Hi,
Why not use the embedded package in OpenBSD 5.3 : npppd ??
conf files : /etc/npppd/npppd.conf and npppd-users
Below a link that will help you on :
http://fr.slideshare.net/GiovanniBechis/npppd-easy-vpn-with-openbsd
Cheers,
Wesley
Le 2013-08-05 4:48, Alvaro Mantilla Gimenez a écrit :
Hi,
I am trying to configure poptop on OpenBSD 5.3 without success.
I've
installed the package and configured the files as
the /usr/local/share/doc/pkg-readmes/poptop-1.3.4p4 says but didn't
work so
I started to change things here and there without success. These are
the
facts:
/etc/pptpd.conf:
stimeout 10
noipparam
logwtmp
localip 5.5.5.1
remoteip 5.5.5.2-102
/etc/ppp/options:
lock
auth
usehostname
proxyarp
+MSChap-V2 mppe-128 mppe-stateless
/etc/ppp/ppp.conf:
default:
set log Phase Chat LCP IPCP CCP tun command
set speed 115200
pptp:
set log phase tun
enable proxy
set dns 8.8.8.8 8.8.4.4
set ifaddr 5.5.5.1 5.5.5.0/0 255.255.255.0
set timeout 0
enable chap
enable MSChapV2
And here the error:
pptpd[25764]: CTRL: Starting call (launching pppd, opening GRE)
ppp[14716]: Phase: Using interface: tun0
ppp[14716]: Phase: deflink: Created in closed state
ppp[14716]: tun0: Command: default: set speed 115200
ppp[14716]: tun0: Command: pptp: set log phase tun
ppp[14716]: tun0: Phase: PPP Started (direct mode).
ppp[14716]: tun0: Phase: bundle: Establish
ppp[14716]: tun0: Phase: deflink: closed -> opening
ppp[14716]: tun0: Phase: deflink: Connected!
ppp[14716]: tun0: Phase: deflink: opening -> carrier
ppp[14716]: tun0: Phase: deflink: carrier -> lcp
ppp[14716]: tun0: Phase: bundle: Authenticate
ppp[14716]: tun0: Phase: deflink: his = none, mine = CHAP 0x81
ppp[14716]: tun0: Phase: Chap Output: CHALLENGE
ppp[14716]: tun0: Phase: Chap Input: RESPONSE (49 bytes from
testuser)
ppp[14716]: tun0: Phase: Chap Output: SUCCESS
ppp[14716]: tun0: Phase: deflink: lcp -> open
ppp[14716]: tun0: Phase: bundle: Network
ppp[14716]: tun0: Phase: deflink: open -> lcp
ppp[14716]: tun0: Warning: ff01:4::: Change route failed: errno:
Network
is unreachable
ppp[14716]: tun0: Warning: ff02:4::: Change route failed: errno:
Network
is unreachable
ppp[14716]: tun0: Warning: ff02:4::: Change route failed: errno:
Network
is unreachable
ppp[14716]: tun0: Phase: bundle: Terminate
pptpd[25764]: CTRL: EOF or bad error reading ctrl packet length.
pptpd[25764]: CTRL: couldn't read packet header (exit)
pptpd[25764]: CTRL: CTRL read failed
ppp[14716]: tun0: Phase: deflink: read (0): Got zero bytes
ppp[14716]: tun0: Phase: deflink: Disconnected!
ppp[14716]: tun0: Phase: deflink: Connect time: 1 secs: 354 octets
in,
364 octets out
ppp[14716]: tun0: Phase: deflink: 7 packets in, 11 packets out
ppp[14716]: tun0: Phase: total 718 bytes/sec, peak 0 bytes/sec on
Sun
Aug 4 18:23:07 2013
ppp[14716]: tun0: Phase: deflink: lcp -> closed
ppp[14716]: tun0: Phase: bundle: Dead
ppp[14716]: tun0: Phase: PPP Terminated (normal).
pptpd[25764]: CTRL: Client <truncated_ip> control connection
finished
So far I think is not an authentication problem (the authentication
process
seems to be "success") and it is a network related issue. However, I
do not
how to fix it according to the three lines on the output:
ppp[14716]: tun0: Warning: ff01:4::: Change route failed: errno:
Network
is unreachable
ppp[14716]: tun0: Warning: ff02:4::: Change route failed: errno:
Network
is unreachable
ppp[14716]: tun0: Warning: ff02:4::: Change route failed: errno:
Network
is unreachable
I enabled and applied on sysctl.conf:
net.inet.gre.allow=1
net.inet.gre.wccp=1
Also, I added the pf.conf lines needed to allow traffic from 1723 and
GRE
connections and, to be sure, let all traffic from 5.5.5.0 network
pass
through the firewall on tun0.
Any help? What I am missing?
Thanks in advance,
Alvaro