Выкладываю все что опять поперенакрутил. Вроде радиус начал выдавать айпишники, но теперь поптоп ругается.
/var/log/syslog:
Код: Выделить всё
Nov 28 13:11:46 localhost pptpd[12864]: MGR: Manager process started
Nov 28 13:12:06 localhost pptpd[12892]: MGR: Launching /usr/sbin/pptpctrl to handle client
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: pppd options file = /etc/ppp/pptpd-options
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Client 10.119.0.22 control connection started
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received PPTP Control Message (type: 1)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Made a START CTRL CONN RPLY packet
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: I wrote 156 bytes to the client.
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Sent packet to client
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received PPTP Control Message (type: 7)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Set parameters to 100000000 maxbps, 64 window size
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Made a OUT CALL RPLY packet
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Starting call (launching pppd, opening GRE)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: pty_fd = 6
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: tty_fd = 7
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: I wrote 32 bytes to the client.
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Sent packet to client
Nov 28 13:12:06 localhost pptpd[12893]: CTRL (PPPD Launcher): program binary = /usr/sbin/pppd
Nov 28 13:12:06 localhost pppd[12893]: Plugin radius.so loaded.
Nov 28 13:12:06 localhost pppd[12893]: RADIUS plugin initialized.
Nov 28 13:12:06 localhost pppd[12893]: Plugin radattr.so loaded.
Nov 28 13:12:06 localhost pppd[12893]: RADATTR plugin initialized.
Nov 28 13:12:06 localhost pppd[12893]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
Nov 28 13:12:06 localhost pppd[12893]: pppd options in effect:
Nov 28 13:12:06 localhost pppd[12893]: dump#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: plugin radius.so#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: plugin radattr.so#011#011# (from command line)
Nov 28 13:12:06 localhost pppd[12893]: plugin /usr/lib/pptpd/pptpd-logwtmp.so#011#011# (from command line)
Nov 28 13:12:06 localhost pppd[12893]: require-mschap-v2#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: refuse-pap#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: refuse-chap#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received PPTP Control Message (type: 15)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Got a SET LINK INFO packet with standard ACCMs
Nov 28 13:12:06 localhost pppd[12893]: refuse-mschap#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: name maskimko#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: pptpd-original-ip 10.119.0.22#011#011# (from command line)
Nov 28 13:12:06 localhost pppd[12893]: radius-config-file /etc/radiusclient/radiusclient.conf#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: 115200#011#011# (from command line)
Nov 28 13:12:06 localhost pppd[12893]: lock#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: crtscts#011#011# (from /etc/ppp/options)
Nov 28 13:12:06 localhost pppd[12893]: local#011#011# (from command line)
Nov 28 13:12:06 localhost pppd[12893]: asyncmap 0#011#011# (from /etc/ppp/options)
Nov 28 13:12:06 localhost pppd[12893]: lcp-echo-failure 30#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: lcp-echo-interval 5#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: hide-password#011#011# (from /etc/ppp/options)
Nov 28 13:12:06 localhost pppd[12893]: ipcp-accept-local#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: ipcp-accept-remote#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: nodefaultroute#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: proxyarp#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: nobsdcomp#011#011# (from /etc/ppp/pptpd-options)
Nov 28 13:12:06 localhost pppd[12893]: noipx#011#011# (from /etc/ppp/options)
Nov 28 13:12:06 localhost pppd[12893]: pppd 2.4.5 started by root, uid 0
Nov 28 13:12:06 localhost pppd[12893]: Using interface ppp0
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #0
Nov 28 13:12:06 localhost pppd[12893]: Connect: ppp0 <--> /dev/pts/3
Nov 28 13:12:06 localhost pptpd[12892]: GRE: Bad checksum from pppd.
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #1
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #2
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #3
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #4
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #5
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #6
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received PPTP Control Message (type: 15)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #7
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #8
Nov 28 13:12:06 localhost kernel: [ 7608.068030] PPP Deflate Compression module registered
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #9
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #10
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #11
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #12
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #13
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #14
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #15
Nov 28 13:12:06 localhost pppd[12893]: Could not determine local IP address
Nov 28 13:12:06 localhost pppd[12893]: Connect time 0.0 minutes.
Nov 28 13:12:06 localhost pppd[12893]: Sent 112 bytes, received 126 bytes.
Nov 28 13:12:06 localhost pptpd[12892]: GRE: accepting packet #16
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received PPTP Control Message (type: 12)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Made a CALL DISCONNECT RPLY packet
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Received CALL CLR request (closing call)
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Reaping child PPP[12893]
Nov 28 13:12:06 localhost pppd[12893]: Hangup (SIGHUP)
Nov 28 13:12:06 localhost pppd[12893]: Modem hangup
Nov 28 13:12:06 localhost pppd[12893]: Connection terminated.
Nov 28 13:12:06 localhost pppd[12893]: Connect time 0.0 minutes.
Nov 28 13:12:06 localhost pppd[12893]: Sent 152 bytes, received 126 bytes.
Nov 28 13:12:06 localhost pppd[12893]: Exit.
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Client 10.119.0.22 control connection finished
Nov 28 13:12:06 localhost pptpd[12892]: CTRL: Exiting now
Nov 28 13:12:06 localhost pptpd[12864]: MGR: Reaped child 12892
/etc/pptpd.conf
Код: Выделить всё
ppp /usr/sbin/pppd
option /etc/ppp/pptpd-options
debug
noipparam
logwtmp
delegate
localip 192.168.19.1
/etc/ppp/pptpd-options
Код: Выделить всё
name maskimko
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
proxyarp
nodefaultroute
dump
lock
novj
novjccomp
nodeflate
lcp-echo-failure 30
lcp-echo-interval 5
ipcp-accept-local
ipcp-accept-remote
plugin radius.so
plugin radattr.so
radius-config-file /etc/radiusclient/radiusclient.conf
/etc/radiusclient/radiusclient.conf
Код: Выделить всё
auth_order radius
login_tries 4
login_timeout 60
nologin /etc/nologin
issue /etc/radiusclient/issue
authserver localhost
acctserver localhost
servers /etc/radiusclient/servers
dictionary /etc/radiusclient/dictionary
login_radius /usr/sbin/login.radius
seqfile /var/run/radius.seq
mapfile /etc/radiusclient/port-id-map
default_realm
radius_timeout 10
radius_retries 3
login_local /bin/login
freeradius -X
Код: Выделить всё
rad_recv: Access-Request packet from host 127.0.0.1 port 43825, id=156, length=132
Service-Type = Framed-User
Framed-Protocol = PPP
User-Name = "test"
MS-CHAP-Challenge = 0xe04141eb8f2494805786164b2eba0c40
MS-CHAP2-Response = 0xa700bad2c67397d6a61617ad83dbf54ae6a9000000000000000055b1538550a15b5533a4a703c6
867be58322374581002f43
NAS-IP-Address = 127.0.0.1
NAS-Port = 0
# Executing section authorize from file /etc/freeradius/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
Exec-Program output: Cleartext-Password := "123456"
Exec-Program-Wait: value-pairs: Cleartext-Password := "123456"
Exec-Program: returned: 0
++[abills_preauth] returns ok
[mschap] Found MS-CHAP attributes. Setting 'Auth-Type = mschap'
++[mschap] returns ok
[files] users: Matched entry DEFAULT at line 205
++[files] returns ok
Exec-Program output: Acct-Interim-Interval = 60, Session-Timeout = 210500, User-Name = test, Framed-IP-Address = 192.168.19.193, Framed-IP-Netmask = 0.0.0.0,
Exec-Program-Wait: value-pairs: Acct-Interim-Interval = 60, Session-Timeout = 210500, User-Name = test, Framed-IP-Address = 192.168.19.193, Framed-IP-Netmask = 0.0.0.0,
Exec-Program: returned: 0
++[abills_auth] returns ok
Found Auth-Type = MSCHAP
# Executing group from file /etc/freeradius/sites-enabled/default
+- entering group MS-CHAP {...}
[mschap] Creating challenge hash with username: test
[mschap] Told to do MS-CHAPv2 for test with NT-Password
[mschap] adding MS-CHAPv2 MPPE keys
++[mschap] returns ok
WARNING: Empty post-auth section. Using default return values.
# Executing section post-auth from file /etc/freeradius/sites-enabled/default
Sending Access-Accept of id 156 to 127.0.0.1 port 43825
Acct-Interim-Interval = 60
Session-Timeout = 210500
User-Name = "test"
Framed-IP-Address = 192.168.19.193
Framed-IP-Netmask = 0.0.0.0
MS-CHAP2-Success = 0xa7533d423239343636354331463138324236443745424531384338333031464534384636413835
43424536
MS-MPPE-Recv-Key = 0x181d34b86739b96b8689a11ae0947fe8
MS-MPPE-Send-Key = 0x721eb4bd05773c9bf1fd9b91111238c1
MS-MPPE-Encryption-Policy = 0x00000001
MS-MPPE-Encryption-Types = 0x00000006
Finished request 11.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 11 ID 156 with timestamp +7676
Ready to process requests.
судя по лолгам радиуса с ним все нормально, поэтому конфиг думаю смысла выкладывать нет, так как он разбросан по многим файлам и довольно большой.
И еще нюанс, Если в абилсе прописать статический айпи то у клиента ошибку не выкидывает но соединение все-равно сразу обрывается, и в логах поптопа тоже самое.
