Solved Mpd5 as vpn client and Microsoft as server

Hi to community.
The simular problem has been discussed a lot of onece, i know, but a solution not found..... Hope, our FreeBSD community able to help me.

Thus:
FreeBSD 10.1-RELEASE
Mpd5 Version 5.8

This MPD5 works as a VPN client by PPTP connection. Got an authentification error:

Code:
[L2] LCP: state change Ack-Rcvd --> Opened^M
[L2] LCP: phase shift ESTABLISH --> AUTHENTICATE^M
pptp0: send SetLinkInfo msg^M
  len=24 msgType=1 magic=0x1a2b3c4d type=15^M
  cid=0x5093 sendAccm=0xffffffff recvAccm=0xa0000^M
[L2] LCP: auth: peer wants EAP, I want nothing^M
[L2] LCP: LayerUp^M
pptp0: recv SetLinkInfo^M
  cid=0xf734 sendAccm=0xa0000 recvAccm=0xffffffff^M
pptp0: CID 0xf734 in SetLinkInfo not found^M
[L2] EAP: rec'd REQUEST #0 len: 5, type: Identity^M
[L2] EAP: sending RESPONSE #0 len: 21, type: Identity^M
[L2] EAP: rec'd REQUEST #1 len: 33, type: UNKNOWN^M
[L2] EAP: Type UNKNOWN not supported^M
[L2] EAP: sending RESPONSE #1 len: 6, type: Nak^M
[L2] EAP: rec'd FAILURE #1 len: 4^M
[L2] LCP: authorization failed^M
[L2] LCP: parameter negotiation failed^M
[L2] LCP: state change Opened --> Stopping^M
[L2] LCP: phase shift AUTHENTICATE --> TERMINATE^M
[L2] AUTH: Cleanup^M
[L2] LCP: SendTerminateReq #2^M
[L2] LCP: LayerDown^M
[L2] LCP: rec'd Terminate Request #4 (Stopping)^M
[L2] LCP: SendTerminateAck #3^M

I tryed to switch off all Microsoft Point-to-Point encryption (MPPE) options, and tested a lot of mpd5 protocols, it is futile at all.

MPD5 Config file:
Code:
startup:
        log +ALL -EVENTS -FRAME
default:
        load pptp_client
        #load l2tp_client
        #load mschap_pptp

pptp_client:
        create bundle static PPTP
        set iface mtu 1400
        set iface idle 0
        set iface enable tcpmssfix

        set bundle disable compression
        set ccp no mppc
        set mppc no compress e40 e56 e128 stateless

        create link static L2 pptp
        set link accept chap
        set link no pap
        set auth authname Username
        set auth password xxxxxxxxxxxxxxxx
        set link accept chap
        set link no pap
        set link max-redial 1
        set pptp peer vpn_peer.com
        open

And the short connection log

Code:
Multi-link PPP daemon for FreeBSD^M

process 7844 started, version 5.8 (root@mydomain.com 21:28 12-Jan-2017)^M
[PPTP] Bundle: Interface ng0 created^M
[L2] [L2] Link: OPEN event^M
[L2] LCP: Open event^M
[L2] LCP: state change Initial --> Starting^M
[L2] LCP: LayerStart^M
[L2] device: OPEN event^M
pptp0: ctrl state FREE --> IDLE^M
pptp0: connecting to 91.218.115.2 1723^M
pptp0-0: chan state FREE --> WAIT_CTRL^M
pptp0: connected to 91.218.115.2 1723^M
pptp0: attached to connection with 91.218.115.2 1723^M
pptp0: ctrl state IDLE --> WAIT_CTL_REPLY^M
pptp0: send StartCtrlConnRequest msg^M
  len=0x9c msgType=1 magic=0x1a2b3c4d type=1^M
  vers=0x100 frameCap=3 bearCap=3 maxChan=0 firm=0x101^M
  host="mydomain.com" vend="FreeBSD MPD"^M

pptp0: recv StartCtrlConnReply^M
  vers=0x100 result=1 err=0 frameCap=2 bearCap=3 maxChan=0 firm=0^M
  host="" vend="Microsoft"

pptp0: ctrl state WAIT_CTL_REPLY --> ESTABLISHED^M
pptp0-0: chan state WAIT_CTRL --> WAIT_OUT_REPLY^M
pptp0: send OutCallRequest msg^M
  len=0xa8 msgType=1 magic=0x1a2b3c4d type=7^M
  cid=0xf734 serno=0xf734 minBPS=0xdac0 maxBPS=0xfa00 bearType=3^M
  frameType=3 recvWin=16 ppd=1 numLen=0 phone="" subaddr=""^M
pptp0: recv OutCallReply^M
  cid=0x5093 peerCid=0xf734 result=1 err=0 cause=0 speed=0xca9a3b^M
  recvWin=0x4000 ppd=0 channel=0^M
pptp0-0: outgoing call connected at 13277755 bps^M
pptp0-0: chan state WAIT_OUT_REPLY --> ESTABLISHED^M
[L2] PPTP call successful^M
[L2] device: UP event^M
[L2] Link: UP event^M
[L2] Link: origination is local^M
[L2] LCP: Up event^M
[L2] LCP: state change Starting --> Req-Sent^M
[L2] LCP: phase shift DEAD --> ESTABLISH^M
[L2] LCP: SendConfigReq #1^M
[L2]   ACFCOMP^M
[L2]   PROTOCOMP^M
[L2]   ACCMAP 0x000a0000^M
[L2]   MRU 1500^M
[L2]   MAGICNUM 0x5e9bf378^M
[L2] LCP: rec'd Configure Request #0 (Req-Sent)^M
[L2]   MRU 1400^M
[L2]   AUTHPROTO EAP^M
[L2]   MAGICNUM 0x6afd2ccd^M
[L2]   PROTOCOMP^M
[L2]   ACFCOMP^M
[L2]   CALLBACK 6^M
[L2]   MP MRRU 1614^M
[L2]   ENDPOINTDISC [LOCAL] 05 b5 c9 8c d9 6d 44 44 a4 db 4f 7b 4c c5 fe 7e 00 00 0^M
[L2] LCP: SendConfigRej #0^M
[L2]   CALLBACK 6^M
[L2]   MP MRRU 1614^M
[L2] LCP: rec'd Configure Ack #1 (Req-Sent)^M
[L2]   ACFCOMP^M
[L2]   PROTOCOMP^M
[L2]   ACCMAP 0x000a0000^M
[L2]   MRU 1500^M
[L2]   MAGICNUM 0x5e9bf378^M
[L2] LCP: state change Req-Sent --> Ack-Rcvd^M
[L2] LCP: rec'd Configure Request #1 (Ack-Rcvd)^M
[L2]   MRU 1400^M
[L2]   AUTHPROTO EAP^M
[L2]   MAGICNUM 0x6afd2ccd^M
[L2]   PROTOCOMP^M
[L2]   ACFCOMP^M
[L2]   ENDPOINTDISC [LOCAL] 05 b5 c9 8c d9 6d 44 44 a4 db 4f 7b 4c c5 fe 7e 00 00 0^M
[L2] LCP: SendConfigAck #1^M
[L2]   MRU 1400^M
[L2]   AUTHPROTO EAP^M
[L2]   MAGICNUM 0x6afd2ccd^M
[L2]   PROTOCOMP^M
[L2]   ACFCOMP^M
[L2]   ENDPOINTDISC [LOCAL] 05 b5 c9 8c d9 6d 44 44 a4 db 4f 7b 4c c5 fe 7e 00 00 0^M
[L2] LCP: state change Ack-Rcvd --> Opened^M
[L2] LCP: phase shift ESTABLISH --> AUTHENTICATE^M
pptp0: send SetLinkInfo msg^M
  len=24 msgType=1 magic=0x1a2b3c4d type=15^M
  cid=0x5093 sendAccm=0xffffffff recvAccm=0xa0000^M
[L2] LCP: auth: peer wants EAP, I want nothing^M
[L2] LCP: LayerUp^M
pptp0: recv SetLinkInfo^M
  cid=0xf734 sendAccm=0xa0000 recvAccm=0xffffffff^M
pptp0: CID 0xf734 in SetLinkInfo not found^M
[L2] EAP: rec'd REQUEST #0 len: 5, type: Identity^M
[L2] EAP: sending RESPONSE #0 len: 21, type: Identity^M
[L2] EAP: rec'd REQUEST #1 len: 33, type: UNKNOWN^M
[L2] EAP: Type UNKNOWN not supported^M
[L2] EAP: sending RESPONSE #1 len: 6, type: Nak^M
[L2] EAP: rec'd FAILURE #1 len: 4^M
[L2] LCP: authorization failed^M
[L2] LCP: parameter negotiation failed^M
[L2] LCP: state change Opened --> Stopping^M
[L2] LCP: phase shift AUTHENTICATE --> TERMINATE^M
[L2] AUTH: Cleanup^M
[L2] LCP: SendTerminateReq #2^M
[L2] LCP: LayerDown^M
[L2] LCP: rec'd Terminate Request #4 (Stopping)^M
[L2] LCP: SendTerminateAck #3

Now, a connection to this server works by FreeBSD pptp client, but i need strongly to use NetGraph MPD5

See the attached connection log with an events and frames, for more information

Hope for a help.....
 

Attachments

  • mpd5_full.txt
    16 KB · Views: 313
Please note that FreeBSD 10.1 has reached it's end-of-life point and is not supported any more. Not related to your issue but you need to upgrade to 10.3.
 
The similar reason, as on my another topic.
It solved, but only a reason found. The problem on the VPN server side, it works on Microsoft...... I think, MPD5 does not working with Microsoft protocols. The solution - to find some BSD VPN service. Am i right?
 
Back
Top