Project

General

Profile

Bug #281

Traffic initiated by PPTP clients not passed

Added by Angel Torres over 9 years ago. Updated about 9 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
PPTP
Target version:
Start date:
01/05/2010
Due date:
% Done:

0%

Estimated time:
Affected Version:
2.0
Affected Architecture:

Description

PPTP authenticates successfully but no traffic is passed after AUTH. Confirmed in forum, system logs are posted there:

http://forum.pfsense.org/index.php/topic,21656.msg111343.html#msg111343

History

#1 Updated by Chris Buechler over 9 years ago

  • Subject changed from PPTP - no traffic passed after AUTH to Traffic initiated by PPTP clients not passed

clarified ticket subject, traffic initiated from the firewall gets to the clients and gets replies, just nothing in the opposite direction works. More details in forum link above.

#2 Updated by Chris Buechler over 9 years ago

More logs that appear to be relevant (from duplicate #307)

Jan 17 22:09:53    mpd: [pt1] no interface to proxy arp on for 10.10.9.3
Jan 17 22:09:53    mpd: [pt1] IFACE: Up event
Jan 17 22:09:53    mpd: 10.10.9.1 -> 10.10.9.3
Jan 17 22:09:53    mpd: [pt1] IPCP: LayerUp
Jan 17 22:09:53    mpd: [pt1] IPCP: state change Ack-Rcvd --> Opened
Jan 17 22:09:53    mpd: SECDNS 194.255.69.114
Jan 17 22:09:53    mpd: PRIDNS 10.10.10.1
Jan 17 22:09:53    mpd: IPADDR 10.10.9.3
Jan 17 22:09:53    mpd: [pt1] IPCP: SendConfigAck #8
Jan 17 22:09:53    mpd: SECDNS 194.255.69.114
Jan 17 22:09:53    mpd: PRIDNS 10.10.10.1
Jan 17 22:09:53    mpd: 10.10.9.3 is OK
Jan 17 22:09:53    mpd: IPADDR 10.10.9.3
Jan 17 22:09:53    mpd: [pt1] IPCP: rec'd Configure Request #8 (Ack-Rcvd)
Jan 17 22:09:53    mpd: [pt1] IPCP: state change Req-Sent --> Ack-Rcvd
Jan 17 22:09:53    mpd: IPADDR 10.10.9.1
Jan 17 22:09:53    mpd: [pt1] IPCP: rec'd Configure Ack #8 (Req-Sent)
Jan 17 22:09:53    mpd: SECDNS 194.255.69.114
Jan 17 22:09:53    mpd: PRIDNS 10.10.10.1
Jan 17 22:09:53    mpd: IPADDR 10.10.9.3
Jan 17 22:09:53    mpd: [pt1] IPCP: SendConfigNak #7
Jan 17 22:09:53    mpd: NAKing with 194.255.69.114
Jan 17 22:09:53    mpd: SECDNS 0.0.0.0
Jan 17 22:09:53    mpd: NAKing with 10.10.10.1
Jan 17 22:09:53    mpd: PRIDNS 0.0.0.0
Jan 17 22:09:53    mpd: NAKing with 10.10.9.3
Jan 17 22:09:53    mpd: IPADDR 0.0.0.0
Jan 17 22:09:53    mpd: [pt1] IPCP: rec'd Configure Request #7 (Req-Sent)
Jan 17 22:09:53    mpd: Decompress using: mppc (MPPE(128 bits), stateless)
Jan 17 22:09:53    mpd: Compress using: mppc (MPPE(128 bits), stateless)
Jan 17 22:09:53    mpd: [pt1] CCP: LayerUp
Jan 17 22:09:53    mpd: [pt1] CCP: state change Ack-Rcvd --> Opened
Jan 17 22:09:53    mpd: 0x01000040:MPPE(128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: SendConfigAck #6
Jan 17 22:09:53    mpd: 0x01000040:MPPE(128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: rec'd Configure Request #6 (Ack-Rcvd)
Jan 17 22:09:53    mpd: [pt1] CCP: state change Req-Sent --> Ack-Rcvd
Jan 17 22:09:53    mpd: 0x01000040:MPPE(128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: rec'd Configure Ack #5 (Req-Sent)
Jan 17 22:09:53    mpd: IPADDR 10.10.9.1
Jan 17 22:09:53    mpd: [pt1] IPCP: SendConfigReq #8
Jan 17 22:09:53    mpd: COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Jan 17 22:09:53    mpd: [pt1] IPCP: rec'd Configure Reject #7 (Req-Sent)
Jan 17 22:09:53    mpd: SECNBNS 0.0.0.0
Jan 17 22:09:53    mpd: PRINBNS 0.0.0.0
Jan 17 22:09:53    mpd: [pt1] IPCP: SendConfigRej #5
Jan 17 22:09:53    mpd: SECNBNS 0.0.0.0
Jan 17 22:09:53    mpd: NAKing with 194.255.69.114
Jan 17 22:09:53    mpd: SECDNS 0.0.0.0
Jan 17 22:09:53    mpd: PRINBNS 0.0.0.0
Jan 17 22:09:53    mpd: NAKing with 10.10.10.1
Jan 17 22:09:53    mpd: PRIDNS 0.0.0.0
Jan 17 22:09:53    mpd: NAKing with 10.10.9.3
Jan 17 22:09:53    mpd: IPADDR 0.0.0.0
Jan 17 22:09:53    mpd: [pt1] IPCP: rec'd Configure Request #5 (Req-Sent)
Jan 17 22:09:53    mpd: 0x01000040:MPPE(128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: SendConfigNak #4
Jan 17 22:09:53    mpd: 0x010000e1:MPPC, MPPE(40, 56, 128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: rec'd Configure Request #4 (Req-Sent)
Jan 17 22:09:53    mpd: 0x01000040:MPPE(128 bits), stateless
Jan 17 22:09:53    mpd: MPPC
Jan 17 22:09:53    mpd: [pt1] CCP: SendConfigReq #5
Jan 17 22:09:53    mpd: [pt1] CCP: state change Starting --> Req-Sent
Jan 17 22:09:53    mpd: [pt1] CCP: Up event
Jan 17 22:09:53    mpd: COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Jan 17 22:09:53    mpd: IPADDR 10.10.9.1
Jan 17 22:09:53    mpd: [pt1] IPCP: SendConfigReq #7
Jan 17 22:09:53    mpd: [pt1] IPCP: state change Starting --> Req-Sent
Jan 17 22:09:53    mpd: [pt1] IPCP: Up event
Jan 17 22:09:53    mpd: [pt1] CCP: LayerStart
Jan 17 22:09:53    mpd: [pt1] CCP: state change Initial --> Starting
Jan 17 22:09:53    mpd: [pt1] CCP: Open event
Jan 17 22:09:53    mpd: [pt1] IPCP: LayerStart
Jan 17 22:09:53    mpd: [pt1] IPCP: state change Initial --> Starting
Jan 17 22:09:53    mpd: [pt1] IPCP: Open event
Jan 17 22:09:53    mpd: [pt1] Bundle up: 1 link, total bandwidth 64000 bps
Jan 17 22:09:53    mpd: [pt1] LCP: authorization successful
Jan 17 22:09:53    mpd: [pt1] CHAP: sending SUCCESS len:42
Jan 17 22:09:53    mpd: Reply message: S=1C1B56EF8492DDA420C202E7EB179B2D575F4BC5
Jan 17 22:09:53    mpd: Response is valid
Jan 17 22:09:53    mpd: [pt1] CHAP: ChapInputFinish: status undefined
Jan 17 22:09:53    mpd: [pt1] AUTH: Auth-Thread finished normally
Jan 17 22:09:53    mpd: [pt1] AUTH: INTERNAL returned undefined
Jan 17 22:09:53    mpd: [pt1] AUTH: Trying INTERNAL
Jan 17 22:09:53    mpd: [pt1] AUTH: Auth-Thread started
Jan 17 22:09:53    mpd: Name: "fox" 
Jan 17 22:09:53    mpd: [pt1] CHAP: rec'd RESPONSE #1
Jan 17 22:09:53    mpd: MESG: MSRAS-0-MKNB
Jan 17 22:09:53    mpd: [pt1] LCP: rec'd Ident #3 (Opened)
Jan 17 22:09:53    mpd: MESG: MSRASV5.10
Jan 17 22:09:53    mpd: [pt1] LCP: rec'd Ident #2 (Opened)
Jan 17 22:09:53    mpd: [pt1] LCP: LayerUp
Jan 17 22:09:53    mpd: [pt1] CHAP: sending CHALLENGE len:17
Jan 17 22:09:53    mpd: [pt1] LCP: auth: peer wants nothing, I want CHAP
Jan 17 22:09:53    mpd: [pt1] LCP: state change Ack-Sent --> Opened
Jan 17 22:09:53    mpd: AUTHPROTO CHAP MSOFTv2
Jan 17 22:09:53    mpd: MAGICNUM 5c84b652
Jan 17 22:09:53    mpd: MRU 1500
Jan 17 22:09:53    mpd: PROTOCOMP
Jan 17 22:09:53    mpd: ACFCOMP
Jan 17 22:09:53    mpd: [pt1] LCP: rec'd Configure Ack #31 (Ack-Sent)
Jan 17 22:09:53    mpd: AUTHPROTO CHAP MSOFTv2
Jan 17 22:09:53    mpd: MAGICNUM 5c84b652
Jan 17 22:09:53    mpd: MRU 1500
Jan 17 22:09:53    mpd: PROTOCOMP
Jan 17 22:09:53    mpd: ACFCOMP
Jan 17 22:09:53    mpd: [pt1] LCP: SendConfigReq #31
Jan 17 22:09:53    mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 17 22:09:53    mpd: MP SHORTSEQ
Jan 17 22:09:53    mpd: MP MRRU 1600
Jan 17 22:09:53    mpd: [pt1] LCP: rec'd Configure Reject #30 (Ack-Sent)
Jan 17 22:09:53    mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 17 22:09:53    mpd: MP SHORTSEQ
Jan 17 22:09:53    mpd: MP MRRU 1600
Jan 17 22:09:53    mpd: AUTHPROTO CHAP MSOFTv2
Jan 17 22:09:53    mpd: MAGICNUM 5c84b652
Jan 17 22:09:53    mpd: MRU 1500
Jan 17 22:09:53    mpd: PROTOCOMP
Jan 17 22:09:53    mpd: ACFCOMP
Jan 17 22:09:53    mpd: [pt1] LCP: SendConfigReq #30
Jan 17 22:09:51    mpd: [pt1] LCP: state change Req-Sent --> Ack-Sent
Jan 17 22:09:51    mpd: ACFCOMP
Jan 17 22:09:51    mpd: PROTOCOMP
Jan 17 22:09:51    mpd: MAGICNUM 25af67e8
Jan 17 22:09:51    mpd: MRU 1400
Jan 17 22:09:51    mpd: [pt1] LCP: SendConfigAck #1
Jan 17 22:09:51    mpd: ACFCOMP
Jan 17 22:09:51    mpd: PROTOCOMP
Jan 17 22:09:51    mpd: MAGICNUM 25af67e8
Jan 17 22:09:51    mpd: MRU 1400
Jan 17 22:09:51    mpd: [pt1] LCP: rec'd Configure Request #1 (Req-Sent)
Jan 17 22:09:51    mpd: CALLBACK 6
Jan 17 22:09:51    mpd: [pt1] LCP: SendConfigRej #0
Jan 17 22:09:51    mpd: CALLBACK 6
Jan 17 22:09:51    mpd: ACFCOMP
Jan 17 22:09:51    mpd: PROTOCOMP
Jan 17 22:09:51    mpd: MAGICNUM 25af67e8
Jan 17 22:09:51    mpd: MRU 1400
Jan 17 22:09:51    mpd: [pt1] LCP: rec'd Configure Request #0 (Req-Sent)
Jan 17 22:09:51    mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 17 22:09:51    mpd: MP SHORTSEQ
Jan 17 22:09:51    mpd: MP MRRU 1600
Jan 17 22:09:51    mpd: AUTHPROTO CHAP MSOFTv2
Jan 17 22:09:51    mpd: MAGICNUM 5c84b652
Jan 17 22:09:51    mpd: MRU 1500

#3 Updated by Martin Kruse Jensen over 9 years ago

Don't know if any work has actually been done on this issue, but just a moment ago I updated to todays build (January 18th) and here's a new load of logs. Would it help if I tried sniffing with ethereal or something like that?

Jan 18 18:52:26     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:26     mpd: MP SHORTSEQ
Jan 18 18:52:26     mpd: MP MRRU 1600
Jan 18 18:52:26     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:26     mpd: MAGICNUM 500b0856
Jan 18 18:52:26     mpd: MRU 1500
Jan 18 18:52:26     mpd: PROTOCOMP
Jan 18 18:52:26     mpd: ACFCOMP
Jan 18 18:52:26     mpd: [pt0] LCP: SendConfigReq #121
Jan 18 18:52:26     mpd: [pt0] LCP: state change Starting --> Req-Sent
Jan 18 18:52:26     mpd: [pt0] LCP: Up event
Jan 18 18:52:26     mpd: [pt0] link: origination is remote
Jan 18 18:52:26     mpd: [pt0] link: UP event
Jan 18 18:52:26     mpd: [pt0] PPTP: attaching to peer's outgoing call
Jan 18 18:52:26     mpd: [pt0] LCP: LayerStart
Jan 18 18:52:26     mpd: [pt0] LCP: state change Initial --> Starting
Jan 18 18:52:26     mpd: [pt0] LCP: Open event
Jan 18 18:52:26     mpd: [pt0] link: OPEN event
Jan 18 18:52:26     mpd: [pt0] opening link "pt0"...
Jan 18 18:52:26     mpd: [pt0] Accepting PPTP connection
Jan 18 18:52:26     mpd: pptp0: attached to connection with 212.10.50.17 50262
Jan 18 18:52:26     mpd: PPTP: Incoming control connection from 212.10.50.17 50262 to 194.255.69.18 1723
Jan 18 18:52:21     mpd: pptp0: killing connection with 212.10.50.17 50243
Jan 18 18:52:21     mpd: pptp0: closing connection with 212.10.50.17 50243
Jan 18 18:52:21     mpd: [pt0] LCP: state change Closed --> Initial
Jan 18 18:52:21     mpd: [pt0] LCP: Down event
Jan 18 18:52:21     mpd: [pt0] LCP: state change Stopped --> Closed
Jan 18 18:52:21     mpd: [pt0] LCP: Close event
Jan 18 18:52:21     mpd: [pt0] link: DOWN event
Jan 18 18:52:21     mpd: [pt0] PPTP call terminated
Jan 18 18:52:21     mpd: pptp0-0: killing channel
Jan 18 18:52:21     mpd: pptp0-0: clearing call
Jan 18 18:52:21     mpd: [pt0] LCP: LayerFinish
Jan 18 18:52:21     mpd: [pt0] LCP: state change Req-Sent --> Stopped
Jan 18 18:52:21     mpd: [pt0] LCP: parameter negotiation failed
Jan 18 18:52:19     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:19     mpd: MP SHORTSEQ
Jan 18 18:52:19     mpd: MP MRRU 1600
Jan 18 18:52:19     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:19     mpd: MAGICNUM 533b422c
Jan 18 18:52:19     mpd: MRU 1500
Jan 18 18:52:19     mpd: PROTOCOMP
Jan 18 18:52:19     mpd: ACFCOMP
Jan 18 18:52:19     mpd: [pt0] LCP: SendConfigReq #120
Jan 18 18:52:17     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:17     mpd: MP SHORTSEQ
Jan 18 18:52:17     mpd: MP MRRU 1600
Jan 18 18:52:17     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:17     mpd: MAGICNUM 533b422c
Jan 18 18:52:17     mpd: MRU 1500
Jan 18 18:52:17     mpd: PROTOCOMP
Jan 18 18:52:17     mpd: ACFCOMP
Jan 18 18:52:17     mpd: [pt0] LCP: SendConfigReq #119
Jan 18 18:52:15     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:15     mpd: MP SHORTSEQ
Jan 18 18:52:15     mpd: MP MRRU 1600
Jan 18 18:52:15     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:15     mpd: MAGICNUM 533b422c
Jan 18 18:52:15     mpd: MRU 1500
Jan 18 18:52:15     mpd: PROTOCOMP
Jan 18 18:52:15     mpd: ACFCOMP
Jan 18 18:52:15     mpd: [pt0] LCP: SendConfigReq #118
Jan 18 18:52:13     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:13     mpd: MP SHORTSEQ
Jan 18 18:52:13     mpd: MP MRRU 1600
Jan 18 18:52:13     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:13     mpd: MAGICNUM 533b422c
Jan 18 18:52:13     mpd: MRU 1500
Jan 18 18:52:13     mpd: PROTOCOMP
Jan 18 18:52:13     mpd: ACFCOMP
Jan 18 18:52:13     mpd: [pt0] LCP: SendConfigReq #117
Jan 18 18:52:11     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:11     mpd: MP SHORTSEQ
Jan 18 18:52:11     mpd: MP MRRU 1600
Jan 18 18:52:11     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:11     mpd: MAGICNUM 533b422c
Jan 18 18:52:11     mpd: MRU 1500
Jan 18 18:52:11     mpd: PROTOCOMP
Jan 18 18:52:11     mpd: ACFCOMP
Jan 18 18:52:11     mpd: [pt0] LCP: SendConfigReq #116
Jan 18 18:52:09     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:09     mpd: MP SHORTSEQ
Jan 18 18:52:09     mpd: MP MRRU 1600
Jan 18 18:52:09     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:09     mpd: MAGICNUM 533b422c
Jan 18 18:52:09     mpd: MRU 1500
Jan 18 18:52:08     mpd: PROTOCOMP
Jan 18 18:52:08     mpd: ACFCOMP
Jan 18 18:52:08     mpd: [pt0] LCP: SendConfigReq #115
Jan 18 18:52:06     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:06     mpd: MP SHORTSEQ
Jan 18 18:52:06     mpd: MP MRRU 1600
Jan 18 18:52:06     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:06     mpd: MAGICNUM 533b422c
Jan 18 18:52:06     mpd: MRU 1500
Jan 18 18:52:06     mpd: PROTOCOMP
Jan 18 18:52:06     mpd: ACFCOMP
Jan 18 18:52:06     mpd: [pt0] LCP: SendConfigReq #114
Jan 18 18:52:04     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:04     mpd: MP SHORTSEQ
Jan 18 18:52:04     mpd: MP MRRU 1600
Jan 18 18:52:04     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:04     mpd: MAGICNUM 533b422c
Jan 18 18:52:04     mpd: MRU 1500
Jan 18 18:52:04     mpd: PROTOCOMP
Jan 18 18:52:04     mpd: ACFCOMP
Jan 18 18:52:04     mpd: [pt0] LCP: SendConfigReq #113
Jan 18 18:52:02     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:02     mpd: MP SHORTSEQ
Jan 18 18:52:02     mpd: MP MRRU 1600
Jan 18 18:52:02     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:02     mpd: MAGICNUM 533b422c
Jan 18 18:52:02     mpd: MRU 1500
Jan 18 18:52:02     mpd: PROTOCOMP
Jan 18 18:52:02     mpd: ACFCOMP
Jan 18 18:52:02     mpd: [pt0] LCP: SendConfigReq #112
Jan 18 18:52:00     mpd: ENDPOINTDISC [802.1] 00 00 24 c8 dd bc
Jan 18 18:52:00     mpd: MP SHORTSEQ
Jan 18 18:52:00     mpd: MP MRRU 1600
Jan 18 18:52:00     mpd: AUTHPROTO CHAP MSOFTv2
Jan 18 18:52:00     mpd: MAGICNUM 533b422c
Jan 18 18:52:00     mpd: MRU 1500
Jan 18 18:52:00     mpd: PROTOCOMP
Jan 18 18:52:00     mpd: ACFCOMP
Jan 18 18:52:00     mpd: [pt0] LCP: SendConfigReq #111
Jan 18 18:52:00     mpd: [pt0] LCP: state change Starting --> Req-Sent
Jan 18 18:52:00     mpd: [pt0] LCP: Up event
Jan 18 18:52:00     mpd: [pt0] link: origination is remote
Jan 18 18:52:00     mpd: [pt0] link: UP event
Jan 18 18:52:00     mpd: [pt0] PPTP: attaching to peer's outgoing call
Jan 18 18:52:00     mpd: [pt0] LCP: LayerStart
Jan 18 18:52:00     mpd: [pt0] LCP: state change Initial --> Starting
Jan 18 18:52:00     mpd: [pt0] LCP: Open event
Jan 18 18:52:00     mpd: [pt0] link: OPEN event
Jan 18 18:52:00     mpd: [pt0] opening link "pt0"...
Jan 18 18:52:00     mpd: [pt0] Accepting PPTP connection
Jan 18 18:52:00     mpd: pptp0: attached to connection with 212.10.50.17 50243
Jan 18 18:52:00     mpd: PPTP: Incoming control connection from 212.10.50.17 50243 to 194.255.69.18 1723
Jan 18 18:51:55     mpd: pptp0: killing connection with 212.10.50.17 50230
Jan 18 18:51:55     sshd[2908]: Accepted keyboard-interactive/pam for root from 212.10.50.17 port 50235 ssh2
Jan 18 18:51:55     mpd: pptp0: closing connection with 212.10.50.17 50230
Jan 18 18:51:55     mpd: [pt0] LCP: state change Closed --> Initial
Jan 18 18:51:55     mpd: [pt0] LCP: Down event
Jan 18 18:51:55     mpd: [pt0] LCP: state change Stopped --> Closed
Jan 18 18:51:55     mpd: [pt0] LCP: Close event
Jan 18 18:51:55     mpd: [pt0] link: DOWN event
Jan 18 18:51:55     mpd: [pt0] PPTP call terminated
Jan 18 18:51:55     mpd: pptp0-0: killing channel
Jan 18 18:51:55     mpd: pptp0-0: clearing call
Jan 18 18:51:55     mpd: [pt0] LCP: LayerFinish

#4 Updated by Ermal Luçi over 9 years ago

Some traces of GRE traffic would be interesting on the related interface(s).

#5 Updated by Martin Kruse Jensen over 9 years ago

Ermal Luçi wrote:

Some traces of GRE traffic would be interesting on the related interface(s).

How do I capture that? (Sorry - I'm quite the newbie here)

#6 Updated by Martin Kruse Jensen over 9 years ago

I've been trying (hard) to connect to my PPTP VPN for two days now, and finaly thought "Why not try rebooting my (home) router?" and after rebooting it, all of a sudden it works flawlessly (from here anyways - will try from other locations)

The router is a Linksys WRT160Nv2

I'll keep you posted

#7 Updated by Chris Buechler over 9 years ago

Martin: strange, that's not the case for me at least, my client was right on the WAN subnet of my test system with no firewall or router between them.

#8 Updated by Steve Weiss over 9 years ago

I experienced the same issue where a client could establish a PPTP session, but no traffic seemed to make it onto the LAN interface. I did notice pfSense could ping the IP Address of that the client was assigned -- but no one else on the LAN could... So, I added a Virtual IP for the IP Assigned to client and everything works fine for that client now. perhaps pfSense is just not ARPing on behalf of IPs of PPTP Clients?

#9 Updated by G D over 9 years ago

As of "2.0-BETA1 Sat May 8 14:47:13 EDT 2010" this bug is still present.
I was unable to work around it with the Virtual IP workaround mentioned in Comment n°8
Are there any other recommendations on what to try to workaround this bug short of a fresh install of 1.2.3?
My not so clever attempts at finding solutions myself have yielded nothing.

#10 Updated by Ermal Luçi over 9 years ago

There is a patch to apply to freebsd 8 for this.
I will see if i can add it to the snapshots.

#11 Updated by G D over 9 years ago

Many many thanks Mr. Luçi! A couple of friends and myself are ready to test when you would like testing!

#12 Updated by Ermal Luçi about 9 years ago

http://svn.freebsd.org/changeset/base/208553

This should fix this issues. Hopefully will be MFC'd before release of 8.1

#13 Updated by Ermal Luçi about 9 years ago

  • Status changed from New to Feedback

Committed to the snapshots. Test latest snapshot.

#14 Updated by Oscar Francia about 9 years ago

No new snapshot from 3-6 !!

#15 Updated by Oscar Francia about 9 years ago

In snapshot 10-06 PPTP from lan to external PPTP Windows 2008 does not work!

#16 Updated by Jim Pingle about 9 years ago

Oscar Francia wrote:

In snapshot 10-06 PPTP from lan to external PPTP Windows 2008 does not work!

This ticket is for the pfSense PPTP server and clients that connecting to that daemon. It is not for clients behind pfSense connecting to remote PPTP servers. Post on the forums and gather more information; If that is a real issue, it needs a separate ticket.

#17 Updated by Steve Weiss about 9 years ago

Does anyone know if the latest snapshot has been tested as per post #13? If not, I can test late next week. If tested, did the fix not work or has the issue just not been closed out?

#18 Updated by Jim Pingle about 9 years ago

I believe several users on the forum tested it and were successful. You can look in the 2.0 board on the forum for confirmation.

#19 Updated by Chris Buechler about 9 years ago

  • Status changed from Feedback to Resolved

fixed

Also available in: Atom PDF