pptp+mppe (2)

ネットワーク管理

3. pptpのインストール

# rpm -ivh pptp-linux-1.5.0-3.i386.rpm

準備中... ########################################### [100%]

1:pptp-linux ########################################### [100%]

# pptp-command

で設定する。

-- /etc/ppp/options.pptp ---

ck the port

#

lock

debug

require-mschap-v2

#

# We don't need the tunnel server to authenticate itself

#

noauth

#

# Turn off transmission protocols we know won't be used

#

nobsdcomp

nodeflate

#noccp

novj

#

# We want MPPE

# (option naming specific to ppp 2.4.0 with unofficial patch)

#

#mppe-40

#mppe-128

#mppe-stateless

require-mppe

mppe-stateful

#

# We want a sane mtu/mru

# (ppp 2.4.0 with unofficial patch)

#

#mtu 1000

#mru 1000

--- /etc/ppp/peers/PPTP ---

#

# PPTP Tunnel configuration for tunnel PPTP

# Server IP: 10.xxx.xxx.xx

#

#

# Tags for CHAP secret selection

#

name tester41

remotename PPTP

#

# Tunnel name for ip-up.local or ip-up.d scripts

#

ipparam PPTP

#

# Include the main PPTP configuration file

#

file /etc/ppp/options.pptp

--- /etc/ppp/chap-secrets ---

# Secrets for authentication using CHAP

# client server secret IP addresses

tester41 PPTP lab41

5. テスト

あらかじめWindows2kで動作を確認したCisco 3600と接続試験を行なう。

接続はできるが、MPPEが繋がらない。

-- /var/log/messages 一部 --

Sep 27 09:48:02 localhost pppd[3252]: Connect: ppp0 <--> /dev/pts/2

Sep 27 09:48:02 localhost pptp[3259]: anon log[ctrlp_rep:pptp_ctrl.c:243]: Sent

control packet type is 1 'Start-Control-Connection-Request'

Sep 27 09:48:02 localhost pptp[3259]: anon log[pptp_make_packet:pptp_ctrl.c:557]: reserved0 field is not zero! (0xd359) Cisco feature?

Sep 27 09:48:02 localhost pptp[3259]: anon log[ctrlp_disp:pptp_ctrl.c:721]: Received Start Control Connection Reply

Sep 27 09:48:02 localhost pptp[3259]: anon log[ctrlp_disp:pptp_ctrl.c:755]: Client connection established.

Sep 27 09:48:03 localhost pptp[3259]: anon log[ctrlp_rep:pptp_ctrl.c:243]: Sent

control packet type is 7 'Outgoing-Call-Request'

Sep 27 09:48:03 localhost pptp[3259]: anon log[ctrlp_disp:pptp_ctrl.c:841]: Received Outgoing Call Reply.

Sep 27 09:48:03 localhost pptp[3259]: anon log[ctrlp_disp:pptp_ctrl.c:880]: Outgoing call established (call ID 0, peer's call ID 62).

Sep 27 09:48:04 localhost pppd[3252]: CHAP authentication succeeded

Sep 27 09:48:04 localhost pppd[3252]: Disabling 40-bit MPPE; MS-CHAP LM not supported

Sep 27 09:48:04 localhost pppd[3252]: MPPE required, but kernel has no support.

Sep 27 09:48:04 localhost pppd[3252]: Connection terminated.