Help!! can't externally vpn into dd-wrt using pptpd

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Author Message
confused
DD-WRT Novice


Joined: 19 Jun 2008
Posts: 1

PostPosted: Thu Jun 19, 2008 20:29    Post subject: Help!! can't externally vpn into dd-wrt using pptpd Reply with quote
This is probably something simple (i'm assuming an iptables setting), but I've setup a pptpd server on my router and I can vpn no problem using windows vpn client when I'm on the local network, but I can't connect from a remote site (yes i know this is insecure...).

Here is the information, hope someone can help:


version:
------------

DD-WRT v24 vpn (c) 2008 NewMedia-NET GmbH
Release: 05/24/08 (SVN revision: 9526)

router:
-------------

linksys WRT310N


Windows error message:
------------------------

Disconnected.

Error 619: A connection ....


/var/log/messages ERROR:
-------------------------

daemon.info pptpd[1823]: CTRL: Client 192.140.122.66 control connection started
daemon.info pptpd[1823]: CTRL: Starting call (launching pppd, opening GRE)
daemon.notice pppd[1824]: pppd 2.4.4 started by root, uid 0
daemon.info pppd[1824]: Exit.
daemon.err pptpd[1823]: GRE: read(fd=9,buffer=420c6c,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
daemon.err pptpd[1823]: CTRL: PTY read or GRE write failed (pty,gre)=(9,10)
daemon.debug pptpd[1823]: CTRL: Reaping child PPP[1824]
daemon.info pptpd[1823]: CTRL: Client 192.140.122.66 control connection finished
daemon.info pptpd[1896]: CTRL: Client 192.140.122.66 control connection started
daemon.info pptpd[1896]: CTRL: Starting call (launching pppd, opening GRE)
daemon.notice pppd[1897]: pppd 2.4.4 started by root, uid 0
daemon.info pppd[1897]: Exit.
daemon.err pptpd[1896]: GRE: read(fd=9,buffer=420c6c,len=8196) from PTY failed: status = -1
daemon.err pptpd[1896]: CTRL: PTY read or GRE write failed (pty,gre)=(9,10)
daemon.debug pptpd[1896]: CTRL: Reaping child PPP[1897]
daemon.info pptpd[1896]: CTRL: Client 192.140.122.66 control connection finished


options.pptpd:
---------------
lock
name *
proxyarp
ipcp-accept-local
ipcp-accept-remote
lcp-echo-failure 10
lcp-echo-interval 5
deflate 0
auth
-chap
-mschap
+mschap-v2
mppe required,stateless
mppc
ms-ignore-domain
chap-secrets /tmp/pptpd/chap-secrets
ip-up-script /tmp/pptpd/ip-up
ip-down-script /tmp/pptpd/ip-down
ms-dns 192.168.5.1
mtu 1450
mru 1450


pptpd.conf:
------------
bcrelay br0
localip 192.168.5.200
remoteip 192.168.5.201-206


ifconfig:
---------------

br0 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
inet addr:192.168.5.1 Bcast:192.168.5.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:47 errors:0 dropped:0 overruns:0 frame:0
TX packets:36 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:7055 (6.8 KiB) TX bytes:3569 (3.4 KiB)

br0:0 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
inet addr:169.254.255.1 Bcast:169.254.255.255 Mask:255.255.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

eth0 Link encap:Ethernet HWaddr 00:1E:E5:5F:11:AC
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:1 dropped:0 overruns:0 frame:154162
TX packets:0 errors:2 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:6 Base address:0x4000

eth1 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:123378 errors:0 dropped:0 overruns:0 frame:0
TX packets:5154 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:6106260 (5.8 MiB) TX bytes:2524687 (2.4 MiB)
Interrupt:5 Memory:18010000-18020000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MULTICAST MTU:16436 Metric:1
RX packets:2336 errors:0 dropped:0 overruns:0 frame:0
TX packets:2336 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:117251 (114.5 KiB) TX bytes:117251 (114.5 KiB)

vlan1 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:46 errors:0 dropped:0 overruns:0 frame:0
TX packets:36 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:6997 (6.8 KiB) TX bytes:3569 (3.4 KiB)

vlan2 Link encap:Ethernet HWaddr 00:1E:E5:5G:22:AB
inet addr:70.62.59.110 Bcast:70.71.67.255 Mask:255.255.252.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:123332 errors:0 dropped:0 overruns:0 frame:0
TX packets:5118 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:6099263 (5.8 MiB) TX bytes:2521118 (2.4 MiB)


route:
-------------

Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.5.1 * 255.255.255.255 UH 0 0 0 br0
192.168.5.0 * 255.255.255.0 U 0 0 0 br0
70.71.64.0 * 255.255.252.0 U 0 0 0 vlan2
169.254.0.0 * 255.255.0.0 U 0 0 0 br0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 70.71.64.1 0.0.0.0 UG 0 0 0 vlan2


iptables:
--------------
filter:
--------
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
1053 72043 ACCEPT 0 -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1723
0 0 ACCEPT 47 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DROP udp -- vlan2 * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 DROP udp -- br0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
41 1804 logaccept tcp -- * * 0.0.0.0/0 192.168.5.1 tcp dpt:443
0 0 logaccept tcp -- * * 0.0.0.0/0 192.168.5.1 tcp dpt:22
0 0 DROP icmp -- vlan2 * 0.0.0.0/0 0.0.0.0/0
0 0 DROP 2 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- lo * 0.0.0.0/0 0.0.0.0/0 state NEW
2 463 logaccept 0 -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
37 12740 DROP 0 -- * * 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT 47 -- * vlan2 192.168.5.0/24 0.0.0.0/0
0 0 ACCEPT tcp -- * vlan2 192.168.5.0/24 0.0.0.0/0 tcp dpt:1723
0 0 ACCEPT 0 -- br0 br0 0.0.0.0/0 0.0.0.0/0
0 0 logdrop 0 -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
0 0 TCPMSS tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 tcpmss match 1461:65535 TCPMSS set 1460
0 0 lan2wan 0 -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT udp -- vlan2 * 0.0.0.0/0 224.0.0.0/4 udp
0 0 TRIGGER 0 -- vlan2 br0 0.0.0.0/0 0.0.0.0/0 TRIGGER type:in match:0 relate:0
0 0 trigger_out 0 -- br0 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT 0 -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 DROP 0 -- * * 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy ACCEPT 956 packets, 698K bytes)
pkts bytes target prot opt in out source destination

nat
----

Chain PREROUTING (policy ACCEPT 21 packets, 7129 bytes)
pkts bytes target prot opt in out source destination
29 1276 DNAT tcp -- * * 0.0.0.0/0 70.62.59.110 tcp dpt:8080 to:192.168.5.1:443
0 0 DNAT tcp -- * * 0.0.0.0/0 70.62.59.110 tcp dpt:22 to:192.168.5.1:22
0 0 DNAT icmp -- * * 0.0.0.0/0 70.62.59.110 to:192.168.5.1
0 0 TRIGGER 0 -- * * 0.0.0.0/0 70.62.59.110 TRIGGER type:dnat match:0 relate:0

Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 MASQUERADE 0 -- * vlan2 0.0.0.0/0 0.0.0.0/0
0 0 RETURN 0 -- * br0 0.0.0.0/0 0.0.0.0/0 PKTTYPE = broadcast
0 0 MASQUERADE 0 -- * br0 192.168.5.0/24 192.168.5.0/24

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Sponsor
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum