[Fedora-users-br] PPTP VPN
Sérgio Cioban Filho - TECJUMP
sergio em tecjump.com.br
Qui Ago 24 11:45:37 UTC 2006
Marcos,
O servidor recebe conexões por esta porta, tente rodar o tcpdump para
saber se o server pelo menos está recebendo conexões, outra coisa,
levante o pptpd em modo debug e de uma olhada nos logs.
Att,
Sérgio Cioban Filho
Em Qua, 2006-08-23 às 21:51 -0300, MARCOS AURELIO VARGAS escreveu:
> Não estou conseguindo conectar ao meu servidor VPN, testei na rede
> interna e funcionou certinho, mas não consigo acessar pela internet,
> fiz os redirecionamentos da porta 1723 e aparece o seguinte erro...
>
> "erro 800: não é possivel estabelecer uma conexão VPN. O servidor VPN
> pode estar inalcançável..."
>
> pode me ajudar?
>
> --------------------------------------------------------------------------------------------------------------------
>
> Sérgio Cioban Filho - TECJUMP <sergio em tecjump.com.br> escreveu:
>
> Olá galera,
>
> Estou com um problema, tenho um servidor com FC4 e instalei o
> PPTP para VPN, até ai tudo bem,
> eu conecto com clientes Rwindows e eles ficam no ar, mas
> quando conecto com um cliente linux, a conexão fica caindo a
> cada 2 mimnutos.
> OBS.: Para me conectar no rwindows eu tenho que desmarcar a
> opção "Exigir criptografia de dados" .
>
> Tem algo de errado??
> Alguem pode me dar um ajuda??
>
>
>
>
>
> Segue os confs e LOGs:
>
> Server:
> /etc/pptpd.conf :
>
> option /etc/ppp/options.pptpd
> logwtmp
>
>
>
>
>
> /etc/ppp/options.pptpd :
>
> lock
> mtu 1490
> mru 1490
> proxyarp
> noauth
> +chap
> ms-dns 10.1.1.10
> nodeflate
> #nodefaultroute
> #noipdefault
> ipcp-accept-local
> ipcp-accept-remote
> lcp-echo-failure 60
> lcp-echo-interval 120
> require-chap
> debug
> name *
> idle 0
> persist
>
>
>
>
>
> Cliente:
> /etc/ppp/options.pptpd :
>
> lock
> noauth
> debug
> idle 0
> persist
>
>
>
> /etc/ppp/peers/TECJUMP
>
> remotename TECJUMP
> # name of tunnel, used to name /var/run pid file
> linkname TECJUMP
> # name of tunnel, passed to ip-up scripts
> ipparam TECJUMP
> # data stream for pppd to use
> pty "pptp 10.1.1.10 --nolaunchpppd "
> # domain and username, used to select lines in secrets files
> name teste
> # do not require the server to authenticate to our client
> noauth
> nodeflate
> # adopt defaults from the pptp-linux package
> file /etc/ppp/options.pptp
> 10.1.1.15:10.1.1.10
>
>
> Comando para iniciar no cliente:
> pppd call TECJUMP logfd 2 nodetach debug dump
>
>
>
> Log no Cliente:
> pppd options in effect:
> debug debug # (from command line)
> nodetach # (from command line)
> idle 0 # (from /etc/ppp/options.pptp)
> persist # (from /etc/ppp/options.pptp)
> logfd 2 # (from command line)
> linkname TECJUMP #
> (from /etc/ppp/peers/TECJUMP)
> dump # (from command line)
> noauth # (from /etc/ppp/options.pptp)
> name gosc # (from /etc/ppp/peers/TECJUMP)
> remotename TECJUMP #
> (from /etc/ppp/peers/TECJUMP)
> # (from /etc/ppp/options.pptp)
> pty pptp 10.1.1.10 --nolaunchpppd #
> (from /etc/ppp/peers/TECJUMP)
> ipparam TECJUMP # (from /etc/ppp/peers/TECJUMP)
> usepeerdns # (from /etc/ppp/options)
> 201.11.73.118:10.1.1.10 #
> (from /etc/ppp/peers/TECJUMP)
> nodeflate # (from /etc/ppp/peers/TECJUMP)
> using channel 42
> Using interface ppp0
> Connect: ppp0 <--> /dev/pts/1
> sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xec36b79a>
> <pcomp> <accomp>]
> rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xec36b79a>
> <pcomp> <accomp>]
> sent [LCP ConfNak id=0x1 <magic 0xd22ea4ba>]
> rcvd [LCP ConfReq id=0x1 <mru 1490> <asyncmap 0x0> <auth chap
> MD5> <magic 0x10488e1d> <pcomp> <accomp>]
> sent [LCP ConfAck id=0x1 <mru 1490> <asyncmap 0x0> <auth chap
> MD5> <magic 0x10488e1d> <pcomp> <accomp>]
> rcvd [LCP ConfReq id=0x2 <mru 1490> <asyncmap 0x0> <auth chap
> MD5> <magic 0x8f44ac81> <pcomp> <accomp>]
> sent [LCP ConfAck id=0x2 <mru 1490> <asyncmap 0x0> <auth chap
> MD5> <magic 0x8f44ac81> <pcomp> <accomp>]
> sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xec36b79a>
> <pcomp> <accomp>]
> rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0xec36b79a>
> <pcomp> <accomp>]
> rcvd [LCP EchoReq id=0x0 magic=0x8f44ac81]
> sent [LCP EchoRep id=0x0 magic=0xec36b79a]
> rcvd [CHAP Challenge id=0x90
> <0461fb00439cec5fbf223fb7a46635dd81e2df678994>, name = "*"]
> sent [CHAP Response id=0x90
> <375ae7465018bc598c64359979f267c2>, name = "gosc"]
> rcvd [CHAP Success id=0x90 "Access granted"]
> CHAP authentication succeeded: Access granted
> sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr
> 201.11.73.118> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
> rcvd [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr
> 10.1.1.10>]
> sent [IPCP ConfAck id=0x1 <compress VJ 0f 01> <addr
> 10.1.1.10>]
> rcvd [IPCP ConfNak id=0x1 <ms-dns1 10.1.1.10> <ms-dns3
> 10.1.1.10>]
> sent [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr
> 201.11.73.118> <ms-dns1 10.1.1.10> <ms-dns3 10.1.1.10>]
> rcvd [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr
> 201.11.73.118> <ms-dns1 10.1.1.10> <ms-dns3 10.1.1.10>]
> local IP address 201.11.73.118
> remote IP address 10.1.1.10
> primary DNS address 10.1.1.10
> secondary DNS address 10.1.1.10
> Script /etc/ppp/ip-up started (pid 5268)
> Script /etc/ppp/ip-up finished (pid 5268), status = 0x0
> Modem hangup
> Script /etc/ppp/ip-down started (pid 5275)
> Connection terminated.
> Connect time 2.1 minutes.
> Sent 3079478424 bytes, received 5076 bytes.
>
>
>
>
>
>
> Log no servidor:
>
> Aug 21 14:05:32 shrek pptpd[26996]: MGR: Manager process
> started
> Aug 21 14:05:32 shrek pptpd[26996]: MGR: Maximum of 100
> connections available
> Aug 21 14:05:43 shrek pptpd[27005]: CTRL: Client 10.1.1.50
> control connection started
> Aug 21 14:05:44 shrek pptpd[27005]: CTRL: Starting call
> (launching pppd, opening GRE)
> Aug 21 14:05:44 shrek pppd[27006]:
> Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
> Aug 21 14:05:44 shrek pppd[27006]: pptpd-logwtmp: $Version$
> Aug 21 14:05:44 shrek pppd[27006]: pppd 2.4.3 started by root,
> uid 0
> Aug 21 14:05:44 shrek pptpd[27005]: GRE: Bad checksum from
> pppd.
> Aug 21 14:05:44 shrek pppd[27006]: Using interface ppp0
> Aug 21 14:05:44 shrek pppd[27006]: Connect: ppp0
> <--> /dev/pts/0
> Aug 21 14:05:47 shrek pppd[27006]: found interface eth1 for
> proxy arp
> Aug 21 14:05:47 shrek pppd[27006]: local IP address 10.1.1.10
> Aug 21 14:05:47 shrek pppd[27006]: remote IP address
> 201.11.73.118
> Aug 21 14:05:47 shrek pppd[27006]: pptpd-logwtmp.so ip-up ppp0
> gosc 10.1.1.50
> Aug 21 14:07:44 shrek pptpd[27703]: CTRL: Client 10.1.1.50
> control connection started
> Aug 21 14:07:45 shrek pptpd[27703]: CTRL: Starting call
> (launching pppd, opening GRE)
> Aug 21 14:07:45 shrek pppd[27705]:
> Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
> Aug 21 14:07:45 shrek pppd[27705]: pptpd-logwtmp: $Version$
> Aug 21 14:07:45 shrek pptpd[27703]: GRE: Bad checksum from
> pppd.
> Aug 21 14:07:45 shrek pppd[27705]: pppd 2.4.3 started by root,
> uid 0
> Aug 21 14:07:45 shrek pppd[27705]: Using interface ppp1
> Aug 21 14:07:45 shrek pppd[27705]: Connect: ppp1
> <--> /dev/pts/2
> Aug 21 14:07:50 shrek pppd[27705]: Modem hangup
> Aug 21 14:07:50 shrek pppd[27705]: Connection terminated.
> Aug 21 14:07:50 shrek pppd[27705]: Exit.
> Aug 21 14:07:50 shrek pptpd[27703]: CTRL: Client 10.1.1.50
> control connection finished
> Aug 21 14:08:53 shrek pptpd[27005]: CTRL: EOF or bad error
> reading ctrl packet length.
> Aug 21 14:08:53 shrek pptpd[27005]: CTRL: couldn't read packet
> header (exit)
> Aug 21 14:08:53 shrek pptpd[27005]: CTRL: CTRL read failed
> Aug 21 14:08:53 shrek pppd[27006]: Modem hangup
> Aug 21 14:08:53 shrek pppd[27006]: pptpd-logwtmp.so ip-down
> ppp0
> Aug 21 14:08:53 shrek pppd[27006]: Connect time 3.1 minutes.
> Aug 21 14:08:53 shrek pppd[27006]: Sent 5016 bytes, received 0
> bytes.
> Aug 21 14:08:53 shrek pppd[27006]: Connection terminated.
> Aug 21 14:08:53 shrek pppd[27006]: Exit.
> Aug 21 14:08:53 shrek pptpd[27005]: CTRL: Client 10.1.1.50
> control connection finished
>
>
>
>
>
> --
> Fedora-users-br mailing list
> Fedora-users-br em redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-users-br
>
>
>
>
>
> ______________________________________________________________________
> Novidade no Yahoo! Mail: receba alertas de novas mensagens no seu
> celular. Registre seu aparelho agora!
>
> --
> Fedora-users-br mailing list
> Fedora-users-br em redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-users-br
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://listman.redhat.com/archives/fedora-users-br/attachments/20060824/3362dcd9/attachment.htm>
Mais detalhes sobre a lista de discussão Fedora-users-br