[PLUG] RE: [lug] Astaro Security Linux: PPTP setup question - Win 2000 Error 778

Percival, Ray Ray.Percival at summit.fiserv.com
Thu Apr 3 00:56:05 UTC 2003


DAve,

IPSEC client software tends to be very specific to the vendor for example Checkpoint's client (http://www.checkpoint.com) will not play nice with Cisco (http://www.cisco.com) same with Netscreen, etc. With the exception of Cisco this is because of the way the clients are for example Free S/wan can talk nicely to Checkpoint and that is what I do. :) IPSEC is *the* standard it is what all the big boys use it is what security auditors look for it is tested and secure as opposed to PPTP which is, of course, not. 

This is why is seemed so odd to me that you where talking about PPTP to a firewall/vpn box simply because the only people who use PPTP are people who are trying to use something MSian for a firewall/vpn box. So as far as getting winders to talk to PPTP on a non-winders vpn box I am sorry but I got nothing. It looks to me like Astaro has a client (http://www.astaro.com/php/statics.php?action=remoteipsec&lang=gb) and if I had decided that I like them enough to deploy them. And as an aside I *really* hope you are not going with them just because the OS that their stuff runs on happens to be Linux and they do look interesting I'm certainly going to read more. I would use their client. In general the best client to use for any given VPN box is the client that that box comes with. This is true for a number of reasons. 

1. You are not going to run into nearly as many *weird* problems. 

2. While all the vendors out there claim to be IPSEC they are all really IPSEC plus. If there is an expection to this rule I have yet to find it. Therefore with the clients you get goodies like being able to enforce "security policies" for example with the Checkpoint client we cut off all traffic to anybody except us when the VPN is on. Various things like that. 



-----Original Message-----
From: David Mandel 
Sent: Wednesday, March 26, 2003 6:54 PM
To: Percival, Ray
Cc: plug at pdxLinux.org; lug at peak.org; eug-lug at lists.efn.org
Subject: RE: [lug] Astaro Security Linux: PPTP setup question - Win 2000
Error 778


On Mon, 24 Mar 2003, Percival, Ray wrote:

> ARe you trying to talk from a Win2k client to a Linux box?
> If so what are you running on the Linux box and why are you trying PPTP
> which is a protocol with so many problems that basically sending in the
> clear is just as good? Please more detail on what you are doing and why.
>

Ray,

    The Linux server is a firewall running Astaro Security Linux - which
is a very refined, cut down Debian variant.  (Well, there actually isn't
much Debian left.)  Astaro is a large firewall distribution, a bit
like Smoothwall, but much better and much more expensive.  It includes
packet filters, proxy servers, virus scans, IPSEC VPN, PPTP VPN, decent
reporting functions, etc.  Unneeded services have been removed to the
point that there are only about 100 commands left.  Most services run
in chroot jails.  It is pretty nice.

    My client wants to support a variety of Windows clients on the
VPN including Win 98, Win ME, Win 2000, and Win XP.  However, most of
the clients are Win 2000 or Win XP.  I have recommended getting IPSEC
client software for all the PCs or possibly using the IPSEC that
comes with Win 2000 and Win XP, but my client is reluctant to switch
from PPTP for a number of very good reasons.  At this point, it looks
like we will install PPTP and gradually migrate to IPSEC - which of
course is much better for several reasons - like it is relatively secure
and PPTP is not.

    In any case, what IPSEC client software do you normally recommend on:

                 Win 98
                 Win ME
                 Win 2000
                 Win XP

Do you recommend MicroSoft's IPSEC on Win 2000 and/or Win XP or do you
recommend something like SSH Sentinel or is there something more
OpenSource than this?

                                                     Dave Mandel


>
> -----Original Message-----
> From: David Mandel
> Sent: Friday, March 21, 2003 10:53 PM
> To: Portland Linux/Unix Group; Mid-Willamette Valley Linux Users Group;
> Eugene Linux Users List
> Subject: [lug] Astaro Security Linux: PPTP setup question - Win 2000
> Error 778
>
>
>
> Everyone have any experience configuring PPTP?
> If so, please help.  I'm having a great deal of trouble with this.
>
> I haven't set up and VPN using PPTP before and don't know what I'm doing.
> One of the errors I have been getting is:
>
> On the Windows 2000 client:
>    Error 778:  It was not possible to verify the identity of the server
>
> At the same time the daemon log file on the Astaro box contains:
>
> Mar 13 21:51:22 ASL-Office pppd[3178]: pppd 2.4.0 started by (unknown),
> uid 0
> Mar 13 21:51:22 ASL-Office pppd[3178]: using channel 1
> Mar 13 21:51:22 ASL-Office pppd[3178]: Using interface ppp0
> Mar 13 21:51:22 ASL-Office pppd[3178]: Connect: ppp0 <--> /dev/ttyp0
> Mar 13 21:51:23 ASL-Office pppd[3178]: scan_authfile: found IP address
> 127.0.0.1
> Mar 13 21:51:23 ASL-Office pppd[3178]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x8d5e7d85> <pcomp> <accomp>]
> Mar 13 21:51:24 ASL-Office pppd[3178]: rcvd [LCP ConfReq id=0x1 <magic
> 0x570749ae> <pcomp> <accomp> < 0d 03 06> <mrru 1614> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.01]>]
> Mar 13 21:51:24 ASL-Office pppd[3178]: sent [LCP ConfRej id=0x1 < 0d 03
> 06> <mrru 1614>]
> Mar 13 21:51:24 ASL-Office pppd[3178]: rcvd [LCP ConfReq id=0x2 <magic
> 0x570749ae> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.01]>]
> Mar 13 21:51:24 ASL-Office pppd[3178]: sent [LCP ConfAck id=0x2 <magic
> 0x570749ae> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.01]>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x8d5e7d85> <pcomp> <accomp>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP ConfNak id=0x1 <mru
> 1500>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP ConfReq id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x8d5e7d85> <pcomp> <accomp>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP ConfAck id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x8d5e7d85> <pcomp> <accomp>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP EchoReq id=0x0
> magic=0x8d5e7d85]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [CHAP Challenge id=0x1
> <38514e860b727cc367e79479f9d2d618>, name = "pptp"]
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP code=0xc id=0x3 57 07 49
> ae 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP CodeRej id=0x3 0c 03 00
> 12 57 07 49 ae 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP code=0xc id=0x4 57 07 49
> ae 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30 30]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP CodeRej id=0x4 0c 04 00
> 1c 57 07 49 ae 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30
> 30]
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP EchoRep id=0x0
> magic=0x570749ae]
> Mar 13 21:51:26 ASL-Office aua[327]: flushing cache
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [CHAP Response id=0x1
> <dc68d5d89c1950e3ae75737fb0ff1f380000000000000000428f4f4bed68ecfedc5411cbbd03ab4519130bd17509059300>,
> name = "dmandel"]
> Mar 13 21:51:26 ASL-Office pppd[3178]: No CHAP secret found for
> authenticating dmandel on pptp, trying aua with MS-CHAP
> Mar 13 21:51:26 ASL-Office aua[3189]: U:dmandel F:pptp R:OK
> C:24DE00B08C81B5A9A6B45B27E0014022:192.68.0.44
> Mar 13 21:51:26 ASL-Office pppd[3178]: AUAconnect - Returned Buffer  4f 4b
> 20 5b 32 34 44 45 30 30 42 30 38 43 38 31 42 35 41 39 41 36 42 34 35 42 32
> 37 45 30
> Mar 13 21:51:26 ASL-Office pppd[3178]: AUAconnect - Returned PasswordHash
> 24 de 00 b0 8c 81 b5 a9 a6 b4 5b 27 e0 01 40 22
> Mar 13 21:51:26 ASL-Office pppd[3178]: AUAconnect - Returned IPAddr
> 192.68.0.44
> Mar 13 21:51:26 ASL-Office pppd[3178]: ChapMS_v2_Auth_aua PWDHASH  24 de
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00
> Mar 13 21:51:26 ASL-Office pppd[3178]: ChapMS_v2_Auth_aua  53 3d 44 34 44
> 43 45 30 37 37 41 35 43 30 42 30 30 37 36 46 38 35 35 30 31 31 31 38 38 46
> 39 30 33 34 35 45 39 44 36 39 41 41 00
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [CHAP Success id=0x1
> "S=D4DCE077A5C0B0076F855011188F90345E9D69AA"]
> Mar 13 21:51:26 ASL-Office pppd[3178]: proceeding to network phase (peer
> name 'dmandel')
> Mar 13 21:51:26 ASL-Office pppd[3178]: In secrets file: unrecognized
> option 'NO_AUA_OPTS_YET'
> Mar 13 21:51:26 ASL-Office pppd[3178]: starting networks
> (start_networks())
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.1> <compress VJ 0f 01>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [CCP ConfReq id=0x1 <mppe 1 0
> 0 40> <bsd v1 15>]
> Mar 13 21:51:26 ASL-Office pppd[3178]: MSCHAP-v2 peer authentication
> succeeded for dmandel
> Mar 13 21:51:26 ASL-Office pppd[3178]: rcvd [LCP TermReq id=0x5
> "W\007I\37777777656\000<\37777777715t\000\000\003\n"]
> Mar 13 21:51:26 ASL-Office pppd[3178]: LCP terminated by peer
> (W^GIM-.^@<M-Mt^@^@^C^J)
> Mar 13 21:51:26 ASL-Office pppd[3178]: sent [LCP TermAck id=0x5]
> Mar 13 21:51:26 ASL-Office pppd[3178]: Modem hangup
> Mar 13 21:51:26 ASL-Office pppd[3178]: Connection terminated.
> Mar 13 21:51:26 ASL-Office pppd[3178]: Connect time 0.1 minutes.
> Mar 13 21:51:26 ASL-Office pppd[3178]: Sent 29 bytes, received 0 bytes.
> Mar 13 21:51:26 ASL-Office pppd[3178]: Exit.
> Mar 13 21:52:26 ASL-Office pppd[3334]: pppd 2.4.0 started by (unknown),
> uid 0
> Mar 13 21:52:26 ASL-Office pppd[3334]: using channel 2
> Mar 13 21:52:26 ASL-Office pppd[3334]: Using interface ppp0
> Mar 13 21:52:26 ASL-Office pppd[3334]: Connect: ppp0 <--> /dev/ttyp0
> Mar 13 21:52:26 ASL-Office pppd[3334]: scan_authfile: found IP address
> 127.0.0.1
> Mar 13 21:52:26 ASL-Office pppd[3334]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x91f6a6c9> <pcomp> <accomp>]
> Mar 13 21:52:26 ASL-Office pppd[3334]: rcvd [LCP ConfReq id=0x0 <magic
> 0x1d24771> <pcomp> <accomp> < 0d 03 06> <mrru 1614> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.02]>]
> Mar 13 21:52:26 ASL-Office pppd[3334]: sent [LCP ConfRej id=0x0 < 0d 03
> 06> <mrru 1614>]
> Mar 13 21:52:26 ASL-Office pppd[3334]: rcvd [LCP ConfReq id=0x1 <magic
> 0x1d24771> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.02]>]
> Mar 13 21:52:26 ASL-Office pppd[3334]: sent [LCP ConfAck id=0x1 <magic
> 0x1d24771> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.02]>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x91f6a6c9> <pcomp> <accomp>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP ConfNak id=0x1 <mru
> 1500>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP ConfReq id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x91f6a6c9> <pcomp> <accomp>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP ConfAck id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x91f6a6c9> <pcomp> <accomp>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP EchoReq id=0x0
> magic=0x91f6a6c9]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [CHAP Challenge id=0x1
> <8b34be0dc0570277af0159101c32518a>, name = "pptp"]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP code=0xc id=0x2 01 d2 47
> 71 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP CodeRej id=0x3 0c 02 00
> 12 01 d2 47 71 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP code=0xc id=0x3 01 d2 47
> 71 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30 30]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP CodeRej id=0x4 0c 03 00
> 1c 01 d2 47 71 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30
> 30]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP EchoRep id=0x0
> magic=0x1d24771]
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [CHAP Response id=0x1
> <60e2628d85c7f670e53d655924d472de00000000000000002a0f81edef60d5b9fb1b7862bbb8d4cfae3f6a627e98f44400>,
> name = "dmandel"]
> Mar 13 21:52:29 ASL-Office pppd[3334]: No CHAP secret found for
> authenticating dmandel on pptp, trying aua with MS-CHAP
> Mar 13 21:52:29 ASL-Office aua[3343]: U:dmandel F:pptp R:OK
> C:24DE00B08C81B5A9A6B45B27E0014022:192.68.0.44
> Mar 13 21:52:29 ASL-Office pppd[3334]: AUAconnect - Returned Buffer  4f 4b
> 20 5b 32 34 44 45 30 30 42 30 38 43 38 31 42 35 41 39 41 36 42 34 35 42 32
> 37 45 30
> Mar 13 21:52:29 ASL-Office pppd[3334]: AUAconnect - Returned PasswordHash
> 24 de 00 b0 8c 81 b5 a9 a6 b4 5b 27 e0 01 40 22
> Mar 13 21:52:29 ASL-Office pppd[3334]: AUAconnect - Returned IPAddr
> 192.68.0.44
> Mar 13 21:52:29 ASL-Office pppd[3334]: ChapMS_v2_Auth_aua PWDHASH  24 de
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00
> Mar 13 21:52:29 ASL-Office pppd[3334]: ChapMS_v2_Auth_aua  53 3d 39 35 38
> 39 32 41 32 37 43 35 32 46 30 44 31 33 32 35 31 35 44 36 30 38 44 44 44 45
> 39 45 44 45 42 39 41 31 31 42 35 35 00
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [CHAP Success id=0x1
> "S=95892A27C52F0D132515D608DDDE9EDEB9A11B55"]
> Mar 13 21:52:29 ASL-Office pppd[3334]: proceeding to network phase (peer
> name 'dmandel')
> Mar 13 21:52:29 ASL-Office pppd[3334]: In secrets file: unrecognized
> option 'NO_AUA_OPTS_YET'
> Mar 13 21:52:29 ASL-Office pppd[3334]: starting networks
> (start_networks())
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.1> <compress VJ 0f 01>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [CCP ConfReq id=0x1 <mppe 1 0
> 0 40> <bsd v1 15>]
> Mar 13 21:52:29 ASL-Office pppd[3334]: MSCHAP-v2 peer authentication
> succeeded for dmandel
> Mar 13 21:52:29 ASL-Office pppd[3334]: rcvd [LCP TermReq id=0x4 01 d2 47
> 71 00 3c cd 74 00 00 03 0a]
> Mar 13 21:52:29 ASL-Office pppd[3334]: LCP terminated by peer
> (^AM-RGq^@<M-Mt^@^@^C^J)
> Mar 13 21:52:29 ASL-Office pppd[3334]: sent [LCP TermAck id=0x4]
> Mar 13 21:52:29 ASL-Office pppd[3334]: Modem hangup
> Mar 13 21:52:29 ASL-Office pppd[3334]: Connection terminated.
> Mar 13 21:52:29 ASL-Office pppd[3334]: Connect time 0.1 minutes.
> Mar 13 21:52:29 ASL-Office pppd[3334]: Sent 29 bytes, received 0 bytes.
> Mar 13 21:52:29 ASL-Office pppd[3334]: Exit.
> Mar 13 21:53:29 ASL-Office pppd[3500]: pppd 2.4.0 started by (unknown),
> uid 0
> Mar 13 21:53:29 ASL-Office pppd[3500]: using channel 3
> Mar 13 21:53:29 ASL-Office pppd[3500]: Using interface ppp0
> Mar 13 21:53:29 ASL-Office pppd[3500]: Connect: ppp0 <--> /dev/ttyp0
> Mar 13 21:53:29 ASL-Office pppd[3500]: scan_authfile: found IP address
> 127.0.0.1
> Mar 13 21:53:29 ASL-Office pppd[3500]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x40a477e7> <pcomp> <accomp>]
> Mar 13 21:53:29 ASL-Office pppd[3500]: rcvd [LCP ConfReq id=0x0 <magic
> 0x29cf304a> <pcomp> <accomp> < 0d 03 06> <mrru 1614> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.03]>]
> Mar 13 21:53:29 ASL-Office pppd[3500]: sent [LCP ConfRej id=0x0 < 0d 03
> 06> <mrru 1614>]
> Mar 13 21:53:29 ASL-Office pppd[3500]: rcvd [LCP ConfReq id=0x1 <magic
> 0x29cf304a> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.03]>]
> Mar 13 21:53:29 ASL-Office pppd[3500]: sent [LCP ConfAck id=0x1 <magic
> 0x29cf304a> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.03]>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0x40a477e7> <pcomp> <accomp>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP ConfNak id=0x1 <mru
> 1500>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP ConfReq id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x40a477e7> <pcomp> <accomp>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP ConfAck id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0x40a477e7> <pcomp> <accomp>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP EchoReq id=0x0
> magic=0x40a477e7]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [CHAP Challenge id=0x1
> <00660d30df712b35c12a9e1f064617a2>, name = "pptp"]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP code=0xc id=0x2 29 cf 30
> 4a 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP CodeRej id=0x3 0c 02 00
> 12 29 cf 30 4a 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP code=0xc id=0x3 29 cf 30
> 4a 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30 30]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP CodeRej id=0x4 0c 03 00
> 1c 29 cf 30 4a 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30
> 30]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP EchoRep id=0x0
> magic=0x29cf304a]
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [CHAP Response id=0x1
> <cfdcdfef2b2f01c84d6c153be8266c7b0000000000000000888a359ab596b3a52b362364e19bdedca49a80cdb6b3fe0300>,
> name = "dmandel"]
> Mar 13 21:53:32 ASL-Office pppd[3500]: No CHAP secret found for
> authenticating dmandel on pptp, trying aua with MS-CHAP
> Mar 13 21:53:32 ASL-Office aua[3511]: U:dmandel F:pptp R:OK
> C:24DE00B08C81B5A9A6B45B27E0014022:192.68.0.44
> Mar 13 21:53:32 ASL-Office pppd[3500]: AUAconnect - Returned Buffer  4f 4b
> 20 5b 32 34 44 45 30 30 42 30 38 43 38 31 42 35 41 39 41 36 42 34 35 42 32
> 37 45 30
> Mar 13 21:53:32 ASL-Office pppd[3500]: AUAconnect - Returned PasswordHash
> 24 de 00 b0 8c 81 b5 a9 a6 b4 5b 27 e0 01 40 22
> Mar 13 21:53:32 ASL-Office pppd[3500]: AUAconnect - Returned IPAddr
> 192.68.0.44
> Mar 13 21:53:32 ASL-Office pppd[3500]: ChapMS_v2_Auth_aua PWDHASH  24 de
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00
> Mar 13 21:53:32 ASL-Office pppd[3500]: ChapMS_v2_Auth_aua  53 3d 46 32 30
> 30 31 38 41 41 43 38 33 43 43 30 39 37 30 39 44 41 34 43 36 31 44 37 32 44
> 44 33 30 39 42 35 35 42 33 44 41 43 00
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [CHAP Success id=0x1
> "S=F20018AAC83CC09709DA4C61D72DD309B55B3DAC"]
> Mar 13 21:53:32 ASL-Office pppd[3500]: proceeding to network phase (peer
> name 'dmandel')
> Mar 13 21:53:32 ASL-Office pppd[3500]: In secrets file: unrecognized
> option 'NO_AUA_OPTS_YET'
> Mar 13 21:53:32 ASL-Office pppd[3500]: starting networks
> (start_networks())
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.1> <compress VJ 0f 01>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [CCP ConfReq id=0x1 <mppe 1 0
> 0 40> <bsd v1 15>]
> Mar 13 21:53:32 ASL-Office pppd[3500]: MSCHAP-v2 peer authentication
> succeeded for dmandel
> Mar 13 21:53:32 ASL-Office pppd[3500]: rcvd [LCP TermReq id=0x4
> ")\377777777170J\000<\37777777715t\000\000\003\n"]
> Mar 13 21:53:32 ASL-Office pppd[3500]: LCP terminated by peer
> ()M-O0J^@<M-Mt^@^@^C^J)
> Mar 13 21:53:32 ASL-Office pppd[3500]: sent [LCP TermAck id=0x4]
> Mar 13 21:53:32 ASL-Office pppd[3500]: Modem hangup
> Mar 13 21:53:32 ASL-Office pppd[3500]: Connection terminated.
> Mar 13 21:53:32 ASL-Office pppd[3500]: Connect time 0.1 minutes.
> Mar 13 21:53:32 ASL-Office pppd[3500]: Sent 29 bytes, received 0 bytes.
> Mar 13 21:53:32 ASL-Office pppd[3500]: Exit.
> Mar 13 21:54:33 ASL-Office pppd[3656]: pppd 2.4.0 started by (unknown),
> uid 0
> Mar 13 21:54:33 ASL-Office pppd[3656]: using channel 4
> Mar 13 21:54:33 ASL-Office pppd[3656]: Using interface ppp0
> Mar 13 21:54:33 ASL-Office pppd[3656]: Connect: ppp0 <--> /dev/ttyp0
> Mar 13 21:54:33 ASL-Office pppd[3656]: scan_authfile: found IP address
> 127.0.0.1
> Mar 13 21:54:33 ASL-Office pppd[3656]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0xe945bc76> <pcomp> <accomp>]
> Mar 13 21:54:33 ASL-Office pppd[3656]: rcvd [LCP ConfReq id=0x0 <magic
> 0x5086328a> <pcomp> <accomp> < 0d 03 06> <mrru 1614> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.04]>]
> Mar 13 21:54:33 ASL-Office pppd[3656]: sent [LCP ConfRej id=0x0 < 0d 03
> 06> <mrru 1614>]
> Mar 13 21:54:33 ASL-Office pppd[3656]: rcvd [LCP ConfReq id=0x1 <magic
> 0x5086328a> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.04]>]
> Mar 13 21:54:33 ASL-Office pppd[3656]: sent [LCP ConfAck id=0x1 <magic
> 0x5086328a> <pcomp> <accomp> <endpoint
> [local:a1.d0.4f.ef.63.55.41.76.8e.80.7f.06.df.4e.f9.22.00.00.00.04]>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [LCP ConfReq id=0x1 <mru 1490>
> <asyncmap 0x0> <auth chap 81> <magic 0xe945bc76> <pcomp> <accomp>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP ConfNak id=0x1 <mru
> 1500>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [LCP ConfReq id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0xe945bc76> <pcomp> <accomp>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP ConfAck id=0x2 <asyncmap
> 0x0> <auth chap 81> <magic 0xe945bc76> <pcomp> <accomp>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [LCP EchoReq id=0x0
> magic=0xe945bc76]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [CHAP Challenge id=0x1
> <5088e4c3417a2582408a81827c82870f>, name = "pptp"]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP code=0xc id=0x2 50 86 32
> 8a 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [LCP CodeRej id=0x3 0c 02 00
> 12 50 86 32 8a 4d 53 52 41 53 56 35 2e 30 30]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP code=0xc id=0x3 50 86 32
> 8a 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30 30]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [LCP CodeRej id=0x4 0c 03 00
> 1c 50 86 32 8a 4d 53 52 41 53 2d 31 2d 44 4d 41 4e 44 45 4c 2d 32 30 30
> 30]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP EchoRep id=0x0
> magic=0x5086328a]
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [CHAP Response id=0x1
> <494b6cd6ebe20965827b57c2c6b9cea10000000000000000eff346e89d24f8c3a54a33d28e3cd6af0e4ce7f8d808598b00>,
> name = "dmandel"]
> Mar 13 21:54:36 ASL-Office pppd[3656]: No CHAP secret found for
> authenticating dmandel on pptp, trying aua with MS-CHAP
> Mar 13 21:54:36 ASL-Office aua[3664]: U:dmandel F:pptp R:OK
> C:24DE00B08C81B5A9A6B45B27E0014022:192.68.0.44
> Mar 13 21:54:36 ASL-Office pppd[3656]: AUAconnect - Returned Buffer  4f 4b
> 20 5b 32 34 44 45 30 30 42 30 38 43 38 31 42 35 41 39 41 36 42 34 35 42 32
> 37 45 30
> Mar 13 21:54:36 ASL-Office pppd[3656]: AUAconnect - Returned PasswordHash
> 24 de 00 b0 8c 81 b5 a9 a6 b4 5b 27 e0 01 40 22
> Mar 13 21:54:36 ASL-Office pppd[3656]: AUAconnect - Returned IPAddr
> 192.68.0.44
> Mar 13 21:54:36 ASL-Office pppd[3656]: ChapMS_v2_Auth_aua PWDHASH  24 de
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00
> Mar 13 21:54:36 ASL-Office pppd[3656]: ChapMS_v2_Auth_aua  53 3d 45 41 38
> 46 30 39 34 32 35 44 39 44 32 37 34 37 38 36 45 46 39 34 45 44 38 33 31 37
> 36 46 36 30 41 38 31 33 41 30 45 30 00
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [CHAP Success id=0x1
> "S=EA8F09425D9D274786EF94ED83176F60A813A0E0"]
> Mar 13 21:54:36 ASL-Office pppd[3656]: proceeding to network phase (peer
> name 'dmandel')
> Mar 13 21:54:36 ASL-Office pppd[3656]: In secrets file: unrecognized
> option 'NO_AUA_OPTS_YET'
> Mar 13 21:54:36 ASL-Office pppd[3656]: starting networks
> (start_networks())
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [IPCP ConfReq id=0x1 <addr
> 192.168.0.1> <compress VJ 0f 01>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: sent [CCP ConfReq id=0x1 <mppe 1 0
> 0 40> <bsd v1 15>]
> Mar 13 21:54:36 ASL-Office pppd[3656]: MSCHAP-v2 peer authentication
> succeeded for dmandel
> Mar 13 21:54:36 ASL-Office pppd[3656]: rcvd [LCP TermReq id=0x4
> "P\377777776062\37777777612\000<\37777777715t\000\000\003\n"]
> Mar 13 21:54:36 ASL-Office pppd[3656]: LCP terminated by peer
> (PM-^F2M-^J^@<M-Mt^@^@^C^J)
> Mar 13 21:54:36 ASL-Office pppd[3656]: ioctl(PPPIOCSASYNCMAP):
> Inappropriate ioctl for device(25)
> Mar 13 21:54:36 ASL-Office pppd[3656]: tcflush failed: Input/output error
> Mar 13 21:54:36 ASL-Office pppd[3656]: Exit.
>
>
> Any idea what is going on - or rather NOT going on?
> The system authenticates ok, and then promptly drops the connection.
> Both boxes are suppose to be using 128 bit encryption.
> ?????  I don't know what is going on.
>
>                                           Sincerely,
>                                           David Mandel
>                                           Chief Activist
>                                           Portland Linux/Unix Group
>                                           1440 NE 59th
>                                           Portland, Oregon 97213
>                                           (541) 730-5285 mobile
>
>    ======================================================================
>    David Mandel                        http://www.DavidMandel.com
>    Portland Linux/Unix Group           http://www.pdxLinux.org
>    ======================================================================
>
>
>
>


                                          Sincerely,
                                          David Mandel
                                          Chief Activist
                                          Portland Linux/Unix Group
                                          1440 NE 59th
                                          Portland, Oregon 97213
                                          (360) 260-2066 at work
                                          (541) 730-5285 cell

   ======================================================================
   David Mandel, Product Manager       http://www.MicroSharp.com
                          Other Affiliations
   David Mandel                        http://www.DavidMandel.com
   Portland Linux/Unix Group           http://pdxLinux.org
   LinuxFund                           http://LinuxFund.org
   ======================================================================







More information about the PLUG mailing list