URL: https://www.opennet.me/cgi-bin/openforum/vsluhboard.cgi
Форум: vsluhforumID1
Нить номер: 79261
[ Назад ]

Исходное сообщение
"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено plintus , 15-Мрт-08 01:08

Проблема в следующем:
Имеется впн сервер с mpd + radius, не получается запустить шифрование.
Лог мпд:
Mar 14 23:52:51 vpn3 mpd: process 1099 started, version 4.3 (root@vpn3.ляляля.ua 22:27 12-Feb-2008)
Mar 14 23:52:51 vpn3 mpd: CONSOLE: listening on 127.0.0.1 5005
Mar 14 23:52:51 vpn3 mpd: [pptp0] using interface ng0
Mar 14 23:52:51 vpn3 mpd: PPTP: waiting for connection on 0.0.0.0
Mar 14 23:52:51 vpn3 mpd: [pptp1] using interface ng1
Mar 14 23:52:51 vpn3 mpd: PPTP: waiting for connection on 0.0.0.0
Mar 14 23:52:56 vpn3 mpd: PPTP: Incoming control connection from 172.18.0.2 2679 to 172.18.0.1 1723
Mar 14 23:52:56 vpn3 mpd: pptp0: attached to connection with 172.18.0.2 2679
Mar 14 23:52:56 vpn3 mpd: [pptp0] Accepting PPTP connection
Mar 14 23:52:56 vpn3 mpd: [pptp0] opening link "pptp0"...
Mar 14 23:52:56 vpn3 mpd: [pptp0] link: OPEN event
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: Open event
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: state change Initial --> Starting
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: LayerStart
Mar 14 23:52:56 vpn3 mpd: [pptp0] PPTP: attaching to peer's outgoing call
Mar 14 23:52:56 vpn3 mpd: [pptp0] link: UP event
Mar 14 23:52:56 vpn3 mpd: [pptp0] link: origination is remote
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: Up event
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: state change Starting --> Req-Sent
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: SendConfigReq #1
Mar 14 23:52:56 vpn3 mpd:  ACFCOMP
Mar 14 23:52:56 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:56 vpn3 mpd:  MRU 1500
Mar 14 23:52:56 vpn3 mpd:  MAGICNUM cdfcb23f
Mar 14 23:52:56 vpn3 mpd:  AUTHPROTO CHAP MSOFTv2
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: rec'd Configure Request #0 (Req-Sent)
Mar 14 23:52:56 vpn3 mpd:  MRU 1400
Mar 14 23:52:56 vpn3 mpd:  MAGICNUM 219f2508
Mar 14 23:52:56 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:56 vpn3 mpd:  ACFCOMP
Mar 14 23:52:56 vpn3 mpd:  CALLBACK 6
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: SendConfigRej #0
Mar 14 23:52:56 vpn3 mpd:  CALLBACK 6
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: rec'd Configure Request #1 (Req-Sent)
Mar 14 23:52:56 vpn3 mpd:  MRU 1400
Mar 14 23:52:56 vpn3 mpd:  MAGICNUM 219f2508
Mar 14 23:52:56 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:56 vpn3 mpd:  ACFCOMP
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: SendConfigAck #1
Mar 14 23:52:56 vpn3 mpd:  MRU 1400
Mar 14 23:52:56 vpn3 mpd:  MAGICNUM 219f2508
Mar 14 23:52:56 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:56 vpn3 mpd:  ACFCOMP
Mar 14 23:52:56 vpn3 mpd: [pptp0] LCP: state change Req-Sent --> Ack-Sent
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: SendConfigReq #2
Mar 14 23:52:58 vpn3 mpd:  ACFCOMP
Mar 14 23:52:58 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:58 vpn3 mpd:  MRU 1500
Mar 14 23:52:58 vpn3 mpd:  MAGICNUM cdfcb23f
Mar 14 23:52:58 vpn3 mpd:  AUTHPROTO CHAP MSOFTv2
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: rec'd Configure Ack #2 (Ack-Sent)
Mar 14 23:52:58 vpn3 mpd:  ACFCOMP
Mar 14 23:52:58 vpn3 mpd:  PROTOCOMP
Mar 14 23:52:58 vpn3 mpd:  MRU 1500
Mar 14 23:52:58 vpn3 mpd:  MAGICNUM cdfcb23f
Mar 14 23:52:58 vpn3 mpd:  AUTHPROTO CHAP MSOFTv2
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: state change Ack-Sent --> Opened
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: auth: peer wants nothing, I want CHAP
Mar 14 23:52:58 vpn3 mpd: [pptp0] CHAP: sending CHALLENGE len:17
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: LayerUp
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: rec'd Ident #2 (Opened)
Mar 14 23:52:58 vpn3 mpd: [pptp0] LCP: rec'd Ident #3 (Opened)
Mar 14 23:52:58 vpn3 mpd: [pptp0] CHAP: rec'd RESPONSE #1
Mar 14 23:52:58 vpn3 mpd:  Name: "plintus"
Mar 14 23:52:58 vpn3 mpd: [pptp0] AUTH: Auth-Thread started
Mar 14 23:52:58 vpn3 mpd: [pptp0] AUTH: Trying RADIUS
Mar 14 23:52:58 vpn3 mpd: [pptp0] RADIUS: RadiusAuthenticate for: plintus
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: rec'd RAD_ACCESS_ACCEPT for user plintus
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: RadiusGetParams: WARNING no MPPE-Keys received, MPPE will not work
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: RADIUS returned authenticated
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Auth-Thread finished normally
Mar 14 23:52:59 vpn3 mpd: [pptp0] CHAP: ChapInputFinish: status authenticated
Mar 14 23:52:59 vpn3 mpd:  Reply message: S=8F21F06B1D95778DB2F6907D68846DE45F61C303
Mar 14 23:52:59 vpn3 mpd: [pptp0] CHAP: sending SUCCESS len:42
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: authorization successful
Mar 14 23:52:59 vpn3 mpd: [pptp0] Bundle up: 1 link, total bandwidth 64000 bps
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: Open event
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: state change Initial --> Starting
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: LayerStart
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: Up event
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: state change Starting --> Req-Sent
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: SendConfigReq #1
Mar 14 23:52:59 vpn3 mpd:  IPADDR 192.168.0.1
Mar 14 23:52:59 vpn3 mpd:  COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Mar 14 23:52:59 vpn3 mpd: [pptp0] rec'd unexpected protocol CCP, rejecting
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: rec'd Configure Request #5 (Req-Sent)
Mar 14 23:52:59 vpn3 mpd:  IPADDR 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:    NAKing with 192.168.1.1
Mar 14 23:52:59 vpn3 mpd:  PRIDNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:    NAKing with 195.66.200.100
Mar 14 23:52:59 vpn3 mpd:  PRINBNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:  SECDNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:  SECNBNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: SendConfigRej #5
Mar 14 23:52:59 vpn3 mpd:  PRINBNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:  SECDNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd:  SECNBNS 0.0.0.0
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: rec'd Configure Reject #1 (Req-Sent)
Mar 14 23:52:59 vpn3 mpd:  COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: SendConfigReq #2
Mar 14 23:52:59 vpn3 mpd:  IPADDR 192.168.0.1
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Accounting-Thread started
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: RadiusAccount for: plintus (Type: 1)
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: rec'd RAD_ACCOUNTING_RESPONSE for user plintus
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: RadiusGetParams: WARNING no MPPE-Keys received, MPPE will not work
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Accounting-Thread finished normally
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: rec'd Terminate Request #6 (Opened)
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: state change Opened --> Stopping
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Accounting data for user plintus: 3 seconds, 262 octets in, 236 octets out
Mar 14 23:52:59 vpn3 mpd: [pptp0] Bundle up: 0 links, total bandwidth 9600 bps
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: Close event
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: state change Req-Sent --> Closing
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: SendTerminateReq #3
Mar 14 23:52:59 vpn3 mpd: [pptp0] error writing len 8 frame to bypass: Network is down
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: Down event
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: LayerFinish
Mar 14 23:52:59 vpn3 mpd: [pptp0] No NCPs left. Closing links...
Mar 14 23:52:59 vpn3 mpd: [pptp0] closing link "pptp0"...
Mar 14 23:52:59 vpn3 mpd: [pptp0] IPCP: state change Closing --> Initial
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Cleanup
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: SendTerminateAck #3
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: LayerDown
Mar 14 23:52:59 vpn3 mpd: [pptp0] link: CLOSE event
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: Close event
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: state change Stopping --> Closing
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Accounting-Thread started
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: RadiusAccount for: plintus (Type: 2)
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: Termination cause: Peer disconnect, RADIUS: 1
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: rec'd RAD_ACCOUNTING_RESPONSE for user plintus
Mar 14 23:52:59 vpn3 mpd: [pptp0] RADIUS: RadiusGetParams: WARNING no MPPE-Keys received, MPPE will not work
Mar 14 23:52:59 vpn3 mpd: [pptp0] AUTH: Accounting-Thread finished normally
Mar 14 23:52:59 vpn3 mpd: pptp0-0: call cleared by peer
Mar 14 23:52:59 vpn3 mpd: pptp0-0: killing channel
Mar 14 23:52:59 vpn3 mpd: [pptp0] PPTP call terminated
Mar 14 23:52:59 vpn3 mpd: [pptp0] link: DOWN event
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: Down event
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: LayerFinish
Mar 14 23:52:59 vpn3 mpd: [pptp0] LCP: state change Closing --> Initial
Mar 14 23:52:59 vpn3 mpd: pptp0: closing connection with 172.18.0.2 2679
Mar 14 23:52:59 vpn3 mpd: pptp0: killing connection with 172.18.0.2 2679

конфиг мпд: mpd.conf
startup:
        set global enable tcp-wrapper
        set console port 5005
        set console ip 127.0.0.1
        set console user admin Jj77176ta5556a
        set console open
        set netflow export 127.0.0.1 9996
        set netflow source 127.0.0.1 9990
#Radius Config
radius:
        set radius config /etc/radius.conf
        set radius retries 3
        set radius timeout 3
        set radius me 127.0.0.1
        set auth acct-update 300
        set auth enable radius-auth
        set auth enable radius-acct
        set bundle disable compression
        set ccp yes mppc
        set radius enable message-authentic
default:
    load pptp0
    load pptp1
pptp0:
    new -n -i ng0 pptp0 pptp0
    load pptp
pptp1:
    new -i ng1 pptp1 pptp1
    load pptp
#Incoming PPTP link config
pptp:
        #        new -i ng0 pptp pptp
        set iface disable on-demand
        set iface enable proxy-arp
        set iface idle 1800
        set iface enable tcpmssfix
        set bundle disable multilink
        set iface up-script "/usr/abills/libexec/linkupdown mpd up"
        set iface down-script "/usr/abills/libexec/linkupdown mpd down"
        set bundle enable compression
# use RADIUS servers
        load radius
        set link yes acfcomp protocomp
        set link no pap chap
        set link enable chap
        set link keep-alive 10 60
        set link mtu 1460
        set ipcp yes vjcomp
        set ipcp ranges 192.168.0.1/32 192.168.3.255/32
        set ipcp dns 172.16.0.1
#       set ipcp nbns 172.16.0.1
#
# The five lines below enable Microsoft Point-to-Point encryption
# (MPPE) using the ng_mppc(8) netgraph node type.
#
        set bundle yes crypt-reqd
        set ccp yes mppc
        set ccp yes mpp-e40
        set ccp yes mpp-e56
        set ccp yes mpp-e128
        set ccp yes mpp-stateless
        set pptp self %VPN_SERVER_IP%
        set pptp enable incoming
        set pptp disable originate
        set pptp disable windowing
Очень надеюсь что кто то поможет разобраться.

Содержание

MPD+RADIUS ошибка 742 (проблема в шифровании),mixa, 07:07 , 15-Мрт-08
- MPD+RADIUS ошибка 742 (проблема в шифровании),plintus, 10:55 , 15-Мрт-08
  - MPD+RADIUS ошибка 742 (проблема в шифровании),mixa, 12:39 , 15-Мрт-08
  - MPD+RADIUS ошибка 742 (проблема в шифровании),yuron, 17:28 , 01-Апр-08
MPD+RADIUS ошибка 742 (проблема в шифровании),yuron, 11:49 , 04-Апр-08

Сообщения в этом обсуждении

"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено mixa , 15-Мрт-08 07:07

http://www.abills.net.ua/wiki/doku.php?id=abills:docs:mschap...

"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено plintus , 15-Мрт-08 10:55

>http://www.abills.net.ua/wiki/doku.php?id=abills:docs:mschap...
делал уже. Не работает.

"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено mixa , 15-Мрт-08 12:39

>делал уже. Не работает.
Что не работает-то?
Если придерживаться рководства степ-бай-степ, то все работает.
Значит в конфигах косяк. У мну работает.
В конфигурационных файлах /usr/local/etc/raddb все прописано?
А в /usr/local/etc/mpd4 проверяли?

"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено yuron , 01-Апр-08 17:28

>>http://www.abills.net.ua/wiki/doku.php?id=abills:docs:mschap...
>
>делал уже. Не работает.
Вот у меня точно такая проблема была, сделал все как по ссылке и заработало :)

"MPD+RADIUS ошибка 742 (проблема в шифровании)"
Отправлено yuron , 04-Апр-08 11:49

По поводу строки
mpd: [pptp0] RADIUS: RadiusGetParams: WARNING no MPPE-Keys received, MPPE will not work
Как от ее избавится?