WheW! Ok, I got the other portion resolved as well. After swapping the source and destinations for my IP Chains, I was able to eliminate the other error in connecting to the MS PPTP Server. I would like to recommend one change in the Prerequisites for the pptp-client , that is the Newer PPP software. Any version previous to the 2.4.0 does not appear to be compatible. "Albert E. Whale" wrote: > Ok, I have successfully resolve part of the problem. > > I am running Linux-Mandrake 7.1 (too many problems updating my Laptop to upgrade > my server - but that's another story!). I have the latest Kernel source > 2.2.17-21mdk (I couldn't install the -23mdk -unknown dependencies). > > I originally obtained and installed the pptp-client-1.0.2 software from the > rpmfind.net depot. I ran the pptp-client with the ppp software from the > Linux-Mandrake 7.1 distribution. This is was caused the error message "Peer is > not authorized to use remote address 10.15.1.100". It also produced the error > message "Unauthorized Remote IP Address" in the connection log for pppd. > > I was able to eliminate this error by upgrading to the ppp-2.4.0-3mdk. > > My final connection problem is the following error message: > > Nov 10 13:29:12 mail pppd[1042]: pppd 2.4.0 started by root, uid 0 > Nov 10 13:29:12 mail pppd[1042]: Using interface ppp0 > Nov 10 13:29:12 mail pppd[1042]: Connect: ppp0 <--> /dev/ttya0 > Nov 10 13:29:14 mail kernel: ip_demasq_gre(): 198.30.140.7 -> 64.249.148.250 > CID=0 no masq table, discarding > Nov 10 13:29:15 mail last message repeated 12 times > > I have the 2.2.17 kernel, included pptp support, and even attempted the GRE > support. NONE of this helped. > > One more thing, the Linux-Mandrake Kernels already appear to have the vpn_masq > and pptp Kernel patches. Now what? > > Mads Rasmussen wrote: > > > Albert, > > > > I don�t know what solution you use for your PPTP implementation but if > > you�re not aware there is a free project called PoPToP for linux. > > > > http://www.moretonbay.com/vpn/pptp.html > > > > It even includes some patches to make security with windows better. There is > > a mailing list for the project (see page above). Maybe you can get some > > answers there? > > The postings are archived at: > > > > http://lists.schulte.org/pipermail/pptp-server/ > > > > There is also some howtos on linuxdoc.org (vpn howto and vpn masquerade > > howto) > > > > Hope this brings you closer > > > > Regards > > > > Mads Rasmussen / Ci&T systems > > www.cit.com.br > > ----- Original Message ----- > > From: "Albert E. Whale" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Wednesday, November 08, 2000 7:19 PM > > Subject: Re: [expert] Clearing a Communications Socket (PPTP insecure) > > > > > Mads, > > > > > > Thanks, but at this point I am not in a Position to dictate what is in > > place. > > > Although I know that PPTP is insecure, it is what I have to work with. It > > is > > > what it is. > > > > > > The customer is considering implementing Linux in other environments, and > > > perhaps we can implement change then. > > > > > > Right now, my problem is connecting to this PPTP server. > > > > > > Mads Rasmussen wrote: > > > > > > > I assume you know this about the PPTP protocol, Bruce Schneier broke it > > > > several times. > > > > > > > > http://www.counterpane.com/pptp.html > > > > > > > > A better option is IPsec a freeware implementation is available at > > > > www.freeswan.org > > > > > > > > However IPsec clients for windows is a problem, pgp made a freeware > > version > > > > of pgpnet but it is only capable of making host to host connections. > > > > > > > > Mads Rasmussen / Ci&T systems > > > > www.cit.com.br > > > > > > > > > ------------------------------------------------------------------------ > > > > Keep in touch with http://mandrakeforum.com: > > > > Subscribe the "[EMAIL PROTECTED]" mailing list. > > > > > > -- > > > Albert E. Whale - www.hky.com/aewhale.html > > > ---------------------------------------------------------------------- > > > ABS Computer Technology, Inc. - Computer & Networking Specialists > > > Sr. Network, Security and Systems Consultant > > > > > > The Father's Rights Network - http://www.hky.com/frn/frnhome.html > > > The Pennsylvania Parenthood Initiative - PAPI - Children need BOTH Parents > > > - http://www.geocities.com/Heartland/4688/papi.htm > > > > > > > > > > > > > > > > ---------------------------------------------------------------------------- > > ---- > > > > > Keep in touch with http://mandrakeforum.com: > > > Subscribe the "[EMAIL PROTECTED]" mailing list. > > > > > > > ------------------------------------------------------------------------ > > Keep in touch with http://mandrakeforum.com: > > Subscribe the "[EMAIL PROTECTED]" mailing list. > > -- > Albert E. Whale - www.hky.com/aewhale.html > ---------------------------------------------------------------------- > ABS Computer Technology, Inc. - Computer & Networking Specialists > Sr. Network, Security and Systems Consultant > > The Father's Rights Network - http://www.hky.com/frn/frnhome.html > The Pennsylvania Parenthood Initiative - PAPI - Children need BOTH Parents > - http://www.geocities.com/Heartland/4688/papi.htm > > ------------------------------------------------------------------------ > Keep in touch with http://mandrakeforum.com: > Subscribe the "[EMAIL PROTECTED]" mailing list. -- Albert E. Whale - www.hky.com/aewhale.html ---------------------------------------------------------------------- ABS Computer Technology, Inc. - Computer & Networking Specialists Sr. Network, Security and Systems Consultant The Father's Rights Network - http://www.hky.com/frn/frnhome.html The Pennsylvania Parenthood Initiative - PAPI - Children need BOTH Parents - http://www.geocities.com/Heartland/4688/papi.htm
Keep in touch with http://mandrakeforum.com: Subscribe the "[EMAIL PROTECTED]" mailing list.
