thr3ads.net - Shorewall users - [Shorewall-users] SV: [Gibraltar-list] help: vpn configuration [Jan 2003]

If this information is useful, please help other people find it:
Share via:

Kenneth Grande, Driftsjef aspIT AS

2003-Jan-12 10:31 UTC

[Shorewall-users] SV: [Gibraltar-list] help: vpn configuration

Yes your chap-secret file could be the issue, it should look like this:

Your_usrname	*	Your_password	*

That?s it :)

But if that don?t work include this file to the list:

/etc/ppp/pptpd-options

It should look something like this:

ipparam PoPToP
lock
mtu 1490
mru 1490
ms-wins 172.x.y.1
ms-dns 172.x.y.1
multilink
proxyarp
auth
+chapms-v2
ipcp-accept-local
ipcp-accept-remote
lcp-echo-failure 30
lcp-echo-interval 5
deflate 0
# mppe-40
mppe-128
mppe-stateless

Remember: if you want a higher encryption than mppe-40 you should make
sure that your w2k client has installed sp2 or higher.

Note: Your firewall has to accept both port 1723 and protocol 47

ACCEPT          net       $FW           47
ACCEPT          $FW       net           47
ACCEPT          net       $FW           tcp     1723

(but this depends on your firewall configuration.)

There is a couple of other things, but this should be what you need to
make the connection work.

Last note:)
Remember that your w2k client wont accept a connection to your fw if its
not offering encryption (by default). So I suggest you check your
pptpd-options file.

Best regards,
Kenneth.


-----Opprinnelig melding-----
Fra: gibraltar-list-admin@mail.gibraltar.at
[mailto:gibraltar-list-admin@mail.gibraltar.at] P? vegne av Davide
Cambrini
Sendt: 10. januar 2003 18:44
Til: gibraltar-list@www.gibraltar.at
Emne: [Gibraltar-list] help: vpn configuration

hallo, I have configured a Gibraltar firewall, I''m not very expert but
it seems good enought!!
Now i have a problem: I would like to configure a vpn, so I can connect
to lan of my office also when i am at home. first of all i''ve followed
the 
instruction listed in
http://www.gibraltar.at/index.php?product_gibraltar_docs_eng for
configuring pptp.conf and /etc/ppp/chap-secrets.
after that i''set a w2K vpn client following the instructions in the
same
page.
When I try to connect to the ip of the server (Gibraltar), it tried to
do this but the authentication fail.
This is the error message:
/usr/sbin/pppd: the remote system is required to authenticate itself
/usr/sbin/pppd: but I couldn''t find any suitable secret (password) for
it to use to do so


Is the problem in the file chap-secrets or .....???

thank you!

Davide


_______________________________________________
Gibraltar-list mailing list
Gibraltar-list@mail.gibraltar.at
http://www.gibraltar.at/mailman/listinfo/gibraltar-list

Reasonably Related Threads

Search for more possibly parallel threads

Shorewall users - Jan 2003 - SV: [Gibraltar-list] help: vpn configuration

[Shorewall-users] SV: [Gibraltar-list] help: vpn configuration

Reasonably Related Threads

Wisdom of the Ancients