confused DD-WRT Novice
Joined: 19 Jun 2008 Posts: 1
|
Posted: Thu Jun 19, 2008 20:29 Post subject: Help!! can't externally vpn into dd-wrt using pptpd |
|
This is probably something simple (i'm assuming an iptables setting), but I've setup a pptpd server on my router and I can vpn no problem using windows vpn client when I'm on the local network, but I can't connect from a remote site (yes i know this is insecure...).
Here is the information, hope someone can help:
version:
------------
DD-WRT v24 vpn (c) 2008 NewMedia-NET GmbH
Release: 05/24/08 (SVN revision: 9526)
router:
-------------
linksys WRT310N
Windows error message:
------------------------
Disconnected.
Error 619: A connection ....
/var/log/messages ERROR:
-------------------------
daemon.info pptpd[1823]: CTRL: Client 192.140.122.66 control connection started
daemon.info pptpd[1823]: CTRL: Starting call (launching pppd, opening GRE)
daemon.notice pppd[1824]: pppd 2.4.4 started by root, uid 0
daemon.info pppd[1824]: Exit.
daemon.err pptpd[1823]: GRE: read(fd=9,buffer=420c6c,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
daemon.err pptpd[1823]: CTRL: PTY read or GRE write failed (pty,gre)=(9,10)
daemon.debug pptpd[1823]: CTRL: Reaping child PPP[1824]
daemon.info pptpd[1823]: CTRL: Client 192.140.122.66 control connection finished
daemon.info pptpd[1896]: CTRL: Client 192.140.122.66 control connection started
daemon.info pptpd[1896]: CTRL: Starting call (launching pppd, opening GRE)
daemon.notice pppd[1897]: pppd 2.4.4 started by root, uid 0
daemon.info pppd[1897]: Exit.
daemon.err pptpd[1896]: GRE: read(fd=9,buffer=420c6c,len=8196) from PTY failed: status = -1
daemon.err pptpd[1896]: CTRL: PTY read or GRE write failed (pty,gre)=(9,10)
daemon.debug pptpd[1896]: CTRL: Reaping child PPP[1897]
daemon.info pptpd[1896]: CTRL: Client 192.140.122.66 control connection finished
options.pptpd:
---------------
lock
name *
proxyarp
ipcp-accept-local
ipcp-accept-remote
lcp-echo-failure 10
lcp-echo-interval 5
deflate 0
auth
-chap
-mschap
+mschap-v2
mppe required,stateless
mppc
ms-ignore-domain
chap-secrets /tmp/pptpd/chap-secrets
ip-up-script /tmp/pptpd/ip-up
ip-down-script /tmp/pptpd/ip-down
ms-dns 192.168.5.1
mtu 1450
mru 1450
pptpd.conf:
------------
bcrelay br0
localip 192.168.5.200
remoteip 192.168.5.201-206
ifconfig:
---------------
br0 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
inet addr:192.168.5.1 Bcast:192.168.5.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:47 errors:0 dropped:0 overruns:0 frame:0
TX packets:36 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:7055 (6.8 KiB) TX bytes:3569 (3.4 KiB)
br0:0 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
inet addr:169.254.255.1 Bcast:169.254.255.255 Mask:255.255.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
eth0 Link encap:Ethernet HWaddr 00:1E:E5:5F:11:AC
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:1 dropped:0 overruns:0 frame:154162
TX packets:0 errors:2 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:6 Base address:0x4000
eth1 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:123378 errors:0 dropped:0 overruns:0 frame:0
TX packets:5154 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:6106260 (5.8 MiB) TX bytes:2524687 (2.4 MiB)
Interrupt:5 Memory:18010000-18020000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MULTICAST MTU:16436 Metric:1
RX packets:2336 errors:0 dropped:0 overruns:0 frame:0
TX packets:2336 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:117251 (114.5 KiB) TX bytes:117251 (114.5 KiB)
vlan1 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:46 errors:0 dropped:0 overruns:0 frame:0
TX packets:36 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:6997 (6.8 KiB) TX bytes:3569 (3.4 KiB)
vlan2 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AB
inet addr:70.62.59.110 Bcast:70.71.67.255 Mask:255.255.252.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:123332 errors:0 dropped:0 overruns:0 frame:0
TX packets:5118 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:6099263 (5.8 MiB) TX bytes:2521118 (2.4 MiB)
route:
-------------
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.5.1 * 255.255.255.255 UH 0 0 0 br0
192.168.5.0 * 255.255.255.0 U 0 0 0 br0
70.71.64.0 * 255.255.252.0 U 0 0 0 vlan2
169.254.0.0 * 255.255.0.0 U 0 0 0 br0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 70.71.64.1 0.0.0.0 UG 0 0 0 vlan2
iptables:
--------------
filter:
--------
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
1053 72043 ACCEPT 0 -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1723
0 0 ACCEPT 47 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP udp -- vlan2 * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 DROP udp -- br0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
41 1804 logaccept tcp -- * * 0.0.0.0/0 192.168.5.1 tcp dpt:443
0 0 logaccept tcp -- * * 0.0.0.0/0 192.168.5.1 tcp dpt:22
0 0 DROP icmp -- vlan2 * 0.0.0.0/0 0.0.0.0/0
0 0 DROP 2 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- lo * 0.0.0.0/0 0.0.0.0/0 state NEW
2 463 logaccept 0 -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
37 12740 DROP 0 -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT 47 -- * vlan2 192.168.5.0/24 0.0.0.0/0
0 0 ACCEPT tcp -- * vlan2 192.168.5.0/24 0.0.0.0/0 tcp dpt:1723
0 0 ACCEPT 0 -- br0 br0 0.0.0.0/0 0.0.0.0/0
0 0 logdrop 0 -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
0 0 TCPMSS tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 tcpmss match 1461:65535 TCPMSS set 1460
0 0 lan2wan 0 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT udp -- vlan2 * 0.0.0.0/0 224.0.0.0/4 udp
0 0 TRIGGER 0 -- vlan2 br0 0.0.0.0/0 0.0.0.0/0 TRIGGER type:in match:0 relate:0
0 0 trigger_out 0 -- br0 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 DROP 0 -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 956 packets, 698K bytes)
pkts bytes target prot opt in out source destination
nat
----
Chain PREROUTING (policy ACCEPT 21 packets, 7129 bytes)
pkts bytes target prot opt in out source destination
29 1276 DNAT tcp -- * * 0.0.0.0/0 70.62.59.110 tcp dpt:8080 to:192.168.5.1:443
0 0 DNAT tcp -- * * 0.0.0.0/0 70.62.59.110 tcp dpt:22 to:192.168.5.1:22
0 0 DNAT icmp -- * * 0.0.0.0/0 70.62.59.110 to:192.168.5.1
0 0 TRIGGER 0 -- * * 0.0.0.0/0 70.62.59.110 TRIGGER type:dnat match:0 relate:0
Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 MASQUERADE 0 -- * vlan2 0.0.0.0/0 0.0.0.0/0
0 0 RETURN 0 -- * br0 0.0.0.0/0 0.0.0.0/0 PKTTYPE = broadcast
0 0 MASQUERADE 0 -- * br0 192.168.5.0/24 192.168.5.0/24
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination |
|