On Wed, 14 Jul 1999 [EMAIL PROTECTED] wrote:
|we are just setting up a Linux server (Kernel 2.2.10) for incoming ppp dial-up
|connections using both analog connections and ISDN (HDLC).
|
|The logins are ok, but I would like to get some hints from experts, if
|something still may be "tuned" for better performance. I could not find
|detailed info on those pppd lines. Here are some pppd lines written into
|var/log/messages when a user call comes in. I would be happy if anyone can
|comment on this ;-)
|
|[PAP AuthReq id=0x1 user="l.werner" password="566gh342"]
|The Login PW ist shown here in clear letters, which is not so good. Someone
|could scan /messages and get all our user PWs. Any way to suppress this?
Switch to CHAP if you can possibly do so. PAP is a just convenient way to
eliminate login/password and offers virtually no security even when the
password in the log is hidden. But you can upgrade to ppp-2.3.8 which
hides the password in the logs with the hide-password option:
ftp://cs.anu.edu.au/pub/software/ppp/
|pppd[5665]: Unsupported protocol (0x802b) received
|What does that mean? The ppp conection is working, but I still have this
|message here. Can I ignore this?
The general rule is that if you don't know what it is and things work then
you can ignore it. This is Novell IPX Control Protocol, pppd isn't
configured for it and so it is "unsupported."
|buddha pppd[5665]: Cannot determine ethernet address for proxy ARP
|
|???
You have the pppd proxyarp in place but your host doesn't have an ethernet
card, or you are using an IP address for the peer that doesn't belong to
a subnet to which the host belongs. For the host to proxy arp for the peer
the IP address for the peer must belong to the appropriate host subnet.
|buddha pppd[5665]: Compression disabled by peer.
|
|???
You and the peer probably didn't have any data compression that the other
could use and Compression Control Protocol (CCP) was rejected by the peer.
This happens often since pppd can't use proprietary compression algorithms.
Not serious since other compression is implemented in modern modems and
there is a limit to how much you can compress data.
---
Clifford Kite Not a guru. (tm)
-
To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
the body of a message to [EMAIL PROTECTED]
