[ previous ] [ next ] [ threads ]
 
 From:  Nik Clayton <nik at ngo dot org dot uk>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  m0n0wall pptp server, FreeBSD pptp client, routing issues
 Date:  Fri, 17 Feb 2006 17:59:06 +0000 
How do,

[ Not strictly a m0n0wall question, but related ]

Has anyone managed to get a FreeBSD PPTP *client* to talk to a m0n0wall PPTP 
*server*?

I've set up the aforementioned PPTP server in m0n0wall and it works.  I know 
that it works because I have both Windows and Mac OS X clients using it and 
it works for them with no problems.

I had expected it to be similarly easy to get it to work on FreeBSD.  I'm 
using the pptpclient port (ports/net/pptpclient).

In m0n0wall, OPT1 has 192.168.2.1, and the PPTP server has address 
192.168.0.239, with remote address range 192.168.0.240/28.

 From my FreeBSD client, I can ping/traceroute to 192.168.2.1, and telnet to 
the PPTP port, so I know that connectivity that far is good.

With an /etc/ppp/ppp.conf that looks like this:

   mapperton:
     set authname nik
     set authkey <PASSWORD>
     set timeout 0
     set ifaddr 0 0
     add! 192.168.0.0/24 HISADDR
     nat enable yes

and a command line that looks like this:

   # pptp 192.168.2.1 mapperton

things get most of the way there.  Specifically, tun0 is created, and in the 
ifconfig output I see:

   tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1498
           inet 192.168.0.240 --> 192.168.0.239 netmask 0xffffffff
           Opened by PID 4698

This is practically identicaly to the output I get if I run ifconfig on my 
OS X box (s/tun0/ppp0/ though).  So that all looks fine.

I can ping my end of the tunnel and that works.

"netstat -rn" shows a routing table entry for 192.168.0.240 being the route 
to 192.168.0.239.

What doesn't work is pinging the remote end of the tunnel (i.e., "ping 
192.168.0.239" fails), or any hosts on the other side.  pptp's attempt to 
add the route fails, and if try and manually add a route it fails too.  The 
log messages from the pptp client are:

: anon log[main:pptp.c:267]: The synchronous pptp option is NOT activated
: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 1
     'Start-Control-Connection-Request'
: received Start Control Connection Reply
: anon log[ctrlp_disp:pptp_ctrl.c:774]: Client connection established.
: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet type is 7
     'Outgoing-Call-Request'
: anon log[ctrlp_disp:pptp_ctrl.c:859]: Received Outgoing Call Reply.
: anon log[ctrlp_disp:pptp_ctrl.c:898]: Outgoing call established
     (call ID 0, peer's call ID 35891).
: Warning: ff02:5::/32: Change route failed: errno: Network is unreachable

Anything that I've missed?  I'm a bit confused as to why the last log 
message contains an IPv6 address.

N