Проблема с PPTP

0

0

В общих чертах ситуация такова: сервак на Debian, был впн (клиент из пакета pptp-linux), после смены провайдера перенастроил только логин/пароль в chap-secrets, да адрес впн сервера в /etc/ppp/peers/vpn0.

Вывод pon vpn0 debug dump logfd 2 nodetach:

pppd options in effect: debug # (from command line) nodetach # (from command line) logfd 2 # (from command line) dump # (from command line) noauth # (from /etc/ppp/options.pptp) refuse-pap # (from /etc/ppp/options.pptp) refuse-chap # (from /etc/ppp/options.pptp) refuse-mschap # (from /etc/ppp/options.pptp) refuse-eap # (from /etc/ppp/options.pptp) name <my_login> # (from /etc/ppp/peers/vpn0) remotename PPTP # (from /etc/ppp/peers/vpn0) # (from /etc/ppp/options.pptp) pty pptp 172.18.48.69 --nolaunchpppd # (from /etc/ppp/peers/vpn0) crtscts # (from /etc/ppp/options) # (from /etc/ppp/options) asyncmap 0 # (from /etc/ppp/options) lcp-echo-failure 4 # (from /etc/ppp/options) lcp-echo-interval 30 # (from /etc/ppp/options) hide-password # (from /etc/ppp/options) ipparam vpn0 # (from /etc/ppp/peers/vpn0) proxyarp # (from /etc/ppp/options) noipx # (from /etc/ppp/options) using channel 12 Using interface ppp0 Connect: ppp0 <--> /dev/pts/1 sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x53e1340f> <pcomp> <accomp>] rcvd [LCP ConfReq id=0x1 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x1 <auth chap MD5>] rcvd [LCP ConfReq id=0x2 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x2 <auth chap MD5>] rcvd [LCP ConfReq id=0x3 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x3 <auth chap MD5>] rcvd [LCP ConfReq id=0x4 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x4 <auth chap MD5>] rcvd [LCP ConfReq id=0x5 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x5 <auth chap MD5>] rcvd [LCP ConfReq id=0x6 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x6 <auth chap MD5>] rcvd [LCP ConfReq id=0x7 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x7 <auth chap MD5>] rcvd [LCP ConfReq id=0x8 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x8 <auth chap MD5>] rcvd [LCP ConfReq id=0x9 <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0x9 <auth chap MD5>] rcvd [LCP ConfReq id=0xa <auth chap MD5> <magic 0x343d1492>] No auth is possible sent [LCP ConfRej id=0xa <auth chap MD5>] rcvd [LCP TermReq id=0xb] sent [LCP TermAck id=0xb] Script pptp 172.18.48.69 --nolaunchpppd finished (pid 4835), status = 0x0 Modem hangup Connection terminated.

Форумы почитал, пробовал менять сжатие/шифрование в options.pptp - безрезультатно. Буду невероятно благодарен за помощь

Ссылка

←	Не могу подключиться к CentOS VNC server из-под винды

[gentoo] Выбор одного из нескольких /etc/conf.d/net

→

Не могли бы вы перепостить лог, а то концы строк съе..лись.

ierton ★★
(15.10.09 00:28:48 MSD)

Ответ на: комментарий от ierton 15.10.09 00:28:48 MSD

pppd options in effect:
debug # (from command line)
nodetach # (from command line)
logfd 2 # (from command line)
dump # (from command line)
noauth # (from /etc/ppp/options.pptp)
refuse-pap # (from /etc/ppp/options.pptp)
refuse-chap # (from /etc/ppp/options.pptp)
refuse-mschap # (from /etc/ppp/options.pptp)
refuse-eap # (from /etc/ppp/options.pptp)
name <my_login> # (from /etc/ppp/peers/vpn0)
remotename PPTP # (from /etc/ppp/peers/vpn0)
# (from /etc/ppp/options.pptp)
pty pptp 172.18.48.69 --nolaunchpppd # (from /etc/ppp/peers/vpn0)
crtscts # (from /etc/ppp/options)
# (from /etc/ppp/options)
asyncmap 0 # (from /etc/ppp/options)
lcp-echo-failure 4 # (from /etc/ppp/options)
lcp-echo-interval 30 # (from /etc/ppp/options)
hide-password # (from /etc/ppp/options)
ipparam vpn0 # (from /etc/ppp/peers/vpn0)
proxyarp # (from /etc/ppp/options)
noipx # (from /etc/ppp/options)
using channel 12
Using interface ppp0
Connect: ppp0 <--> /dev/pts/1
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x53e1340f> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x1 <auth chap MD5>]
rcvd [LCP ConfReq id=0x2 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x2 <auth chap MD5>]
rcvd [LCP ConfReq id=0x3 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x3 <auth chap MD5>]
rcvd [LCP ConfReq id=0x4 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x4 <auth chap MD5>]
rcvd [LCP ConfReq id=0x5 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x5 <auth chap MD5>]
rcvd [LCP ConfReq id=0x6 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x6 <auth chap MD5>]
rcvd [LCP ConfReq id=0x7 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x7 <auth chap MD5>]
rcvd [LCP ConfReq id=0x8 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x8 <auth chap MD5>]
rcvd [LCP ConfReq id=0x9 <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0x9 <auth chap MD5>]
rcvd [LCP ConfReq id=0xa <auth chap MD5> <magic 0x343d1492>]
No auth is possible
sent [LCP ConfRej id=0xa <auth chap MD5>]
rcvd [LCP TermReq id=0xb]
sent [LCP TermAck id=0xb]
Script pptp 172.18.48.69 --nolaunchpppd finished (pid 4835), status = 0x0
Modem hangup
Connection terminated.

GroundRush
(15.10.09 00:41:14 MSD) автор топика

Ответ на: комментарий от GroundRush 15.10.09 00:41:14 MSD

> refuse-pap # (from /etc/ppp/options.pptp)
> refuse-chap # (from /etc/ppp/options.pptp)
> refuse-mschap # (from /etc/ppp/options.pptp)
> refuse-eap # (from /etc/ppp/options.pptp)

Возможно, новый провайдер использет один метод шифрования из этих, которые заблокированы? Попробуйте закомментить эти строчки.

ierton ★★
(15.10.09 00:46:56 MSD)

Ответ на: комментарий от ierton 15.10.09 00:46:56 MSD

Уже пробовал, не помогает

GroundRush
(15.10.09 00:47:37 MSD) автор топика

Ссылка

Ответ на: комментарий от GroundRush 15.10.09 00:41:14 MSD

Connect: ppp0 <--> /dev/pts/1
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x53e1340f> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <auth chap MD5> <magic 0x343d1492>]
No auth is possible

Собсно вотже - сервак хочет аутентификации по методу chap. А ваш pptp послыает его нафиг, так как у него стоит refuse-chap.

ierton ★★
(15.10.09 00:49:43 MSD)

Ответ на: комментарий от ierton 15.10.09 00:49:43 MSD

pon vpn0 debug dump logfd 2 nodetach
pppd options in effect:
debug		# (from command line)
nodetach		# (from command line)
logfd 2		# (from command line)
dump		# (from command line)
noauth		# (from /etc/ppp/options.pptp)
name 0892148516@internet.beeline.ru		# (from /etc/ppp/peers/vpn0)
remotename PPTP		# (from /etc/ppp/peers/vpn0)
		# (from /etc/ppp/options.pptp)
pty pptp 172.18.48.69 --nolaunchpppd mtu 1492		# (from /etc/ppp/peers/vpn0)
crtscts		# (from /etc/ppp/options)
		# (from /etc/ppp/options)
asyncmap 0		# (from /etc/ppp/options)
lcp-echo-failure 4		# (from /etc/ppp/options)
lcp-echo-interval 30		# (from /etc/ppp/options)
hide-password		# (from /etc/ppp/options)
ipparam vpn0		# (from /etc/ppp/peers/vpn0)
proxyarp		# (from /etc/ppp/options)
noipx		# (from /etc/ppp/options)
using channel 18
Using interface ppp0
Connect: ppp0 <--> /dev/pts/2
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xb9e2dfc3> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x1 <auth chap MD5>]
rcvd [LCP ConfReq id=0x2 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x2 <auth chap MD5>]
rcvd [LCP ConfReq id=0x3 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x3 <auth chap MD5>]
rcvd [LCP ConfReq id=0x4 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x4 <auth chap MD5>]
rcvd [LCP ConfReq id=0x5 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x5 <auth chap MD5>]
rcvd [LCP ConfReq id=0x6 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x6 <auth chap MD5>]
rcvd [LCP ConfReq id=0x7 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x7 <auth chap MD5>]
rcvd [LCP ConfReq id=0x8 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x8 <auth chap MD5>]
rcvd [LCP ConfReq id=0x9 <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0x9 <auth chap MD5>]
rcvd [LCP ConfReq id=0xa <auth chap MD5> <magic 0x34cf4882>]
No auth is possible
sent [LCP ConfRej id=0xa <auth chap MD5>]
rcvd [LCP TermReq id=0xb]
sent [LCP TermAck id=0xb]
Script pptp 172.18.48.69 --nolaunchpppd mtu 1492 finished (pid 5418), status = 0x0
Modem hangup
Connection terminated.

GroundRush
(15.10.09 00:57:05 MSD) автор топика

Ответ на: комментарий от GroundRush 15.10.09 00:57:05 MSD

Тогда незнаю :)

Могу посоветовать вооружиться http://www.cisco.com/en/US/tech/tk713/tk507/technologies_tech_note09186a00800... и wireshark'ом. Попробовать поглядеть CHAP-пакеты.

А может просто пароль неправильный?

ierton ★★
(15.10.09 01:10:43 MSD)