
Brian Lavender
http://www.brie.com/brian/

"Program testing can be used to show the presence of bugs, but never to
show their absence!"

Professor Edsger Dijkstra
1972 Turing award recipient

------------------------------------------------------------------------------
Beautiful is writing same markup. Internet Explorer 9 supports
standards for HTML5, CSS3, SVG 1.1,  ECMAScript5, and DOM L2 & L3.
Spend less time writing and  rewriting code and more time creating great
experiences on the web. Be a part of the beta today.
http://p.sf.net/sfu/beautyoftheweb

Clemente Aguiar | 19 Oct 2010 12:14

Picon

VPN no longer works after samba upgrade

Hello,

I have a VPN configured and working for some years now. I use Gentoo
linux, and recently Samba has been upgraded from version 3.0.37 to
3.4.9.

After the upgrade the VPN stopped working. The problem is that ver.
3.0.37 is no longer available, so I cannot downgrade.

Can anybody help me to get this working with Samba 3.4(.9)?

Here is a log of the problem:

Oct 16 17:39:02 polvo pptpd[6501]: CTRL: Client 213.8.247.192 control
connection started
Oct 16 17:39:02 polvo pptpd[6501]: CTRL: Starting call (launching pppd,
opening GRE)
Oct 16 17:39:02 polvo pppd[6502]: Plugin winbind.so loaded.
Oct 16 17:39:02 polvo pppd[6502]: WINBIND plugin initialized.
Oct 16 17:39:02 polvo pppd[6502]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so
loaded.
Oct 16 17:39:02 polvo pppd[6502]: pptpd-logwtmp: $Version$
Oct 16 17:39:02 polvo pppd[6502]: pppd 2.4.4 started by root, uid 0
Oct 16 17:39:02 polvo pppd[6502]: using channel 5
Oct 16 17:39:02 polvo pppd[6502]: Using interface ppp0
Oct 16 17:39:02 polvo pppd[6502]: Connect: ppp0 <--> /dev/pts/1
Oct 16 17:39:02 polvo pppd[6502]: sent [LCP ConfReq id=0x1 <asyncmap
0x0> <auth chap MS-v2> <magic 0xd29e844> <pcomp> <accomp>]
Oct 16 17:39:02 polvo pppd[6502]: rcvd [LCP ConfReq id=0x1 <asyncmap
0x0> <magic 0x638e8298> <pcomp> <accomp>]

(Continue reading)

Jorge Bastos | 19 Oct 2010 13:11

Picon

Re: VPN no longer works after samba upgrade

Howdy,

> After the upgrade the VPN stopped working. The problem is that ver.
> 3.0.37 is no longer available, so I cannot downgrade.
> 

It seems that the problem is on your side:

Oct 16 17:39:02 polvo pppd[6502]: rcvd [LCP TermReq id=0x2 "Failed to
authenticate ourselves to peer"] Oct 16 17:39:02 polvo pppd[6502]: LCP
terminated by peer (Failed to authenticate ourselves to peer) Oct 16
17:39:02 polvo pppd[6502]: sent [LCP TermAck id=0x2] Oct 16 17:39:02 polvo
pptpd[6501]: CTRL: EOF or bad error reading ctrl packet length.
Oct 16 17:39:02 polvo pptpd[6501]: CTRL: couldn't read packet header
(exit)

------------------------------------------------------------------------------
Download new Adobe(R) Flash(R) Builder(TM) 4
The new Adobe(R) Flex(R) 4 and Flash(R) Builder(TM) 4 (formerly 
Flex(R) Builder(TM)) enable the development of rich applications that run
across multiple browsers and platforms. Download your free trials today!
http://p.sf.net/sfu/adobe-dev2dev

Clemente Aguiar | 19 Oct 2010 13:28

Picon

Re: VPN no longer works after samba upgrade

Which side is that, they are both my sides: its my client and I manage
the server 

Please remember that the same client used to connect, and after I
upgraded Samba, it does not connect any more.

The client is a Mac, but I have tried with a Linux client and also the
same thing - used to work but not after the upgrade.

Clemente

----- Mensagem Original-----
De: Jorge Bastos <mysql.jorge <at> decimal.pt>
Para: 'Clemente Aguiar' <ca-lists <at> madeiratecnopolo.pt>,
poptop-server <at> lists.sourceforge.net
Assunto: RE: [Poptop-server] VPN no longer works after samba upgrade
Data: Tue, 19 Oct 2010 12:11:56 +0100

Howdy,

> After the upgrade the VPN stopped working. The problem is that ver.
> 3.0.37 is no longer available, so I cannot downgrade.
> 

It seems that the problem is on your side:

Oct 16 17:39:02 polvo pppd[6502]: rcvd [LCP TermReq id=0x2 "Failed to
authenticate ourselves to peer"] Oct 16 17:39:02 polvo pppd[6502]: LCP
terminated by peer (Failed to authenticate ourselves to peer) Oct 16
17:39:02 polvo pppd[6502]: sent [LCP TermAck id=0x2] Oct 16 17:39:02 polvo

(Continue reading)

Jorge Bastos | 19 Oct 2010 14:08

Picon

Re: VPN no longer works after samba upgrade

> Which side is that, they are both my sides: its my client and I manage
> the server 

- Kernel version?
- POPTOP version?
- PPP version?

------------------------------------------------------------------------------
Download new Adobe(R) Flash(R) Builder(TM) 4
The new Adobe(R) Flex(R) 4 and Flash(R) Builder(TM) 4 (formerly 
Flex(R) Builder(TM)) enable the development of rich applications that run
across multiple browsers and platforms. Download your free trials today!
http://p.sf.net/sfu/adobe-dev2dev

Clemente Aguiar | 19 Oct 2010 15:49

Picon

Re: VPN no longer works after samba upgrade

- Kernel version: 2.6.28 (Gentoo Linux 2.6.28-hardened-r9)
- POPTOP version: 1.3.4
- PPP version: 2.4.4 (r25)

In the meantime I found this thread on a Samba bug which could be
related to the problem I have:

http://samba.2283325.n4.nabble.com/winbind-and-pptpd-authentication-failure-td2532691.html

This thread referes to the following bug:

https://bugzilla.samba.org/show_bug.cgi?id=7568

I am at present installing Samba 3.5.6 which includes the referred fix.
I will let you know the results.

Clemente

----- Mensagem Original-----
De: Jorge Bastos <mysql.jorge <at> decimal.pt>
Para: 'Clemente Aguiar' <ca-lists <at> madeiratecnopolo.pt>,
poptop-server <at> lists.sourceforge.net
Assunto: RE: [Poptop-server] VPN no longer works after samba upgrade
Data: Tue, 19 Oct 2010 13:08:51 +0100

> Which side is that, they are both my sides: its my client and I manage
> the server 

- Kernel version?
- POPTOP version?

(Continue reading)

Jorge Bastos | 19 Oct 2010 16:07

Picon

Re: VPN no longer works after samba upgrade

> - Kernel version: 2.6.28 (Gentoo Linux 2.6.28-hardened-r9)
> - POPTOP version: 1.3.4
> - PPP version: 2.4.4 (r25)
> 
> In the meantime I found this thread on a Samba bug which could be
> related to the problem I have:
> 
> http://samba.2283325.n4.nabble.com/winbind-and-pptpd-authentication-
> failure-td2532691.html
> 
> This thread referes to the following bug:
> 
> https://bugzilla.samba.org/show_bug.cgi?id=7568
> 
> I am at present installing Samba 3.5.6 which includes the referred fix.
> I will let you know the results.

Ah,
You're using NTLM ?
Forgot to ask that part.

------------------------------------------------------------------------------
Download new Adobe(R) Flash(R) Builder(TM) 4
The new Adobe(R) Flex(R) 4 and Flash(R) Builder(TM) 4 (formerly 
Flex(R) Builder(TM)) enable the development of rich applications that run
across multiple browsers and platforms. Download your free trials today!
http://p.sf.net/sfu/adobe-dev2dev

Clemente Aguiar | 19 Oct 2010 17:20

Picon

Re: VPN no longer works after samba upgrade

Phil, to answer your question: I am using Samba (more precisely
winbindd) to authenticate against an AD. And with Samba 3.4.9,
authentication was not working (seems that there was a bug, see my
previous email).

Regarding the problem that I had, the good news is that with Samba 3.5.6
it works.

So my VPN is now working again.

Thanks,
Clemente

----- Mensagem Original-----
De: Phillip Davis <pdavis <at> daviszone.org>
Para: Jorge Bastos <mysql.jorge <at> decimal.pt>
Cc: Clemente Aguiar <ca-lists <at> madeiratecnopolo.pt>,
<poptop-server <at> lists.sourceforge.net>
<poptop-server <at> lists.sourceforge.net>
Assunto: Re: [Poptop-server] VPN no longer works after samba upgrade
Data: Tue, 19 Oct 2010 09:02:06 -0600

I guess what confuses me is how Samba has anything to do whatsoever with pptp or ppp. They should be totally
unrelated no?  Pptp/ppp are a communication link and samba is a file sharing protocol.   Pptp can be
established and samba never used. The errors seem to be all about establishing a pptp connection and
nothing to do with samba sharing. Unless pptp is sharing samba's auto mechanism?

~Phil

On Oct 19, 2010, at 8:07 AM, "Jorge Bastos" <mysql.jorge <at> decimal.pt> wrote:

(Continue reading)

Phillip Davis | 19 Oct 2010 17:02

Re: VPN no longer works after samba upgrade

I guess what confuses me is how Samba has anything to do whatsoever with pptp or ppp. They should be totally
unrelated no?  Pptp/ppp are a communication link and samba is a file sharing protocol.   Pptp can be
established and samba never used. The errors seem to be all about establishing a pptp connection and
nothing to do with samba sharing. Unless pptp is sharing samba's auto mechanism?

~Phil

On Oct 19, 2010, at 8:07 AM, "Jorge Bastos" <mysql.jorge <at> decimal.pt> wrote:

>> - Kernel version: 2.6.28 (Gentoo Linux 2.6.28-hardened-r9)
>> - POPTOP version: 1.3.4
>> - PPP version: 2.4.4 (r25)
>> 
>> In the meantime I found this thread on a Samba bug which could be
>> related to the problem I have:
>> 
>> http://samba.2283325.n4.nabble.com/winbind-and-pptpd-authentication-
>> failure-td2532691.html
>> 
>> This thread referes to the following bug:
>> 
>> https://bugzilla.samba.org/show_bug.cgi?id=7568
>> 
>> I am at present installing Samba 3.5.6 which includes the referred fix.
>> I will let you know the results.
> 
> Ah,
> You're using NTLM ?
> Forgot to ask that part.
>

(Continue reading)

Charlie Brady | 19 Oct 2010 17:38

Re: VPN no longer works after samba upgrade


On Tue, 19 Oct 2010, Phillip Davis wrote:

> I guess what confuses me is how Samba has anything to do whatsoever with
> pptp or ppp. They should be totally unrelated no?  Pptp/ppp are a
> communication link and samba is a file sharing protocol.  Pptp can be
> established and samba never used. The errors seem to be all about
> establishing a pptp connection and nothing to do with samba sharing.
> Unless pptp is sharing samba's auto mechanism?

I think you mean "auth mechanism". And the answer is yes. PPTP encryption
(MPPE) depends on MS-CHAPv2, which depends on server having passwords
hashed in NT format. Samba does this.

http://www.schneier.com/paper-pptpv2.html
http://tools.ietf.org/html/draft-ietf-pppext-mschapv2-keys

> 
> ~Phil
> 
> On Oct 19, 2010, at 8:07 AM, "Jorge Bastos" <mysql.jorge <at> decimal.pt> wrote:
> 
> >> - Kernel version: 2.6.28 (Gentoo Linux 2.6.28-hardened-r9)
> >> - POPTOP version: 1.3.4
> >> - PPP version: 2.4.4 (r25)
> >> 
> >> In the meantime I found this thread on a Samba bug which could be
> >> related to the problem I have:
> >> 
> >> http://samba.2283325.n4.nabble.com/winbind-and-pptpd-authentication-

(Continue reading)

Group

gmane.network.poptop.

Project Web Page

Discussion list for Poptop, an open source implementation of PPTP (Point to Point Tunnelling Protocol), used for setting up VPNs ()

Search Archive

Page

1 | 2

Articles in period: 19

October 2010

Language

Change language

Options

Current view: Threads only / Showing only 20 lines / Not hiding cited text.
Change to All messages, whole messages, or hide cited text.

Post a message
NNTP Newsgroup
Classic Gmane web interface
XML

XML

RSS Feed
List Information

About Gmane

Recent entries

Access local IP's when connected to PPTP in windows? (18 May 2013)
updates resolv.conf (7 May 2013)
NAT/IPTables question with pptpd (25 Apr 2013)
Help with troubleshooting performance issue (2 Apr 2013)
git now in use (18 Feb 2013)
[PATCH] Use pppd.h provided by ppp-dev (7 Feb 2013)
[PATCH] Fix "Binary trash when launching ppp" (7 Feb 2013)
[PATCH] Fix PPTP connections drop (7 Feb 2013)
[PATCH] "remotenumber" support (7 Feb 2013)
[PATCH] Catch missing EOL at EOF (7 Feb 2013)
[PATCH]Add manpage for bcrelay (7 Feb 2013)
[PATCH] Fix segfault upon invalid IP range (7 Feb 2013)
pptpd in Debian (7 Feb 2013)
pptp security (8 Jan 2013)
problem getting client to connect via pptpd (6 Jan 2013)
Internet browsing (26 Nov 2012)
about "GRE: xmit failed from decaps_hdlc: No buffer space available" (24 Nov 2012)
pptpd started by other user (17 Nov 2012)
This list is my Obi Wan - please help if you can PPTP VPN Client in Ub (14 Oct 2012)
PPTPD on Fedora 17 (3 Sep 2012)
[Patch] logtmp plugin ppp compatibility fix (31 Aug 2012)

Archives

4	May 2013
15	April 2013
18	February 2013
37	January 2013
5	November 2012
5	October 2012
2	September 2012
27	August 2012
24	July 2012
3	June 2012
10	May 2012
29	April 2012
1	March 2012
4	February 2012
4	January 2012
7	November 2011
6	October 2011
12	September 2011
4	August 2011
2	July 2011
4	June 2011
3	May 2011
29	April 2011
14	March 2011
6	February 2011
5	January 2011
2	December 2010
5	November 2010
19	October 2010
9	September 2010
3	August 2010
4	July 2010
24	June 2010
3	May 2010
10	April 2010
64	March 2010
17	February 2010
24	January 2010
18	December 2009
44	November 2009
8	September 2009
9	August 2009
14	July 2009
24	June 2009
24	May 2009
27	April 2009
23	March 2009
31	February 2009
25	January 2009
38	December 2008
25	November 2008
17	October 2008
35	September 2008
27	August 2008
31	July 2008
58	June 2008
31	May 2008
21	April 2008
21	March 2008
31	February 2008
28	January 2008
28	December 2007
44	November 2007
53	October 2007
24	September 2007
18	August 2007
9	July 2007
35	June 2007
85	May 2007
56	April 2007
5	March 2007
47	February 2007
50	January 2007
10	December 2006
50	November 2006
47	October 2006
51	September 2006
52	August 2006
62	July 2006
130	June 2006
48	May 2006
68	April 2006
93	March 2006
73	February 2006
63	January 2006
54	December 2005
52	November 2005
57	October 2005
68	September 2005
123	August 2005
103	July 2005
154	June 2005
66	May 2005
150	April 2005
177	March 2005
182	February 2005
168	January 2005
144	December 2004
66	November 2004
162	October 2004
169	September 2004
90	August 2004
134	July 2004
156	June 2004
111	May 2004
149	April 2004
222	March 2004
280	February 2004
101	January 2004

Design

Zawodny | Right Menu | Left Menu

Your Own Design

Paste the URL of your CSS below. Download CSS template