Jump to content

Проблема с VPN. pppd не пропускает пакеты...

Nil
 Share

Recommended Posts

Nil

Nil

Posted
Posted

Помогите пож с траблой с VPN. Поставил Radius(авторизация через MySql)+PopTop+pppd обновлённый, всё это на FreeBSD 5.3-RELEASE (GENERIC). Всё сделал по мануалу http://shs.sumy.ua/vpn/index.html, с единственным изменением для работы с мускулом. Но вот попути возникла проблема с pppd. Клиенты коннектятся нормально, авторизация проходит, а вот пакеты кто-то или pppd или pptpd не пускает...

 

Вот полный лог ppp одного соединения от установления линка до разрыва связи:

 

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: Phase: Using interface: tun0

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: Phase: deflink: Created in closed state

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: ident user-ppp VERSION (built COMPILATIONDATE)

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: set device /dev/cuaa1

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: set speed 115200

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: set dial ABORT BUSY ABORT NOsCARRIER TIMEOUT 5 "" AT OK-AT-OK ATE1Q0 OK dATDTT TIMEOUT 40 CONNECT

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: set timeout 180

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: default: enable dns

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set radius /etc/radius.conf

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set ifaddr 192.168.0.1 192.168.1.1-192.168.1.200

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: Selected IP address 192.168.1.100

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: enable chap

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set rad_service_type 11

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set vpn on

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set rad_alive 120

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set ip-up /etc/ppp/shape.ppp

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Command: pptp: set ip-down /etc/ppp/shape.ppp

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: PPP Started (direct mode).

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: bundle: Establish

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: closed -> opening

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: Connected!

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: opening -> carrier

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: carrier -> lcp

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: FSM: Using "deflink" as a transport

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: State change Initial --> Closed

Jul 13 06:00:04 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: State change Closed --> Stopped

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: LayerStart

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendConfigReq(1) state = Stopped

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACFCOMP[2]

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: PROTOCOMP[2]

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACCMAP[6] 0x00000000

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MRU[4] 1500

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM[6] 0x27f31024

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: State change Stopped --> Req-Sent

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvConfigAck(1) state = Req-Sent

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACFCOMP[2]

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: PROTOCOMP[2]

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACCMAP[6] 0x00000000

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MRU[4] 1500

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM[6] 0x27f31024

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)

Jul 13 06:00:05 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: State change Req-Sent --> Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvConfigReq(1) state = Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MRU[4] 1400

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM[6] 0x7aeb4e08

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: PROTOCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACFCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: CALLBACK[3] CBCP

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendConfigRej(1) state = Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: CALLBACK[3] CBCP

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendIdent(0) state = Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 27f31024

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT user-ppp 3.1 (built Jul 11 2005)

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvConfigReq(2) state = Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MRU[4] 1400

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM[6] 0x7aeb4e08

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: PROTOCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACFCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendConfigAck(2) state = Ack-Rcvd

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MRU[4] 1400

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM[6] 0x7aeb4e08

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: PROTOCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: ACFCOMP[2]

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: State change Ack-Rcvd --> Opened

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: LayerUp

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendIdent(1) state = Opened

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 27f31024

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT user-ppp 3.1 (built Jul 11 2005)

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: bundle: Authenticate

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: his = none, mine = CHAP 0x05

Jul 13 06:00:06 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Chap Output: CHALLENGE

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvIdent(3) state = Opened

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 7aeb4e08

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT MSRASV5.10

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvIdent(4) state = Opened

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 7aeb4e08

Jul 13 06:00:07 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT MSRAS-1-MIKE

Jul 13 06:00:09 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Chap Output: CHALLENGE

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Chap Input: RESPONSE (16 bytes from test)

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Radius: Request sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Radius(auth): ACCEPT received

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Chap Output: SUCCESS

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Warning: OpenSecret: Can't open /etc/ppp/ppp.secret.

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: FSM: Using "deflink" as a transport

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: State change Initial --> Closed

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: LayerStart.

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigReq(1) state = Closed

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: DEFLATE[4] win 15

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: PRED1[2]

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: State change Closed --> Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: lcp -> open

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: bundle: Network

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: FSM: Using "deflink" as a transport

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: State change Initial --> Closed

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: LayerStart.

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigReq(1) state = Closed

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.0.1

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: COMPPROTO[6] 16 VJ slots with slot compression

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRIDNS[6] 66.180.166.247

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECDNS[6] 255.255.255.255

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: State change Closed --> Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(5) state = Opened

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvConfigReq(6) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: MPPE[6]

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigRej(6) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: MPPE[6]

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendIdent(2) state = Opened

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 27f31024

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT user-ppp 3.1 (built Jul 11 2005)

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: RecvConfigReq(7) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: 0.0.0.0: Address invalid or already in use

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRIDNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRINBNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: NBNS REQ - rejected - nbns not set

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECDNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECNBNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: NBNS REQ - rejected - nbns not set

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigRej(7) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRIDNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRINBNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECDNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECNBNS[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendIdent(3) state = Opened

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 27f31024

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT user-ppp 3.1 (built Jul 11 2005)

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(8) state = Opened

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvTerminateReq(9) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendTerminateAck(9) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: RecvConfigReq(10) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 0.0.0.0

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: 0.0.0.0: Address invalid or already in use

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigNak(10) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.1.100

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: RecvConfigReq(11) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.1.100

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigAck(11) state = Req-Sent

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.1.100

Jul 13 06:00:10 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: State change Req-Sent --> Ack-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigReq(1) state = Req-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: DEFLATE[4] win 15

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: PRED1[2]

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigReq(1) state = Ack-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.0.1

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: COMPPROTO[6] 16 VJ slots with slot compression

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRIDNS[6] 66.180.166.247

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECDNS[6] 255.255.255.255

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvTerminateAck(1) state = Req-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: RecvConfigRej(1) state = Ack-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: SendIdent(4) state = Opened

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: MAGICNUM 27f31024

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: TEXT user-ppp 3.1 (built Jul 11 2005)

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: COMPPROTO[6] 16 VJ slots with slot compression

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: PRIDNS[6] 66.180.166.247

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: SECDNS[6] 255.255.255.255

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: SendConfigReq(2) state = Ack-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.0.1

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: RecvConfigAck(2) state = Ack-Sent

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: IPADDR[6] 192.168.0.1

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: State change Ack-Sent --> Opened

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: deflink: LayerUp.

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: IPCP: myaddr 192.168.0.1 hisaddr = 192.168.1.100

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: Radius(acct): Accounting response received

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(12) state = Opened

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:13 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigReq(2) state = Req-Sent

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: DEFLATE[4] win 15

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: PRED1[2]

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvTerminateAck(2) state = Req-Sent

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(13) state = Opened

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:16 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigReq(3) state = Req-Sent

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: DEFLATE[4] win 15

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: PRED1[2]

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvTerminateAck(3) state = Req-Sent

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(14) state = Opened

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:19 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: SendConfigReq(4) state = Req-Sent

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: DEFLATE[4] win 15

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: PRED1[2]

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: RecvTerminateAck(4) state = Req-Sent

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: RecvProtocolRej(15) state = Opened

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: LCP: deflink: -- Protocol 0x8057 (Internet Protocol V6 Control Protocol) was rejected!

Jul 13 06:00:22 ded767-fbsd-170-67 ppp[2998]: tun0: Phase: deflink: IPV6CP protocol reject closes IPV6CP !

Jul 13 06:00:25 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: LayerFinish.

Jul 13 06:00:25 ded767-fbsd-170-67 ppp[2998]: tun0: CCP: deflink: State change Req-Sent --> Stopped

 

и ещё один вопрос мучает. нужно ли для работы pptpd netgraph? как проверить я не знаю и нигде не нашёл... опыта в работе с ядром и настройкой подобных vpn служб никакого. поможите пож)) я уже столько времени убил на эту затею а резльтата никакого..

 

заранее благодарен

 

зы вот кстати конфы:

 

clients

----

# For detailed description, run:

# info Radius clients

 

#Client Name Key

#---------------- -------------------

localhost testPW

127.0.0.1 testPW

 

 

config

--------

# For detailed description, run:

# info Radius config

 

option {

max-requests 1024;

resolve no;

log-dir "/var/log";

acct-dir "/var/acct";

};

 

logging {

prefix-hook "default_log_prefix";

channel default {

file "radius.log";

print-category yes;

print-level yes;

};

channel info {

file "radius.info";

print-pid yes;

};

channel debug {

file "radius.debug";

};

category auth {

print-auth yes;

print-failed-pass yes;

};

category info {

channel info;

};

category =debug {

channel debug;

};

category * {

channel default;

};

};

 

auth {

max-requests 127;

request-cleanup-delay 2;

detail yes;

strip-names yes;

checkrad-assume-logged yes;

};

 

acct {

max-requests 127;

request-cleanup-delay 2;

};

 

rewrite {

load "checknas.rw";

load "log-hook.rw";

};

 

# snmp {

# listen no;

# };

 

 

dictionary

-----------

#

# $Id: dictionary,v 1.39 2003/12/02 23:59:33 gray Exp $

#

# For detailed description, run:

# info Radius dictionary

 

# Do not remove this!

$INCLUDE dict/standard

 

# Uncomment any of these as appropriate:

 

$INCLUDE dict/compat # Compatibility issues

$INCLUDE dict/livingston # Livingston compatibility

#$INCLUDE dict/tunnel # Tunnel attrs. as per RFC 2867

#$INCLUDE dict/usr # USR Robotics

#$INCLUDE dict/ascend # MAX Ascend

#$INCLUDE dict/ascend.vs # MAX Ascend -- vendor-specific

#$INCLUDE dict/cisco # Cisco

#$INCLUDE dict/voip # Special attributes to be used

# with rewriting functions

 

ATTRIBUTE Traffic-Shape 80 integer

ATTRIBUTE Traffic-Limit 81 integer

ATTRIBUTE IP-Pool 82 string

 

VALUE NAS-Port-Type Virtual 5

VALUE NAS-Port-Type Ethernet 6

 

VALUE Service-Type VPN 11

VALUE Service-Type Ethernet 12

 

 

users

-------

# For detailed description, run:

# info Radius users

 

DEFAULT Auth-Type = Local, Password-Location = SQL

Service-Type = Framed-User,

Framed-Protocol = PPP

 

 

clients.conf

-------------

# For detailed description, run:

# info Radius client.conf

server local 127.0.0.1 foobar 1812 1813

source_ip 127.0.0.1

timeout 3

retry 1

 

 

ppp.conf

------------

#################################################################

# PPP Sample Configuration File

# Originally written by Toshiharu OHNO

# Simplified 5/14/1999 by wself@cdrom.com

#

# See /usr/share/examples/ppp/ for some examples

#

# $FreeBSD: src/etc/ppp/ppp.conf,v 1.8 2001/06/21 15:42:26 brian Exp $

#################################################################

 

default:

set log Phase Chat LCP IPCP CCP tun command

ident user-ppp VERSION (built COMPILATIONDATE)

 

# Ensure that "device" references the correct serial port

# for your modem. (cuaa0 = COM1, cuaa1 = COM2)

#

set device /dev/cuaa1

 

set speed 115200

set dial "ABORT BUSY ABORT NOsCARRIER TIMEOUT 5

"" AT OK-AT-OK ATE1Q0 OK dATDTT TIMEOUT 40 CONNECT"

set timeout 180 # 3 minute idle timer (the default)

enable dns # request DNS info (for resolv.conf)

 

papchap:

#

# edit the next three lines and replace the items in caps with

# the values which have been assigned by your ISP.

#

 

set phone PHONE_NUM

set authname USERNAME

set authkey PASSWORD

 

set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0

add default HISADDR # Add a (sticky) default route

 

pptp:

set radius /etc/radius.conf

set ifaddr 192.168.0.1 192.168.1.1-192.168.1.200

enable chap

set rad_service_type 11

set vpn on

set rad_alive 120

set ip-up /etc/ppp/shape.ppp

set ip-down /etc/ppp/shape.ppp

 

pptpd.conf

--------------

там всё закоментарено...

Guest

Guest

Posted
Posted

Тоже делал свой сервак для выход в инет по указанной ссылке, только вот из-за кривости pptpd заменил на mpd, из за этого пришлось поменять GNU-Radius на FreeRadius (первый не понимает MS-CHAP). Да и трафик через радиус счетается на порту, что не всегда удобно, потому поставил ipacctd. Тепрь вообще красота, все пашет как часы, расхождения с провом 0.1%, чего и вам желаю :)

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...
На сайте используются файлы cookie и сервисы аналитики для корректной работы форума и улучшения качества обслуживания. Продолжая использовать сайт, вы соглашаетесь с использованием файлов cookie и с Политикой конфиденциальности.