WL500gP + MSCHAP = ?

[usmailer™]

Ðîóòåð 500 ïðåìèóì

Ñóòü ïðîáëåìû â ñëåäóþùåì.
Ó ïðîâà PPTP òèï ïîäêëþ÷åíèå. Âñå ðàçäàåòñÿ íà àâòîìàòå.
Èñïîëüçóåòñÿ MSCHAP

Ñ ïðîøèâêîé âåðñèè 8 êîííåêò ïðîèñõîäèò ñ ïîë òûêà, åñòåññíî ïðè èñïîëüçîâàíèè Additional pppd options: âèäà - refuse-pap refuse-chap refuse-mschap refuse-eap

Ñ ïðîøèâêàìè 9 è 10 íè ñ êàêèìè òàíöàìè è áóáíàìè è äàæå çàÿ÷üèìè ëàïêàìè êîííåêòà íåò... ÿ óæå è íå ãîâîðþ ïðî - refuse-pap refuse-chap refuse-mschap refuse-eap
äî íåãî äàæ âðîäå íå äîõîäèò...

âîò ëîãè:
Ñ ïðîøèâêîé 8 -

Code:

.......
Jan  1 03:00:04 kernel: vlan1: Setting MAC address to  00 18 f3 6b 38 bf.
Jan  1 03:00:04 kernel: VLAN (vlan1):  Underlying device (eth0) has same MAC, not checking promiscious mode.
Jan  1 03:00:04 udhcpc[88]: udhcpc (v0.9.9-pre) started
Jan  1 03:00:04 dhcp client: deconfig: lease is lost
Jan  1 03:00:05 udhcpc[88]: Lease of 192.0.4.67 obtained, lease time 691200
Jan  1 03:00:05 dnsmasq[72]: read /etc/hosts - 5 addresses
Jan  1 03:00:05 dnsmasq[72]: reading /tmp/resolv.conf
Jan  1 03:00:05 dnsmasq[72]: using nameserver 192.0.4.12#53
Jan  1 03:00:05 dnsmasq[72]: using nameserver 192.0.4.1#53
Jan  1 03:00:05 dhcp client: bound IP : 192.0.4.67 from 192.0.4.1
Jan  1 03:00:05 pppd[98]: pppd 2.4.2 started by usmailer, uid 0
Jan  1 03:00:06 pppd[98]: Serial connection established.
Jan  1 03:00:06 pppd[98]: Using interface ppp0
Jan  1 03:00:06 pppd[98]: Connect: ppp0 <--> /dev/pts/0
Jan  1 03:00:06 pptp[106]: anon log[main:pptp.c:267]: The synchronous pptp option is NOT activated 
Jan  1 03:00:06 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 1 'Start-Control-Connection-Request' 
Jan  1 03:00:06 pptp[114]: anon log[ctrlp_disp:pptp_ctrl.c:732]: Received Start Control Connection Reply
Jan  1 03:00:06 pptp[114]: anon log[ctrlp_disp:pptp_ctrl.c:766]: Client connection established.
Jan  1 03:00:06 dropbear[118]: Running in background
Jan  1 03:00:06 dropbear[119]: Running in background
Jan  1 03:00:06 dropbear[118]: Failed listening on '22': Error listening: Address already in use
Jan  1 03:00:06 dropbear[118]: premature exit: No listening ports available.
Jan  1 03:00:07 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 7 'Outgoing-Call-Request' 
Jan  1 03:00:07 pptp[114]: anon log[ctrlp_disp:pptp_ctrl.c:851]: Received Outgoing Call Reply.
Jan  1 03:00:07 pptp[114]: anon log[ctrlp_disp:pptp_ctrl.c:890]: Outgoing call established (call ID 0, peer's call ID 23500). 
Jan  1 03:00:07 pppd[98]: Could not determine remote IP address: defaulting to 10.64.64.64
Jan  1 03:00:07 pppd[98]: local  IP address 195.239.230.48
Jan  1 03:00:07 pppd[98]: remote IP address 10.64.64.64
Jan  1 03:00:07 pppd[98]: primary   DNS address 212.44.131.6
Jan  1 03:00:07 pppd[98]: secondary DNS address 192.0.4.1
Jan  1 03:00:07 dnsmasq[72]: read /etc/hosts - 5 addresses
Jan  1 03:00:07 dnsmasq[72]: reading /tmp/resolv.conf
Jan  1 03:00:07 dnsmasq[72]: using nameserver 192.0.4.1#53
Jan  1 03:00:07 dnsmasq[72]: using nameserver 212.44.131.6#53
Jan  1 03:00:08 PPTP: connect to ISP
Jul 19 00:04:51 ntp client: Synchronizing time with time.nist.gov ...
Jul 19 00:05:33 pptp[114]: anon log[logecho:pptp_ctrl.c:670]: Echo Reply received.
Jul 19 00:06:30 pptp[114]: anon log[logecho:pptp_ctrl.c:670]: Echo Request received.
Jul 19 00:06:30 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 6 'Echo-Reply' 
Jul 19 00:07:29 pptp[114]: anon log[logecho:pptp_ctrl.c:670]: Echo Request received.
Jul 19 00:07:29 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 6 'Echo-Reply' 
Jul 19 00:08:27 pptp[114]: anon log[logecho:pptp_ctrl.c:670]: Echo Request received.
Jul 19 00:08:27 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 6 'Echo-Reply' 
Jul 19 00:09:25 pptp[114]: anon log[logecho:pptp_ctrl.c:670]: Echo Request received.
Jul 19 00:09:25 pptp[114]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 6 'Echo-Reply'

à âîò ñ ïðîøèâêîé 10 (è ñ 9-é òîæå ñàìîå)

Code:

......
Jan  1 03:00:05 kernel: vlan1: Setting MAC address to  00 18 f3 6b 38 bf.
Jan  1 03:00:05 kernel: VLAN (vlan1):  Underlying device (eth0) has same MAC, not checking promiscious mode.
Jan  1 03:00:05 udhcpc[94]: udhcpc (v0.9.9-pre) started
Jan  1 03:00:05 dhcp client: deconfig: lease is lost
Jan  1 03:00:05 udhcpc[94]: Lease of 192.0.4.67 obtained, lease time 691200
Jan  1 03:00:06 dnsmasq[71]: read /etc/hosts - 5 addresses
Jan  1 03:00:06 dnsmasq[71]: reading /tmp/resolv.conf
Jan  1 03:00:06 dnsmasq[71]: using nameserver 192.0.4.12#53
Jan  1 03:00:06 dnsmasq[71]: using nameserver 192.0.4.1#53
Jan  1 03:00:06 dhcp client: bound IP : 192.0.4.67 from 192.0.4.1
Jan  1 03:00:06 pppd[104]: pppd 2.4.2 started by usmailer, uid 0
Jan  1 03:00:06 pppd[104]: Using interface ppp0
Jan  1 03:00:06 pppd[104]: local  IP address 10.64.64.64
Jan  1 03:00:06 pppd[104]: remote IP address 10.112.112.112
Jan  1 03:00:07 pppd[104]: Starting link
Jan  1 03:00:07 pppd[104]: Serial connection established.
Jan  1 03:00:07 pppd[104]: Connect: ppp0 <--> /dev/pts/0
Jan  1 03:00:38 pppd[104]: LCP: timeout sending Config-Requests 
Jan  1 03:00:38 pppd[104]: Connection terminated.
Jan  1 03:01:04 wan: connected manually
Jan  1 03:01:05 pppd[104]: Terminating on signal 15.
Jan  1 03:01:05 pppd[104]: Child process /usr/sbin/pptp --idle-wait 0 vpn1.local --nolaunchpppd --nobuffer --sync (pid 115) terminated with signal 15
Jan  1 03:01:05 pppd[104]: Exit.
Jan  1 03:01:05 udhcpc[103]: Unicasting a release of 192.0.4.67 to 192.0.4.1
Jan  1 03:01:05 dhcp client: deconfig: lease is lost
Jan  1 03:01:05 udhcpc[103]: Entering released state
Jan  1 03:01:05 udhcpc[103]: Received SIGTERM
Jan  1 03:01:10 kernel: vlan1: Setting MAC address to  00 18 f3 6b 38 bf.
Jan  1 03:01:10 kernel: VLAN (vlan1):  Underlying device (eth0) has same MAC, not checking promiscious mode.
Jan  1 03:01:10 udhcpc[148]: udhcpc (v0.9.9-pre) started
Jan  1 03:01:10 dhcp client: deconfig: lease is lost
Jan  1 03:01:10 udhcpc[148]: Lease of 192.0.4.67 obtained, lease time 691200
Jan  1 03:01:10 dnsmasq[71]: read /etc/hosts - 5 addresses
Jan  1 03:01:10 dnsmasq[71]: reading /tmp/resolv.conf
Jan  1 03:01:10 dnsmasq[71]: using nameserver 192.0.4.12#53
Jan  1 03:01:10 dnsmasq[71]: using nameserver 192.0.4.1#53
Jan  1 03:01:10 dhcp client: bound IP : 192.0.4.67 from 192.0.4.1
Jan  1 03:01:10 pppd[157]: pppd 2.4.2 started by usmailer, uid 0
Jan  1 03:01:10 pppd[157]: Using interface ppp0
Jan  1 03:01:10 pppd[157]: local  IP address 10.64.64.64
Jan  1 03:01:10 pppd[157]: remote IP address 10.112.112.112
Jan  1 03:01:15 pppd[157]: Starting link
Jan  1 03:01:15 pppd[157]: Serial connection established.
Jan  1 03:01:15 pppd[157]: Connect: ppp0 <--> /dev/pts/0
Jan  1 03:01:46 pppd[157]: LCP: timeout sending Config-Requests 
Jan  1 03:01:46 pppd[157]: Connection terminated.

Ïîâòîðþ íè àâòîìàòîì ïðè ñòàðòå, íè â ðó÷íóþ êîííåêòà íåò...

Ëþäè äîáðûå ðàñêðîéòå ìíå ñëåïîìó ãëàçà...
Ãäå ñîáà÷åíêà òî çàêîïàíà???

[avk]

À åñëè:
- íè÷åãî íè ïèñàòü?
- ïîñòàâèòü "+mschap"?

[usmailer™]

À åñëè:
- íè÷åãî íè ïèñàòü?

ïðîøèâêà 8:
- íè÷åãî íå íàïèøåøü - ïîëó÷èøü, ïðèìåðíî íà ðóññêèé ïåðåâåñòè - CHAP íå ïðîøåë... êîííåêò òåðìèíàòåä.. ãû
íó íóí âñå íîðìàëüíî...

ïðîøèâêà 9,10
ñì. ëîã äëÿ íèõ...
ò.å. ÷òî åñòü òàì ýòà ñòðîêà.. ÷òî íåò... ðàçíèöû íèêàêîé...

À åñëè:

- ïîñòàâèòü "+mschap"?

íå ïîíÿë... íàïèñàòü âìåñòî - refuse-pap refuse-chap refuse-mschap refuse-eap ïðîñòî +mschap??

[avk]

íå ïîíÿë... íàïèñàòü âìåñòî - refuse-pap refuse-chap refuse-mschap refuse-eap ïðîñòî +mschap??

ß èìåííî îá ýòîì.
Íî âîò âîïðîñ: ñ îäíîé ñòîðîíû Âû ïèøèòå: "Èñïîëüçóåòñÿ MSCHAP", ñ äðóãîé "refuse-mschap" - êàê ýòî ïîíèìàòü?

Lingvo: "refuse - îòâåðãàòü, îòêàçûâàòü; îòêëîíÿòü"

[usmailer™]

ß èìåííî îá ýòîì.
Íî âîò âîïðîñ: ñ îäíîé ñòîðîíû Âû ïèøèòå: "Èñïîëüçóåòñÿ MSCHAP", ñ äðóãîé "refuse-mschap" - êàê ýòî ïîíèìàòü?

Lingvo: "refuse - îòâåðãàòü, îòêàçûâàòü; îòêëîíÿòü"

åñëè ÷åñòíî... ÿ íàøåë íàáîð åòèõ áóêîâîê íà êàêîì òî ëèíóêñîâîì ñàéòå è ïðîêàòèëî...
äî ýòîãî ìîìåíòà ÿ áèëñÿ 2 ñóòîê íàä ýòîé ãðåáàíîé ñòðîêîé...
è ÷òî òàì ÷òî çíà÷èò ìíå íå î÷åíü áûëî èíòåðåñíî, à òåðü âèæó ÷òî êàê òî íåâåðíî ïîëó÷àåòñÿ...

êñòàòè, ÿ ïðîâåðèë
- ïîñòàâèòü "+mschap"

ìåðòâî... âîò êóñî÷åê...

Code:

Jan  1 03:00:04 kernel: Linux video capture interface: v1.00
Jan  1 03:00:04 kernel: vlan1: Setting MAC address to  00 18 f3 6b 38 bf.
Jan  1 03:00:04 kernel: VLAN (vlan1):  Underlying device (eth0) has same MAC, not checking promiscious mode.
Jan  1 03:00:04 udhcpc[88]: udhcpc (v0.9.9-pre) started
Jan  1 03:00:04 dhcp client: deconfig: lease is lost
Jan  1 03:00:05 udhcpc[88]: Lease of 192.0.4.67 obtained, lease time 691200
Jan  1 03:00:05 dnsmasq[72]: read /etc/hosts - 5 addresses
Jan  1 03:00:05 dnsmasq[72]: reading /tmp/resolv.conf
Jan  1 03:00:05 dnsmasq[72]: using nameserver 192.0.4.12#53
Jan  1 03:00:05 dnsmasq[72]: using nameserver 192.0.4.1#53
Jan  1 03:00:05 dhcp client: bound IP : 192.0.4.67 from 192.0.4.1
Jan  1 03:00:05 pppd[96]: The remote system is required to authenticate itself
Jan  1 03:00:05 pppd[96]: but I couldn't find any suitable secret (password) for it to use to do so.

[avk]

×òî òðåáóåò ïðîâ? Òî÷íî!
×òî íà çàêëàäêå Ñâåäåíèÿ VPN-ïîäêëþ÷åíèÿ êîìïà íàïðÿìóþ?

[usmailer™]

×òî òðåáóåò ïðîâ? Òî÷íî!
×òî íà çàêëàäêå Ñâåäåíèÿ VPN-ïîäêëþ÷åíèÿ êîìïà íàïðÿìóþ?

ïðîâ òðåáóåò âêëþ÷åíÿ îïöèè - Ïðîòîêîë ïðîâåðêè ïàðîëÿ ms chap2
ïðèêðåïèë ñêðèí ñ ïðÿìûì ñîåäèíåíèåì êîìïà
òàì ms chap v2

[avk]

ïðîâ òðåáóåò âêëþ÷åíÿ îïöèè - Ïðîòîêîë ïðîâåðêè ïàðîëÿ ms chap2
ïðèêðåïèë ñêðèí ñ ïðÿìûì ñîåäèíåíèåì êîìïà
òàì ms chap v2

+mschap-v2

[Gooru]

Jan 1 03:01:10 pppd[157]: local IP address 10.64.64.64
Jan 1 03:01:10 pppd[157]: remote IP address 10.112.112.112

îòêóäà ýòî áåð¸òñÿ ïîêà íå âûÿñíåíî, ìîæåò Îëåã ïîìîæåò è ðàçáåð¸òñÿ. Íî ëå÷èòàñÿ ýòî ïðîïèñûâàíèåì ñòàòè÷åñêèõ ìàðøðóòîâ äëÿ vpn ñåðâåðîâ, íàïðèìåð:

Ïðåäïîëîæèì ÷òî IP àäðåñ vpn ñåðâåðà 10.10.1.1 òî ìàðøðóò äëÿ íåãî íóæíî ïðîïèñàòü:

Code:

Network/Host IP | Netmask         | Gateway   | Metric | Interface
10.10.1.1       | 255.255.255.255 | 10.10.1.1 | 0      | MAN

Åñëè èñïîëüçóåòñÿ êëàñòåð vpn ñåðâåðîâ òî ìàðøðóòû íàäî ïðîïèñûâàòü äëÿ êàæäîãî àäðåñà.

[usmailer™]

+mschap-v2

áóäåòå ñìåÿòüñÿ..
íî íå ïîëó÷àåòñÿ...

âîò ÷òî â ðåçóëüòå:

Code:

Jan  1 00:00:05 kernel: vlan1: Setting MAC address to  00 18 f3 6b 38 bf.
Jan  1 00:00:05 kernel: VLAN (vlan1):  Underlying device (eth0) has same MAC, not checking promiscious mode.
Jan  1 00:00:05 udhcpc[86]: udhcpc (v0.9.9-pre) started
Jan  1 00:00:05 dhcp client: deconfig: lease is lost
Jan  1 00:00:05 udhcpc[86]: Lease of 192.0.4.67 obtained, lease time 691200
Jan  1 00:00:06 dnsmasq[67]: read /etc/hosts - 5 addresses
Jan  1 00:00:06 dnsmasq[67]: reading /tmp/resolv.conf
Jan  1 00:00:06 dnsmasq[67]: using nameserver 192.0.4.12#53
Jan  1 00:00:06 dnsmasq[67]: using nameserver 192.0.4.1#53
Jan  1 00:00:06 dhcp client: bound IP : 192.0.4.67 from 192.0.4.1
Jan  1 00:00:06 pppd[96]: The remote system is required to authenticate itself
Jan  1 00:00:06 pppd[96]: but I couldn't find any suitable secret (password) for it to use to do so.

íè÷åãî êðîìå - refuse-pap refuse-chap refuse-mschap refuse-eap
íå ïðèíèìàåò..

[usmailer™]

Jan 1 03:01:10 pppd[157]: local IP address 10.64.64.64
Jan 1 03:01:10 pppd[157]: remote IP address 10.112.112.112

îòêóäà ýòî áåð¸òñÿ ïîêà íå âûÿñíåíî, ìîæåò Îëåã ïîìîæåò è ðàçáåð¸òñÿ. Íî ëå÷èòàñÿ ýòî ïðîïèñûâàíèåì ñòàòè÷åñêèõ ìàðøðóòîâ äëÿ vpn ñåðâåðîâ, íàïðèìåð:

Ïðåäïîëîæèì ÷òî IP àäðåñ vpn ñåðâåðà 10.10.1.1 òî ìàðøðóò äëÿ íåãî íóæíî ïðîïèñàòü:

Code:

Network/Host IP | Netmask         | Gateway   | Metric | Interface
10.10.1.1       | 255.255.255.255 | 10.10.1.1 | 0      | MAN

Åñëè èñïîëüçóåòñÿ êëàñòåð vpn ñåðâåðîâ òî ìàðøðóòû íàäî ïðîïèñûâàòü äëÿ êàæäîãî àäðåñà.

âîò ñïàñèáî ! óâàæóõà òåáå äîðîãîé!
çàððàààáîîîòòààëëîîî!!!

è íåïïðåìåííî ñïàñèáî avk çà ïîìîùü!

[addave]

Íàïèøó çäåñü òàê êàê ïðîáëåìà ïîõîæà íî óêàçàííûìè ñðåäñòâàìè íå ðåøàåòñÿ.

Ïðîâàéäåð 2com, íàñòðîéêè ñëåäóþùèå:

ïîäêëþ÷åíèå òèïà PPTP
Ñòàòèê IP: 192.168.202.*
Øëþç ïî óìîë÷àíèþ: 192.168.202.2
MTU 1400
Øèôðîâàíèå çàïðåùåíî.
ïðîòîêîë ïðîâåðêè ïàðîëÿ Chap.

Áåç ïðîïèñûâàíèÿ ñòàòè÷åñêèõ ìàðøðóòîâ äî VPN:

Jan 1 03:01:10 pppd[157]: pppd 2.4.2 started by usmailer, uid 0
Jan 1 03:01:10 pppd[157]: Using interface ppp0
Jan 1 03:01:10 pppd[157]: local IP address 10.64.64.64
Jan 1 03:01:10 pppd[157]: remote IP address 10.112.112.112
Jan 1 03:01:15 pppd[157]: Starting link
Jan 1 03:01:15 pppd[157]: Serial connection established.
Jan 1 03:01:15 pppd[157]: Connect: ppp0 <--> /dev/pts/0
Jan 1 03:01:46 pppd[157]: LCP: timeout sending Config-Requests
Jan 1 03:01:46 pppd[157]: Connection terminated.


Ñ ïðîïèñûâàíèåì ìàðøðóòîâ äî VPN.
Ëîã èìååò òàêîé-æå âèä, äàëüøå ïèøåò "no route to host 192.168.202.2"
è ðàçðûâàåò ñîåäèíåíèå


Jan 1 03:01:10 pppd[157]: pppd 2.4.2 started by usmailer, uid 0
Jan 1 03:01:10 pppd[157]: Using interface ppp0
Jan 1 03:01:15 pppd[157]: Starting link
Jan 1 03:01:15 pppd[157]: Serial connection established.
Jan 1 03:01:15 pppd[157]: Connect: ppp0 <--> /dev/pts/0

[mbaitoff]

Ñ ïðîïèñûâàíèåì ìàðøðóòîâ äî VPN.
Ëîã èìååò òàêîé-æå âèä, äàëüøå ïèøåò "no route to host 192.168.202.2"
è ðàçðûâàåò ñîåäèíåíèå

çíà÷èò ìîðøðóò ïðîïèñàí íåïðàâèëüíî. ïðàâèëüíûé ìàðøðóò êîìàíäîé route äîâåäåò äî ÂÏÍ-ñåðâåðà, à ó òåáÿ - íå äîâîäèò.

[nikita1234]

usmailer™, à Âû ïðîïèñàëè òîëüêî ìàðøðóò? Êàêîé èìåííî ìàðøðóò â âàøåì ñëó÷àå?  Additional pppd options ÷òî íèáóäü îñòàâèëè?

[sharcor]

Ðåáÿò! Òêíèòå íà ïðèìåðàõ âûøå ãäå ÂÍÅØÍÈÉ IP?! ïîëó÷åííûé ðîóòåðîì À òî ÷åò ìîæåò ÿ òóïëþ.