Koozali.org: home of the SME Server
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. Experienced User Forum
  4. Topic: VPN Problems
« previous next »
Pages: 1 2 [3]  All   Go Down

VPN Problems

  • 32 Replies
  • 5613 Views

Bob King

Re: VPN Problems
« Reply #30 on: December 14, 2001, 03:41:11 AM »
Filippo Carletti wrote:

> Also, keep in mind that you're using chap auth, so your
> /etc/ppp/chap-secrets must have lines like this:
> username        hostname  &/etc/smbpasswd         *
> for every usernname.

I have been loking at the files located in the /etc/ppp directory on the SMEServer box.

list of files in the /etc/ppp/ directory:
chap-secrets (e-smith template)
options (not e-smith template)
options.pptpd (e-smith template)
options.server (not e-smith template)
pap-secrets (e-smith template)
pppoe.conf (not e-smith template)
pppoe-server-options (not e-smith template)
*ip-down
*ip-up
*ip-up.local

The relavent content of these files (except those starting with *) is shown below.

There seems to be a conflict between options.pptpd and options.server.
options.pptpd states "require-chap"
options.server states "require-pap" and "refuse-chap"
Could this be part of the problem?

chap-secrets seems to be correct with an entry for each user log-in name however pap-secrets does not have any entries.

Hopefully someone with more knowledge than me will be able to check these files and determine if there is a problem or not.

Contents of the files follows:

/etc/ppp/chap-secrets (e-smith template)
**************************************************
username  hostname  &/etc/smbpasswd         *

(there is a line as above for every user log-in name on the system)
****************************************************


/etc/ppp/options (not e-smth template)
*********************************************
lock
*********************************************

/etc/options/options.pptpd (e-smith template)
****************************************************
auth
+chapms-v2
chapms-strip-domain
domain (real domain name is here)
# Tell ip-up and ip-down who is running them
ipparam pptpd
nodeflate
mppe-128
mppe-stateless
require-mppe
require-mppe-stateless
ms-dns 192.168.187.10
# Server is not master - no ms-wins value set
name (real hostname is here)
netmask 255.255.255.0
proxyarp
require-chap
**********************************************

/etc/ppp/options.server (not e-smith template)
*************************************************
lock
crtscts
modem
require-pap
refuse-chap
login
noauth
netmask 255.255.25.0
ms-dns 192.168.178.10
ms-wins 192.168.178.10
proxyarp
192.168.178.10:192.168.178.20
***************************************************

/etc/ppp/pap-secrets (e-smith template)
*********************************************
*      *     ""             *
*********************************************


/etc/ppp/ppoe.conf (not an e-smith template)
***********************************************************************      
#
# pppoe.conf
#
# Configuration file for rp-pppoe.  Edit as appropriate and install in
# /etc/ppp/pppoe.conf
#
# NOTE: This file is used by the adsl-start, adsl-stop, adsl-connect and
#       adsl-status shell scripts.  It is *not* used in any way by the
#       "pppoe" executable
#  
# Copyright (C) 2000 Roaring Penguin Software Inc
#
# This file may be distributed under the terms of the GNU General
# Public License.
#
# When you configure a variable, DO NOT leave spaces around the "=" sign.
# Ethernet card connected to ADSL modem
ETH=eth1
# ADSL user name.  You may have to supply "@provider.com"  Sympatico
# users in Canada do need to include "@sympatico.ca"
# Sympatico uses PAP authentication.  Make sure /etc/ppp/pap-secrets  
# contains the right username/password combination.
# For Magma, use xxyyzz@magma.ca
USER=bxxxnxnx@sympatico.ca
# Bring link up on demand?  Default is to leave link up all the time.
# If you want the link to come up on demand, set DEMAND to a number indicating    
# the idle time after which the link is brought down.
DEMAND=no  
#DEMAND=300
# Obtain DNS server addresses from the peer (recent versions of pppd only)
******************************************************************************************

/etc/ppp/pppoe-server-options (not an e-smith template)
****************************************************************
# PPP options for the PPPoE server
require-pap
****************************************************************
Logged

Filippo Carletti

Re: VPN Problems
« Reply #31 on: December 15, 2001, 02:34:22 AM »
I don't see anything strange in your config files.
Have you been able to connect from the same client win pc to another sme server ?
Could it be that client needs tweaking ?
Force client to ask for encryption ?
Logged

Lazo

Re: VPN Problems
« Reply #32 on: January 21, 2002, 06:24:47 PM »
Why don't you try this!! I have a NAT firewall, and what i did is foward port 1723 and port 47 to my SME server, (and a pptp compiled version), I can log in to the server, I can ping any pc on the LAN, I can http:/SME/server-manager, the only thing I can't do is to access my shares, even I ping the PC, I know I have to edit the hostname, but can U tell me where is this file??

Thanks!!
Logged
Pages: 1 2 [3]  All   Go Up
« previous next »
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. Experienced User Forum
  4. Topic: VPN Problems