[FUG-BR] VPN usando MPD - Erro 800
Welkson Renny de Medeiros
welkson em focusautomacao.com.br
Segunda Novembro 20 20:07:15 BRST 2006
> Galera,
>
> Estou com o servidor FreeBSD e gostaria de criar VPN
> usando o MPD, estou testando na minha Lan local, porem
> esta dando erro.
>
> ERRO 800: nao é possivel estabelecer a conexao VPN, o
> servidor VPN pode estar inalcansavel ou os parametros
> de segurança podem nao estar configurados corretamente
> para esse tipo de conexao.
>
> a porta 1723 esta aberta
> #nmap 172.16.0.38
>
> Starting Nmap 4.11 ( http://www.insecure.org/nmap/ )
> at 2006-11-20 21:04 BRST
> Interesting ports on 172.16.0.38:
> Not shown: 1675 filtered ports
> PORT STATE SERVICE
> 1723/tcp open pptp
> MAC Address: 00:04:23:B0:35:46 (Intel)
>
>
> #ifconfig
> em0: inet 172.16.0.38 netmask 0xffff0000 broadcast
> em1: inet 192.168.1.1 netmask 0xffffff00 broadcast
> ng0: flags=8890<POINTOPOINT,NOARP,SIMPLEX,MULTICAST>
> mtu 1500
>
>
> Eis a configuração do MPD
>
> *********mpd.conf
> default:
> load pptp
>
> pptp:
> new -i ng0 pptp pptp
> set iface disable on-demand
> set iface enable proxy-arp
> set iface idle 1800
> set iface enable tcpmssfix
> set bundle enable multilink
> set bundle enable tcp-wrapper
> set link yes acfcomp protocomp
> set link no pap chap
> set link enable chap
> set link keep-alive 10 60
> set link mtu 1460
> set ipcp yes vjcomp
> set ipcp ranges 192.168.1.3/32 192.168.1.0/24
> set ipcp dns 192.168.1.3
> set ipcp nbns 192.168.1.4
> set bundle enable compression
> set ccp yes mppc
> set ccp yes mpp-e40
> set ccp yes mpp-e128
> set ccp yes mpp-stateless
>
>
> *********mpd.links
> pptp:
> set link type pptp
> set pptp self 172.16.0.38
> set pptp enable incoming
> set pptp disable originate
>
>
> *********mpd.log
> Nov 20 19:58:47 srvac12 mpd: mpd: PPTP connection from
> 172.16.2.209:4787
> Nov 20 19:58:47 srvac12 mpd: pptp0: attached to
> connection with 172.16.2.209:4787
> Nov 20 19:58:52 srvac12 mpd: pptp0: ctrl connection
> closed by peer
> Nov 20 19:58:52 srvac12 mpd: pptp0: killing connection
> with 172.16.2.209:4787
> Nov 20 19:59:41 srvac12 mpd: mpd: PPTP connection from
> 172.16.2.209:4885
> Nov 20 19:59:41 srvac12 mpd: pptp0: attached to
> connection with 172.16.2.209:4885
> Nov 20 19:59:41 srvac12 mpd: [pptp] IFACE: Open event
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: Open event
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: state change
> Initial --> Starting
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: LayerStart
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: Open event
> Nov 20 19:59:41 srvac12 mpd: [pptp] bundle: OPEN event
> in state CLOSED
> Nov 20 19:59:41 srvac12 mpd: [pptp] opening link
> "pptp"...
> Nov 20 19:59:41 srvac12 mpd: [pptp] link: OPEN event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: Open event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: state change
> Initial --> Starting
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: LayerStart
> Nov 20 19:59:41 srvac12 mpd: [pptp] device: OPEN event
> in state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] attaching to
> peer's outgoing call
> Nov 20 19:59:41 srvac12 mpd: [pptp] can't attach
> pptpgre node: Operation not permitted
> Nov 20 19:59:41 srvac12 mpd: pptp0-0: killing channel
> Nov 20 19:59:41 srvac12 mpd: [pptp] PPTP call
> cancelled in state CONNECTING
> Nov 20 19:59:41 srvac12 mpd: pptp0: closing connection
> with 172.16.2.209:4885
> Nov 20 19:59:41 srvac12 mpd: [pptp] IFACE: Close event
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: Close event
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: state change
> Starting --> Initial
> Nov 20 19:59:41 srvac12 mpd: [pptp] IPCP: LayerFinish
> Nov 20 19:59:41 srvac12 mpd: [pptp] device is now in
> state OPENING
> Nov 20 19:59:41 srvac12 mpd: [pptp] bundle: CLOSE
> event in state OPENED
> Nov 20 19:59:41 srvac12 mpd: [pptp] closing link
> "pptp"...
> Nov 20 19:59:41 srvac12 mpd: [pptp] device: DOWN event
> in state OPENING
> Nov 20 19:59:41 srvac12 mpd: [pptp] device is now in
> state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] link: CLOSE event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: Close event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: state change
> Starting --> Initial
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: LayerFinish
> Nov 20 19:59:41 srvac12 mpd: [pptp] device: DOWN event
> in state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] device is now in
> state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] link: DOWN event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: Down event
> Nov 20 19:59:41 srvac12 mpd: [pptp] device: CLOSE
> event in state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] device is now in
> state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] link: DOWN event
> Nov 20 19:59:41 srvac12 mpd: [pptp] LCP: Down event
> Nov 20 19:59:41 srvac12 mpd: [pptp] device: OPEN event
> in state DOWN
> Nov 20 19:59:41 srvac12 mpd: [pptp] pausing 9 seconds
> before open
> Nov 20 19:59:41 srvac12 mpd: [pptp] device is now in
> state DOWN
> Nov 20 19:59:41 srvac12 mpd: pptp0: killing connection
> with 172.16.2.209:4885
> Nov 20 19:59:50 srvac12 mpd: [pptp] device: OPEN event
> in state DOWN
> Nov 20 19:59:50 srvac12 mpd: [pptp] pptp originate
> option is not enabled
> Nov 20 19:59:50 srvac12 mpd: [pptp] device is now in
> state OPENING
> Nov 20 19:59:50 srvac12 mpd: [pptp] device: DOWN event
> in state OPENING
> Nov 20 19:59:50 srvac12 mpd: [pptp] device is now in
> state DOWN
> Nov 20 19:59:50 srvac12 mpd: [pptp] link: DOWN event
> Nov 20 19:59:50 srvac12 mpd: [pptp] LCP: Down event
>
> *********************
>
>
> Alguem pode me ajudar.
>
> obrigado
>
>
>
>
> _______________________________________________________
> O Yahoo! está de cara nova. Venha conferir!
> http://br.yahoo.com
> -------------------------
> Histórico: http://www.fug.com.br/historico/html/freebsd/
> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>
Será que não é aquele velho problema de rotear o protocolo GRE?
Veja no histórico da lista.
--
Welkson Renny de Medeiros
Focus Automação Comercial
Desenvolvimento / Gerência de Redes
welkson em xxxxxxxxxxxxxxxxxxxxx
Mais detalhes sobre a lista de discussão freebsd