Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Thu 28 Aug 2014, 23:26
All times are UTC - 4
 Forum index » House Training » Beginners Help ( Start Here)
Need help configuring VPN and MPPE
Moderators: Flash, Ian, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 2 of 4 [54 Posts]   Goto page: Previous 1, 2, 3, 4 Next
Author Message
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Sun 12 Mar 2006, 08:52    Post subject:  

Revised MPPE/MPPC modules for Puppy 1.0.4-1.0.8 (kernel 2.4.29).

Following Barry's lead with the soon-to-be-released 2.4.31 kernel, I have compiled the modules from the same MPPE-MPPC patch he used from http://mppe-mppc.alphacron.de/
And I have also compiled PPP 2.4.3 with the compatible patch.
This still may not suit Foxti's needs, but will be good for those people wanting to use PPTPclient right now in a manner consistent with the forthcoming release.

Instructions - copy mppe-mppc-modules.tar.gz somewhere persistent, say /root/my-applications
Now do this -

cd /
tar -zxvf /root/my-applications/mppe-mppc-modules.tar.gz
depmod
rmmod ppp_generic ## because the old module may already be loaded
modprobe ppp_generic
modprobe ppp_mppe_mppc
modprobe bsd_comp
modprobe sha1
## the following might be necessary ...
## because in /etc/modules.conf they are commented out
modprobe ppp_async
modprobe ppp_deflate
modprobe ppp_synctty

Now install ppp-2.4.3-patched.tar.gz by uncompressing it from /

PPTPclient should now work (?)
I'm a VPN novice myself, but I see there's a HOWTO here http://www.linuxquestions.org/linux/answers/Networking/PPTP_VPN_on_Slackware_How_to
the PPTPclient section is half way down.
mppe-mppc-modules.tar.gz
Description 
gz

 Download 
Filename  mppe-mppc-modules.tar.gz 
Filesize  29.73 KB 
Downloaded  362 Time(s) 
ppp-2.4.3-patched.tar.gz
Description 
gz

 Download 
Filename  ppp-2.4.3-patched.tar.gz 
Filesize  277.35 KB 
Downloaded  369 Time(s) 

Last edited by tempestuous on Sun 12 Mar 2006, 20:31; edited 1 time in total
Back to top
View user's profile Send private message 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Sun 12 Mar 2006, 11:33    Post subject:  

Tempestuous,
is that going to work, as I had to patch the kernel, so the kernel itself, vmlinuz,
would have to be used, meaning the CD will have to be remastered?

Puppy doesn't have module bsd_comp ...is that a problem?
The kernel config file has this:
Code:
# CONFIG_PPP_BSDCOMP is not set
Back to top
View user's profile Send private message Visit poster's website 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Sun 12 Mar 2006, 11:51    Post subject:  

/etc/modules.conf has this:

Code:
#BK using ppp* for dialup connection, need these...
alias tty-ldisc-3 ppp_async
alias ppp0 ppp_generic
alias ppp1 ppp_generic
#according to some info on RH8.0, need this...
alias ppp-compress-21 off
#as modprobe tries to get it, but it is no longer needed.
#note, some other refs say need to do this...
#alias ppp-compress-21 bsd_comp
#alias ppp-compress-24 ppp_deflate
#alias ppp-compress-26 ppp_deflate
#alias char-major-108 ppp_generic

#HOWTO-PPP.htm also says need these...
alias /dev/ppp ppp_generic
# ...no, just don't like the look of this one!
alias char-major-108 ppp_generic
# and this, but I haven't got this installed...
#alias tty-ldisc-14 ppp_synctty


so ppp-compress-21 is "off", so the bsd_comp module isn't used.
But, perhaps for MPPE this will be needed?
(then I'll have to recompile the kernel yet again, mumble, mumble)

Puppy2 has this also in modules.conf:
Code:
#v2.0.0 VPN support needs this...
alias ppp-compress-18 ppp_mppe_mppc
Back to top
View user's profile Send private message Visit poster's website 
jmarsden


Joined: 31 Dec 2005
Posts: 263
Location: California, USA

PostPosted: Sun 12 Mar 2006, 12:58    Post subject:  

BarryK wrote:
so ppp-compress-21 is "off", so the bsd_comp module isn't used.
But, perhaps for MPPE this will be needed?
(then I'll have to recompile the kernel yet again, mumble, mumble)

It shouldn't be.

No time to post more now, but if you are debugging PPP (as opposed to PPTP) connections, James Carlson's little book "PPP Design and Debugging" has all the info you are ever likely to need, though it may be a little old (mine is date 1998) and so lacks MPPE specifics.

For PPTP issues, http://pptpclient.sourceforge.net/howto-diagnosis.phtml has all manner of suggestions.

Jonathan
Back to top
View user's profile Send private message 
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Sun 12 Mar 2006, 20:23    Post subject:  

Barry,
Some kernel patches, like this one, just add their extra features to the kernel configuration list. These features then need to be enabled in the configuration.

In "Network device support" the new feature is easy to see - "Microsoft PPP compression/encryption (MPPC/MPPE)". The option was available to enable this either built-in, or as a module. If the module option was not available, of course, I would have had to build a new kernel to get this feature. But as it was, I was able to simply compile a module.
It sounds like you might need to go back and look at your .config!

Regarding the other configuration options - BSD-Compress, SHA1 and ARC4, I only learned that these were necessary from the VPN HOWTO I mentioned before - http://www.linuxquestions.org/linux/answers/Networking/PPTP_VPN_on_Slackware_How_to

Regarding /etc/modules.conf, yes, I think those lines should be uncommented. Otherwise, these modules will need to be manually loaded (as I suggested in my instructions above for Puppy 1.0.Cool.

And, of course, practice often mocks theory, so it would be good if someone with VPN access could try my modules with PPTPclient. This might help you to get MPPE working in Puppy2 first time.
Back to top
View user's profile Send private message 
Foxti

Joined: 04 Mar 2006
Posts: 19
Location: Indiana

PostPosted: Sun 12 Mar 2006, 21:04    Post subject: From what I know  

From all that I have been able to find so far the BSD_Compress is not needed only yhe ppp_compress_18 When I tested it in vector linux with my Microsoft Servers it worked fione I will try to do it in Puppy today and see if it works using ght patch that has been advised. if any one would like to test the pptp conection please contact me privatly and I will give you info on how to test using my servers as I have already set up a privates test account fowever I do not want to give this information out to the world for obvious reasons.

Thanks for all your hrlp

Dean
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Mon 13 Mar 2006, 02:35    Post subject:  

Yeah, the latest puppy2 has sha1 and arc4 modules.

Foxti, here it is:
http://pupweb.org/test/
Back to top
View user's profile Send private message Visit poster's website 
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Wed 15 Mar 2006, 04:04    Post subject:  

Foxti, success.
I just connected to your VPN test account, and I did it from dial-up internet access, which I thought might fail because there would be 2 instances of pppd. I followed the HOWTO mentioned earlier, but I will list my own HOWTO here, because I found their instructions about the chap-secrets file confusing.

edit: my remastered version of Puppy has no firewall. You might consider disabling Puppy's firewall before testing.

Let's assume a PPTP server address of 123.456.769.01, username: fredflintstone, password: fredspassword, and refer to our connection as Myvpnaccount1.
Load the modules I mentioned before ... although later you can try without doing this ... it might not be necessary -
modprobe ppp_generic
modprobe ppp_mppe_mppc
#modprobe bsd_comp ## I don't think this one is necessary
modprobe sha1
modprobe ppp_async
modprobe ppp_deflate
modprobe ppp_synctty

/etc/modules.conf MUST contain "alias ppp-compress-18 ppp_mppe_mppc" (without the quotation marks).

Create /etc/ppp/options.pptp and add this -
lock noauth nodeflate nobsdcomp
(actually, I entered each of these on a separate line, as most other files here seem to have this format)

To /etc/ppp/chap-secrets (which should be empty) add this -
fredflintstone pptpd fredspassword *
(don't forget the asterisk on the end)
Some PPTP servers require a domain name, in which case the line would be -
mydomain\\fredflintstone pptpd fredspassword *

Create /etc/ppp/peers/Myvpnaccount1 and add this -
pty "pptp 123.456.789.01 --nolaunchpppd"
name fredflintstone
mtu 1490
mru 1490
remotename pptpd
require-mschap
file /etc/ppp/options.pptp
ipparam Myvpnaccount1
persist
#require-mppe-128 ## I got an error message from this, so deleted it. Maybe it depends on the server?

Create /etc/ppp/ip-up and add this -
#!/bin/sh
/sbin/route add -net REMOTE-NET-IP netmask REMOTE-NET-MASK dev ppp

Make this file executable -
chmod +x /etc/ppp/ip-up

Foxti didn't give me any details of the network on the other side of the VPN server, so I just used this line -
/sbin/route add -host 123.456.789.01 dev ppp

Now you should be able to start the tunnel -
pppd call Myvpnaccount1

Open /var/log/messages and you should see a successful pppd daemon listing local IP address and remote IP address.
I could ping the remote IP address (inside the tunnel), thus confirming a successful VPN connection ... but I had no opportunity to attempt any form of file transfer, so I don't assume full success yet.

Last edited by tempestuous on Wed 15 Mar 2006, 09:57; edited 1 time in total
Back to top
View user's profile Send private message 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Wed 15 Mar 2006, 04:38    Post subject:  

Guys, I'm following this thread, but fairly "lightly".
So, anything that you discover that needs to be fixed or changed for the next
puppy, spell it out to me. Like, for example, changes to modules.conf.

Foxti, regarding your p.m. reporting some other issues with puppy2, yes,
it's only a snapshot, just for you to test MPPE/VPN, and there are many outstanding issues I'm working on.
Back to top
View user's profile Send private message Visit poster's website 
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Wed 15 Mar 2006, 09:59    Post subject:  

Yes, well spotted Barry. I'm still not sure whether any of the lines that are presently commented out in /etc/modules.conf need to be un-commented, but what's absolutely necessary is the new line -
alias ppp-compress-18 ppp_mppe_mppc

It would probably be a good thing to have this line included in Puppy2 ... and perhaps also /etc/ppp/options.pptp since this contains only generic setup information.

All of the other configuration files I mentioned contain text unique to each user. And the inclusion of /etc/ppp/ip-up might actually cause problems for normal (non VPN) dial-up situations.
Back to top
View user's profile Send private message 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Wed 15 Mar 2006, 20:49    Post subject:  

Um, so you meant that options.pptp should look like this?:

lock
noauth
nodeflate
nobsdcomp
Back to top
View user's profile Send private message Visit poster's website 
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Wed 15 Mar 2006, 21:27    Post subject:  

Yes.
Back to top
View user's profile Send private message 
tempestuous

Joined: 10 Jun 2005
Posts: 5238
Location: Australia

PostPosted: Fri 17 Mar 2006, 08:49    Post subject:  

Barry,
Further tests (and some thinking) suggest that those lines in /etc/modules.conf0 should be uncommented (I just remembered that modules.conf0 overwrites modules.conf). Specifically:

alias ppp-compress-21 bsd_comp
alias ppp-compress-24 ppp_deflate
alias ppp-compress-26 ppp_deflate
alias tty-ldisc-14 pppsynctty

"alias char-major-108 ppp_generic" appears to be commented out, but then I see that it is duplicated on a separate line.

With my modules.conf/modules.conf0 set up like this and all other PPTP configuration files ready, it was not necessary to manually load any modules. All I had to do was run "pppd call Myvpnaccount1" and /var/log/messages reported success.

I then ran "lsmod" and I could see that all modules just mentioned were loaded ... except ppp_async ... but who knows, maybe this module is loaded once a process like a file transfer is initiated.
Also, the cryptographic modules were now loaded, sha1 and arc4.
Back to top
View user's profile Send private message 
Foxti

Joined: 04 Mar 2006
Posts: 19
Location: Indiana

PostPosted: Fri 17 Mar 2006, 10:38    Post subject: More Info  

I have compiled it into a puppy disk using the .createpuppy and it woks great so far It also works wonderfully in Puppy 2 I have left thins as is for other pptp connections as well and it works perfect

The reason that the line
#require-mppe-128 ## I got an error message from this, so deleted it.

did not work was not because it is wrong however the version of pptp and ppp that we are using only need "require" not the full line I also learned that is you put in and of the exclude commands then it will not work with other VPN PPTP connections that do not need them. and if you put in "require" it will not work on non MPPE connections as it can not get past that point. so if you leave it as it is now It works with all the servers I have tryed it on MPPE, MPPC, Cisco, and Linux VPN servers. that is all I had available to test on so I am not sure past that.


Now I just have to work out a couple other small issues I am having with the ./createpuppy script that I am having. where in some of the applications do not work even from a clean build without the MPPE stuff in them. I am using a clean puppy-unleashed each time I try to create them also and even foilloing the defaults I get the same issues.

Thanks again for all your help this has been a great learning experience even for a newbe like myself.

Dean
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Fri 17 Mar 2006, 21:52    Post subject:  

Okay, modules.conf now has this:

Code:
#using ppp* for dialup connection, need these...
alias tty-ldisc-3 ppp_async
alias ppp0 ppp_generic
alias ppp1 ppp_generic
#according to some info on RH8.0, need this...
alias ppp-compress-21 off
#...as modprobe tries to get it, but it is no longer needed.
#note, some other refs say need to do this...
#alias ppp-compress-21 bsd_comp
#v2.0.0 uncommenting these two...
alias ppp-compress-24 ppp_deflate
alias ppp-compress-26 ppp_deflate

#HOWTO-PPP.htm also says need these...
alias /dev/ppp ppp_generic
# ...just don't like the look of this one!
alias char-major-108 ppp_generic
#v2.0.0 uncommenting this...
alias tty-ldisc-14 ppp_synctty

#v2.0.0 VPN support needs this...
alias ppp-compress-18 ppp_mppe_mppc


Note, puppy2 doesn't have modules.conf0, only modules.conf.
Back to top
View user's profile Send private message Visit poster's website 
Display posts from previous:   Sort by:   
Page 2 of 4 [54 Posts]   Goto page: Previous 1, 2, 3, 4 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » House Training » Beginners Help ( Start Here)
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0987s ][ Queries: 13 (0.0047s) ][ GZIP on ]