FreeBSD console weirdness when booting from usb stick
Hi, I'm booting FreeBSD 8 from an USB stick, but when I do so, the console no longer works. They USB keyboard seems to do nothing, and during the boot process when the daemons are starting it seems like there is another keyboard attached on which the ENTER key is stuck. That is, while the daemons are starting the texts like Starting sshd... are interspaced with a bunch of blank lines, and after that, the screen fills with repeated copies of the login prompt. I cannot type anything. When I add or remove my keyboard it shows on the console as a bright white log line, which immediately scrolls off the screen again. Same when I remove it again. When I boot from the hard disks, this does not happen. The USB stick contains exactly the same stuff as the hard drives, since I cloned the hard drive with a dump/restore. Does anybody have a clue what's going on? Regards, Sebastiaan Copyright (c) 1992-2009 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 8.0-RELEASE #1: Sat Nov 28 10:07:51 CET 2009 r...@piglet.home.sebster.com:/usr/obj/usr/src/sys/PIGLET Timecounter i8254 frequency 1193182 Hz quality 0 CPU: Genuine Intel(R) CPU N270 @ 1.60GHz (1596.01-MHz 686-class CPU) Origin = GenuineIntel Id = 0x106c2 Stepping = 2 Features=0xbfe9fbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Features2=0x40c39dSSE3,DTES64,MON,DS_CPL,EST,TM2,SSSE3,xTPR,PDCM,b22 AMD Features=0x10NX AMD Features2=0x1LAHF TSC: P-state invariant real memory = 2147483648 (2048 MB) avail memory = 2080657408 (1984 MB) MPTable: IntelCalistoga WARNING: Non-uniform processors. WARNING: Using suboptimal topology. ioapic0: Assuming intbase of 0 ioapic0 Version 2.0 irqs 0-23 on motherboard kbd1 at kbdmux0 pcib0: MPTable Host-PCI bridge pcibus 0 on motherboard pci0: PCI bus on pcib0 vgapci0: VGA-compatible display port 0xbc80-0xbc87 mem 0xfe88-0xfe8f,0xd000-0xdfff,0xfe84-0xfe87 irq 16 at device 2.0 on pci0 agp0: Intel 945GME SVGA controller on vgapci0 agp0: detected 7932k stolen memory agp0: aperture size is 256M vgapci1: VGA-compatible display mem 0xfe78-0xfe7f at device 2.1 on pci0 pci0: multimedia, HDA at device 27.0 (no driver attached) pcib1: MPTable PCI-PCI bridge irq 16 at device 28.0 on pci0 pci1: PCI bus on pcib1 em0: Intel(R) PRO/1000 Network Connection 6.9.14 port 0xcc80-0xcc9f mem 0xfe9e-0xfe9f,0xfe9dc000-0xfe9d irq 16 at device 0.0 on pci1 em0: Using MSIX interrupts em0: [ITHREAD] em0: [ITHREAD] em0: [ITHREAD] em0: Ethernet address: 40:61:86:4a:c2:75 pcib2: MPTable PCI-PCI bridge irq 17 at device 28.1 on pci0 pci2: PCI bus on pcib2 em1: Intel(R) PRO/1000 Network Connection 6.9.14 port 0xdc80-0xdc9f mem 0xfeae-0xfeaf,0xfeadc000-0xfead irq 17 at device 0.0 on pci2 em1: Using MSIX interrupts em1: [ITHREAD] em1: [ITHREAD] em1: [ITHREAD] em1: Ethernet address: 40:61:86:4a:c2:76 uhci0: Intel 82801G (ICH7) USB controller USB-A port 0xbc00-0xbc1f irq 23 at device 29.0 on pci0 uhci0: [ITHREAD] uhci0: LegSup = 0x0f30 usbus0: Intel 82801G (ICH7) USB controller USB-A on uhci0 uhci1: Intel 82801G (ICH7) USB controller USB-B port 0xb880-0xb89f irq 19 at device 29.1 on pci0 uhci1: [ITHREAD] uhci1: LegSup = 0x0f30 usbus1: Intel 82801G (ICH7) USB controller USB-B on uhci1 uhci2: Intel 82801G (ICH7) USB controller USB-C port 0xb800-0xb81f irq 18 at device 29.2 on pci0 uhci2: [ITHREAD] uhci2: LegSup = 0x0f30 usbus2: Intel 82801G (ICH7) USB controller USB-C on uhci2 uhci3: Intel 82801G (ICH7) USB controller USB-D port 0xb480-0xb49f irq 16 at device 29.3 on pci0 uhci3: [ITHREAD] uhci3: LegSup = 0x0f30 usbus3: Intel 82801G (ICH7) USB controller USB-D on uhci3 ehci0: Intel 82801GB/R (ICH7) USB 2.0 controller mem 0xfe837c00-0xfe837fff irq 23 at device 29.7 on pci0 ehci0: [ITHREAD] usbus4: waiting for BIOS to give up control usbus4: EHCI version 1.0 usbus4: Intel 82801GB/R (ICH7) USB 2.0 controller on ehci0 pcib3: MPTable PCI-PCI bridge at device 30.0 on pci0 pci3: PCI bus on pcib3 rl0: RealTek 8139 10/100BaseTX port 0xec00-0xecff mem 0xfebffc00-0xfebffcff irq 16 at device 0.0 on pci3 miibus0: MII bus on rl0 rlphy0: RealTek internal media interface PHY 0 on miibus0 rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto rl0: Ethernet address: 00:50:fc:44:23:0e rl0: [ITHREAD] isab0: PCI-ISA bridge at device 31.0 on pci0 isa0: ISA bus on isab0 atapci0: Intel ICH7M SATA150 controller port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xffa0-0xffaf at device 31.2 on pci0 ata0: ATA channel 0 on atapci0 ata0: [ITHREAD] ata1: ATA channel 1 on atapci0 ata1: [ITHREAD] pci0: serial bus, SMBus at device 31.3 (no driver attached) cpu0 on motherboard est0: Enhanced SpeedStep Frequency Control on cpu0 est: CPU supports
FreeBSD as USB joystick
Hi, I'm wondering if I can turn my FreeBSD into a (very expensive ;-)) joystick. That is, I have a PS2 and want to be able to control it via my laptop. This would amount to connecting a USB cable between my PS2 and my laptop, and getting the PS2 to detect it as a joystick with the right identifier string, and being able to send button presses etc via my laptop to the PS2. Does anybody have any starting points as to how I can achieve this? Regards, Sebastiaan P.S.: For those of you who must know, I want to interface my electronic drum module (Roland TD-9KS) with the Rockband game. The idea is to use a cheap midi card and convert the incoming notes into joystick button presses :) smime.p7s Description: S/MIME Cryptographic Signature
Re: FreeBSD as USB joystick
Hi, Wojciech Puchar wrote: That is, I have a PS2 and want to be able to control it via my laptop. This would amount to connecting a USB cable between my PS2 and my laptop, and getting the PS2 to detect it as a joystick with the right identifier string, and being able to send button presses etc via my laptop to the PS2. PC USB controllers has only host mode, not device mode, so the answer is no. Ok, that's a clear answer. Are there any alternatives? For example a PCI expansion card that does USB device mode and is programmable? Might be difficult to get working under FreeBSD though maybe? Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
Re: CARP bridge
Hi, Nikos Vassiliadis wrote: Sebastiaan van Erk wrote: Thanks for the suggestion. I tried it, but unfortunately the carp device never leaves the INIT state when I put the ip on the bridge. :-( I did find some similar problem here: http://www.freebsd.org/cgi/query-pr.cgi?pr=125816 I just noticed that. On -CURRENT carp tells you that's not supported: bridge0: carp is not supported for this interface type OTOH why do you even have to use the VIP from the remote side of the bridge? The only reason I can think of, for doing such a thing, is to get *all* traffic from the remote location through a single redundant router, the one with the VIP. Is this the case? It is indeed a single redundant router, though the traffic from the other side of the bridge (the OpenVPN clients) generally don't need to be routed redudantantly. The OpenVPN clients use OpenVPN's redundancy (multiple remote xxx.xxx.xxx.xxx lines), and thus use the non-redundant IP address of the OpenVPN client they're connected to as gateway (which is fine, because if the server dies OpenVPN connects to a different server anyway)... So I don't really *NEED* the CARP ip address over the bridge (the static arp works, so I have a working solution, albeit an ugly one; an ARP request generates a reply from every member of the redundant cluster). I guess it's just not a supported configuration yet and it's not my stupidity (in this case anyway ;-)) that's the problem. Nikos Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
CARP bridge
Hi, I have a bridged OpenVPN setup where the OpenVPN tap0 driver is bridged (via bridge0) to the physical em1 interface, which has a VIP via a carp1 interface: em1: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST metric 0 mtu 1500 options=98VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM ether 00:0c:29:61:2a:55 inet 10.0.80.77 netmask 0xff00 broadcast 10.0.80.255 media: Ethernet autoselect (1000baseTX full-duplex) status: active bridge0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 ether 9a:6a:9f:b2:65:da id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15 maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200 root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0 member: tap0 flags=143LEARNING,DISCOVER,AUTOEDGE,AUTOPTP ifmaxaddr 0 port 11 priority 128 path cost 200 member: em1 flags=143LEARNING,DISCOVER,AUTOEDGE,AUTOPTP ifmaxaddr 0 port 2 priority 128 path cost 2 tap0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST metric 0 mtu 1500 ether 00:bd:48:03:00:00 Opened by PID 24616 carp1: flags=49UP,LOOPBACK,RUNNING metric 0 mtu 1500 inet 10.0.80.74 netmask 0xff00 carp: MASTER vhid 2 advbase 1 advskew 0 The problem I have is that when I ping the VIP from a VPN client (on tap0), the server receives arp requests for the VIP on tap0, but it does not respond to them: # tcpdump -i tap0 -ln 11:29:13.637048 arp who-has 10.0.80.74 tell 10.0.80.6 Is there any way to get the server to respond to arp requests on tap0 for the VIP? This is all on FreeBSD 7.1 with OpenVPN 2.0.6 (both client and server). Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
Re: CARP bridge
Hi, Julien Cigar wrote: On Wed, 2009-04-29 at 11:37 +0200, Sebastiaan van Erk wrote: Hi, I have a bridged OpenVPN setup where the OpenVPN tap0 driver is bridged (via bridge0) to the physical em1 interface, which has a VIP via a carp1 interface: em1: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST metric 0 mtu 1500 options=98VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM ether 00:0c:29:61:2a:55 inet 10.0.80.77 netmask 0xff00 broadcast 10.0.80.255 media: Ethernet autoselect (1000baseTX full-duplex) status: active bridge0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 ether 9a:6a:9f:b2:65:da id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15 maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200 root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0 member: tap0 flags=143LEARNING,DISCOVER,AUTOEDGE,AUTOPTP ifmaxaddr 0 port 11 priority 128 path cost 200 member: em1 flags=143LEARNING,DISCOVER,AUTOEDGE,AUTOPTP ifmaxaddr 0 port 2 priority 128 path cost 2 tap0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST metric 0 mtu 1500 ether 00:bd:48:03:00:00 Opened by PID 24616 carp1: flags=49UP,LOOPBACK,RUNNING metric 0 mtu 1500 inet 10.0.80.74 netmask 0xff00 carp: MASTER vhid 2 advbase 1 advskew 0 The problem I have is that when I ping the VIP from a VPN client (on tap0), the server receives arp requests for the VIP on tap0, but it does not respond to them: # tcpdump -i tap0 -ln 11:29:13.637048 arp who-has 10.0.80.74 tell 10.0.80.6 Is there any way to get the server to respond to arp requests on tap0 for the VIP? Maybe you've to do ARP Proxy on one side ? Try to add an ARP entry in the ARP table with arp (arp -s 1.2.3.4 MAC foo) .. Thanks for the suggestion. Ok, static arp works: that is, if I take the carp1 mac address and add it to the arp table using: arp -s 10.0.80.74 00:00:5e:00:01:02 pub The ping starts to work. I'm still a bit confused why I have to do this though, because I can ping the non-shared IP 10.0.80.77 from the VPN client (via tap0) without any static arp, and I can ping the shared VIP (10.0.80.74) from clients on the physical network (em1) as well without any static arp. It's only when the ping it has to cross the bridge that it's an issue. Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
Re: CARP bridge
Hi, Nikos Vassiliadis wrote: Sebastiaan van Erk wrote: Julien Cigar wrote: Maybe you've to do ARP Proxy on one side ? Try to add an ARP entry in the ARP table with arp (arp -s 1.2.3.4 MAC foo) .. Thanks for the suggestion. Ok, static arp works: that is, if I take the carp1 mac address and add it to the arp table using: arp -s 10.0.80.74 00:00:5e:00:01:02 pub The ping starts to work. I'm still a bit confused why I have to do this though, because I can ping the non-shared IP 10.0.80.77 from the VPN client (via tap0) without any static arp, and I can ping the shared VIP (10.0.80.74) from clients on the physical network (em1) as well without any static arp. It's only when the ping it has to cross the bridge that it's an issue. Does it make any difference if you set the IP address on the bridge0 iface and not on the physical one? I recall that the recommended setup is to use IP addresses on the bridge interface and leave the members of the bridge IPless. Nikos Thanks for the suggestion. I tried it, but unfortunately the carp device never leaves the INIT state when I put the ip on the bridge. :-( I did find some similar problem here: http://www.freebsd.org/cgi/query-pr.cgi?pr=125816 Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
esxi and freebsd vlans
Hi, I ran into the ESXi limit of 4 NICs per VM, so I figured I would work around this using FreeBSD's vlan devices. I made 2 test installs with the following interface configuration: test1: ifconfig em0 inet 10.10.10.1 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.1 netmask 255.255.255.0 vlan 22 vlandev em0 test2: ifconfig em0 inet 10.10.10.2 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.2 netmask 255.255.255.0 vlan 22 vlandev em0 I can ping the other machine using the 10.10.10.x IP address no problem, but the 192.168.1.x addresses don't work. I've tried setting the vlan id on the vSwitch to none and to 22, but in neither of the two cases does it work. Does anybody have FreeBSD vlan's working on ESXi or know how to get it working? Many thanks, Sebastiaan van Erk smime.p7s Description: S/MIME Cryptographic Signature
Re: esxi and freebsd vlans
Hi, Thanks for your response! :-) Michael K. Smith - Adhost wrote: Hello Sebastian: Hi, I ran into the ESXi limit of 4 NICs per VM, so I figured I would work around this using FreeBSD's vlan devices. I made 2 test installs with the following interface configuration: test1: ifconfig em0 inet 10.10.10.1 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.1 netmask 255.255.255.0 vlan 22 vlandev em0 test2: ifconfig em0 inet 10.10.10.2 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.2 netmask 255.255.255.0 vlan 22 vlandev em0 I can ping the other machine using the 10.10.10.x IP address no problem, but the 192.168.1.x addresses don't work. I've tried setting the vlan id on the vSwitch to none and to 22, but in neither of the two cases does it work. [Michael K. Smith - Adhost] You will need to make sure the switchport facing your server is set to 802.1Q trunk and has VLAN 22 allowed. The IP address on em0 itself is untagged so it will work regardless of the port settings on the switch. VLAN 22 has the 4-byte header attached so the other side has to recognize the tag. Just to clarify, both VM's are on a single ESXi server on a virtual switch, so no network hardware is involved. It is possible to configure the virtual switch to be on no vlan and on a specific vlan, but in both cases it didn't work. I'll see if I there are more settings I can change on the virtual switch. Regards, Mike Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
Re: esxi and freebsd vlans
Hi, Michael K. Smith - Adhost wrote: Hello Sebastian: Hi, I ran into the ESXi limit of 4 NICs per VM, so I figured I would work around this using FreeBSD's vlan devices. I made 2 test installs with the following interface configuration: test1: ifconfig em0 inet 10.10.10.1 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.1 netmask 255.255.255.0 vlan 22 vlandev em0 test2: ifconfig em0 inet 10.10.10.2 netmask 255.255.255.0 ifconfig vlan create ifconfig vlan0 inet 192.168.1.2 netmask 255.255.255.0 vlan 22 vlandev em0 I can ping the other machine using the 10.10.10.x IP address no problem, but the 192.168.1.x addresses don't work. I've tried setting the vlan id on the vSwitch to none and to 22, but in neither of the two cases does it work. [Michael K. Smith - Adhost] You will need to make sure the switchport facing your server is set to 802.1Q trunk and has VLAN 22 allowed. The IP address on em0 itself is untagged so it will work regardless of the port settings on the switch. VLAN 22 has the 4-byte header attached so the other side has to recognize the tag. Your reply inspired me to google 802.1Q and ESXi, and I found a document describing different VLAN solutions on ESXi (http://www.vmware.com/pdf/esx3_vlan_wp.pdf). In this document it says that to make guest tagging work I have to set the VLAN ID of the port group on the virtual switch to 4095. After I did this, the above configuration works. Regards, Mike Regards, Sebastiaan smime.p7s Description: S/MIME Cryptographic Signature
Re: Problem setting up PPTP server
Hi, I solved the problem, and I'll post the resolution for reference purposes. There were two configuration issues: 1) To enable MPPE encryption the encryption option on the bundle should be DISABLED, since MPPE lives in the compression layer and not the encryption layer; thus by commenting the set bundle enable encryption and set bundle enable crypt-reqd lines, this problem was solved. 2) Since the client (a linux ppp client) had the option require-mppe-128 enabled, the server got a config request for 128 bit MPPE stateless, but then rejected it. The reason for this was the set ccp enable mppc line, which should have read set ccp yes mppc since otherwise the accept flag is disabled. Finally, I have not found a way to force MPPE encryption on the *server* side. There seems to be no equivalent to require-mppe-128 or set bundle enable comp-reqd or something like that in mpd. Does anybody know a way to require MPPE in mpd? Regards, Sebastiaan Sebastiaan van Erk wrote: Hi, I'm trying to set up mpd (3.18) on a FreeBSD server to allow windows and linux clients to connect. Currently I've only been trying to make the linux connection succeed (Ubuntu with ppp-2.4.4), but I get the following output from linux pppd: CHAP authentication succeeded sent [CCP ConfReq id=0x1 mppe +H -M +S -L -D -C] rcvd [IPCP ConfReq id=0x1 addr 10.0.0.1 compress VJ 0f 00] sent [IPCP TermAck id=0x1] rcvd [CCP ConfReq id=0x1 mppe +H -M +S -L -D -C] sent [CCP ConfAck id=0x1 mppe +H -M +S -L -D -C] rcvd [CCP ConfRej id=0x1 mppe +H -M +S -L -D -C] MPPE required but peer refused sent [LCP TermReq id=0x2 MPPE required but peer refused] rcvd [LCP TermAck id=0x4] Connection terminated. I don't understand why the linux client sends a TermAck on IPCP without getting a TermReq first, but apart from that mpd seems to be failing to negotiate MPPE even though I configured both the linux client and mpd to allow ONLY mppe-128, i.e., in my mpd.conf I have the following: # Microsoft Point to Point Encryption set bundle enable compression set ccp enable mppc set ccp enable mpp-e128 set ccp yes mpp-stateless set ccp no mpp-e40 The linux client is requesting exactly that: MPPE 128 bit stateless as can been seen from the mpd log: [pptp0] CCP: rec'd Configure Request #1 link 0 (Req-Sent) MPPC 0x0140: MPPE, 128 bit, stateless Am I doing something obviously wrong? Does anybody know how to fix this problem? Any advice is welcome! Thanks in advance, Sebastiaan P.S.: I have attached the mpd.conf, mpd.links, mpd.log and ppp.log files for completeness. startup: default: load client0 client0: new -i ng0 pptp0 pptp set ipcp ranges 10.0.0.1/32 10.0.0.128/32 load pptp_common pptp_common: set iface disable on-demand set iface enable proxy-arp set iface idle 0 set iface enable tcpmssfix set link yes acfcomp protocomp set link disable pap set link enable chap set link no chap-md5 set link mtu 1460 set link keep-alive 10 60 set ipcp dns 192.168.1.10 192.168.1.1 set ipcp nbns 10.0.0.1 # Microsoft Point to Point Encryption set bundle enable compression set ccp enable mppc set ccp enable mpp-e128 set ccp yes mpp-stateless set ccp no mpp-e40 # Require encryption or drop connection set bundle enable encryption set bundle enable crypt-reqd pptp: set link type pptp set pptp self 192.168.1.10 set pptp enable incoming set pptp disable originate ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem setting up PPTP server
Hi, I'm trying to set up mpd (3.18) on a FreeBSD server to allow windows and linux clients to connect. Currently I've only been trying to make the linux connection succeed (Ubuntu with ppp-2.4.4), but I get the following output from linux pppd: CHAP authentication succeeded sent [CCP ConfReq id=0x1 mppe +H -M +S -L -D -C] rcvd [IPCP ConfReq id=0x1 addr 10.0.0.1 compress VJ 0f 00] sent [IPCP TermAck id=0x1] rcvd [CCP ConfReq id=0x1 mppe +H -M +S -L -D -C] sent [CCP ConfAck id=0x1 mppe +H -M +S -L -D -C] rcvd [CCP ConfRej id=0x1 mppe +H -M +S -L -D -C] MPPE required but peer refused sent [LCP TermReq id=0x2 MPPE required but peer refused] rcvd [LCP TermAck id=0x4] Connection terminated. I don't understand why the linux client sends a TermAck on IPCP without getting a TermReq first, but apart from that mpd seems to be failing to negotiate MPPE even though I configured both the linux client and mpd to allow ONLY mppe-128, i.e., in my mpd.conf I have the following: # Microsoft Point to Point Encryption set bundle enable compression set ccp enable mppc set ccp enable mpp-e128 set ccp yes mpp-stateless set ccp no mpp-e40 The linux client is requesting exactly that: MPPE 128 bit stateless as can been seen from the mpd log: [pptp0] CCP: rec'd Configure Request #1 link 0 (Req-Sent) MPPC 0x0140: MPPE, 128 bit, stateless Am I doing something obviously wrong? Does anybody know how to fix this problem? Any advice is welcome! Thanks in advance, Sebastiaan P.S.: I have attached the mpd.conf, mpd.links, mpd.log and ppp.log files for completeness. startup: default: load client0 client0: new -i ng0 pptp0 pptp set ipcp ranges 10.0.0.1/32 10.0.0.128/32 load pptp_common pptp_common: set iface disable on-demand set iface enable proxy-arp set iface idle 0 set iface enable tcpmssfix set link yes acfcomp protocomp set link disable pap set link enable chap set link no chap-md5 set link mtu 1460 set link keep-alive 10 60 set ipcp dns 192.168.1.10 192.168.1.1 set ipcp nbns 10.0.0.1 # Microsoft Point to Point Encryption set bundle enable compression set ccp enable mppc set ccp enable mpp-e128 set ccp yes mpp-stateless set ccp no mpp-e40 # Require encryption or drop connection set bundle enable encryption set bundle enable crypt-reqd pptp: set link type pptp set pptp self 192.168.1.10 set pptp enable incoming set pptp disable originate ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]