Íàñòðîéêà PPTP VPN (accel-pppd) íà ðîóòåðå Asus

[staticroute]

ëîæü. íåò íèêàêèõ ãëþêîâ íà N16 ñ dnsmasq, êàê ìèíèìóì íà r4691.

÷åñòíî ãîâîðÿ íå õî÷åòñÿ ïðîâåðÿòü íà ïðîäàêøåíå, ïîêà ïóñòü áóäåò r3497, 3 ðåêîííåêòà ýòî íå ñìåðòåëüíî.

õî÷åòñÿ ñòðàííîãî? âñå òàê è çàäóìàíî, ÷èòàé ìàí.
ïóëû ïîääåðæèâàþòñÿ per proto è ñ ðàäèóñîì.

ìîæíî ïîäðîáíåå, ðàäèóñ íå íóæåí ñîâñåì - ëèøíÿÿ íàãðóçêà òîëüêî íà ðîóòåð.

íà 2.6.22 - íè÷åãî.

â ÷åì ïðîáëåìà ñîáðàòü libnl2 èëè ÷òî òàì íóæíî äëÿ øåéïåðà â accel-ppp èëè òàì ÿäðî çàäåéñòâîâàíî?

ïðîáëåìû â íàñòðîéêå è îïÿòü ñ ÷òåíèåì ìàíîâ.
äëÿ âñòðîåííîé ñàìáû:

Code:

[global]
        wins support = yes
        local master = yes
        domain master = yes
        preferred master = yes

ñëóøàé, ïðîáëåì íèêàêèõ íåòó, íà îñíîâíîé ñàìáå âñå èìåííî òàê è óêàçàíî, íà äîïîëíèòåëüíîé local master = yes, domain master = no

âñå ñäåëàíî êàê íàäî, íî íå ðàáîòàåò.

[theMIROn]

ìîæíî ïîäðîáíåå, ðàäèóñ íå íóæåí ñîâñåì - ëèøíÿÿ íàãðóçêà òîëüêî íà ðîóòåð.

îòêóäà áóäóò âûäàâàòüñÿ àäðåñà - çàâèñèò îò ïîðÿäêà çàãðóçêè radius, chap-secrets, ippool

â ÷åì ïðîáëåìà ñîáðàòü libnl2 èëè ÷òî òàì íóæíî äëÿ øåéïåðà â accel-ppp èëè òàì ÿäðî çàäåéñòâîâàíî?

â ò.÷. ÿäðî

âñå ñäåëàíî êàê íàäî, íî íå ðàáîòàåò.

âðÿä ëè ïîëíîñòüþ êàê íàäî, 10 ñåê. ãóãëåíèÿ http://randombio.com/linuxsetup38.html

[staticroute]

âðÿä ëè ïîëíîñòüþ êàê íàäî, 10 ñåê. ãóãëåíèÿ http://randombio.com/linuxsetup38.html

Ðàáîòàåò òîëüêî â òîì ñëó÷àå, åñëè ïîäíÿò åäèíñòâåííûé WINS ñåðâåð â ñåòè 192.168.1.1.

 ñåòè 192.168.2.0/24 äîëæåí áûòü ïðîïèñàí òîò æå ñàìûé WINS íà êëèåíòàõ, èíà÷å îíè íå âèäÿò äðóãèå êîìïüþòåðû è íå ìîãóò íà íèõ çàéòè, òàê êàê WINS-ðåïëèêàöèÿ äî ñèõ ïîð íå ñäåëàíà.

Êðîìå òîãî, ñòîèò îòìåòèòü, ÷òî remote announce è remote browse ðàáîòàþò êðàéíå ïëîõî (êàê ðàç âûøåîïèñàííûé ãëþê), ïîýòîìó ñòîèò äåëàòü íà âèíäîâûõ êëèåíòàõ ïîñëå îêîí÷àòåëüíîé íàñòðîéêè:

Code:

netsh winsock reset

 îáùåì-òî ïðîáëåìà çàêëþ÷àåòñÿ â òîì, ÷òî â ñàìáå3 äî ñèõ ïîð íåòó WINS Replication:

As of Samba-3, WINS replication is being worked on. The bulk of the code has been committed, but it still needs maturation. This is not a supported feature of the Samba-3.0.20 release. Hopefully, this will become a supported feature of one of the Samba-3 release series. The delay is caused by the fact that this feature has not been of sufficient significance to inspire someone to pay a developer to complete it.

Right now Samba WINS does not support MS-WINS replication. This means that when setting up Samba as a WINS server, there must only be one nmbd configured as a WINS server on the network. Some sites have used multiple Samba WINS servers for redundancy (one server per subnet) and then used remote browse sync and remote announce to effect browse list collation across all segments. Note that this means clients will only resolve local names and must be configured to use DNS to resolve names on other subnets in order to resolve the IP addresses of the servers they can see on other subnets. This setup is not recommended but is mentioned as a practical consideration (i.e., an “if all else fails” scenario). NetBIOS over TCP/IP is an ugly and difficult to manage protocol. Its replacement, NetBIOSless SMB over TCP/IP is not without its own manageability concerns. NetBIOS based networking is a life of compromise and trade-offs. WINS stores information that cannot be stored in DNS; consequently, DNS is a poor substitute for WINS given that when NetBIOS over TCP/IP is used, Windows clients are designed to use WINS.

ß êàê ðàç-òàêè õîòåë ñäåëàòü ïî-âòîðîìó ìåòîäó, ÷òîáû â êàæäîé ïîäñåòè áûë ñâîé WINS-ñåðâåð (íà ñëó÷àé ïàäåíèÿ ëèíêà ìåæäó ñåòÿìè èëè îäíîãî èç WINS-ñåðâåðîâ).

ß äóìàþ ñòîèò åùå ïðèñìîòðåòüñÿ ê http://www.enterprisesamba.org/samba4wins/

ñîðñ òàì ïðèñóòñòâóåò, òîëüêî íåèçâåñòíî çàâåäåòñÿ îíî íà MIPS è âîîáùå áóäåò ëè ðàáîòàòü êîððåêòíî ðåïëèêàöèÿ ìåæäó WINS ñåðâåðàìè.

Ýòî âñå íåìíîãî îôôòîïèê, íî ñòîèò îòìåòèòü, ÷òî ñåòè áûëè îáúåäèíåíû ïîñðåäñòâîì PPTP-òîííåëÿ, ïîñòðîåííîãî íà accel-pppd.

[KAM-]

Ëþäè, ïîäñêàæèòå - åñòü ëè â àëüòåðíàòèâíîé ïðîøèâêå PPTP êëèåíò. Íàäî ïîäêëþ÷èòüñÿ ïî PPTP ê óäàëåííîìó îôèñó. Òðåáóåòñÿ ëè ñòàâèòü ÷òî òî äîïîëíèòåëüíî èëè âåñü ôóíêöèîíàë ðåàëèçîâàí øòàòíî ?

[evgeny73]

Ñïàñèáî îãðîìíîå! Â öåëîì âñå ïîíÿòíî, îñòàëîñü òîëüêî ïîíÿòü êàê óñòàíîâèòü accel-pppd è âëåçåòëè îí â 8mb ôëåøà ÷òî íà wnr3500l.
Poptop âåäü â ñâîå âðåìÿ óðåçàëè, ÷òî íà dir-320 âñòàë, ìîæíî è òóò âûëîæèòü ïîäîáíûé àðõèâ ÷òîáû ðàñïàêîâàòü è ïîëüçîâàòñÿ?

Ïî ñëó÷àþ ïðèîáðåòåíèÿ rt-n16 ïîïðîáîâàë ïîñòàâèòü optware è accel-ppp çàíèìàåò 7 ìåòðîâ, óæèìàåòñÿ äî 2.4mb ïðè ñîõðàíåíèè. Òàê÷òî ìîæåò è íà ôëåø ïàìÿòü 3500l âëåçåò, òåìáîëåå ïîñëå óñòàíîâêè accel-ppp ìîæíî ïîïðîáîâàòü óäàëèòü opkg
Äëÿ çàïóñêà èñïîëüçîâàë ñêðèïò èç êîìïëåêòà /opt/etc/init.d/S60accel-ppp, íî ïðè ñòàðòå ðóãàåòñÿ
Jan 1 04:00:11 accel-pppd: failed to load pptp kernel module

Ïðèøëîñü ïðîïèñûâàòü insmod pptp â post-boot, åñëè ïðîïèñàòü êàê ðåêîìåíäîâàë Agros â post-mount òî íå çàïóñêàåòñÿ, íàâåðíîå ïîòîìó ÷òî ÿ íèêàêèõ âíåøíèõ íàêîïèòåëåé íå ïîäêëþ÷àë, íó à ðàç íè÷åãî íå ìîíòèðóåòñÿ, òî êàê ÿ ïîíÿë è post-mount íå çàïóñêàåòñÿ. À âîò insmod pppox çàïóñêàòü ñàìîìó íå íàäî, âèäàòü ïîñëå óñòàíîâêè accel-ppp ïðîïèñàëñÿ åãî çàïóñê ãäå íàäî.
Ðàáîòàåò ðàçà â 4 áûñòðåå ÷åì poptop, åäèíñòâåííî çàìå÷åííûé ïîêà êîñÿê íå ïèíãóþòñÿ ñ ñåðâåðà êëèåíòû è ñîîòâåòñâåííî íå îòêðûâàþòñÿ, ïðè÷åì ñ êëèåíòà ïèíãóåòñÿ/îòêðûâàåòñÿ è ñåðâåð è êëèåíòû

[Gaku]

Çäðàâñòâóéòå!

Åñòü êàêàÿ-òî ñòðàííîñòü ñ SSH-ñåðâåðîì. ÁðîñüÌåäâåäü èíîãäà ïåðåñòà¸ò îòâå÷àòü èçâíå - ìîæåò áûòü èç-çà òîãî ÷òî èç Òóðöèè êòî-òî äîëáèò è âêëþ÷àåòñÿ ñòàíäàðòíûé àíòè-áðóòôîðñ, à ìîæåò - íàñòðîéêè ñáèâàþòñÿ. Ïîäñêàæèòå, êòî ñòàëêèâàëñÿ ñ òàêîé ïðîáëåìîé â ïîñëåäíåé ïðîøèâêå, ñ ÷åì òàêèå äåëà ìîãóò áûòü ñâÿçàíû?

Ïîäñêàæèòå ïîæàëóéñòà ñàìûé ïðîñòîé è ìåíåå-æðóùèé ðåñóðñû ñïîñîá óñòàíîâèòü íà ðîóòåð PPTP-ñåðâåð?

Ïîäñêàæèòå ïîæàëóéñòà ïëàíèðóåòñÿ ëè âñòðàèâàíèå rdtool (http://wl500g.info/showthread.php?8998) â ïðîøèâêó, ïîäîáíî DropBear'ó?

[Anfalov]

Apr 10 22:18:28 accel-pppd: failed to load pptp kernel module
Apr 10 22:18:28 accel-pppd: accel-ppp version 1.7.3

lsmod ãîâîðèò, ÷òî pptp çàãðóæåí, íî òàêîå ïîäîçðåíèå, ÷òî îí ðîäíîé îò ïðîøèâêè (êëèåíò), à íå îò accel-ppp

Ïðî÷èå ëîãè îò accel-ppp ïóñòûå.

 accel-ppp.conf óêàçàíèå íà èñïîëüçîâàíèå pptp åñòü è ëîãå óñòàíîâëåííûõ ôàéëîâ ñ opkg åñòü ìîäóëü libpptp.so

Êóäà êîïàòü? Ìàíîâ íåòó...

[Gaku]

òîæå òàêèå ïðîáëåìû:

accel-pppd: failed to load pptp kernel module
accel-pppd: accel-ppp version 1.7.3
admin: Started accel-pppd from .
accel-pppd: :: failed to create PPTP socket (Protocol not supported)
accel-pppd: :: disconnected

áóäó î÷åíü áëàãîäàðåí ëþáûì íàì¸êàì íà ðåøåíèå.

[Gaku]

Âíåçàïíî ïîÿâèëîñü äâå ïðîáëåìû:
1. Çàïóñê busybox_httpd â post-boot (ñðàçó ïîñëå insmod pptp) íå çàïóñêàåò http-ñåðâåð. Åñëè ñòðîêó çàïóñêà âûïîëíèòü âðó÷íóþ - îòðàáàòûâàåò.
2. Ïîïûòêà ïîäêëþ÷èòüñÿ ê accel-ppp èç Win7 âûçûâàåò îøèáêó 734 ïðè ðåãèñòðàöèè êîìüïüþòåðà â ñåòè (òî åñòü, ïîñëå ïðîâåðêè ëîãèíà è ïàðîëÿ).

opkg update
opkg upgrade
âûïîëíèë.

Ïîäñêàæèòå ïîæàëóéñòà êóäà êîïàòü?

[Gaku]

Ïðîöåññ "accel-pppd -d -c /opt/etc/accel-ppp.conf" ñòðàííûì îáðàçîì ïîòðåáëÿåò 70-90% CPU, ïðè ýòîì ïîäêëþ÷èòüñÿ ê íåìó íå ïîëó÷àåòñÿ.
Êòî-òî îáíîâëÿëñÿ äî ïîñëåäíåé âåðñèè accel-ppp, äîñòóïíîé â EntWare?

[rrunner]

Åñòü rt-n16 c ñåðûì àéïèøíèêîì. (íàò ïðîâàéäåðà.)
Åñòü öèñêà ñ ïóëîì ïóáëè÷íûõ àéïèøíèêîâ, íàòîì âî âíóòðåííþþ ñåòü 10.1.0.0/16 è ãëàâíîå ïîäíÿòûì pptp ñåðâåðîì 10.1.3.0/32.
Çàäà÷à: õî÷ó äî rt-nà cíàðóæè äîáðàòüñÿ.
Ïîäíèìàþ íà rt-n pptp êëèåíòà äåëàþ åãî ãåéòîì ïî óìîë÷àíèþ, ãîâîðþ öèñêå ÷òî-á äàâàëà åìó ñòàòè÷åñêèé 10.1.3.100, è
ip nat inside source static 10.1.3.100 õõõ.õõõ.õõõ.õõõ
Âðîäå âñå Îê, âñå ðàáîòàåò êàê íàäî, rt-n âèäåí è èç âíóòðåííèõ ñåòåé öèñêè è êàê õõõ.õõõ.õõõ.õõõ. Íî ãíàòü âåñü òðàôèê ÷åðåç òóíåëü è òåì áîëåå ÷åðåç êàíàë öèñêè íå êîøåðíî, ïîýòîìó ãîâîðþ rt-nó ÷òî çà ÐÐÐ èíòåðôåéñîì òîëüêî 10.1.0.0/16, è âîò òóò ïðîèñõîäèò çàòûê. Èç âíóòðåííèõ ñåòåé rt-n âèäåí, à èç èíåòà - öèñêà ôîðâàðäèò ïàêåò, rt-n åãî ïîëó÷àåò, íî ò.ê. îòïðàâèòåëü ñ ïóáëè÷íûì IP, rt-n îòâåò øëåò ÷åðåç îñíîâíîé ãåéò (ñåðûé èï ïðîâàéäåðà) ðàçóìååòñÿ íè÷åãî íå ðàáîòàåò.
Êàê ñäåëàòü òàê ÷òî-áû öèñêà â ïîëå èñòî÷íèê ñòàâèëà âíóòðåííèé ÈÏ à â îòâåòíîì ïàêåòå ìåíÿëà åãî îáðàòíî íà ïóáëè÷íûé?
Èëè ìîæåò íàäî êàê-òî îáúÿñíèòü rt-nó, ÷òî âñå ÷òî ïðèøëî ñ ÐÐÐ èíòåðôåéñà, îáðàòíî â íåãî-æå è îòïðàâëÿòü?

[flamekiller]

Ïîäñêàæèòå, ïîæàëóéñòà, êàê ïðîâåðèòü ðàáîòàåò ëè accel-ppp èëè íåò è ÷òî ñ íèì ïðîèñõîäèò. Ïðè accel-pppd -c /opt/etc/accel-ppp.conf íè÷åãî íå ïðîèñõîäèò, ëîãè òîæå îòñóòñòâóþò. Ñòàíäàðòíûì ñêðèïòîì S60accel-ppp çàïóñêàåòñÿ è â ñèñòåìíîì ëîãå ðîóòåðà ïîÿâëÿåòñÿ çàïèñü "Started accel-pppd from ." Êîíôèã ñòàíäàðòíûé, ïðè ïîïûòêå êîííåêòà ñ âèí7 îøèáêà 807, ïûòàþñü ïîäêëþ÷èòüñÿ íà 192.168.1.1 ïî pptp. Ôàéë chap-secrets ñîçäàë è çàïîëíèë. Åùå ãðóçèò ïðîö íà 100%. Âåðñèÿ accel-ppp 1.8.0 ×òî åùå ìîæíî ñäåëàòü äëÿ äèàãíîñòèêè ïðîáëåìû?

Code:

[modules]
log_file
log_syslog
log_tcp
log_pgsql
pptp
#l2tp
#pppoe
#ipoe
auth_mschap_v2
auth_mschap_v1
auth_chap_md5
auth_pap
#ippool
chap-secrets
#net-snmp
logwtmp
#connlimit
#ipv6_nd
#ipv6_dhcp
#ipv6pool

[core]
log-error=/opt/var/log/accel-ppp/core.log
thread-count=4

[common]
#single-session=replace
#sid-case=upper
#sid-source=seq

[ppp]
verbose=1
min-mtu=1280
mtu=1400
mru=1400
#ccp=0
#check-ip=0
#mppe=require
ipv4=require
ipv6=deny
ipv6-intf-id=0:0:0:1
ipv6-peer-intf-id=0:0:0:2
ipv6-accept-peer-intf-id=1
lcp-echo-interval=20
#lcp-echo-failure=3
lcp-echo-timeout=120
#unit-cache=1000

[auth]
#any-login=0
#noauth=0

[pptp]
verbose=1
echo-interval=30
echo-failure=15

[pppoe]
#verbose=1
#ac-name=xxx
#service-name=yyy
#pado-delay=0
#pado-delay=0,100:100,200:200,-1:500
#ifname-in-sid=called-sid
#tr101=1
#padi-limit=0
#ip-pool=pppoe
#interface=eth1,padi-limit=1000
#interface=eth0

[l2tp]
#verbose=1
#dictionary=/opt/share/accel-ppp/l2tp/dictionary
#hello-interval=60
#timeout=60
#rtimeout=5
#retransmit=5
#host-name=accel-ppp
#dir300_quirk=0
#secret=
#dataseq=allow
#reorder-timeout=0
#ip-pool=l2tp

[ipoe]
#verbose=1
#username=ifname
#password=username
#lease-time=600
#max-lease-time=3600
#unit-cache=1000
#l4-redirect-table=4
#l4-redirect-ipset=l4
#l4-redirect-on-reject=300
#shared=0
#ifcfg=1
#mode=L2
#start=dhcpv4
#proxy-arp=0
#nat=0
#proto=100
#relay=10.10.10.10
#attr-dhcp-client-ip=DHCP-Client-IP-Address
#attr-dhcp-router-ip=DHCP-Router-IP-Address
#attr-dhcp-mask=DHCP-Mask
#attr-l4-redirect=L4-Redirect
#local-net=192.168.0.0/16
#lua-file=/etc/accel-ppp.lua
#offer-delay=0,100:100,200:200,-1:1000
#vlan-mon=eth0,10-200
#vlan-timeout=60
#vlan-name=%I.%N
#ip-pool=ipoe
#interface=eth0

[dns]
#dns1=8.8.8.8
#dns2=192.168.1.1

[wins]
#wins1=172.16.0.1
#wins2=172.16.1.1

[radius]
#dictionary=/opt/share/accel-ppp/radius/dictionary
#nas-identifier=accel-ppp
#nas-ip-address=127.0.0.1
#gw-ip-address=192.168.100.1
#auth-server=127.0.0.1:1812,testing123 (obsolete)
#acct-server=127.0.0.1:1813,testing123 (obsolete)
#server=127.0.0.1,testing123 (obsolete)
#server=127.0.0.1,testing123,auth-port=1812,acct-port=1813,req-limit=0,fail-time=0
#dae-server=127.0.0.1:3799,testing123
#verbose=1
#timeout=3
#max-try=3
#acct-timeout=120
#acct-delay-time=0
#acct-on=0

[client-ip-range]
#0.0.0.0/0

[ip-pool]
#gw-ip-address=192.168.5.1
#vendor=Cisco
#attr=Cisco-AVPair
#attr=Framed-Pool
#192.168.5.2-255

[log]
log-file=/opt/var/log/accel-ppp/accel-ppp.log
log-emerg=/opt/var/log/accel-ppp/emerg.log
log-fail-file=/opt/var/log/accel-ppp/auth-fail.log
#log-debug=/dev/stdout
syslog=accel-pppd,daemon
log-tcp=127.0.0.1:3000
copy=1
#color=1
#per-user-dir=per_user
#per-session-dir=per_session
#per-session=1
level=5
[log-pgsql]
conninfo=user=log
log-table=log

[pppd-compat]
#ip-pre-up=/opt/etc/ppp/ip-pre-up
#ip-up=/opt/etc/ppp/ip-up
#ip-down=/opt/etc/ppp/ip-down
#ip-change=/opt/etc/ppp/ip-change
#radattr-prefix=/opt/var/run/radattr
#verbose=1

[chap-secrets]
gw-ip-address=192.168.1.1
chap-secrets=/opt/etc/ppp/chap-secrets
#encrypted=0
#username-hash=md5

[shaper]
#attr=Filter-Id
#down-burst-factor=0.1
#up-burst-factor=1.0
#latency=50
#mpu=0
#mtu=0
#r2q=10
#quantum=1500
#cburst=1534
#ifb=ifb0
#up-limiter=police
#down-limiter=tbf
#leaf-qdisc=sfq perturb 10
#rate-multiplier=1
#verbose=1

[cli]
telnet=192.168.1.1:2000
tcp=192.168.1.1:2001
#password=123

[snmp]
master=0
agent-name=accel-ppp

[connlimit]
limit=10/min
burst=3
timeout=60

[ipv6-pool]
fc00:0:1::/48,64
delegate=fc00:1::/36,48

[ipv6-dns]
#fc00:1::1
#fc00:1::2
#fc00:1::3
#dnssl=suffix1.local.net
#dnssl=suffix2.local.net.

[ipv6-dhcp]
verbose=1
pref-lifetime=604800
valid-lifetime=2592000
route-via-gw=1

Áóäó ðàä ëþáîé ïîìîùè. Ñïàñèáî.

[Gaku]

flamekiller, òîæå ñàìîå áûëî. Èñêàë íà ýòîì ôîðóìå ðåøåíèÿ, íå íàø¸ë. Âû÷èñëèë, ÷òî ïîñëåäíÿÿ ðàáî÷àÿ âåðñèÿ 1.7.2-3. Îòêàòèëñÿ íà íå¸.

[flamekiller]

flamekiller, òîæå ñàìîå áûëî. Èñêàë íà ýòîì ôîðóìå ðåøåíèÿ, íå íàø¸ë. Âû÷èñëèë, ÷òî ïîñëåäíÿÿ ðàáî÷àÿ âåðñèÿ 1.7.2-3. Îòêàòèëñÿ íà íå¸.

Ïîäñêàæèòå ïîæàëóéñòà ãäå åå âçÿòü è êàê çàëèòü íà ðîóòåð, ñ Entware ñòàâèòñÿ òîëüêî 1.8

[Gaku]

Ïîäñêàæèòå ïîæàëóéñòà ãäå åå âçÿòü è êàê çàëèòü íà ðîóòåð, ñ Entware ñòàâèòñÿ òîëüêî 1.8

Ëó÷øå ïîèñêîì ïîôîðóìó.
Âîò, íàïðèìåð, çäåñü îòâåò íà òàêîé æå âîïðîñ (êîòîðûé çàäàâàë ÿ): http://wl500g.info/showthread.php?28...713#post264713