Есть Macbook Air, который нужно подключить по VPN к сети предприятия. Есть сервер на FreeBSD 8.2, на котором настроен и работает MPD5. Windows-клиенты успешно подключаются по PPTP с шифрованием MPPE 128. Macbook же не хочет ни в какую. Только если отключить шифрование, подключение происходит.
Вот конфигурация MPD:my_pptp:
create bundle static B4
set iface enable proxy-arp
set iface idle 0
set iface enable tcpmssfix
set ipcp yes vjcomp
set ipcp ranges 10.1.1.220/32 10.1.0.222/32
set ipcp dns 10.1.1.1
set ipcp nbns 10.1.1.1
set bundle enable compression
set ccp enable mppc
set mppc enable e40
set mppc enable e128
set mppc enable stateless
create link static L4 pptp
set link action bundle B4
set link disable multilink
set link yes acfcomp protocomp
set link no pap chap
set link enable chap
set link keep-alive 5 20
set link mtu 1460
set pptp self 11.22.33.44
set link enable incoming
Вот что пишет в логах MPD при попытке подключения Macbook:
Jun 21 14:53:41 fw mpd: [L2] LCP: SendConfigReq #2
Jun 21 14:53:41 fw mpd: [L2] ACFCOMP
Jun 21 14:53:41 fw mpd: [L2] PROTOCOMP
Jun 21 14:53:41 fw mpd: [L2] MRU 1500
Jun 21 14:53:41 fw mpd: [L2] MAGICNUM ccf60c0b
Jun 21 14:53:41 fw mpd: [L2] AUTHPROTO CHAP MSOFTv2
Jun 21 14:53:41 fw mpd: [L2] LCP: rec'd Configure Ack #2 (Ack-Sent)
Jun 21 14:53:41 fw mpd: [L2] ACFCOMP
Jun 21 14:53:41 fw mpd: [L2] PROTOCOMP
Jun 21 14:53:41 fw mpd: [L2] MRU 1500
Jun 21 14:53:41 fw mpd: [L2] MAGICNUM ccf60c0b
Jun 21 14:53:41 fw mpd: [L2] AUTHPROTO CHAP MSOFTv2
Jun 21 14:53:41 fw mpd: [L2] LCP: state change Ack-Sent --> Opened
Jun 21 14:53:41 fw mpd: [L2] LCP: auth: peer wants nothing, I want CHAP
Jun 21 14:53:41 fw mpd: [L2] CHAP: sending CHALLENGE #1 len: 21
Jun 21 14:53:41 fw mpd: [L2] LCP: LayerUp
Jun 21 14:53:41 fw mpd: [L2] CHAP: rec'd RESPONSE #1 len: 69
Jun 21 14:53:41 fw mpd: [L2] Name: "user_name"
Jun 21 14:53:41 fw mpd: [L2] AUTH: Trying INTERNAL
Jun 21 14:53:41 fw mpd: [L2] AUTH: INTERNAL returned: undefined
Jun 21 14:53:41 fw mpd: [L2] CHAP: Auth return status: undefined
Jun 21 14:53:41 fw mpd: [L2] CHAP: Response is valid
Jun 21 14:53:41 fw mpd: [L2] CHAP: Reply message: S=w7cr47nrny7cnw4ryncw4rcyn7wrkwy7ywwcinyr
Jun 21 14:53:41 fw mpd: [L2] CHAP: sending SUCCESS #1 len: 46
Jun 21 14:53:41 fw mpd: [L2] LCP: authorization successful
Jun 21 14:53:41 fw mpd: [L2] Link: Matched action 'bundle "B2" ""'
Jun 21 14:53:41 fw mpd: [L2] Link: Join bundle "B2"
Jun 21 14:53:41 fw mpd: [B2] Bundle: Status update: up 1 link, total bandwidth 64000 bps
Jun 21 14:53:41 fw mpd: [B2] IPCP: Open event
Jun 21 14:53:41 fw mpd: [B2] IPCP: state change Initial --> Starting
Jun 21 14:53:41 fw mpd: [B2] IPCP: LayerStart
Jun 21 14:53:41 fw mpd: [B2] CCP: Open event
Jun 21 14:53:41 fw mpd: [B2] CCP: state change Initial --> Starting
Jun 21 14:53:41 fw mpd: [B2] CCP: LayerStart
Jun 21 14:53:41 fw mpd: [B2] IPCP: Up event
Jun 21 14:53:41 fw mpd: [B2] IPCP: state change Starting --> Req-Sent
Jun 21 14:53:41 fw mpd: [B2] IPCP: SendConfigReq #1
Jun 21 14:53:41 fw mpd: [B2] IPADDR 10.1.1.220
Jun 21 14:53:41 fw mpd: [B2] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Jun 21 14:53:41 fw mpd: [B2] CCP: Up event
Jun 21 14:53:41 fw mpd: [B2] CCP: state change Starting --> Req-Sent
Jun 21 14:53:41 fw mpd: [B2] CCP: SendConfigReq #1
Jun 21 14:53:41 fw mpd: [B2] MPPC
Jun 21 14:53:41 fw mpd: [B2] 0x00000040:MPPE(128 bits)
Jun 21 14:53:41 fw mpd: [B2] CCP: rec'd Configure Request #1 (Req-Sent)
Jun 21 14:53:41 fw mpd: [B2] MPPC
Jun 21 14:53:41 fw mpd: [B2] 0x01000060:MPPE(40, 128 bits), stateless
Jun 21 14:53:41 fw mpd: [B2] CCP: SendConfigNak #1
Jun 21 14:53:41 fw mpd: [B2] MPPC
Jun 21 14:53:41 fw mpd: [B2] 0x00000040:MPPE(128 bits)
Jun 21 14:53:41 fw mpd: [B2] IPCP: rec'd Terminate Ack #1 (Req-Sent)
Jun 21 14:53:41 fw mpd: [L2] LCP: rec'd Terminate Request #2 (Opened)
Jun 21 14:53:41 fw mpd: [L2] LCP: state change Opened --> Stopping
Jun 21 14:53:41 fw mpd: [L2] Link: Leave bundle "B2"
Jun 21 14:53:41 fw mpd: [B2] Bundle: Status update: up 0 links, total bandwidth 9600 bps
Jun 21 14:53:41 fw mpd: [B2] IPCP: Close event
Jun 21 14:53:41 fw mpd: [B2] IPCP: state change Req-Sent --> Closing
Jun 21 14:53:41 fw mpd: [B2] IPCP: SendTerminateReq #2
Jun 21 14:53:41 fw mpd: [B2] CCP: Close event
Jun 21 14:53:41 fw mpd: [B2] CCP: state change Req-Sent --> Closing
Jun 21 14:53:41 fw mpd: [B2] CCP: SendTerminateReq #2
Jun 21 14:53:41 fw mpd: [B2] IPCP: Down event
Jun 21 14:53:41 fw mpd: [B2] IPCP: LayerFinish
Jun 21 14:53:41 fw mpd: [B2] Bundle: No NCPs left. Closing links...
Jun 21 14:53:41 fw mpd: [B2] IPCP: state change Closing --> Initial
Jun 21 14:53:41 fw mpd: [B2] CCP: Down event
Jun 21 14:53:41 fw mpd: [B2] CCP: LayerFinish
Jun 21 14:53:41 fw mpd: [B2] CCP: state change Closing --> Initial
Jun 21 14:53:41 fw mpd: [L2] LCP: SendTerminateAck #3
Jun 21 14:53:41 fw mpd: [L2] LCP: LayerDown
Jun 21 14:53:41 fw mpd: [L2] rec'd proto CCP during terminate phase
Jun 21 14:53:41 fw mpd: [L2] PPTP call terminated
Jun 21 14:53:41 fw mpd: [L2] Link: DOWN event
Jun 21 14:53:41 fw mpd: [L2] LCP: Close event
Jun 21 14:53:41 fw mpd: [L2] LCP: state change Stopping --> Closing
Jun 21 14:53:41 fw mpd: [L2] LCP: Down event
Jun 21 14:53:41 fw mpd: [L2] LCP: LayerFinish
Jun 21 14:53:41 fw mpd: [L2] LCP: state change Closing --> Initial
Вариант для распечатки
