On Tue, 2008-11-25 at 22:08 -0600, David C. Rankin wrote:
Ken Gramm wrote:
Hi all,
I currently have an openSUSE box that is dual homed with one public IP address and one private address. It serves as the default route to my location. It also hosts a few services (ie. http, ftp, smtp, dns), and it also masquerades one internal service (https).
Since I love switching out MS boxes with openSUSE equivalents, I used the PopTop+MSCHAPv2+Samba+Radius+MS_AD readme on the PopTop site (http://www.members.optushome.com.au/~wskwok/poptop_ads_howto_1.htm) to add PPTP support to this box. I'll admit that, for now, I did use an existing MS IAS server as my RADIUS server, but the actual connection to the PPTP server is working from external machines. I can log in, ping, and even SSL the server. But that is the end of my success. For the life of my, I can't get to any boxes behind the PPTP server.
When I try to ping them, I get the message: Reply from 192.168.100.50: Destination protocol unreachable.
<snip>
Also, for the record:
My pptpd.conf file is: option /etc/ppp/options.pptpd debug logwtmp localip 192.168.100.50 remoteip 192.168.100.51-60 connections 10 pidfile /var/run/pptpd.pid
My options.pptpd file is: name pptpd debug refuse-pap refuse-chap refuse-mschap require-mschap-v2 require-mppe-128 ms-dns 192.168.100.1 ms-dns 192.168.100.2 ms-wins 192.168.100.3 ms-wins 192.168.100.4 proxyarp lock nobsdcomp novj novjccomp nologfd auth nodefaultroute plugin radius.so plugin radattr.so
Your configuration is a bit more complex than mine. Here is how I am currently running on 10.3 and I have been quite happy with the results. Take a look, you might see something I'm missing. Also, in the past, I have always made sure that the remote site was on a different subnet than the lan on which I'm running pptp. I don't think that's related, but just in case. Here are my options, options.pptpd and /etc/pptpd.conf for comparison:
/etc/ppp/options
name yourhost.yourserver.com noipdefault noauth lock local lcp-echo-interval 30 lcp-echo-failure 4 lcp-max-configure 60 lcp-restart 2 idle 600 noipx file /etc/ppp/filters proxyarp ms-dns 192.168.12.15 ms-wins 192.168.12.15 refuse-chap refuse-mschap
/etc/ppp/options.pptp
lock noauth nobsdcomp lcp-echo-failure 10 lcp-echo-interval 10
/etc/pptpd.conf
option /etc/ppp/options.pptp debug localip 192.168.12.12 remoteip 192.168.12.2-5 pidfile /var/run/pptpd.pid
Thanks for the files. I'll give your settings a try and post my results tomorrow. Ken -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org