Solved

PPTP VPN Problem - Linux Client connecting to Windows 2003 server

Posted on 2007-03-31
7
1,448 Views
Last Modified: 2008-06-24
I am running OpenSuse 10.2 attempting to connect to a PPTP VPN on a Windows 2003 Server.   I am using KVpnc for the client.  I can manage to authenticate and connect when I check off "Refuse EAP" in the profile with the rest defaults.  I can not establish a connection without checking refuse EAP.  When I do establish a connection (with refuse EAP)  it does NOT change my IP nor can I browse the remote network or do anything that the VPN is suppose to allow me to do.  Also the connection will drop frequently and reconnect.  When I connect to the same VPN using windows it works just fine using all defaults on the windows VPN client.  I do have to add the LAN IP of the windows 2003 server as a WINS server with the windows client in order to browse computers by name instead of IP.  I don't really need this function, that is just a bonus, I can get by with using IP's to navigate to the computers, I just need to be on that subnet.  Please help.  
0
Comment
Question by:wallspc
7 Comments
 
LVL 35

Expert Comment

by:ShineOn
Comment Utility
Herbert Graeber has some updated NetworkManager-pptp packages at his opensuse download location: http://software.opensuse.org/download/home:/hgraeber/openSUSE_10.2/

Supposedly works with PAP but CHAP still being worked on...  Don't know about EAP...

Worth a shot.

Are you using KDE or Gnome?  Supposedly PPTP config in Gnome is ahead of PPTP config in KDE.

Moving PPTP config to YaST is on the wishlist.
0
 
LVL 19

Expert Comment

by:Redimido
Comment Utility
I have used http://pptpclient.sourceforge.net/ in the past and it works great with chap.

It is a more manual process but you can get a pretty stable pptp vpn with it.
0
 

Author Comment

by:wallspc
Comment Utility
Yes it appears that both the KDE and Gnome client front ends use the same program as Redimido is referencing.  When I went to to manually configure I noticed all the files and settings were already in place, generated by KVpnc.  As far as I can tell I have everything set correctly, and I am able to authenticate and connect, however it is just not working properly.  I am trying to find out more information about the settings on the 2003 server end.  
0
Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

 
LVL 19

Expert Comment

by:Redimido
Comment Utility
Well then, you must know compression over pptp requires a propietary algorithm and thus is not included in any linux as standard.

use mschap v2 and ssl encryption also.
0
 

Expert Comment

by:dlanciani
Comment Utility
Windows PPTP servers are frequently configured to use their main address (i.e., the address to
which you make the PPTP connection) as their address on the virtual PPP connection.  Unix (and
Cisco for that matter) PPTP clients are frequently configured to install a host route to their peer
on bringing up a PPP (virtual or otherwise) link.  Thus as soon as the link comes up, traffic destined
for the PPTP server is routed through the PPTP connection.  This obviously doesn't work and the
link soon times out for missed keepalive packets.  When the link goes down the host route is
removed and the PPTP server is once again reachable so the link can come back up.  Repeat
ad nauseam.   You can usually work around this by suppressing the host route and/or using
a different address to contact the server.
0
 
LVL 16

Expert Comment

by:Hanno Schröder
Comment Utility
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I will leave the following recommendation for this question in the Cleanup Zone:
PAQ and refund points.

Any objections should be posted here in the next 4 days. After that time, the question will be closed.
JustUNIX, Experts Exchange Cleanup Volunteer
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
Comment Utility
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now