Конфик MPD:
Код: Выделить всё
default:
load l2tp_server
l2tp_server:
# Define dynamic IP address pool.
set ippool add pool_l2tp xxx.xxx.xxx.2 xxx.xxx.xxx.6
# Create clonable bundle template named B_l2tp
create bundle static B_l2tp
set iface enable proxy-arp
set iface enable tcpmssfix
set ipcp yes vjcomp
# Specify IP address pool for dynamic assigment.
set ipcp ranges xxx.xxx.xxx.xxx/xx ippool pool_l2tp
set ipcp dns xx.xx.xx.xx
# Create clonable link template named L_l2tp
create link template L_l2tp l2tp
# Set bundle template to use
set link action bundle B_l2tp
# Multilink adds some overhead, but gives full 1500 MTU.
set link enable multilink
set link enable acfcomp protocomp keep-ms-domain
set link no pap chap eap
set link enable chap-msv2
set link keep-alive 10 60
# We reducing link mtu to avoid ESP packet fragmentation.
set link mtu 1280
# Configure L2TP
set l2tp self xxx.xxx.xx.xx
set l2tp enable length
# Allow to accept calls
set link enable incomingА вот с iPhone подружить сей продукт никак не удалось. Получается подключиться только если закомментировать строку "set link enable chap-msv2", но тогда аутентификация клиента на l2tp сервере происходит без шифрования, в результате чего нужно в настройка windows подключения менять настройки безопасности, да и сама затея без шифрования использовать данный продут не имеет смысла.
В логах при попытке подключиться с iPhone выдаются следующие сообщения:
Код: Выделить всё
mpd: Incoming L2TP packet from xxx.xxx.xxx.xxx 52124
mpd: L2TP: Control connection 0x802845610 xxx.xxx.xxx.xxx 1701 <-> xxx.xxx.xxx.xxx 52124 connected
mpd: L2TP: Incoming call #1 via connection 0x802845610 received
mpd: [L_l2tp-1] L2TP: Incoming call #1 via control connection 0x802845610 accepted
mpd: [L_l2tp-1] Link: OPEN event
mpd: [L_l2tp-1] LCP: Open event
mpd: [L_l2tp-1] LCP: state change Initial --> Starting
mpd: [L_l2tp-1] LCP: LayerStart
mpd: [L_l2tp-1] L2TP: Call #1 connected
mpd: [L_l2tp-1] Link: UP event
mpd: [L_l2tp-1] LCP: Up event
mpd: [L_l2tp-1] LCP: state change Starting --> Req-Sent
mpd: [L_l2tp-1] LCP: SendConfigReq #1
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] MP MRRU 2048
mpd: [L_l2tp-1] MP SHORTSEQ
mpd: [L_l2tp-1] ENDPOINTDISC [802.1] 2c 27 d7 14 39 f0
mpd: [L_l2tp-1] LCP: rec'd Configure Request #1 (Req-Sent)
mpd: [L_l2tp-1] ACCMAP 0x00000000
mpd: [L_l2tp-1] MAGICNUM 550c2826
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] LCP: SendConfigAck #1
mpd: [L_l2tp-1] ACCMAP 0x00000000
mpd: [L_l2tp-1] MAGICNUM 550c2826
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] LCP: state change Req-Sent --> Ack-Sent
mpd: [L_l2tp-1] LCP: SendConfigReq #2
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] MP MRRU 2048
mpd: [L_l2tp-1] MP SHORTSEQ
mpd: [L_l2tp-1] ENDPOINTDISC [802.1] 2c 27 d7 14 39 f0
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #2 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] MP MRRU 2048
mpd: [L_l2tp-1] MP SHORTSEQ
mpd: [L_l2tp-1] LCP: SendConfigReq #3
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #3 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #4
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #4 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #5
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #5 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #6
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #6 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #7
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #7 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #8
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #8 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #9
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #9 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: SendConfigReq #10
mpd: [L_l2tp-1] ACFCOMP
mpd: [L_l2tp-1] PROTOCOMP
mpd: [L_l2tp-1] MRU 1500
mpd: [L_l2tp-1] MAGICNUM 4fdaed70
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: rec'd Configure Reject #10 (Ack-Sent)
mpd: [L_l2tp-1] AUTHPROTO CHAP MSOFTv2
mpd: [L_l2tp-1] LCP: not converging
mpd: [L_l2tp-1] LCP: parameter negotiation failed
mpd: [L_l2tp-1] LCP: state change Ack-Sent --> Stopped
mpd: [L_l2tp-1] LCP: LayerFinish
mpd: [L_l2tp-1] L2TP: Call #1 terminated locally
mpd: [L_l2tp-1] Link: DOWN event
mpd: [L_l2tp-1] LCP: Close event
mpd: [L_l2tp-1] LCP: state change Stopped --> Closed
mpd: [L_l2tp-1] LCP: Down event
mpd: [L_l2tp-1] LCP: state change Closed --> Initial
mpd: [L_l2tp-1] Link: SHUTDOWN event
mpd: [L_l2tp-1] Link: Shutdown
mpd: L2TP: Control connection 0x802845610 terminated: 0 ()
mpd: L2TP: Control connection 0x802845610 destroyed
