npppd.conf
# Global
## Max sessions
set max-session 100
## Max user-sessions
set user-max-session 1
# Tunnel
tunnel L2TP protocol l2tp {
listen on 192.168.38.15
}
# IPCP
ipcp IPCP {
pool-address 10.0.0.2-10.0.0.254
dns-servers 192.168.10.242
}
# Interface
interface tun0 address 10.0.0.1 ipcp IPCP
# Authentication
authentication RADIUS type radius {
authentication-server {
address 192.168.10.242 secret "secret"
}
}
bind tunnel from L2TP authenticated by RADIUS to tun0
ipsec.conf
ike passive esp transport \
proto udp from 1.2.3.4 to any port 1701 \
main auth hmac-sha1 enc aes group modp1024 \
quick auth hmac-sha1 enc aes group modp1024 \
psk "secret"
and again Everything is working on all client I can work on VPN
Windows clients are connecting but after connection is made I cannot get
anywhere.
my client config is l2tp/ipsec with secret
optional encryption
mschapv2
And I made the connection to take VPN gateway
----- Original Message -----
From: "Giancarlo Razzolini" <[email protected]>
To: "Or Elimelech" <[email protected]>, "OpenBSD general usage list"
<[email protected]>
Sent: Monday, December 9, 2013 2:54:42 PM
Subject: Re: NPPPD
Em 09-12-2013 05:38, Or Elimelech escreveu:
> Hi,
>
> I've configured nppd server and clients for Linux, Android, iOS, OSX and
> Windows.
> This works on all platforms when routing all traffic through VPN except for
> Windows clients.
>
> I can connect to the vpn and I get a route for 0.0.0.0 mask 0.0.0.0 vpn
> interface
>
> but ipconfig shows me 10.0.0.50 with 255.255.255.255 and 0.0.0.0 GW
>
> After that I cannot get any traffic out.
>
> Best regards
>
Or,
For us to help you we need a little more detail. Things like "it
works but not all the time" or "it do not work on windows", are not very
helpful. The problem can be from misconfiguration on npppd, pf rules,
routing issues, or problems with the windows clients itself. Things
like, anti-virus firewalls, etc. They could all be the problem. Try to
elaborate a little more on the next one.
Cheers,
--
Giancarlo Razzolini
GPG: 4096R/77B981BC
_______________________________________________________________________________________________________________
The sender of this email is not authorized to bind XWise Marketing or any of
its affiliate companies (hereby: the "Companies")
or to make any representations, contracts, or commitments on behalf of the
Companies.
The information contained in this communication is intended solely for the use
of the individual or entity to whom it is addressed and others
authorized to receive it.
It may contain confidential or legally privileged information. If you are not
the intended recipient you are hereby notified that any disclosure,
copying, distribution or taking any action in reliance on the contents of this
information is strictly prohibited and may be unlawful.
If you have received this communication in error, please notify us immediately
by forwarding this email to [email protected] and then delete
it from your system.
The Companies are neither liable for the proper and complete transmission of
the information contained in this communication nor for any delay in its
receipt.
