vpn сервер

deisler · Сообщение **deisler** » 02.06.2005 15:46

При подключении клиентов на windows часто вылетает ошибка "Обнаружено замыкание на себя".
От чего это происходит?

clx · Сообщение **clx** » 02.06.2005 15:47

А в логах что ?

Сообщение **sash-kan** » 02.06.2005 17:23

(deisler @ Четверг, 02 Июня 2005, 14:46) писал(а):От чего это происходит?

↑

afaik проблемы клиента.

deisler · Сообщение **deisler** » 05.06.2005 01:05

включены debug режимы у pptpd и pppd

нормальное подключение:

Код: Выделить всё

Jun  4 23:53:30 vpn-server pptpd[13013]: MGR: Launching
/usr/sbin/pptpctrl to handle client
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: local address = 10.240.0.80
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: remote address = 192.168.1.1
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: pppd options file =
/etc/ppp/options-pptpd
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Client 10.248.0.111
control connection started
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 1)
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Made a START CTRL CONN
RPLY packet
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: I wrote 156 bytes to the
client.
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Sent packet to client
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 7)
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Set parameters to
100000000 maxbps, 64 window size
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Made a OUT CALL RPLY packet
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Starting call (launching
pppd, opening GRE)
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: pty_fd = 6
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: tty_fd = 7
Jun  4 23:53:30 vpn-server pptpd[22178]: CTRL (PPPD Launcher): program
binary = /usr/sbin/pppd
Jun  4 23:53:30 vpn-server pptpd[22178]: CTRL (PPPD Launcher): local
address = 10.240.0.80
Jun  4 23:53:30 vpn-server pptpd[22178]: CTRL (PPPD Launcher): remote
address = 192.168.1.1
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: I wrote 32 bytes to the
client.
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Sent packet to client
Jun  4 23:53:30 vpn-server pppd[22178]: Plugin radius.so loaded.
Jun  4 23:53:30 vpn-server pppd[22178]: RADIUS plugin initialized.
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 15)
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Got a SET LINK INFO
packet with standard ACCMs
Jun  4 23:53:30 vpn-server pptpd[13013]: GRE: Bad checksum from pppd.
Jun  4 23:53:30 vpn-server pppd[22178]: pppd 2.4.3 started by root, uid 0
Jun  4 23:53:30 vpn-server pppd[22178]: using channel 32
Jun  4 23:53:30 vpn-server pppd[22178]: Using interface ppp0
Jun  4 23:53:30 vpn-server pppd[22178]: Connect: ppp0 <--> /dev/pts/0
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP ConfReq id=0x1
<asyncmap 0x0> <auth chap MD5> <magic 0xfc0d1095> <pcomp> <acc
omp>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP ConfReq id=0x2 <mru
1400> <magic 0x7bc81e53> <pcomp> <accomp> <callback CBCP>
]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP ConfRej id=0x2
<callback CBCP>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP ConfAck id=0x1
<asyncmap 0x0> <auth chap MD5> <magic 0xfc0d1095> <pcomp> <acc
omp>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP ConfReq id=0x3 <mru
1400> <magic 0x7bc81e53> <pcomp> <accomp>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP ConfAck id=0x3 <mru
1400> <magic 0x7bc81e53> <pcomp> <accomp>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP EchoReq id=0x0
magic=0xfc0d1095]
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 15)
Jun  4 23:53:30 vpn-server pptpd[13013]: CTRL: Ignored a SET LINK INFO
packet with real ACCMs!
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CHAP Challenge id=0xd6
<a0cdf87afc17a62db354fabc1f2883e957>, name = "servername"]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP code=0xc id=0x4 7b c8
1e 53 4d 53 52 41 53 56 35 2e 31 30]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP CodeRej id=0x2 0c 04
00 12 7b c8 1e 53 4d 53 52 41 53 56 35 2e 31 30]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP code=0xc id=0x5 7b c8
1e 53 4d 53 52 41 53 2d 30 2d 49 4e 46 4f]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [LCP CodeRej id=0x3 0c 05
00 14 7b c8 1e 53 4d 53 52 41 53 2d 30 2d 49 4e 46 4f]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [LCP EchoRep id=0x0
magic=0x7bc81e53]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [CHAP Response id=0xd6
<e5f893406ce0a4d7029cc98a012d7ace>, name = "080001"]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CHAP Success id=0xd6
"\37777777724\37777777624\37777777771R \n\37777777742Z\030"]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CCP ConfReq id=0x1 <bsd v1
15>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [IPCP ConfReq id=0x1
<compress VJ 0f 01> <addr 10.240.0.80>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [CCP ConfReq id=0x6 <mppe
+H -M -S -L -D +C>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CCP ConfRej id=0x6 <mppe
+H -M -S -L -D +C>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [IPCP ConfReq id=0x7 <addr
0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0
.0.0.0> <ms-wins 0.0.0.0>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [IPCP ConfRej id=0x7
<ms-wins 0.0.0.0> <ms-wins 0.0.0.0>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [CCP ConfRej id=0x1 <bsd v1
15>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CCP ConfReq id=0x2]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [IPCP ConfRej id=0x1
<compress VJ 0f 01>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [IPCP ConfReq id=0x2 <addr
10.240.0.80>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [CCP TermReq
id=0x8"{\37777777710\036S\000<\37777777715t\000\000\002\37777777734"]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [CCP TermAck id=0x8]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [IPCP ConfReq id=0x9 <addr
0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
Jun  4 23:53:30 vpn-server pppd[22178]: sent [IPCP ConfNak id=0x9 <addr
10.240.80.1> <ms-dns1 212.45.0.3> <ms-dns3 62.205.168.3

>>]

Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [IPCP ConfAck id=0x2 <addr
10.240.0.80>]
Jun  4 23:53:30 vpn-server pppd[22178]: rcvd [IPCP ConfReq id=0xa <addr
10.240.80.1> <ms-dns1 212.45.0.3> <ms-dns3 62.205.168.3

>>]

Jun  4 23:53:30 vpn-server pppd[22178]: sent [IPCP ConfAck id=0xa <addr
10.240.80.1> <ms-dns1 212.45.0.3> <ms-dns3 62.205.168.3

>>]

Jun  4 23:53:30 vpn-server pppd[22178]: Cannot determine ethernet
address for proxy ARP
Jun  4 23:53:30 vpn-server pppd[22178]: local  IP address 10.240.0.80
Jun  4 23:53:30 vpn-server pppd[22178]: remote IP address 10.240.80.1
Jun  4 23:53:30 vpn-server pppd[22178]: Script /etc/ppp/ip-up started
(pid 17599)
Jun  4 23:53:30 vpn-server pppd[22178]: Script /etc/ppp/ip-up finished
(pid 17599), status = 0x1
Jun  4 23:53:33 vpn-server pppd[22178]: sent [CCP ConfReq id=0x2]
Jun  4 23:53:33 vpn-server pppd[22178]: rcvd [CCP TermAck id=0x2]
Jun  4 23:53:33 vpn-server pppd[22178]: sent [CCP TermReq id=0x3"No
compression negotiated"]
Jun  4 23:53:33 vpn-server pppd[22178]: rcvd [CCP TermAck id=0x3"No
compression negotiated"]
Jun  4 23:53:35 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 15)
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Got a SET LINK INFO
packet with standard ACCMs
Jun  4 23:53:36 vpn-server pppd[22178]: rcvd [LCP TermReq id=0xb
"{\37777777710\036S\000<\37777777715t\000\000\000\000"]
Jun  4 23:53:36 vpn-server pppd[22178]: LCP terminated by peer
({M-H^^S^@<M-Mt^@^@^@^@)
Jun  4 23:53:36 vpn-server pppd[22178]: Connect time 0.1 minutes.
Jun  4 23:53:36 vpn-server pppd[22178]: Sent 33 bytes, received 1011 bytes.
Jun  4 23:53:36 vpn-server pppd[22178]: Script /etc/ppp/ip-down started
(pid 24981)
Jun  4 23:53:36 vpn-server pppd[22178]: sent [LCP TermAck id=0xb]
Jun  4 23:53:36 vpn-server pppd[22178]: Script /etc/ppp/ip-down finished
(pid 24981), status = 0x1
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Received PPTP Control
Message (type: 12)
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Made a CALL DISCONNECT
RPLY packet
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Received CALL CLR request
(closing call)
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Reaping child PPP[22178]
Jun  4 23:53:36 vpn-server pppd[22178]: Modem hangup
Jun  4 23:53:36 vpn-server pppd[22178]: Connection terminated.
Jun  4 23:53:36 vpn-server pppd[22178]: Exit.
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Client 10.248.0.111
control connection finished
Jun  4 23:53:36 vpn-server pptpd[13013]: CTRL: Exiting now
Jun  4 23:53:36 vpn-server pptpd[6680]: MGR: Reaped child 13013

Здесь в конце я сам отключился тут же.

ненормальное подключение (обнаружение ошибки loopback detected при
проверке пользователя и пароля)

Код: Выделить всё

Jun  4 23:53:37 vpn-server pptpd[1426]: MGR: Launching
/usr/sbin/pptpctrl to handle client
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: local address = 10.240.0.80
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: remote address = 192.168.1.1
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: pppd options file =
/etc/ppp/options-pptpd
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Client 10.248.0.111
control connection started
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Received PPTP Control
Message (type: 1)
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Made a START CTRL CONN
RPLY packet
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: I wrote 156 bytes to the
client.
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Sent packet to client
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Received PPTP Control
Message (type: 7)
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Set parameters to
100000000 maxbps, 64 window size
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Made a OUT CALL RPLY packet
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Starting call (launching
pppd, opening GRE)
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: pty_fd = 6
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: tty_fd = 7
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: I wrote 32 bytes to the
client.
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Sent packet to client
Jun  4 23:53:37 vpn-server pptpd[23338]: CTRL (PPPD Launcher): program
binary = /usr/sbin/pppd
Jun  4 23:53:37 vpn-server pptpd[23338]: CTRL (PPPD Launcher): local
address = 10.240.0.80
Jun  4 23:53:37 vpn-server pptpd[23338]: CTRL (PPPD Launcher): remote
address = 192.168.1.1
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Received PPTP Control
Message (type: 15)
Jun  4 23:53:37 vpn-server pptpd[1426]: CTRL: Got a SET LINK INFO packet
with standard ACCMs
Jun  4 23:53:37 vpn-server pppd[23338]: Plugin radius.so loaded.
Jun  4 23:53:37 vpn-server pptpd[1426]: GRE: Bad checksum from pppd.
Jun  4 23:53:37 vpn-server pppd[23338]: RADIUS plugin initialized.
Jun  4 23:53:37 vpn-server pptpd[1426]: GRE: Received too short packet
from pppd.
Jun  4 23:53:37 vpn-server pptpd[1426]: GRE: Bad checksum from pppd.
Jun  4 23:53:37 vpn-server pppd[23338]: pppd 2.4.3 started by root, uid 0
Jun  4 23:53:37 vpn-server pppd[23338]: using channel 33
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Received PPTP Control
Message (type: 15)
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Got a SET LINK INFO packet
with standard ACCMs
Jun  4 23:53:38 vpn-server pppd[23338]: Using interface ppp0
Jun  4 23:53:38 vpn-server pppd[23338]: Connect: ppp0 <--> /dev/pts/0
Jun  4 23:53:38 vpn-server pppd[23338]: sent [LCP ConfReq id=0x1
<asyncmap 0x0> <auth chap MD5> <magic 0x16c2b971> <pcomp> <acc
omp>]
Jun  4 23:53:38 vpn-server pppd[23338]: rcvd [LCP TermReq id=0x3
"\\\37777777731\032\37777777731\000<\37777777715t\000\000\002\
37777777741"]
Jun  4 23:53:38 vpn-server pppd[23338]: sent [LCP TermAck id=0x3]
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Received PPTP Control
Message (type: 12)
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Made a CALL DISCONNECT
RPLY packet
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Received CALL CLR request
(closing call)
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Reaping child PPP[23338]
Jun  4 23:53:38 vpn-server pppd[23338]: Modem hangup
Jun  4 23:53:38 vpn-server pppd[23338]: Connection terminated.
Jun  4 23:53:38 vpn-server pppd[23338]: Exit.
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Client 10.248.0.111
control connection finished
Jun  4 23:53:38 vpn-server pptpd[1426]: CTRL: Exiting now
Jun  4 23:53:38 vpn-server pptpd[6680]: MGR: Reaped child 1426

deisler · Сообщение **deisler** » 06.06.2005 17:34

Отключил патчи grsecuretty, вроде ошибка пропала. Никто не в курсе какая опция может эту ошибку вызывать?

Spider · Сообщение **Spider** » 18.06.2005 13:53

У меня та же лажа с Loopback. Но я патчей не ставил. В чистом виде pppd+pptpd.
Чё отключать-то

deisler · Сообщение **deisler** » 30.06.2005 14:37

Вообщем разобрался я с этой ошибкой, не в патчах дело, а дело в виндовом фаерволе на windows 2000/xp/2003. Проблема чисто на стороне клиента. Помогла опция "nologfd" которую надо записывать в конфиг pppd типа /etc/ppp/options-pptpd. Что опция означает понятия не имею, т.к. она не документированная, если кто найдёт и скажет буду благодарен.

Сообщение **serg_sk** » 30.06.2005 15:19

Для deisler:

Код: Выделить всё

logfd n
              Send log messages to file descriptor n.  Pppd will send log mes-
              sages to at most one file or file descriptor (as well as sending
              the log messages to syslog), so  this  option  and  the  logfile
              option  are mutually exclusive.  The default is for pppd to send
              log messages to stdout (file descriptor 1),  unless  the  serial
              port is already open on stdout.

nologfd судя по всему отключает эту опцию.

Spider · Сообщение **Spider** » 24.07.2005 19:47

Не помогло, да и смысла не вижу...

unixforum.org

vpn сервер

vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер

Re: vpn сервер