VPN pptpd/pppd
Bonjour,
Apres beaucoup de recherche, je me tourne vers vous car je ne trouve pas la
solution.
Je souhaite mettre en place un server vpn tout ce qu'il y a de plus simple.
c'est à dire un vpn utilisant pptpd et une authentification chap donc aucun
cryptage (mppe).
Il s'agit surtout pour moi de bien comprendre le vpn et de voir concretement
les
advantages que l'on peux en tirer.
Donc j'utilise un serveur linux debian 3.0r2 avec un kernel maison et un client
de l'exterieur WinXP.
Ci-joint toutes les informations que j'ai trouvé utile de preciser.
Mais je n'arrive pas à m'authentifier, d'apres ce que j'ai compris et vu sur le
net, le server ppp n'arrive pas à l'authentifaication CHAP.
Et je ne comprends pas pourquoi.
Mon serveur linux fait office de gateway internet et de serveur samba et vpn
pour chez moi.
Merci de m'aider.
$pptpd --version
PoPToP v1.1.2
$pppd --version
pppd version 2.4.1
$uname -r
2.4.24
$cat /etc/pptpd.conf
speed 115200
option /etc/ppp/options.pptp
localip 192.168.100.1
remoteip 192.168.100.5-10
$cat /etc/ppp/options.pptp
debug
name linux
auth
#+chap
#+chapms
#+chapms-v2
require-chap
proxyarp
$cat /etc/ppp/chap-secrets
"useradsl" * "passadsl" *
"uservpn" * "passvpn" *
mon log de pptp et ppp.
linux pptpd[5886]: MGR: Launching /usr/sbin/pptpctrl to handle client
linux pptpd[5886]: CTRL: local address = 192.168.100.1
linux pptpd[5886]: CTRL: remote address = 192.168.100.5
linux pptpd[5886]: CTRL: pppd speed = 115200
linux pptpd[5886]: CTRL: pppd options file = /etc/ppp/pptpd-options
linux pptpd[5886]: CTRL: Client xx.xx.231.204 control connection started
linux pptpd[5886]: CTRL: Received PPTP Control Message (type: 1)
linux pptpd[5886]: CTRL: Made a START CTRL CONN RPLY packet
linux pptpd[5886]: CTRL: I wrote 156 bytes to the client.
linux pptpd[5886]: CTRL: Sent packet to client
linux pptpd[5886]: CTRL: Received PPTP Control Message (type: 7)
linux pptpd[5886]: CTRL: 0 min_bps, 1525 max_bps, 32 window size
linux pptpd[5886]: CTRL: Made a OUT CALL RPLY packet
linux pptpd[5886]: CTRL: Starting call (launching pppd, opening GRE)
linux pptpd[5886]: CTRL: pty_fd = 5
linux pptpd[5886]: CTRL: tty_fd = 6
linux pptpd: CTRL (PPPD Launcher): Connection speed = 115200
linux pptpd: CTRL (PPPD Launcher): local address = 192.168.100.1
linux pptpd: CTRL (PPPD Launcher): remote address = 192.168.100.5
linux pptpd[5886]: CTRL: I wrote 32 bytes to the client.
linux pptpd[5886]: CTRL: Sent packet to client
linux pppd[5887]: pppd 2.4.1 started by root, uid 0
linux pppd[5887]: using channel 41
linux pppd[5887]: Using interface ppp1
linux pppd[5887]: Connect: ppp1 <--> /dev/pts/2
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux /etc/hotplug/net.agent: assuming ppp1 is already up
linux pptpd[5886]: CTRL: Received PPTP Control Message (type: 15)
linux pptpd[5886]: CTRL: Got a SET LINK INFO packet with standard ACCMs
linux pppd[5887]: rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x0 <callback CBCP>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x1 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x2 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x2 <callback CBCP>]
linux pppd[431]: rcvd [LCP EchoReq id=0x1 magic=0x19e15d93]
linux pppd[431]: sent [LCP EchoRep id=0x1 magic=0x7832796b]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x3 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x3 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x4 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x4 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x5 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x5 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x6 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x6 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x7 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x7 <callback CBCP>]
linux pppd[5887]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MD5>
<magic
0xe81457f7> <pcomp> <accomp>]
linux pppd[5887]: rcvd [LCP ConfReq id=0x8 <mru 1400> <magic 0x74594d68>
<pcomp>
<accomp> <callback CBCP>]
linux pppd[5887]: sent [LCP ConfRej id=0x8 <callback CBCP>]
linux pppd[5887]: LCP: timeout sending Config-Requests
linux pppd[5887]: Connection terminated.
linux pppd[5887]: Exit.
linux pptpd[5886]: Error reading from pppd: Input/output error
linux pptpd[5886]: CTRL: GRE read or PTY write failed (gre,pty)=(6,5)
linux pptpd[5886]: CTRL: Client xx.xx.231.204 control connection finished
linux pptpd[5886]: CTRL: Exiting now
linux pptpd[5884]: MGR: Reaped child 5886
linux /etc/hotplug/net.agent: invoke ifdown ppp1
Le schema réseau est le suivant:
xx.xx.xx.xx xx.xx.xx.xx
WORK <-------------> HOME GW <---------> HOME LAN
192.168.100.1 192.168.100.0/24
Cordialement,
Francois
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
Reply to: