Todd Pearsall wrote:
Check into this at some of the MS FAQ sites. I think there are some issues when connecting XP to NT4 servers (XP machines can't be added to NT domains or something like that)...part of the MS "forced upgrade" strategy. IIRC, you can get it to work, but you have to be very careful about how you set everything up. You could test this with an XP and NT box sitting across a router from each other, then try to make things work across the VPN.You're close, except it's Windoze at both ends. Doesn't work: Local WinXP to Remote WinNT Server Works: Remote WinXP to Local Win2000 Server
It depends on exactly what you're trying to see, but I'd start with your internal interface. Earlier versions of tcpdump don't deal well with the virtual ipsec interface, and there's also the confusion of the whole ethernet + PPPoE + IPSec layer upon layer of interfaces/protocols.While I'm at it, do I want the tcpdump for eth1 or ipsec0 (I assume not ppp0 since it's all encrypted, but wasn't sure.)Another note I wanted to repeat just in case it was important and overlooked in my 1st message of this lengthy thread. When I restart PPPoE (locally), in the course of the connection establishing I get messages to the effect of "Cant't increase MTU to 1500" serveral times. That may not be the exact message, because I can't see it in the logs when I reboot the router remotely.
If your VPN is working properly, watching what goes in and out the local interface should tell you everything you need to know (especially if you can do this on both ends). If any packets "disappear" between the ends (without ICMP errors or similar), you'll know you have to look at the VPN or PPPoE setup.
BTW: Do any of your other locations use PPPoE, or just the "broken" one?
--
Charles Steinkuehler
[EMAIL PROTECTED]
-------------------------------------------------------
This SF.NET email is sponsored by: FREE SSL Guide from Thawte
are you planning your Web Server Security? Click here to get a FREE
Thawte SSL guide and find the answers to all your SSL security issues.
http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
