POPTOP install (óñòàíîâêà â îñíîâíóþ ïàìÿòü)

**elav** · 09-12-2010, 15:46

Originally Posted by dimez

Èñêàòü â òåìå unit

×òîòî íèêàê íàéòè íåìîãó, ìîæåòå ññûëêó êèíóòü? ß òàê ïîíÿë â êîíôèãå ïîïòîïà ýòî íåëüçÿ óêàçàòü, íóæíî îïÿòü ñêðèïòû ïèñàòü è ãëóáîêî êîïàòü

**MSapogov** · 13-12-2010, 16:08

Originally Posted by elav

×òîòî íèêàê íàéòè íåìîãó, ìîæåòå ññûëêó êèíóòü? ß òàê ïîíÿë â êîíôèãå ïîïòîïà ýòî íåëüçÿ óêàçàòü, íóæíî îïÿòü ñêðèïòû ïèñàòü è ãëóáîêî êîïàòü

Àíàëîãè÷íî, ïàòàþñü çàïðåòèòü PPP0, äëÿ PopTop-à, íèêàê íå ìîãó..

unit 1

íå ïîìîãàåò, ïåðâîå ñîåäèíåíèå âåøàåòñÿ íà ppp1, à ïîñëåäóþùèå íà ppp0, ppp2. Ïðîñòî â ëîãàõ ãîâîðèòñÿ ÷òî ppp1 óæå çàíÿò è íàçíà÷àåòñÿ âñå îïÿòü ñ íóëÿ.

À âîò êàê òîëüêî PPP0 ïîäíèìàåòñÿ êëèåíòîì, òî ðîóòåð åãî ñðàçó õî÷åò èñïîëüçîâàòü êàê îñíîâíîå ñîåäèíåíèå ñ Èíòåðíåò, äàæå â ñòàòóñå âìåñòî IP ïîëó÷åíîãî ïî DHCP âèäíååòñÿ IP âûäàííûé êëèåíòó VPN. Ïðî ðàáîòó ìàðøðóòèçàöèè ìîæíî òîæå çàáûòü, ïîêà íå ïåðåçàïóñòèòü ðîóòåð.

Êàê âñå-æå çàïðåòèòü èñïîëüçîâàòü ppp0???

Óêàçàíèå "unit 1-10" íå ïîìàãàåò.

Add: èçâèíÿþñü... ïëîõî èñêàë... ÒÓÒ ðàñïèñàíà, êàê ðàç ìîÿ ïðîáëåìà, çàîäíî ñêðèïòû ïîïðàâèë, è íàó÷èòñÿ èíòåðôåéñû ïåðåèìåíîâûâàòü :-)

**elav** · 14-12-2010, 19:37

Originally Posted by MSapogov

Àíàëîãè÷íî, ïàòàþñü çàïðåòèòü PPP0, äëÿ PopTop-à, íèêàê íå ìîãó..

Êàê âñå-æå çàïðåòèòü èñïîëüçîâàòü ppp0???

Óêàçàíèå "unit 1-10" íå ïîìàãàåò.

Add: èçâèíÿþñü... ïëîõî èñêàë... ÒÓÒ ðàñïèñàíà, êàê ðàç ìîÿ ïðîáëåìà, çàîäíî ñêðèïòû ïîïðàâèë, è íàó÷èòñÿ èíòåðôåéñû ïåðåèìåíîâûâàòü :-)

Íó òàê çàïðåòèòü ïîïòîïó ïîäíèìàòü ñîåäèíåíèå íà PPP0? Ïî ññûëêå ÿ ýòîãî íåíàøåë, åäèíñòâåííî ïàðàìåòð $1 ãîâîðèò íà êàêîì PPP ïîäíÿòî ñîåäèíåíèå, ïîýòîìó ìîæíî ñìîòðåòü ÷òî åñëè ïîäíÿòî íà ppp0 òî òóïî ïðèáèâàòü ïðîöåññ, íàäåÿñü ÷òî ðîóòåð ïîäíèìåò íà íåì ëèíê ðàíüøå ÷åì óäàëåííûé êëèåíò ñíîâà çàéìåò åãî ïðè êîííåêòå?

**strangesnork** · 01-02-2011, 02:49

Äàâíûì äàâíî óæå ïûòàëñÿ ïîñòàâèòü poptop íà ðîóòåð (áîëüøîå ñïàñèáî dfayruzov çà ïîìîù â íàñòðîéêå), íî âñâÿçè ñ òåì, ÷òî áåëûé èï íå ïîëó÷èëñÿ - çàáèë.

Ñåé÷àñ áåëûé èï ïîÿâèëñÿ, è ïîÿâèëîñü ñðàçó íåñêîëüêî íåîáõîäèìîñòåé â âïíå. â ñâÿçè ñ ÷åì ðåøèë ïîïðîáîâàòü åùå ðàç

Ïåðâîíà÷àëüíî ñäåëàë âñå ïî èíñòðóêöèè agros-à http://www.wl500g.info/showpost.php?...&postcount=357, ñ òåì èçìåíåíèåì, ÷òî ïàïêà /opt ìîíòèðóåòñÿ ñ ðàçäåëà ôëåøêè.

Òåïåðü ñèòóàöèÿ.

Ïðîâàéäåð ðàçäàåò èíòåðíåò ÷åðåç l2tp âïí ÷åðåç ëîêàëüíóþ ñåòü.

Àäðåñ ðîóòåðà â ëîêàëüíîé ñåòè ïðîâàéäåðà 192.168.70.21/255.255.255.0

Àäðåñ ðîóòåðà â "äîìàøíåé" ñåòè 192.168.0.1/255.255.255.0

Íåîáõîäèìî:
Èìåòü äîñòóï èçâíå (èç èíòåðíåòà) â äîìàøíþþ ñåòü è ëîêàëüíóþ ñåòü ïðîâàéäåðà (192.168.70.21) è äîñòóï â èíòåðíåò ñ âûäåëåííîãî èïà (íå îáÿçàòåëüíî èç âíå), íà êîòîðîì âèñèò ðîóòåð. À õëåáà ìîæíî íå äàâàòü :P

×òî èìååì
Âïí êëèåíòû öåïëÿþòñÿ ê ñåðâåðó íà óðà, íî ñ íàêëàäêàìè.
Åñëè êëèåíò èç ëîêàëüíîé ñåòè ïðîâàéäåðà ïðèñîåäèíÿåòñÿ ê âïíó íà àäðåñ 192.168.70.21, òî ó íåãî ðàáîòàåò èíòåðíåò, íî íå ðàáîòàåò äîìàøíÿÿ ëîêàëüíàÿ ñåòü, íåñìîòðÿ íà òî, ÷òî ïîïòîï âûäàåò åìó àäðåñ è ýòîò àäðåñ ñâåòèòñÿ â arp òàáëèöå ðîóòåðà.

Òàáëèöà ìàðøðóòîâ ýòîãî êëèåíòà:
192.168.111.51 - àäðåñ â ñåòè ïðîâàéäåðà
192.168.0.202 - àäðåñ â âèðòóàëüíîé ñåòè.
Ãàëî÷êà â ñâîéñòâà âïíà "èñïîëüçîâàòü øëþç ïî óìîë÷àíèþ â óäàëåííîé ñåòè" ñòîèò

Code:

Àêòèâíûå ìàðøðóòû:
Ñåòåâîé àäðåñ           Ìàñêà ñåòè      Àäðåñ øëþçà       Èíòåðôåéñ  Ìåòðèêà
          0.0.0.0          0.0.0.0    192.168.0.202   192.168.0.202       1
          0.0.0.0          0.0.0.0    192.168.111.1  192.168.111.51       21
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
      192.168.0.0      255.255.0.0    192.168.111.1  192.168.111.51       1
    192.168.0.202  255.255.255.255        127.0.0.1       127.0.0.1       50
    192.168.0.255  255.255.255.255    192.168.0.202   192.168.0.202       50
    192.168.70.21  255.255.255.255    192.168.111.1  192.168.111.51       1
    192.168.111.0    255.255.255.0   192.168.111.51  192.168.111.51       20
   192.168.111.51  255.255.255.255        127.0.0.1       127.0.0.1       20
  192.168.111.255  255.255.255.255   192.168.111.51  192.168.111.51       20
        224.0.0.0        240.0.0.0   192.168.111.51  192.168.111.51       20
        224.0.0.0        240.0.0.0    192.168.0.202   192.168.0.202       1
  255.255.255.255  255.255.255.255    192.168.0.202   192.168.0.202       1
  255.255.255.255  255.255.255.255   192.168.111.51  192.168.111.51       1
Îñíîâíîé øëþç:       192.168.0.202
===========================================================================
Ïîñòîÿííûå ìàðøðóòû:
  Ñåòåâîé àäðåñ            Ìàñêà    Àäðåñ øëþçà      Ìåòðèêà
      192.168.0.0      255.255.0.0    192.168.111.1       1

Åñëè êëèåíò ïðèñîåäíèÿåòñÿ íà âíåøíèé ip àäðåñ (õîòü è íàõîäèòñÿ ñî ìíîé â îäíîé è òîé-æå ëîêàëüíîé ñåòè ïðîâàéäåðà), òî ó íåãî ïåðåñòàåò ðàáîòàòü DNS, íî îòëè÷íî ðàáîòàåò äîìàøíÿÿ ëîêàëüíàÿ ñåòü.

Òàáëèöû ìàðøðóòîâ íå ðàçäîáûë (
Çíàþ òîëüêî, ÷òî îñíîâíîé øëþç ó íåãî íå ìåíÿåòñÿ, ò.ê. ñîîòâåòñâóþùàÿ ãàëî÷êà â íàñòðîéêàõ âïí êëèåíòà áûëà ñíÿòà.

Êëèåíò ïðèñîåäèíåííûé èç èíòåðíåòà (òåñòèë ÷åðåç íåòáóê+òåëåôîí è ÷åðåç çíàêîìîãî) òåðÿåò ñâîé èíåò è íå ïðèîáðåòàåò âîîáùå íè÷åãî ïðè ïðîñòàâëåííîé ãàëî÷êå ïðî øëþç ïî óìîë÷àíèþ, áåç ãàëî÷êè íå ïðîèñõîäèò íè÷åãî âîîáùå.

Êîíôèãóðàöèÿ ñåðâåðà:

dlink DIR320
Ïðîøèâêà, âðîäå êàê îò ýíòóçèàñòîâ, àäàïòèðîâàííàÿ Vapmirik-îì 1.9.2.7-d-r2394M

/opt/etc/ppp/options.pptpd

Code:

###############################################################################
# $Id: options.pptpd 2077 2005-06-10 07:18:16Z jeanfabrice $
#
# Sample Poptop PPP options file /etc/ppp/options.pptpd
# Options used by PPP when a connection arrives from a client.
# This file is pointed to by /etc/pptpd.conf option keyword.
# Changes are effective on the next connection.  See "man pppd".
#
# You are expected to change this file to suit your system.  As
# packaged, it requires PPP 2.4.2 and the kernel MPPE module.
###############################################################################


# Authentication

# Name of the local system for authentication purposes 
# (must match the second field in /etc/ppp/chap-secrets entries)
name pptpd

# Strip the domain prefix from the username before authentication.
# (applies if you use pppd with chapms-strip-domain patch)
#chapms-strip-domain


# Encryption
# (There have been multiple versions of PPP with encryption support,
# choose with of the following sections you will use.)


# BSD licensed ppp-2.4.2 upstream with MPPE only, kernel module ppp_mppe.o
# {{{
refuse-pap
refuse-chap
refuse-mschap
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
require-mschap-v2
# Require MPPE 128-bit encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
require-mppe-128
# }}}


# OpenSSL licensed ppp-2.4.1 fork with MPPE only, kernel module mppe.o
# {{{
#-chap
#-chapms
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
#+chapms-v2
# Require MPPE encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
#mppe-40	# enable either 40-bit or 128-bit, not both
#mppe-128
#mppe-stateless
# }}}


# Network and Routing

# If pppd is acting as a server for Microsoft Windows clients, this
# option allows pppd to supply one or two DNS (Domain Name Server)
# addresses to the clients.  The first instance of this option
# specifies the primary DNS address; the second instance (if given)
# specifies the secondary DNS address.
ms-dns 192.168.0.200
#ms-dns 192.168.2.90

# If pppd is acting as a server for Microsoft Windows or "Samba"
# clients, this option allows pppd to supply one or two WINS (Windows
# Internet Name Services) server addresses to the clients.  The first
# instance of this option specifies the primary WINS address; the
# second instance (if given) specifies the secondary WINS address.
#ms-wins 10.0.0.3

# Add an entry to this system's ARP [Address Resolution Protocol]
# table with the IP address of the peer and the Ethernet address of this
# system.  This will have the effect of making the peer appear to other
# systems to be on the local ethernet.
# (you do not need this if your PPTP server is responsible for routing
# packets to the clients -- James Cameron)
proxyarp


# Logging

# Enable connection debugging facilities.
# (see your syslog configuration for where pppd sends to)
#debug

# Print out all the option values which have been set.
# (often requested by mailing list to verify options)
#dump


# Miscellaneous

# Create a UUCP-style lock file for the pseudo-tty to ensure exclusive
# access.
lock

# Disable BSD-Compress compression
nobsdcomp 
novj
novjccomp
nodefaultroute
ip-up-script /opt/etc/ppp/ip-up
ip-down-script /opt/etc/ppp/ip-down

/opt/etc/ppp/ip-up

Code:

#!/bin/sh
iptables -I INPUT -i $1 -s $5 -j ACCEPT
iptables -I FORWARD -i $1 -s $5 -j ACCEPT

/opt/etc/ppp/ip-down

Code:

#!/bin/sh
iptables -D INPUT -i $1 -s $5 -j ACCEPT
iptables -D FORWARD -i $1 -s $5 -j ACCEPT

/opt/etc/pptpd.conf

Code:

###############################################################################
# $Id: pptpd.conf 2077 2005-06-10 07:18:16Z jeanfabrice $
#
# Sample Poptop configuration file /etc/pptpd.conf
#
# Changes are effective when pptpd is restarted.
###############################################################################

# TAG: ppp
#	Path to the pppd program, default '/usr/sbin/pppd' on Linux
#
#ppp /usr/sbin/pppd

# TAG: option
#	Specifies the location of the PPP options file.
#	By default PPP looks in '/etc/ppp/options'
#
option /opt/etc/ppp/options.pptpd

# TAG: debug
#	Turns on (more) debugging to syslog
#
#debug

# TAG: stimeout
#	Specifies timeout (in seconds) on starting ctrl connection
#
# stimeout 10

# TAG: noipparam
#       Suppress the passing of the client's IP address to PPP, which is
#       done by default otherwise.
#
#noipparam

# TAG: #logwtmp
#	Use wtmp(5) to record client connections and disconnections.
#
#logwtmp

# TAG: bcrelay <if>
#	Turns on broadcast relay to clients from interface <if>
#
#bcrelay eth1

# TAG: localip
# TAG: remoteip
#	Specifies the local and remote IP address ranges.
#
#       Any addresses work as long as the local machine takes care of the
#       routing.  But if you want to use MS-Windows networking, you should
#       use IP addresses out of the LAN address space and use the proxyarp
#       option in the pppd options file, or run bcrelay.
#
#	You can specify single IP addresses seperated by commas or you can
#	specify ranges, or both. For example:
#
#		192.168.0.234,192.168.0.245-249,192.168.0.254
#
#	IMPORTANT RESTRICTIONS:
#
#	1. No spaces are permitted between commas or within addresses.
#
#	2. If you give more IP addresses than MAX_CONNECTIONS, it will
#	   start at the beginning of the list and go until it gets 
#	   MAX_CONNECTIONS IPs. Others will be ignored.
#
#	3. No shortcuts in ranges! ie. 234-8 does not mean 234 to 238,
#	   you must type 234-238 if you mean this.
#
#	4. If you give a single localIP, that's ok - all local IPs will
#	   be set to the given one. You MUST still give at least one remote
#	   IP for each simultaneous client.
#
# (Recommended)
#localip 192.168.0.1
#remoteip 192.168.0.234-238,192.168.0.245
# or
localip 192.168.0.200
remoteip 192.168.0.201-205

**strangesnork** · 01-02-2011, 02:51

Ïðîäîëæåíèå:

/tmp/local/sbin/post-boot
ëîãèíû è ïàðîëè âûðåçàíû öåíçóðîé

Code:

#!/bin/sh

echo "##### pptpd ##### \"192.168.0.201\"" >> /tmp/ppp/chap-secrets
echo "##### pptpd ##### \"192.168.0.202\"" >> /tmp/ppp/chap-secrets
echo "##### pptpd ##### \"*\"" >> /tmp/ppp/chap-secrets

chmod ga-r /tmp/ppp/chap-secrets
ln -s /tmp/ppp/chap-secrets /opt/etc/ppp/

/tmp/local/sbin/post-firewall

Code:

#!/bin/sh
iptables -I INPUT -p 47 -j ACCEPT
iptables -I INPUT -p tcp --dport 1723 -j ACCEPT

/tmp/local/sbin/post-mount

Code:

#!/bin/sh
/opt/etc/init.d/S20poptop start
vsftpd /opt/etc/vsftpd.conf &

Routing Table ðîóòåðà ïðè ïîäêëþ÷åííîì êëèåíòå

Code:

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.0.202   0.0.0.0         255.255.255.255 UH    0      0        0 ppp1
192.168.2.5     192.168.70.1    255.255.255.255 UGH   3      0        0 vlan1
192.168.70.0    0.0.0.0         255.255.255.0   U     0      0        0 vlan1
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 br0
192.168.0.0     192.168.70.1    255.255.0.0     UG    2      0        0 vlan1
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         172.16.0.1      0.0.0.0         UG    0      0        0 ppp0
0.0.0.0         192.168.70.1    0.0.0.0         UG    1      0        0 vlan1

Ðàçíåñëî íà äâà ïîñòà :\

Ïîäóìàë áûëî, ÷òî íóæíî ïîêîëäîâàòü ñ ðîóòàìè êëèåíòîâ, íî óâèäåë ïîñò roadstreamer-à (http://wl500g.info/showpost.php?p=216591&postcount=491 ) è ïîäóìàë, ÷òî êîëäîâàòü íóæíî ñ iptables â êîòîðûõ ìî¸ êóíôó, ìÿãêî ãîâîðÿ, íå äîòÿãèâàåò äî íóæíîãî óðîâíÿ.

Ìîæåò áûòü êòî-òî óæå íàñòðàèâàë âñå ïîäîáíûì îáðàçîì è ÿ ïðîãëÿäåë â òåìå? Ïîäñêàæèòå êàê ðåàëèçîâàòü çàäóìàííîå, áóäüòå òàê äîáðû

**max2007** · 27-04-2011, 20:21

Âñ¸ óñòàíîâèë ,âðîäè âñ¸ ðàáîòàåò , íî â ëîãå êàêàÿòî îøèáêà

Code:

22:57:41 05-04-2011 (notice|syslog|syslog-ng) syslog-ng[438]: syslog-ng starting up; version=\'2.0.9\'
22:57:41 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S08samba
22:57:42 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:42 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S10cron
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S10xinetd
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S20poptop
22:57:44 05-04-2011 (debug|daemon|xinetd) xinetd[453]: Reading included configuration file: /opt/etc/xinetd.d/swat [file=/opt/etc/xinetd.conf] [line=15]
22:57:44 05-04-2011 (notice|daemon|xinetd) xinetd[453]: xinetd Version 2.3.14 started with no options compiled in.
22:57:44 05-04-2011 (notice|daemon|xinetd) xinetd[453]: Started working: 1 available service
22:57:44 05-04-2011 (debug|daemon|pptpd) pptpd[461]: CTRL: BCrelay incoming interface is br0
22:57:44 05-04-2011 (debug|daemon|pptpd) pptpd[462]: CTRL (BCrelay Launcher): Launching BCrelay with pid 0
22:57:44 05-04-2011 (debug|daemon|pptpd) pptpd[462]: MGR: BCrelay incoming interface is br0
22:57:44 05-04-2011 (debug|daemon|pptpd) pptpd[462]: MGR: BCrelay outgoing interface is regexp ppp[0-9].*
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S20smartmontools
22:57:44 05-04-2011 (info|daemon|bcrelay) bcrelay[462]: Running as child
22:57:44 05-04-2011 (info|daemon|pptpd) pptpd[461]: MGR: Manager process started
22:57:44 05-04-2011 (info|daemon|pptpd) pptpd[461]: MGR: Maximum of 4 connections available
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S45php
22:57:44 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S50dlengine
22:57:45 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S70mysqld
22:57:45 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:45 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:57:46 05-04-2011 (notice|user|rc.unslung) rc.unslung: start service /opt/etc/init.d/S80lighttpd
22:57:48 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:48 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:57:51 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:51 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:57:54 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:54 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:57:57 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:57:57 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:58:00 05-04-2011 (warning|kern|kernel) mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=00, o[3]=00, o[4]=00, o[5]=00
22:58:00 05-04-2011 (err|daemon|pptp) pptp[333]: Received bad configure-ack: 
22:58:03 05-04-2011 (warning|daemon|pptp) pptp[333]: CCP: timeout sending Config-Requests
22:58:56 05-04-2011 (emerg|user|client) client: Synchronizing time with pool.ntp.org...

Ïîäñêàæèòå â ÷¸ì ïðîáëåìà è êàê èñïðàâèòü

P.S. Ðîóòåð RT-N16 ïðîøèâêà 1.9.2.7-rtn-r2709

È ÷¸ íèêòî íè÷¸ íå ìîæåò ñêàçàòü ïî ïðåäàäóùåìó ïîñòó ????

Ïîäíèìó åù¸ ðàç òåìó , ìîæåò õîòü êòî ÷òî íèáóäü âíÿòíîå íàïèñàòü ïî îøèáêå îïèñàíîé â ïîñòå âûøå.Ãóðó îòêëèêíèòåñü , êàê ðåøèòü , õîòü îúÿñíèòå ÷òî çàîøèáêà è ÷åì ÷ðåâàòî.À òî ïîñòîÿííî ïîÿâëÿåòñÿ â ëîãàõ è æóòêî ðåæèò ãëàçà,äà è õîòåëîñü áû ÷òîáû âñ¸ ðàáîòàëî áåç îøèáîê. Ñïàñèáî !!!

**andr128** · 28-04-2011, 17:30

max2007
çäåñü ÷òî-òî ïîõîæåå áûëî http://wl500g.info/showthread.php?t=6712

**max2007** · 28-04-2011, 17:59

andr128 Ñïàñèáî , ïî÷èòàþ !!!

P.S Åù¸ ðàç îãðîìíîå ñïàñèáî , ðîçîáðàëñÿ ,òåïåðü âñ¸ ðàáîòàåò áåç îøèáîê
Êàê âûÿñíèëîñü ïðîáëåìà áûëà íå â POPTOP , à â íàñòðîéêàõ PPTP ñîåäåíåíèÿ ñ ïðîâàéäåðîì
Âñåãî òî íàäî áûëî â Additional pppd options âïèñàòü nomppe

**mc-sim** · 02-05-2011, 12:25

ëþäè, à íå ïîäñêàæèòå, êàê íàñòðîèòü ïîäêëþ÷åíèå PPTP êëèåíòà íà ðîóòåðå?
Òî åñòü èíòåðíåò ó ìåíÿ ïîäêëþ÷àåòñÿ ïî L2TP, íî ìíå åùå íóæíî óñòàíàâëèâàòü àâòîìàòîì PPTP ê îôèñíîé ñåòè ïîñëå ïîäíÿòèÿ L2TP ê ïðîâàéäåðó.
Ñïàñèáî.

**akm2008** · 21-05-2011, 16:02

Èìååì ñëåäóþùèå

Ïîëó÷àþ âûäåëåííûé IP îò ïðîâàéäåðà ñ ïîìîùüþ PPOE -- 95.128.xxx.xxx
Íà ðîóòîðå DHCP Server 192.168.1.100-200
POPTOP 192.168.1.250 ðàçäàåò IP 192.168.1.251-254

Èç âíå ê öåïëÿþñü áåç ïðîáëåì ñ ïåðâîãî ðàçà ïîëó÷àþ IP 192.168.1.251 Âñå îòëè÷íî òîëüêî îòâàëèâàåòñÿ èíòåðíåò íà óäàëåííîé ìàøèíå è íåäîñòóïíà ñåòü ïðîâàéäåðà

/usr/local/sbin/post-firewall Âûãëÿäèò òà

Code:

iptables -I INPUT -p tcp --dport 1723 -j ACCEPT
iptables -I INPUT -p 47 -j ACCEPT

Íî åñëè äîáàâèòü â /usr/local/sbin/post-firewall ñëåäóþùèå ñòðîêè

Code:

iptables -I OUTPUT -p 47 -j ACCEPT
iptables -I INPUT -p 47 -j ACCEPT
iptables -I INPUT -i ppp+ -j ACCEPT
iptables -I FORWARD -i ppp+ -j ACCEPT
iptables -I FORWARD -o ppp+ -j ACCEPT
iptables -I OUTPUT -o ppp+ -j ACCEPT

Ñèòóàöèÿ ìåíÿåòñÿ â ñëåäóþùåþ ñòîðîíó
Íà óäàëåííîé ìàøèíå ïîÿâëÿåòñÿ èíòåðíåò è ëîêàëüíàÿ ñåòü ïðîâàéäåðà
À íà ðîóòîðå ïðîïàäàåò èíòåðíåò è îñòàåòñÿ äîñòóïíà òîëüêî äîìàøíÿÿ ñåòü

Ïîäñêàæèòå ïðàâèëüíîå ïðàâèëî ???
Íóæíî ÷òîáû ïðè óäàëåííîì êîíåêòå áûë äîñòóïíà ëîêàëüíàÿ ñåòü ïðîâàéäåðà è èíòåðíåò

**akm2008** · 21-05-2011, 22:10

Âðîäå ðåøèë ïðîáëåìó
çàìåíèë ppp+ íà ppp1 âñå çàðàáîòàëî

Ïðàâèëî â ìîå ñëó÷àå âûãëÿäèò òàê

Code:

iptables -I INPUT -p tcp --dport 1723 -j ACCEPT
iptables -I INPUT -p 47 -j ACCEPT
iptables -I INPUT -i ppp1 -j ACCEPT
iptables -I FORWARD -i ppp1 -j ACCEPT
iptables -I FORWARD -o ppp1 -j ACCEPT
iptables -I OUTPUT -o ppp1 -j ACCEPT

**max2007** · 22-05-2011, 12:09

Code:

iptables -I INPUT -i ppp1 -j ACCEPT
iptables -I FORWARD -i ppp1 -j ACCEPT
iptables -I FORWARD -o ppp1 -j ACCEPT
iptables -I OUTPUT -o ppp1 -j ACCEPT

Ýòî íå ïðàâèëüíûå ïðàâèëà , îíè îòêðûâàò äûðó â áåçîïàñíîñòè â ðîóòåðå îá ýòîì óæå íå ðàç ïèñàëîñü â ýòîé âåòêå
Ïðàâèëüíî ïðîïèñàòü ïðàâèëà â ñêðèïòàõ ip-up è ip-down òàê êàê ÿ âàì äàâàë ïðèìåðû ,ïî÷åìó ó âàñ íå çàðàáîòàëî ÿ íå çíàþ , âñå íàñòðîéêè êîïèðîâàë ó ñåáÿ ñ ðîóòåðà îäèí ê îäíîìó
Äà êñòàòè , â÷åðà ñòðîèë ïîïòîï äðóãó íà RT-N16 , âñå íàñòðîéêè ñ ìîåãî ðîóòåðà ,âñ¸ çàâèëîñü ñ ïîë ïèíêà
Òàê ÷òî óâàæàåìûé akm2008 èùèòå ãäåòî ó ñåáÿ êàêîéòî íåäîñìîòð

**akm2008** · 22-05-2011, 21:47

Originally Posted by max2007

Ïðàâèëüíî ïðîïèñàòü ïðàâèëà â ñêðèïòàõ ip-up è ip-down òàê êàê ÿ âàì äàâàë ïðèìåðû ,ïî÷åìó ó âàñ íå çàðàáîòàëî ÿ íå çíàþ , âñå íàñòðîéêè êîïèðîâàë ó ñåáÿ ñ ðîóòåðà îäèí ê îäíîìó

Ñòðàííî íî íå îäíîãî ñîâåòà îò Âàñ ïî ïîâîäó ïðàâèë â ñêðèïòàõ ip-up è ip-down ÿ íå ïîëó÷àë

Åäèíñòâåííûé ñîâåò áûë â /opt/etc/ppp/options.pptpd ïðîïèñàòü âìåñòî àäðåñà ms-dns 192.168.1.1 çàìåíèòü íà dns êîòîðûé îò ïðîâàéäåðà ïîëó÷àþ èëè îáùåñòâåííûé Íî ýòî íå ïîìîãëî

Åñëè Âû èìåòå â âèäó âîò ýòè ïðàâèëà

#!/bin/sh
iptables -I INPUT -i $1 -s $5 -j ACCEPT
iptables -I FORWARD -i $1 -s $5 -j ACCEPT
logger "vpn connected from $6"

/opt/etc/ppp/ip-down

#!/bin/sh
iptables -D INPUT -i $1 -s $5 -j ACCEPT
iptables -D FORWARD -i $1 -s $5 -j ACCEPT
logger "vpn disconnected from $6"

Òî â ìîåì ñëó÷àå ÿ âèæó òîëüêî äîìàøíþþ ñåòü íî íèêàê ñåòü ïðîâàéäåðà
×òî-òî íóæíî ïîïðàâèòü âèäèìî â ñêðèïòàõ íî ìîèõ çíàíèé íå õâàòàåò

Ìîÿ çàäà÷à äîáèòüñÿ âèäèìîñòè ëîêàëüíîé ñåòè ïðîâàéäåðà èç âíå
Òî åñòü â íåçàâèñèìîñòè îò òîãî ãäå ÿ íàõîæóñü ïîëó÷èòü äîñòóï ê ìåñòíîé ip-òåëåôîíèè è òåëåâèäåíèþ Ëèøü áû èíåò áûë ïîä ðóêîé

**max2007** · 23-05-2011, 12:23

Òåïåðü ÿ ïîíÿë ÷òî âû õîòèòå , ó ñàìîãî ñåé÷àñ íåòó âîçìîæíîñòè ïîäêëþ÷èòñÿ ñ äðóãîãî èíåò ïðîâàéäåðà è ïðîâåðèòü óâèæó ëè ÿ ñåòêó ïðîâàéäåðà . Íó ÷òîòî ìíå ïîäñêàçûâàåò ÷òî óâèæó ,òàê êàê ïîäêëþ÷åíèå ïîñðåäñòâîì ïîïòîò ðàâíîçíà÷íî ïîäêëþ÷åíèþ â õàá ðîóòåðà (âû ñòàíîâèòåñü ó÷àñòíèêîì âíóòðåíåé ñåòè) ,à âñå âíóòðåñåòåâûå êîìïû âèäÿò ñåòü ïðîâàéäåðà(íàñòðîåí ðîóòèíã)

**Dayran** · 02-06-2011, 17:31

Âñ¸ íàñòðîèë ïî èíñòðóêöèè, âíóòðè ñåòè âñ¸ ðàáîòàåò, à ïðè ïîäêëþ÷åíèè èçâíå äîõîäèò òîëüêî äî ïðîâåðêè èìåíè è ïàðîëÿ è âûëåòàåò ñ îøèáêîé 619. Ïåðå÷èòàâ âñå 27 ñòðàíèö, óâèäåë, ÷òî òàêàÿ ïðîáëåìà áûëà ó ìíîãèõ, íî âîò ðåøåíèÿ òàê è íå íàø¸ë. Ïîäñêàæèòå ÷òî äåëàòü.

Jun 2 23:04:32 dropbear[525]: Child connection from 213.87.123.182:43003
Jun 2 23:04:34 dropbear[525]: Exit before auth: Exited normally
Jun 2 23:04:34 pptpd[526]: CTRL: Client 213.87.123.182 control connection started
Jun 2 23:04:37 pptpd[526]: CTRL: Starting call (launching pppd, opening GRE)
Jun 2 23:04:38 pppd[527]: pppd 2.4.5 started by root, uid 0
Jun 2 23:04:38 pppd[527]: Using interface ppp0
Jun 2 23:04:38 pppd[527]: Connect: ppp0 <--> /dev/pts/0
Jun 2 23:05:08 pppd[527]: LCP: timeout sending Config-Requests
Jun 2 23:05:08 pppd[527]: Connection terminated.
Jun 2 23:05:08 pppd[527]: Modem hangup
Jun 2 23:05:08 pppd[527]: Exit.
Jun 2 23:05:08 pptpd[526]: GRE: read(fd=7,buffer=100004f0,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
Jun 2 23:05:08 pptpd[526]: CTRL: PTY read or GRE write failed (pty,gre)=(7,8)
Jun 2 23:05:08 pptpd[526]: CTRL: Client 213.87.123.182 control connection finished

pptpd.conf, options.pptpd è ëîãè ïðèëàãàþòñÿ.

Thread: POPTOP install (óñòàíîâêà â îñíîâíóþ ïàìÿòü)

Thread Tools

Rate This Thread

Display

Similar Threads

Óñòàíîâêà VLC íà ðîóòåð ?

Ïðîáëåìû ñ óñòàíîâêîé è íàñòðîéêîé VPN ñåðâåðà poptop

Óñòàíîâêà OpenVPN â îñíîâíóþ ïàìÿòü äëÿ ÍÎÂÈ×ÊÎÂ

lighttp and php tutorial

Tags for this Thread

Posting Permissions