FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Настройка сетевых служб, маршрутизации, фаерволлов. Проблемы с сетевым оборудованием.
Правила форума
Убедительная просьба юзать теги [code] при оформлении листингов.
Сообщения не оформленные должным образом имеют все шансы быть незамеченными.
Аватара пользователя
FreeBSP
майор
Сообщения: 2020
Зарегистрирован: 2009-05-24 20:20:19
Откуда: Москва

FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение FreeBSP » 2010-01-26 12:44:47

сабж
mpd5.3 держит pptp подключение к инету по конфигу 1
вторая копия того же mpd держит pptp сервер, запускается из консоли в недемоническом режиме, дабы видеть все происходящее. ее конфиг 2

при коннекте из внутренней локалки с винды соединение нормально поднимается - листинг 2
при коннекте снаружи, когда pptp клиент коннектится поверх pptp - фря виснет намертво. не откликается на повер и не заходит в DDB - листинг 2. листинг с момента запуска mpd, коннект изнутри локалки - все норм, отключаюсь. конект снаружи - вис. в моментокончания лога путти ругнулась на стрыв сессии, на локальной консоли действует тока ресет

вечером попробую повторить на чистой установке фри.

Есть у кого какие соображения, почему система ТАК виснет и как вылечить болезнь?
uname -a

Код: Выделить всё

FreeBSD freebsp.homeip.net 7.2-RELEASE-p6 FreeBSD 7.2-RELEASE-p6 #5: Tue Jan 26 11:04:56 MSK 2010     root@freebsp.homeip.net:/usr/obj/usr/src/sys/KERN_20100117  i386
KERN_20100117(существенная часть)

Код: Выделить всё

cpu             I686_CPU
ident           KERN_180909
machine         i386
options KDB
options DDB
options         SCHED_ULE               # ULE scheduler
options         PREEMPTION              # Enable kernel thread preemption
options         INET                    # InterNETworking
options         FFS                     # Berkeley Fast Filesystem
options         SOFTUPDATES             # Enable FFS soft updates support
options         UFS_ACL                 # Support for access control lists
options         UFS_DIRHASH             # Improve performance on big directories
options         UFS_GJOURNAL            # Enable gjournal-based UFS journaling
options         PROCFS                  # Process filesystem (requires PSEUDOFS)
options         PSEUDOFS                # Pseudo-filesystem framework
options         GEOM_PART_GPT           # GUID Partition Tables.
options         GEOM_LABEL              # Provides labelization
options         COMPAT_43TTY            # BSD 4.3 TTY compat [KEEP THIS!]
options         COMPAT_FREEBSD4         # Compatible with FreeBSD4
options         COMPAT_FREEBSD5         # Compatible with FreeBSD5
options         COMPAT_FREEBSD6         # Compatible with FreeBSD6
options         SCSI_DELAY=5000         # Delay (in ms) before probing SCSI
options         KTRACE                  # ktrace(1) support
options         STACK                   # stack(9) support
options         SYSVSHM                 # SYSV-style shared memory
options         SYSVMSG                 # SYSV-style message queues
options         SYSVSEM                 # SYSV-style semaphores
options         _KPOSIX_PRIORITY_SCHEDULING # POSIX P1003_1B real-time extensions
options         KBD_INSTALL_CDEV        # install a CDEV entry in /dev
options         ADAPTIVE_GIANT          # Giant mutex is adaptive.
options         STOP_NMI                # Stop CPUS using NMI instead of IPI
options         AUDIT                   # Security event auditing
options VESA
options SC_PIXEL_MODE
device pf
device pflog
device pfsync
options ALTQ
options ALTQ_CBQ
options ALTQ_RED
options ALTQ_RIO
options ALTQ_HFSC
options ALTQ_CDNR
options ALTQ_PRIQ
options         NETGRAPH
options         NETGRAPH_ASYNC
options         NETGRAPH_BPF
options         NETGRAPH_BRIDGE
options         NETGRAPH_CAR            #lalala
options         NETGRAPH_CISCO
options         NETGRAPH_DEFLATE
options         NETGRAPH_ECHO
options         NETGRAPH_EIFACE         # For Bridge
options         NETGRAPH_ETHER
options         NETGRAPH_FRAME_RELAY
options         NETGRAPH_GIF
options         NETGRAPH_GIF_DEMUX
options         NETGRAPH_HOLE
options         NETGRAPH_IFACE
options         NETGRAPH_IP_INPUT
options         NETGRAPH_IPFW           #узел ng_ipfw
options         NETGRAPH_KSOCKET
options         NETGRAPH_L2TP
options         NETGRAPH_LMI
options         NETGRAPH_MPPC_ENCRYPTION
options         NETGRAPH_NAT            #узел ng_nat
options         NETGRAPH_NETFLOW        #узел ng_netflow для сбора статистики
options         NETGRAPH_ONE2MANY
options         NETGRAPH_PPP
options         NETGRAPH_PPTPGRE
options         NETGRAPH_RFC1490
options         NETGRAPH_SOCKET
options         NETGRAPH_SPLIT          #lala
options         NETGRAPH_TCPMSS
options         NETGRAPH_TEE
options         NETGRAPH_TTY
options         NETGRAPH_UI
options         NETGRAPH_VJC
options         IPFIREWALL               # собственно файрволл
options         IPFIREWALL_VERBOSE       # логгинг пакетов, если в правиле
                                         # написано `log`
options         IPFIREWALL_VERBOSE_LIMIT=100 # ограничение логов (повторяющихся) - на
                                         # случай атак типа флудинга
                                         # (я, правда, 100 ставлю)
options         IPFIREWALL_FORWARD       # перенаправление (форвардинг) пакетов
                                         # например, для прозрачного прокси
options         IPDIVERT                 # если нужен NAT (трансляция адресов)
options         DUMMYNET                 # если понадобится ограничивать скорость
                                         # инета пользователям (обычно - да :))
options         IPFIREWALL_DEFAULT_TO_ACCEPT  # дефолтовое правило (последнее)
                                         # будет разрешающим (во всех других)
                                         # случаях - запрещающее
options         IPSEC
options         IPSEC_DEBUG
device          enc
device          crypto
device          cryptodev
device          speaker
options         SMP                     # Symmetric MultiProcessor Kernel
device          apic                    # I/O APIC
device          cpufreq
device          eisa
device          pci
device          fdc
device          ata
device          atadisk         # ATA disk drives
device          atapicd         # ATAPI CDROM drives
options         ATA_STATIC_ID   # Static device numbering
                                        # output.  Adds ~128k to driver.
                                        # output.  Adds ~215k to driver.
device          scbus           # SCSI bus (required for SCSI)
device          ch              # SCSI media changers
device          da              # Direct Access (disks)
device          cd              # CD
device          pass            # Passthrough device (direct SCSI access)
device          ses             # SCSI Environmental Services (and SAF-TE)
device          atkbdc          # AT keyboard controller
device          atkbd           # AT keyboard
device          psm             # PS/2 mouse
device          kbdmux          # keyboard multiplexer
device          vga             # VGA video card driver
device          sc
device          agp             # support several AGP chipsets
device          pmtimer
device          cbb             # cardbus (yenta) bridge
device          pccard          # PC Card (16-bit) bus
device          cardbus         # CardBus (32-bit) bus
device          sio             # 8250, 16[45]50 based serial ports
device          uart            # Generic UART driver
device          ppc
device          ppbus           # Parallel port bus (required)
device          lpt             # Printer
device          ppi             # Parallel port interface device
device          miibus          # MII bus support
device          rl              # RealTek 8129/8139
device          vr              # VIA Rhine, Rhine II
device          wlan            # 802.11 support
device          wlan_wep        # 802.11 WEP support
device          wlan_ccmp       # 802.11 CCMP support
device          wlan_tkip       # 802.11 TKIP support
device          wlan_amrr       # AMRR transmit rate control algorithm
device          wlan_scan_ap    # 802.11 AP mode scanning
device          wlan_scan_sta   # 802.11 STA mode scanning
device          loop            # Network loopback
device          random          # Entropy device
device          ether           # Ethernet support
device          tun             # Packet tunnel.
device          pty             # Pseudo-ttys (telnet etc)
device          md              # Memory "disks"
device          gif             # IPv6 and IPv4 tunneling
device          firmware        # firmware assist module
device          bpf             # Berkeley packet filter
device          uhci            # UHCI PCI->USB interface
device          ohci            # OHCI PCI->USB interface
device          ehci            # EHCI PCI->USB interface (USB 2.0)
device          usb             # USB Bus (required)
device          ugen            # Generic
device          uhid            # "Human Interface Devices"
device          ukbd            # Keyboard
device          ulpt            # Printer
device          umass           # Disks/Mass storage - Requires scbus and da
device          ums             # Mouse
device          ucom            # Generic com ttys
device          uvscom          # USB serial support for DDI pocket's PHS
Листинг 1

Код: Выделить всё

qwe - PPP адаптер:

        DNS-суффикс этого подключения . . :
        Описание  . . . . . . . . . . . . : WAN (PPP/SLIP) Interface
        Физический адрес. . . . . . . . . : 00-53-45-00-00-00
        Dhcp включен. . . . . . . . . . . : нет
        IP-адрес  . . . . . . . . . . . . : 192.168.0.65
        Маска подсети . . . . . . . . . . : 255.255.255.255
        Основной шлюз . . . . . . . . . . :
        DNS-серверы . . . . . . . . . . . : 192.168.0.64
Листинг 2

Код: Выделить всё

# mpd5 -f /usr/local/etc/mpd5/mpd.srv.conf
Multi-link PPP daemon for FreeBSD

process 2126 started, version 5.3 (root@freebsp.dialup.corbina.net 18:12 27-Jul-2009)
CONSOLE: listening on 127.0.0.1 5007
web: listening on 0.0.0.0 5008
PPTP: waiting for connection on 0.0.0.0 1723
[L] [L-1] Accepting PPTP connection
[L-1] Link: OPEN event
[L-1] LCP: Open event
[L-1] LCP: state change Initial --> Starting
[L-1] LCP: LayerStart
[L-1] PPTP: attaching to peer's outgoing call
[L-1] Link: UP event
[L-1] LCP: Up event
[L-1] LCP: state change Starting --> Req-Sent
[L-1] LCP: SendConfigReq #1
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM 7a2cd9b6
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: rec'd Configure Request #0 (Req-Sent)
[L-1]   MRU 1400
[L-1]   MAGICNUM 21f54cf8
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1]   CALLBACK 6
[L-1] LCP: SendConfigRej #0
[L-1]   CALLBACK 6
[L-1] LCP: rec'd Configure Request #1 (Req-Sent)
[L-1]   MRU 1400
[L-1]   MAGICNUM 21f54cf8
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: SendConfigAck #1
[L-1]   MRU 1400
[L-1]   MAGICNUM 21f54cf8
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: state change Req-Sent --> Ack-Sent
[L-1] LCP: SendConfigReq #2
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM 7a2cd9b6
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: rec'd Configure Reject #2 (Ack-Sent)
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: SendConfigReq #3
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM 7a2cd9b6
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1] LCP: rec'd Configure Ack #3 (Ack-Sent)
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM 7a2cd9b6
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1] LCP: state change Ack-Sent --> Opened
[L-1] LCP: auth: peer wants nothing, I want CHAP
[L-1] CHAP: sending CHALLENGE #1 len: 21
[L-1] LCP: LayerUp
[L-1] LCP: rec'd Ident #2 (Opened)
[L-1]   MESG: MSRASV5.10
[L-1] CHAP: rec'd RESPONSE #1 len: 63
[L-1]   Name: "PeerLogin"
[L-1] AUTH: Trying INTERNAL
[L-1] AUTH: INTERNAL returned: undefined
[L-1] CHAP: Auth return status: undefined
[L-1] CHAP: Response is valid
[L-1] CHAP: Reply message: S=08604111FB888F5B09D01140029278E1CC5781E4
[L-1] CHAP: sending SUCCESS #1 len: 46
[L-1] LCP: authorization successful
[L-1] Link: Matched action 'bundle "B" ""'
[L-1] Creating new bundle using template "B".
[B-1] Bundle: Interface ng1 created
[L-1] Link: Join bundle "B-1"
[B-1] Bundle: Status update: up 1 link, total bandwidth 64000 bps
[B-1] IPCP: Open event
[B-1] IPCP: state change Initial --> Starting
[B-1] IPCP: LayerStart
[B-1] CCP: Open event
[B-1] CCP: state change Initial --> Starting
[B-1] CCP: LayerStart
[B-1] IPCP: Up event
[B-1] IPCP: Got IP 192.168.0.65 from pool "pool1" for peer
[B-1] IPCP: state change Starting --> Req-Sent
[B-1] IPCP: SendConfigReq #1
[B-1]   IPADDR 192.168.0.64
[B-1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B-1] CCP: Up event
[B-1] CCP: state change Starting --> Req-Sent
[B-1] CCP: SendConfigReq #1
[B-1]   MPPC
[B-1]     0x01000060:MPPE(40, 128 bits), stateless
[B-1] CCP: rec'd Configure Request #3 (Req-Sent)
[B-1]   MPPC
[B-1]     0x010000e1:MPPC, MPPE(40, 56, 128 bits), stateless
[B-1] CCP: SendConfigNak #3
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] IPCP: rec'd Configure Request #4 (Req-Sent)
[B-1]   IPADDR 0.0.0.0
[B-1]     NAKing with 192.168.0.65
[B-1]   PRIDNS 0.0.0.0
[B-1]   PRINBNS 0.0.0.0
[B-1]   SECDNS 0.0.0.0
[B-1]   SECNBNS 0.0.0.0
[B-1] IPCP: SendConfigRej #4
[B-1]   PRIDNS 0.0.0.0
[B-1]   PRINBNS 0.0.0.0
[B-1]   SECDNS 0.0.0.0
[B-1]   SECNBNS 0.0.0.0
[B-1] IPCP: rec'd Configure Reject #1 (Req-Sent)
[B-1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B-1] IPCP: SendConfigReq #2
[B-1]   IPADDR 192.168.0.64
[B-1] CCP: rec'd Configure Nak #1 (Req-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: SendConfigReq #2
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: rec'd Configure Request #5 (Req-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: SendConfigAck #5
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: state change Req-Sent --> Ack-Sent
[B-1] IPCP: rec'd Configure Request #6 (Req-Sent)
[B-1]   IPADDR 0.0.0.0
[B-1]     NAKing with 192.168.0.65
[B-1] IPCP: SendConfigNak #6
[B-1]   IPADDR 192.168.0.65
[B-1] IPCP: rec'd Configure Ack #2 (Req-Sent)
[B-1]   IPADDR 192.168.0.64
[B-1] IPCP: state change Req-Sent --> Ack-Rcvd
[B-1] CCP: rec'd Configure Ack #2 (Ack-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: state change Ack-Sent --> Opened
[B-1] CCP: LayerUp
[B-1] CCP: Compress using: mppc (MPPE(128 bits), stateless)
[B-1] CCP: Decompress using: mppc (MPPE(128 bits), stateless)
[B-1] IPCP: rec'd Configure Request #7 (Ack-Rcvd)
[B-1]   IPADDR 192.168.0.65
[B-1]     192.168.0.65 is OK
[B-1] IPCP: SendConfigAck #7
[B-1]   IPADDR 192.168.0.65
[B-1] IPCP: state change Ack-Rcvd --> Opened
[B-1] IPCP: LayerUp
[B-1]   192.168.0.64 -> 192.168.0.65
[B-1] IFACE: Up event

Available commands:
 bundle   : Choose/list bundles          close    : Close a layer
 create   : Create new item              destroy  : Destroy item
 exit     : Exit console                 iface    : Choose bundle by iface
 help     : Help on any command          link     : Choose link
 load     : Read from config file        log      : Set/view log options
 msession : Ch. bundle by msession-id    open     : Open a layer
 quit     : Quit program                 repeater : Choose/list repeaters
 session  : Choose link by session-id    set      : Set parameters
 show     : Show status
[L] [L-1] LCP: rec'd Terminate Request #8 (Opened)
[L-1] LCP: state change Opened --> Stopping
[L-1] Link: Leave bundle "B-1"
[B-1] Bundle: Status update: up 0 links, total bandwidth 9600 bps
[B-1] IPCP: Close event
[B-1] IPCP: state change Opened --> Closing
[B-1] IPCP: SendTerminateReq #3
[B-1] IPCP: LayerDown
[B-1] IFACE: Down event
[B-1] CCP: Close event
[B-1] CCP: state change Opened --> Closing
[B-1] CCP: SendTerminateReq #3
[B-1] CCP: LayerDown
[B-1] IPCP: Down event
[B-1] IPCP: LayerFinish
[B-1] Bundle: No NCPs left. Closing links...
[B-1] IPCP: state change Closing --> Initial
[B-1] CCP: Down event
[B-1] CCP: LayerFinish
[B-1] CCP: state change Closing --> Initial
[B-1] Bundle: Shutdown
[L-1] LCP: SendTerminateAck #4
[L-1] LCP: LayerDown
[L-1] LCP: rec'd Terminate Request #9 (Stopping)
[L-1] LCP: SendTerminateAck #5
[L-1] LCP: state change Stopping --> Stopped
[L-1] LCP: LayerFinish
[L-1] PPTP call terminated
[L-1] Link: DOWN event
[L-1] LCP: Close event
[L-1] LCP: state change Stopped --> Closed
[L-1] LCP: Down event
[L-1] LCP: state change Closed --> Initial
[L-1] Link: SHUTDOWN event
[L-1] Link: Shutdown
[L-1] Accepting PPTP connection
[L-1] Link: OPEN event
[L-1] LCP: Open event
[L-1] LCP: state change Initial --> Starting
[L-1] LCP: LayerStart
[L-1] PPTP: attaching to peer's outgoing call
[L-1] Link: UP event
[L-1] LCP: Up event
[L-1] LCP: state change Starting --> Req-Sent
[L-1] LCP: SendConfigReq #1
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM a7e4c864
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: rec'd Configure Request #0 (Req-Sent)
[L-1]   MRU 1400
[L-1]   MAGICNUM 6e2c4830
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1]   CALLBACK 6
[L-1] LCP: SendConfigRej #0
[L-1]   CALLBACK 6
[L-1] LCP: rec'd Configure Request #1 (Req-Sent)
[L-1]   MRU 1400
[L-1]   MAGICNUM 6e2c4830
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: SendConfigAck #1
[L-1]   MRU 1400
[L-1]   MAGICNUM 6e2c4830
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: state change Req-Sent --> Ack-Sent
[L-1] LCP: SendConfigReq #2
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM a7e4c864
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: rec'd Configure Reject #2 (Ack-Sent)
[L-1]   MP MRRU 2048
[L-1]   MP SHORTSEQ
[L-1]   ENDPOINTDISC [802.1] 4c 00 10 53 60 43
[L-1] LCP: SendConfigReq #3
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM a7e4c864
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1] LCP: SendConfigReq #4
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM a7e4c864
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1] LCP: rec'd Configure Request #4 (Ack-Sent)
[L-1]   MRU 1400
[L-1]   MAGICNUM 6e2c4830
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: SendConfigAck #4
[L-1]   MRU 1400
[L-1]   MAGICNUM 6e2c4830
[L-1]   PROTOCOMP
[L-1]   ACFCOMP
[L-1] LCP: rec'd Configure Ack #4 (Ack-Sent)
[L-1]   ACFCOMP
[L-1]   PROTOCOMP
[L-1]   MRU 1500
[L-1]   MAGICNUM a7e4c864
[L-1]   AUTHPROTO CHAP MSOFTv2
[L-1] LCP: state change Ack-Sent --> Opened
[L-1] LCP: auth: peer wants nothing, I want CHAP
[L-1] CHAP: sending CHALLENGE #1 len: 21
[L-1] LCP: LayerUp
[L-1] LCP: rec'd Ident #5 (Opened)
[L-1]   MESG: MSRASV5.10
[L-1] LCP: rec'd Ident #6 (Opened)
[L-1]   MESG: MSRAS-0-A2
[L-1] CHAP: rec'd RESPONSE #1 len: 63
[L-1]   Name: "PeerLogin"
[L-1] AUTH: Trying INTERNAL
[L-1] AUTH: INTERNAL returned: undefined
[L-1] CHAP: Auth return status: undefined
[L-1] CHAP: Response is valid
[L-1] CHAP: Reply message: S=66A416F8D38126DC95E056BB5EAEC2AFE498C4AC
[L-1] CHAP: sending SUCCESS #1 len: 46
[L-1] LCP: authorization successful
[L-1] Link: Matched action 'bundle "B" ""'
[L-1] Creating new bundle using template "B".
[B-1] Bundle: Interface ng1 created
[L-1] Link: Join bundle "B-1"
[B-1] Bundle: Status update: up 1 link, total bandwidth 64000 bps
[B-1] IPCP: Open event
[B-1] IPCP: state change Initial --> Starting
[B-1] IPCP: LayerStart
[B-1] CCP: Open event
[B-1] CCP: state change Initial --> Starting
[B-1] CCP: LayerStart
[B-1] IPCP: Up event
[B-1] IPCP: Got IP 192.168.0.65 from pool "pool1" for peer
[B-1] IPCP: state change Starting --> Req-Sent
[B-1] IPCP: SendConfigReq #1
[B-1]   IPADDR 192.168.0.64
[B-1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B-1] CCP: Up event
[B-1] CCP: state change Starting --> Req-Sent
[B-1] CCP: SendConfigReq #1
[B-1]   MPPC
[B-1]     0x01000060:MPPE(40, 128 bits), stateless
[B-1] CCP: rec'd Configure Request #7 (Req-Sent)
[B-1]   MPPC
[B-1]     0x010000e1:MPPC, MPPE(40, 56, 128 bits), stateless
[B-1] CCP: SendConfigNak #7
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] IPCP: rec'd Configure Request #8 (Req-Sent)
[B-1]   IPADDR 0.0.0.0
[B-1]     NAKing with 192.168.0.65
[B-1]   PRIDNS 0.0.0.0
[B-1]   PRINBNS 0.0.0.0
[B-1]   SECDNS 0.0.0.0
[B-1]   SECNBNS 0.0.0.0
[B-1] IPCP: SendConfigRej #8
[B-1]   PRIDNS 0.0.0.0
[B-1]   PRINBNS 0.0.0.0
[B-1]   SECDNS 0.0.0.0
[B-1]   SECNBNS 0.0.0.0
[B-1] IPCP: rec'd Configure Reject #1 (Req-Sent)
[B-1]   COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
[B-1] IPCP: SendConfigReq #2
[B-1]   IPADDR 192.168.0.64
[B-1] CCP: rec'd Configure Nak #1 (Req-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: SendConfigReq #2
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: rec'd Configure Request #9 (Req-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: SendConfigAck #9
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: state change Req-Sent --> Ack-Sent
[B-1] IPCP: rec'd Configure Request #10 (Req-Sent)
[B-1]   IPADDR 0.0.0.0
[B-1]     NAKing with 192.168.0.65
[B-1] IPCP: SendConfigNak #10
[B-1]   IPADDR 192.168.0.65
[B-1] CCP: rec'd Configure Ack #2 (Ack-Sent)
[B-1]   MPPC
[B-1]     0x01000040:MPPE(128 bits), stateless
[B-1] CCP: state change Ack-Sent --> Opened
[B-1] CCP: LayerUp
[B-1] CCP: Compress using: mppc (MPPE(128 bits), stateless)
[B-1] CCP: Decompress using: mppc (MPPE(128 bits), stateless)
[B-1] IPCP: rec'd Configure Request #11 (Req-Sent)
[B-1]   IPADDR 192.168.0.65
[B-1]     192.168.0.65 is OK
[B-1] IPCP: SendConfigAck #11
[B-1]   IPADDR 192.168.0.65
[B-1] IPCP: state change Req-Sent --> Ack-Sent
[B-1] IPCP: SendConfigReq #3
[B-1]   IPADDR 192.168.0.64
[B-1] IPCP: rec'd Configure Ack #3 (Ack-Sent)
[B-1]   IPADDR 192.168.0.64
[B-1] IPCP: state change Ack-Sent --> Opened
[B-1] IPCP: LayerUp
[B-1]   192.168.0.64 -> 192.168.0.65
[B-1] IFACE: Up event
Конфиг 1

Код: Выделить всё

 30 default:
 31         load pptp_client
 32 common:
 33 # Enable multilink protocol
 34         set link enable multilink
 35 # Set bundle template to use
 36         set link action bundle B
 37 # Allow peer to authenticate us
 38         set link disable chap pap
 39         set link accept chap pap
 40 # Set inifinite redial attempts
 41         set link max-redial 0
 42
 43 pptp_client:
 44 #
 45 # PPTP client: only outgoing calls, auto reconnect,
 46 # ipcp-negotiated address, one-sided authentication,
 47 # default route points on ISP's end
 48 #
 49
 50         create bundle static B1
 51 #       set iface route default
 52         set ipcp ranges 0.0.0.0/0 0.0.0.0/0
 53         set iface up-script /usr/local/etc/mpd5/pptp-up.sh
 54         set iface down-script /usr/local/etc/mpd5/pptp-down.sh
 55         set iface enable tcpmssfix
 56         create link static L1 pptp
 57         set link action bundle B1
 58         set auth authname ***
 59         set auth password ***
 60         set link max-redial 0
 61         set link mtu 1460
 62         set link keep-alive 10 750
 63         set pptp peer vpn.corbina.net
 64         set pptp disable windowing
 65         open
Конфиг 2

Код: Выделить всё

30 default:
 31         load pptp_server
 32
 33 pptp_server:
 52 # Define dynamic IP address pool.
 53         set ippool add pool1 192.168.0.65 192.168.0.126
 54
 55 # Create clonable bundle template named B
 56         create bundle template B
 57         set iface enable proxy-arp
 58         set iface idle 1800
 59         set iface enable tcpmssfix
 60         set ipcp yes vjcomp
 61 # Specify IP address pool for dynamic assigment.
 62         set ipcp ranges 192.168.0.64/26 ippool pool1
 63 #       set ipcp dns 192.168.0.1
 64 #       set ipcp nbns 192.168.1.4
 65 # The five lines below enable Microsoft Point-to-Point encryption
 66 # (MPPE) using the ng_mppc(8) netgraph node type.
 67         set bundle enable compression
 68         set ccp yes mppc
 69         set mppc yes e40
 70         set mppc yes e128
 71         set mppc yes stateless
 72
 73 # Create clonable link template named L
 74         create link template L pptp
 75 # Set bundle template to use
 76         set link action bundle B
 77 # Multilink adds some overhead, but gives full 1500 MTU.
 78         set link enable multilink
 79         set link yes acfcomp protocomp
 80         set link no pap chap
 81         set link enable chap
 82 # We can use use RADIUS authentication/accounting by including
 83 # another config section with label 'radius'.
 84 #       load radius
 85         set link keep-alive 10 60
 86 # We reducing link mtu to avoid GRE packet fragmentation.
 87         set link mtu 1400
 88 # Configure PPTP
 89         set pptp self 0.0.0.0
 90 # Allow to accept calls
 91         set link enable incoming
Человек начинает получать первые наслаждения от знакомства с unix системами. Ему нужно помочь - дальше он сможет получать наслаждение самостоятельно ©
Ламер — не желающий самостоятельно разбираться. Не путать с новичком: ламер опасен и знает это!

Хостинговая компания Host-Food.ru
Хостинг HostFood.ru
 

Услуги хостинговой компании Host-Food.ru

Хостинг HostFood.ru

Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2460 рублей (8 CPU, 8Gb RAM, 2x500Gb HDD, RAID 3ware 9750):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/

Гость
проходил мимо

Re: FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение Гость » 2010-01-26 12:49:58

1 перевести систему в полный дебаг для отловки проблемы
2 позвать на помощь mav@

Аватара пользователя
FreeBSP
майор
Сообщения: 2020
Зарегистрирован: 2009-05-24 20:20:19
Откуда: Москва

Re: FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение FreeBSP » 2010-01-26 13:02:06

дебажить ядро как то никакого желания пока нету.. тем более что я тока тока начал с ним ковыряться
wtf mav@ ???

мб по конфигам кто ошибки укажет?
Человек начинает получать первые наслаждения от знакомства с unix системами. Ему нужно помочь - дальше он сможет получать наслаждение самостоятельно ©
Ламер — не желающий самостоятельно разбираться. Не путать с новичком: ламер опасен и знает это!


Аватара пользователя
FreeBSP
майор
Сообщения: 2020
Зарегистрирован: 2009-05-24 20:20:19
Откуда: Москва

Re: FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение FreeBSP » 2010-01-26 13:06:09

вечерком повторю на чистой системе - тогда имеет смысл дергаться к автору.. если кто еще повторит мона дружно дергаться к нему же..

пока тут имеет смысл ответа подождать
кроме посылов в дебагер и к автору есть предложения?
Человек начинает получать первые наслаждения от знакомства с unix системами. Ему нужно помочь - дальше он сможет получать наслаждение самостоятельно ©
Ламер — не желающий самостоятельно разбираться. Не путать с новичком: ламер опасен и знает это!


Аватара пользователя
FreeBSP
майор
Сообщения: 2020
Зарегистрирован: 2009-05-24 20:20:19
Откуда: Москва

Re: FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение FreeBSP » 2010-01-26 13:09:23

у меня эта проблема в том или ином ракурсе тянется с 7.0-rel
обновление отпадает. на тазике весчером попробую и 7-stable и 8-rel
Человек начинает получать первые наслаждения от знакомства с unix системами. Ему нужно помочь - дальше он сможет получать наслаждение самостоятельно ©
Ламер — не желающий самостоятельно разбираться. Не путать с новичком: ламер опасен и знает это!

sch
сержант
Сообщения: 282
Зарегистрирован: 2009-05-28 14:36:50
Откуда: Кишинев

Re: FBSD7.2+MPD5.3 - вис намертво при pptp поверх pptp

Непрочитанное сообщение sch » 2010-01-26 14:38:05

Однозначно обновить до 7-Stable. В промежуток времени между 7.1-R и 7.2-R была внесена ошибка в коде netgraph - проявляется очень похоже на ваш случай, хотя в основном отчеты присылали люди насчет зависания при pptp подключении поверх pppoe.

Смотри сюда - http://www.mail-archive.com/freebsd-net ... 30030.html