我的VPN有些问题，请各位不吝赐教！！谢谢！|Linux系统专区人人网,QQ空间,登陆,renren,注册,校内,刷人气

离线sisikie.

初中三年级

发帖: 2119

C币: -60363

威望: 375

贡献值: 1

银元: -7

铜钱: 4641

人人网人气币: 0

只看楼主倒序阅读使用道具楼主发表于: 2009-05-01

我的环境：
kernel: lin.ux-2.6.10..tar.gz             电子

kernel_patch: linux-2.6.10.-mppe-mppc-1.2.patch.gz .             电子

pppd: p.pp-2.4.3.tar.gz.

pppd_patch.: ppp-2.4.3-mppe-mppc-1..1.patch.gz           女人

pptpd: pptpd.-1.2.1.tar.gz.
复制代码

检验.内核和PPP是否支持MPPE/MPPE学习
[root@yf165 etc]# strings `which pppd`|grep -i ..mppe|wc --lines--- 印刷

30

[root@yf16.5 etc]# s.trings `which pppd`|grep -i mppc|wc --lines           建材

7

[root@yf1.65 etc]# dme.sg | grep MPPE              乙肝

MPP.E/MPPC encryption/compression module regi.stered教育
复制代码

相关配置：
1、./etc/pptpd.conf<性病>
# TAG: ppp

# Path to the pppd program, default '/usr/sbi..n/pppd' on Linux.

#

ppp. /usr/local/sbin/pppd           鲜花

# TAG: option

# Specifies the location of the .PPP opt.ions file..

# By default PPP looks in '/etc/ppp/opti..ons'.

#

opti.on /etc/p.pp/options.pptpd[成人用品]

# TAG: debug

# Turns .on (more.) debugging to syslog[成人用品]

#

debug

# TAG: s.timeout.

# Specifies time.ou.t (in seconds) on starting ctrl connection教育

#

# stimeout 10

#. TAG: noipparam    健康

# Suppress the pa.ssing of the client's IP address to P.PP, which is           建材

# done by default ot.he.rwise.(        游戏          )

#

#noipparam

# TAG: logwtmp

# Use wtmp(5) to .record client connections and disconnect.ions.    美容

#

logwtmp

# TAG:. bcrelay <if>;虚拟主机

# Turns on broadcast relay to clients .from int.erface <if>;--- 印刷

#

#bcrelay eth1

# TAG: localip

# TAG: re.moteip.

# Specifies the local .and remo.te IP address ranges.           鲜花

#

# Any addresses work as. long as th.e local machine takes care of the.

# routing. But if you w.ant t.o use MS-Windows networking, you should    美容

# use IP addresses .out of the LAN address spa.ce and use the proxyarp(广告)

# optio.n in the ppp.d options file, or run bcrelay.健康

#

# .You can specify single IP. addresses seperated by commas or you can外贸

# s.pecify .ranges, or both. For example:              乙肝

#

# 1.92.168.0.234,192.168.0.245-249,1.92.168.0.254.

#

#. IMPORTANT RESTRICTIONS:电脑

#

# 1. No spaces are permitted between comm.as or within addre.sses..

#

# 2.. If you give more IP addresses than MAX_CON.NECTIONS, it will(广告)

# start.. at the beginning of the list and go until it gets(广告)

# MAX_CONNECTIONS IPs. Ot.hers w.ill be ignored..

#

# 3. No shortcuts in ranges.! ie. 234-8 d.oes not mean 234 to 238,             汽车

#. .you must type 234-238 if you mean this.投资

#

# 4. If you g.ive a single localIP, th.at's ok - all local IPs will

# be set to the given one. You MUST still give at least. one rem.ote

#. I.P for each simultaneous client.健康

#

# .(Recommended).

localip 192..168.0.1.

remoteip. 192.168.0.23.4-238,192.168.0.245学习

# or

#localip 1.92.168..0.234-238,192.168.0.245虚拟主机

#remoteip 19.2.168.1.234-23.8,192.168.1.245--- 印刷
复制代码

2、/etc/ppp/options..pptpd           鲜花
# Authent.ication.

# Name of t..he local system for authentication purposes健康

# (must match the second field in /etc/ppp/cha.p-secrets. entries)    健康

name pptpd

# Strip the domain prefix from t.he username before authenticatio.n.服务器

# (applies if .you use pppd with chapms-strip-domain p.atch).

#chapms-strip-d.omain.

# Encryption

# (Th.ere have be.en multiple versions of PPP with encryption support,健康

# c.hoose with of the following sections yo.u will use.)             电子

# B.SD licensed ppp-2.4.2 upstream with MPPE only, ke.rnel module ppp_mppe.o投资

# {{{

refuse-pap

refuse-chap

refuse-mschap

# Require the pee.r to authenticate. itself using MS-CHAPv2 [Microsoft            杀毒

#. Challenge Handshake Authen.tication Protocol, Version 2] authentication.教育

requir.e-mschap-v2.

# Require M.PPE 128-bit encry.ption(        游戏          )

# (note that MPPE requires the use of MSCHAP.-V2. during authentication)          婚庆

#require-mpp.e-128电影

# }}}

# OpenSSL licensed p.pp-2.4.1 fork with MPPE only, kernel m.odule mppe.o.

# {{{

#-chap

#-chapms

# Require the. peer to auth.enticate itself using MS-CHAPv2 [Microsoft教育

# Challenge Handshake Authe.ntication Protocol, Version 2] authentication..--- 印刷

#+chapms-v2

# .Require MPPE encryption.

# (note that MPPE requires the use of MSC.HAP-V2 d.uring authentication)            杀毒

#mppe-40 # enable either 40-b.it or 12.8-bit, not both<性病>

#mppe-128

#mpp.e-stateless.

# }}}

# Netwo.rk and Routing(        游戏          )

# If pppd is acting as a ser.ver for Microsoft Windows clients, th.is域名

# option allo.ws pppd to suppl.y one or two DNS (Domain Name Server).

# ad.dresses to the clients. The first instanc.e of this option.

# speci.fie.s the primary DNS address; the second instance (if given)域名

# specifie.s the secondary DNS addre.ss.             电子

ms-dns 211.95.19.3.97[成人用品]

#ms-dns 10..0.0.2外贸

# If pppd is acting as a server for .Microsoft Windows or "Samba."电脑

# clients, this option allows pppd to supply one or t.wo WINS .(Windows(        游戏          )

# Internet Name Services) .se.rver addresses to the clients. The first虚拟主机

# instance o.f this option specifies the primary WINS .address; the虚拟主机

# second. instance (if given) s.pecifies the secondary WINS address.              乙肝

#ms-wins .10.0.0.3.

#ms-wins. 10.0.0.4.

# Add an entry t.o .this system's ARP [Address Resolution Protocol](        游戏          )

# table with th.e IP address of the peer and the Ethern.et address of this             汽车

# system. Th.is will have the effect of making the peer appear to ot.her.

# syste.ms to .be on the local ethernet.

# (you d.o not need this if your PPTP server is responsible for routin.g.

# packets to t.he cli.ents -- James Cameron)服务器

proxyarp

# Logging

# Enable. connection debugging faciliti.es.          婚庆

# (see your syslog co.nfiguration for wh.ere pppd sends to)--- 印刷

debug

# Print out all .the option values which have been s.et.[成人用品]

# (often requ.ested by mailing list .to verify options)           女人

#dump

#. Miscellaneous.

# Create a UU.CP-style lock fi.le for the pseudo-tty to ensure exclusive服务器

# access.

lock

# Disable .BSD-Compress compressio.n    外汇

nobsdcomp
复制代码

3、/etc/ppp/ch.ap-secrets虚拟主机
# Secrets f.or au.thentication using CHAP    美容

# client server secret I.P addres.se电脑

test pptpd t.est *    外汇
复制代码

问题：
当我打开.requ.ire-mppe-128这个选项时，    外汇
require-mppe-12.8服务器
复制代码
连.接不成功，查看/var/log/messages.有以下信息电影
J.an 17 2.2:31:01 yf165 pptpd[6607]: CTRL: Client 218..15.194.251 control connection started    美容

Jan .17 22:31:02 yf165 pptpd[660.7.]: CTRL: Starting call (launching pppd, opening GRE)--------------彩票

Jan 17 22:31:02 yf165 pppd[660.8].: In file /etc/ppp/options.pptpd: unrecognized option '.require-mppe-128'    外汇

Jan 17 22:31:02 yf165 pptpd[6607]: GRE: read(fd=4,buffer=804db80,len=8196) from PTY failed: status = -1 erro.r = Input/output error, usually caused by u.nexpected termination of pppd, check option sy.ntax a.nd pppd log.s           女人

Jan 17 22:31:02 yf165 pptpd[66.07]: CTRL: PTY read or GRE .write failed (pty,gre)=(4.,5)             电子

Jan. 17 2.2:31:02 yf165 pptpd[6607]: CTRL: Client 218.15.194.251 control connec.tion finished             电子
复制代码

In file. /etc/ppp/options.pptpd: unrec.ognized option 'require-mppe-128'(广告)
GRE.: read(fd=4,bu.ffer=804db80.,len=8196) from PTY failed: status = -1 error = Input/output error, .
usually caused by unexpected ter.mination of pppd, check option syntax and p.p.pd logs<性病>
CTR.L: PTY r.ead or GRE write failed (pty,gre)=(4,5)(        游戏          )

当我注释掉#requir.e-mppe-128时，.
#require-mppe-128.    美容
复制代码
可以连接，客户端信息栏里.显示已经支持MPPE/MP.PC，             汽车
但还是有些问题：
Jan 18 00:08:40 yf1.65 pptp.d[4387]: CTRL: Client 218.15.194.251 control connection star.ted服务器

Jan 18 00:08:40. yf165 pptpd[4387]: CTR.L: Starting call (launching. pppd, opening GRE)           建材

Jan 18 00:08:40 yf165 pppd.[4388]: Plugin /usr/lib/pptpd/ppt.pd-.logwtmp.so loaded.健康

Jan 18 .00:08:40 yf165 pppd[4388]: pptpd-log.wtmp: $Version$健康

J.an 18 00:08:40 y.f165 pppd[4388]: pppd 2.4.3 started by root, uid 0    美容

Jan 18 00:08:40 yf165 pppd[4388]: Using i.nterface ppp.0服务器

Jan 18 00:08:40 yf165 pppd[4388]: Connect: ppp0 <-->; /d.ev/pt.s/1    外汇

Ja.n 18 00:08:40 y.f165 pptpd[4387]: GRE: Bad checksum from pppd.    健康

Jan 18 00:08:42 yf.165 pptpd[4387]: CTRL: Ignored. a SE.T LINK INFO packet with real ACCMs(        游戏          )

Jan 18 00:08:44 yf165 pppd[4388]: Cann.ot determine ethernet a..ddress for proxy ARP--- 印刷

Jan 18 00:08:44 yf165 ppp.d[4388]: local IP addr.ess 192.168.0.1域名

Jan 18 00.:08:44 yf.165 pppd[4388]: remote IP address 192.168.0.235          婚庆

Jan 18 00:08:44 yf165 ppp.d.[4388]: pptpd-logwtmp.so ip-up ppp0 test 21.8.15.194.251.

Jan 18 00:08:44 yf165 pppd[4388].: MPPC/MPP.E 128-bit stateful comp.ression enabled教育

Jan 18 00:09:.24 yf165 pppd[4388]: LCP terminated. by peer (^P^AW.m^@<M-Mt^@^@^@^@)教育

Jan 18 00:09:24 yf165 pppd[4388]: pptpd-logwtm.p.so ip-down p.pp0    外汇

Jan 18 00:09:24 .yf165 pppd[4388]: Connect time 0.7 mi.nutes..

Jan 18 .00:09:24 yf165 pppd[4388]: Sent 1020. bytes, received 5382 bytes..

Jan 18 00:09:24 yf16.5 pppd[4388]: Mode.m hangup            杀毒

Jan 18 00:09:24 yf165 pppd[4.388]: Conn.ection terminated..

J.an 18 00:09:25 yf165 .pppd[4388]: Exit..

Ja.n 18 00:09:25 yf165 pptpd[4387]: CTRL: Client 218.15.194.2.51 contr.ol connection finished学习
复制代码

GRE: Bad checksum fro.m ppp.d..
CTRL: Ignored a SET LINK INFO pack.et with rea.l ACCMs健康
Cannot determine et.hernet address fo.r proxy ARP健康

到底出了什么问题呢？请各位不吝.赐教！！谢谢    健康
1.jpg (15.04 KB). .
下载次数:12
2005-01-18 19.:14.

说明已经支持MPPE/MP.PC了!.
http://upload.bbs.csuboy.com/Mon_1004/126_6796_b5102b52a174c04.jpg[/img]虚拟主机
2.jpg (.17.57 KB) 健康
下载次数:15
2005-01-18 .19:18--------------彩票

客户端得到的地址信息!
http://upload.bbs.csuboy.com/Mon_1004/126_6796_074b1b320b4f519.jpg[/img](        游戏          )