Страница 2 из 3
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-24 8:40:59
serge
А как определил что есть или нет? Пакеты через nat ходят.
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-24 12:16:08
server801
создал /etc/firewall
Код: Выделить всё
/sbin/ipfw -q -f flush
/sbin/ipfw -q add divert natd ip from 192.168.1.0/24 to any out via tun0
/sbin/ipfw -q add divert natd ip from any to ip_adress in via tun0
далее в /etc/rc.conf
Код: Выделить всё
firewall_enable="YES"
firewall_script="/etc/firewall"
natd_enable="YES"
natd_interface="tun0"
natd_flags="-f /etc/natd.conf"
gateway_enable="YES"
и natd.conf порты открыл
Код: Выделить всё
cat /etc/natd.conf
dynamic yes
same_ports yes
use_sockets yes
redirect_port tcp 192.168.1.5:52001 52001
redirect_port tcp 192.168.1.5:5222 5222
redirect_port tcp 192.168.1.7:3128 3128
redirect_port tcp 192.168.1.9:5002 5002
йадро
Код: Выделить всё
options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=5
options IPFIREWALL_FORWARD
options IPDIVERT
options DUMMYNET
options IPFIREWALL_DEFAULT_TO_ACCEPT
options IPFIREWALL_NAT
options NETGRAPH
options NETGRAPH_ETHER
options NETGRAPH_SOCKET
options NETGRAPH_TEE
options NETGRAPH_MPPC_ENCRYPTION
options NETGRAPH_MPPC_COMPRESSION
options NETGRAPH_BPF
options NETGRAPH_IFACE
options NETGRAPH_KSOCKET
options NETGRAPH_PPP
options NETGRAPH_PPTPGRE
options NETGRAPH_TCPMSS
options NETGRAPH_VJC
options NETGRAPH_ONE2MANY
options NETGRAPH_RFC1490
options NETGRAPH_TEE
options NETGRAPH_TTY
options NETGRAPH_UI
вроде бы все заработало.но сегодня отвалился опять ppp.не пойму в чем причина-в логах рекконект постоянный,в мпд та же свистопляска.
винда соединение поднимает легко,фря отказывается.
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:04:43
server801
моск совсем вынес ppp.то ли пров тупит,то ли я-постоянный редиал идет.интересно что венда поднимает легко соединение.вот лог
Код: Выделить всё
Aug 29 18:14:34 host ppp[73695]: tun0: Command: default: set ifaddr 0 0
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: set device PPPoE:em0
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: set authname jdsl******
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: set authkey ********
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: set dial
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: set login
Aug 29 18:14:34 host ppp[73695]: tun0: Command: jdsl: add default HISADDR
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: PPP Started (ddial mode).
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: bundle: Establish
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: deflink: closed -> opening
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: deflink: Connected!
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: deflink: opening -> dial
Aug 29 18:14:34 host ppp[73696]: tun0: Phase: deflink: dial -> carrier
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: Disconnected!
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: carrier -> hangup
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: Connect time: 5 secs: 0 octets in, 0 octets out
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: 0 packets in, 0 packets out
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: total 0 bytes/sec, peak 0 bytes/sec on Sat Aug 29 18:14:34 2009
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: hangup -> opening
Aug 29 18:14:39 host ppp[73696]: tun0: Phase: deflink: Enter pause (30) for redialing.
Aug 29 18:15:09 host ppp[73696]: tun0: Phase: deflink: Connected!
Aug 29 18:15:09 host ppp[73696]: tun0: Phase: deflink: opening -> dial
Aug 29 18:15:09 host ppp[73696]: tun0: Phase: deflink: dial -> carrier
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: Disconnected!
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: carrier -> hangup
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: Connect time: 5 secs: 0 octets in, 0 octets out
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: 0 packets in, 0 packets out
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: total 0 bytes/sec, peak 0 bytes/sec on Sat Aug 29 18:15:09 2009
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: hangup -> opening
Aug 29 18:15:14 host ppp[73696]: tun0: Phase: deflink: Enter pause (30) for redialing.
та же песня с mpd.......[классический секс].......
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:12:58
paradox
ну покажи полный лог mpd чтоли
а то ppp не информативно
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:35:13
server801
Код: Выделить всё
Aug 29 19:31:19 host mpd: process 657 started, version 5.3 (root@host.bsd 16:14 29-Aug-2009)
Aug 29 19:31:19 host mpd: CONSOLE: listening on 127.0.0.1 5005
Aug 29 19:31:19 host mpd: web: listening on 0.0.0.0 5006
Aug 29 19:31:19 host mpd: [B1] Bundle: Interface ng0 created
Aug 29 19:31:19 host mpd: [L1] Link: OPEN event
Aug 29 19:31:19 host mpd: [L1] LCP: Open event
Aug 29 19:31:19 host mpd: [L1] LCP: state change Initial --> Starting
Aug 29 19:31:19 host mpd: [L1] LCP: LayerStart
Aug 29 19:31:19 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:31:28 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:31:28 host mpd: [L1] Link: DOWN event
Aug 29 19:31:28 host mpd: [L1] LCP: Down event
Aug 29 19:31:28 host mpd: [L1] Link: reconnection attempt 1 in 2 seconds
Aug 29 19:31:30 host mpd: [L1] Link: reconnection attempt 1
Aug 29 19:31:30 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:31:39 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:31:39 host mpd: [L1] Link: DOWN event
Aug 29 19:31:39 host mpd: [L1] LCP: Down event
Aug 29 19:31:39 host mpd: [L1] Link: reconnection attempt 2 in 1 seconds
Aug 29 19:31:40 host mpd: [L1] Link: reconnection attempt 2
Aug 29 19:31:40 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:31:49 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:31:49 host mpd: [L1] Link: DOWN event
Aug 29 19:31:49 host mpd: [L1] LCP: Down event
Aug 29 19:31:49 host mpd: [L1] Link: reconnection attempt 3 in 3 seconds
Aug 29 19:31:52 host mpd: [L1] Link: reconnection attempt 3
Aug 29 19:31:52 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:32:01 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:32:01 host mpd: [L1] Link: DOWN event
Aug 29 19:32:01 host mpd: [L1] LCP: Down event
Aug 29 19:32:01 host mpd: [L1] Link: reconnection attempt 4 in 1 seconds
Aug 29 19:32:02 host mpd: [L1] Link: reconnection attempt 4
Aug 29 19:32:02 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:32:11 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:32:11 host mpd: [L1] Link: DOWN event
Aug 29 19:32:11 host mpd: [L1] LCP: Down event
Aug 29 19:32:11 host mpd: [L1] Link: reconnection attempt 5 in 3 seconds
Aug 29 19:32:14 host mpd: [L1] Link: reconnection attempt 5
Aug 29 19:32:14 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:32:23 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:32:23 host mpd: [L1] Link: DOWN event
Aug 29 19:32:23 host mpd: [L1] LCP: Down event
Aug 29 19:32:23 host mpd: [L1] Link: reconnection attempt 6 in 4 seconds
Aug 29 19:32:27 host mpd: [L1] Link: reconnection attempt 6
Aug 29 19:32:27 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:32:36 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:32:36 host mpd: [L1] Link: DOWN event
Aug 29 19:32:36 host mpd: [L1] LCP: Down event
Aug 29 19:32:36 host mpd: [L1] Link: reconnection attempt 7 in 2 seconds
Aug 29 19:32:38 host mpd: [L1] Link: reconnection attempt 7
Aug 29 19:32:38 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:32:47 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:32:47 host mpd: [L1] Link: DOWN event
Aug 29 19:32:47 host mpd: [L1] LCP: Down event
Aug 29 19:32:47 host mpd: [L1] Link: reconnection attempt 8 in 4 seconds
Aug 29 19:32:51 host mpd: [L1] Link: reconnection attempt 8
Aug 29 19:32:51 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:00 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:00 host mpd: [L1] Link: DOWN event
Aug 29 19:33:00 host mpd: [L1] LCP: Down event
Aug 29 19:33:00 host mpd: [L1] Link: reconnection attempt 9 in 3 seconds
Aug 29 19:33:03 host mpd: [L1] Link: reconnection attempt 9
Aug 29 19:33:03 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:12 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:12 host mpd: [L1] Link: DOWN event
Aug 29 19:33:12 host mpd: [L1] LCP: Down event
Aug 29 19:33:12 host mpd: [L1] Link: reconnection attempt 10 in 3 seconds
Aug 29 19:33:15 host mpd: [L1] Link: reconnection attempt 10
Aug 29 19:33:15 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:24 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:24 host mpd: [L1] Link: DOWN event
Aug 29 19:33:24 host mpd: [L1] LCP: Down event
Aug 29 19:33:24 host mpd: [L1] Link: reconnection attempt 11 in 1 seconds
Aug 29 19:33:25 host mpd: [L1] Link: reconnection attempt 11
Aug 29 19:33:25 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:34 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:34 host mpd: [L1] Link: DOWN event
Aug 29 19:33:34 host mpd: [L1] LCP: Down event
Aug 29 19:33:34 host mpd: [L1] Link: reconnection attempt 12 in 3 seconds
Aug 29 19:33:37 host mpd: [L1] Link: reconnection attempt 12
Aug 29 19:33:37 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:46 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:46 host mpd: [L1] Link: DOWN event
Aug 29 19:33:46 host mpd: [L1] LCP: Down event
Aug 29 19:33:46 host mpd: [L1] Link: reconnection attempt 13 in 3 seconds
Aug 29 19:33:49 host mpd: [L1] Link: reconnection attempt 13
Aug 29 19:33:49 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:33:58 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:33:58 host mpd: [L1] Link: DOWN event
Aug 29 19:33:58 host mpd: [L1] LCP: Down event
Aug 29 19:33:58 host mpd: [L1] Link: reconnection attempt 14 in 1 seconds
Aug 29 19:33:59 host mpd: [L1] Link: reconnection attempt 14
Aug 29 19:33:59 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:34:08 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:34:08 host mpd: [L1] Link: DOWN event
Aug 29 19:34:08 host mpd: [L1] LCP: Down event
Aug 29 19:34:08 host mpd: [L1] Link: reconnection attempt 15 in 1 seconds
Aug 29 19:34:09 host mpd: [L1] Link: reconnection attempt 15
Aug 29 19:34:09 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 19:34:18 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 19:34:18 host mpd: [L1] Link: DOWN event
Aug 29 19:34:18 host mpd: [L1] LCP: Down event
Aug 29 19:34:18 host mpd: [L1] Link: reconnection attempt 16 in 4 seconds
ну нет тут правды!
mpd.conf
Код: Выделить всё
startup:
# configure mpd users
# Задаем пароль для доступа в web-intarface
# т.е меняем password на свой пароль
set user admin admin admin
# set user password cancer
# configure the console
set console self 127.0.0.1 5005
set console open
# configure the web server
set web self 0.0.0.0 5006
set web open
default:
load pppoe_client
pppoe_client:
#
# PPPoE client: only outgoing calls, auto reconnect,
# ipcp-negotiated address, one-sided authentication,
# default route points on ISP's end
#
create bundle static B1
set iface route default
set ipcp ranges 0.0.0.0/0 0.0.0.0/0
set iface enable nat
set iface up-script /usr/local/etc/mpd5/iface-up
create link static L1 pppoe
set link action bundle B1
set auth authname jdsl****
set auth password *********
set link max-redial 0
set link mtu 1492
set link keep-alive 10 60
set pppoe iface em0
set pppoe service "*"
open
я хотел спросить ,а это для чего ?
Код: Выделить всё
cat /usr/local/etc/mpd5/iface-up
#!/bin/sh
ROUTE=/sbin/route
$ROUTE delete default
$ROUTE add default $4
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:46:20
paradox
запусти tcpdump на том интерфейсе где pppoe и изучай
должны быть PADI/PADO пакеты
похоже что провайдер лагает
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:49:45
server801
вопрос - при инсталле mpd есть опции
Код: Выделить всё
????????????????????????????????????????????????????????????????? ?
? ? [ ] NG_CAR Use ng_car kernel module from port (< 7.0 only) ? ?
? ? [ ] NG_IPACCT Use ng_ipacct kernel module from port
тут ничего ткнуть не надо?
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:51:31
paradox
нет
то для обрезания скорости и аккаунтинга
если mpd хоть раз законнектился и работал
значи лагает провайдер или езернет шнур итд по пути к провайдеру
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:53:20
server801
опачки......а хде правда?винда то поднимает соединение.или unix не хочет он?
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 18:55:58
paradox
я ж говорю tcpdump в руки и изучай
можешь паралельно воткнуть ХАБ что бы понять как работает pppoe и какие пакеты ходят
и потом поизучать что есть и чего нет когда поднимаешь на бсд
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-29 20:36:54
server801
после 182 попытки поднялось соединение ppp
я в ахуе
Код: Выделить всё
Aug 29 20:05:46 host mpd: [L1] Link: reconnection attempt 180 in 2 seconds
Aug 29 20:05:48 host mpd: [L1] Link: reconnection attempt 180
Aug 29 20:05:48 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 20:05:57 host mpd: [L1] PPPoE connection timeout after 9 seconds
Aug 29 20:05:57 host mpd: [L1] Link: DOWN event
Aug 29 20:05:57 host mpd: [L1] LCP: Down event
Aug 29 20:05:57 host mpd: [L1] Link: reconnection attempt 181 in 1 seconds
Aug 29 20:05:58 host mpd: [L1] Link: reconnection attempt 181
Aug 29 20:05:58 host mpd: [L1] PPPoE: Connecting to '*'
Aug 29 20:06:00 host mpd: PPPoE: rec'd ACNAME "me60-2"
Aug 29 20:06:00 host mpd: [L1] PPPoE: connection successful
Aug 29 20:06:00 host mpd: [L1] Link: UP event
Aug 29 20:06:00 host mpd: [L1] LCP: Up event
Aug 29 20:06:00 host mpd: [L1] LCP: state change Starting --> Req-Sent
Aug 29 20:06:00 host mpd: [L1] LCP: SendConfigReq #1
Aug 29 20:06:00 host mpd: [L1] PROTOCOMP
Aug 29 20:06:00 host mpd: [L1] MRU 1492
Aug 29 20:06:00 host mpd: [L1] MAGICNUM e5581860
Aug 29 20:06:00 host mpd: [L1] LCP: rec'd Configure Reject #1 (Req-Sent)
Aug 29 20:06:00 host mpd: [L1] PROTOCOMP
Aug 29 20:06:00 host mpd: [L1] LCP: SendConfigReq #2
Aug 29 20:06:00 host mpd: [L1] MRU 1492
Aug 29 20:06:00 host mpd: [L1] MAGICNUM e5581860
Aug 29 20:06:00 host mpd: [L1] LCP: rec'd Configure Ack #2 (Req-Sent)
Aug 29 20:06:00 host mpd: [L1] MRU 1492
Aug 29 20:06:00 host mpd: [L1] MAGICNUM e5581860
Aug 29 20:06:00 host mpd: [L1] LCP: state change Req-Sent --> Ack-Rcvd
Aug 29 20:06:02 host mpd: [L1] LCP: state change Ack-Rcvd --> Req-Sent
Aug 29 20:06:02 host mpd: [L1] LCP: SendConfigReq #3
Aug 29 20:06:02 host mpd: [L1] MRU 1492
Aug 29 20:06:02 host mpd: [L1] MAGICNUM e5581860
Aug 29 20:06:02 host mpd: [L1] LCP: rec'd Configure Ack #3 (Req-Sent)
Aug 29 20:06:02 host mpd: [L1] MRU 1492
Aug 29 20:06:02 host mpd: [L1] MAGICNUM e5581860
Aug 29 20:06:02 host mpd: [L1] LCP: state change Req-Sent --> Ack-Rcvd
Aug 29 20:06:03 host mpd: [L1] LCP: rec'd Configure Request #1 (Ack-Rcvd)
Aug 29 20:06:03 host mpd: [L1] MRU 1492
Aug 29 20:06:03 host mpd: [L1] AUTHPROTO PAP
Aug 29 20:06:03 host mpd: [L1] MAGICNUM 01003bb0
Aug 29 20:06:03 host mpd: [L1] LCP: SendConfigAck #1
Aug 29 20:06:03 host mpd: [L1] MRU 1492
Aug 29 20:06:03 host mpd: [L1] AUTHPROTO PAP
Aug 29 20:06:03 host mpd: [L1] MAGICNUM 01003bb0
Aug 29 20:06:03 host mpd: [L1] LCP: state change Ack-Rcvd --> Opened
Aug 29 20:06:03 host mpd: [L1] LCP: auth: peer wants PAP, I want nothing
Aug 29 20:06:03 host mpd: [L1] PAP: using authname "jdsl102253"
Aug 29 20:06:03 host mpd: [L1] PAP: sending REQUEST #1 len: 24
Aug 29 20:06:03 host mpd: [L1] LCP: LayerUp
Aug 29 20:06:03 host mpd: [L1] PAP: rec'd ACK #1 len: 36
Aug 29 20:06:03 host mpd: [L1] MESG: Authentication success,Welcome!
Aug 29 20:06:03 host mpd: [L1] LCP: authorization successful
Aug 29 20:06:03 host mpd: [L1] Link: Matched action 'bundle "B1" ""'
Aug 29 20:06:03 host mpd: [L1] Link: Join bundle "B1"
Aug 29 20:06:03 host mpd: [B1] Bundle: Status update: up 1 link, total bandwidth 64000 bps
Aug 29 20:06:03 host mpd: [B1] IPCP: Open event
Aug 29 20:06:03 host mpd: [B1] IPCP: state change Initial --> Starting
Aug 29 20:06:03 host mpd: [B1] IPCP: LayerStart
Aug 29 20:06:03 host mpd: [B1] IPCP: Up event
Aug 29 20:06:03 host mpd: [B1] IPCP: state change Starting --> Req-Sent
Aug 29 20:06:03 host mpd: [B1] IPCP: SendConfigReq #1
Aug 29 20:06:03 host mpd: [B1] IPADDR 0.0.0.0
Aug 29 20:06:03 host mpd: [B1] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Aug 29 20:06:03 host mpd: [B1] IPCP: rec'd Configure Request #0 (Req-Sent)
Aug 29 20:06:03 host mpd: [B1] IPADDR 88.********
Aug 29 20:06:03 host mpd: [B1] 88.********is OK
Aug 29 20:06:03 host mpd: [B1] IPCP: SendConfigAck #0
Aug 29 20:06:03 host mpd: [B1] IPADDR 88.*********
Aug 29 20:06:03 host mpd: [B1] IPCP: state change Req-Sent --> Ack-Sent
Aug 29 20:06:03 host mpd: [B1] IPCP: rec'd Configure Reject #1 (Ack-Sent)
Aug 29 20:06:03 host mpd: [B1] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Aug 29 20:06:03 host mpd: [B1] IPCP: SendConfigReq #2
Aug 29 20:06:03 host mpd: [B1] IPADDR 0.0.0.0
Aug 29 20:06:03 host mpd: [B1] IPCP: rec'd Configure Nak #2 (Ack-Sent)
Aug 29 20:06:03 host mpd: [B1] IPADDR 88.********
Aug 29 20:06:03 host mpd: [B1] 88.******* is OK
Aug 29 20:06:03 host mpd: [B1] IPCP: SendConfigReq #3
Aug 29 20:06:03 host mpd: [B1] IPADDR 88.*****
Aug 29 20:06:03 host mpd: [B1] IPCP: rec'd Configure Ack #3 (Ack-Sent)
Aug 29 20:06:03 host mpd: [B1] IPADDR 88.******
Aug 29 20:06:03 host mpd: [B1] IPCP: state change Ack-Sent --> Opened
Aug 29 20:06:03 host mpd: [B1] IPCP: LayerUp
Aug 29 20:06:03 host mpd: [B1] 88.********-> 88.*********
Aug 29 20:06:03 host mpd: [B1] IFACE: Add route 0.0.0.0/0 88.********** failed: File exists
Aug 29 20:06:03 host mpd: [B1] IFACE: Up event
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-30 11:55:31
server801
точно-пров мудит.позвонил в поддержку местного инета-перезагрузили порт -сегодня все работает и подключается!правда там про фришку и ниче и не слыхивали,на вопрос о том что на одной ОС робит,а на другой нет-было тихое молчание.........
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-30 13:17:15
paradox
может это у тебя сетевка глючит ?
на тебя у прова отдельный порт?
если да то точно твоя сетевка выбирает порт
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-30 13:30:59
server801
неа,дело не в сетевой.порт-всмысле у них (адсл канал и есть порт)
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-30 13:38:23
paradox
с той стороны наскоко я помню есть такой же езернет порт
и adsl модем
так что.....
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-30 13:55:23
server801
у нас совсем не так.если по твоему то это shdsl.нам такое не грозит
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 15:49:57
server801
настроил вот по этой статье о дело поставить
http://www.lissyara.su/?id=1853.как научить считать траф?что б желательно в веб(типа sams)
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 16:04:01
paradox
пересобираешь mpd с опциями ng_ipacc
и гуглишь как красиво анализировать его статистику)
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:07:51
server801
еще одна проблема.авторизация проходит все нормально,а вот инета нет.
mpd.log
Код: Выделить всё
Aug 31 20:00:02 host mpd: [L-2] Name: "user1"
Aug 31 20:00:02 host mpd: [L-2] AUTH: Trying INTERNAL
Aug 31 20:00:02 host mpd: [L-2] AUTH: INTERNAL returned: undefined
Aug 31 20:00:02 host mpd: [L-2] CHAP: Auth return status: undefined
Aug 31 20:00:02 host mpd: [L-2] CHAP: Response is valid
Aug 31 20:00:02 host mpd: [L-2] CHAP: Reply message: S=349CC17ABA93A2A0094832F2037DD005F37C4287
Aug 31 20:00:02 host mpd: [L-2] CHAP: sending SUCCESS #1 len: 46
Aug 31 20:00:02 host mpd: [L-2] LCP: authorization successful
Aug 31 20:00:02 host mpd: [L-2] Link: Matched action 'bundle "B" ""'
Aug 31 20:00:02 host mpd: [L-2] Creating new bundle using template "B".
Aug 31 20:00:02 host mpd: [B-2] Bundle: Interface ng1 created
Aug 31 20:00:02 host mpd: [L-2] Link: Join bundle "B-2"
Aug 31 20:00:02 host mpd: [B-2] Bundle: Status update: up 1 link, total bandwidth 64000 bps
Aug 31 20:00:02 host mpd: [B-2] IPCP: Open event
Aug 31 20:00:02 host mpd: [B-2] IPCP: state change Initial --> Starting
Aug 31 20:00:02 host mpd: [B-2] IPCP: LayerStart
Aug 31 20:00:02 host mpd: [B-2] CCP: Open event
Aug 31 20:00:02 host mpd: [B-2] CCP: state change Initial --> Starting
Aug 31 20:00:02 host mpd: [B-2] CCP: LayerStart
Aug 31 20:00:02 host mpd: [B-2] IPCP: Up event
Aug 31 20:00:02 host mpd: [B-2] IPCP: state change Starting --> Req-Sent
Aug 31 20:00:02 host mpd: [B-2] IPCP: SendConfigReq #1
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.255
Aug 31 20:00:02 host mpd: [B-2] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Aug 31 20:00:02 host mpd: [B-2] CCP: Up event
Aug 31 20:00:02 host mpd: [B-2] CCP: state change Starting --> Req-Sent
Aug 31 20:00:02 host mpd: [B-2] CCP: SendConfigReq #1
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x010000e1:MPPC, MPPE(40, 56, 128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: rec'd Configure Request #4 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x010000e1:MPPC, MPPE(40, 56, 128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: SendConfigNak #4
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] IPCP: rec'd Configure Request #5 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] IPADDR 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] NAKing with 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] PRIDNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] PRINBNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] SECDNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] SECNBNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] IPCP: SendConfigRej #5
Aug 31 20:00:02 host mpd: [B-2] PRIDNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] PRINBNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] SECDNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] SECNBNS 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] IPCP: rec'd Configure Reject #1 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] COMPPROTO VJCOMP, 16 comp. channels, no comp-cid
Aug 31 20:00:02 host mpd: [B-2] IPCP: SendConfigReq #2
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.255
Aug 31 20:00:02 host mpd: [B-2] CCP: rec'd Configure Nak #1 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: SendConfigReq #2
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: rec'd Configure Request #6 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: SendConfigAck #6
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: state change Req-Sent --> Ack-Sent
Aug 31 20:00:02 host mpd: [B-2] IPCP: rec'd Configure Request #7 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] IPADDR 0.0.0.0
Aug 31 20:00:02 host mpd: [B-2] NAKing with 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] IPCP: SendConfigNak #7
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] IPCP: rec'd Configure Ack #2 (Req-Sent)
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.255
Aug 31 20:00:02 host mpd: [B-2] IPCP: state change Req-Sent --> Ack-Rcvd
Aug 31 20:00:02 host mpd: [B-2] CCP: rec'd Configure Ack #2 (Ack-Sent)
Aug 31 20:00:02 host mpd: [B-2] MPPC
Aug 31 20:00:02 host mpd: [B-2] 0x01000041:MPPC, MPPE(128 bits), stateless
Aug 31 20:00:02 host mpd: [B-2] CCP: state change Ack-Sent --> Opened
Aug 31 20:00:02 host mpd: [B-2] CCP: LayerUp
Aug 31 20:00:02 host mpd: [B-2] CCP: Compress using: mppc (MPPC, MPPE(128 bits), stateless)
Aug 31 20:00:02 host mpd: [B-2] CCP: Decompress using: mppc (MPPC, MPPE(128 bits), stateless)
Aug 31 20:00:02 host mpd: [B-2] IPCP: rec'd Configure Request #8 (Ack-Rcvd)
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] 192.168.10.200 is OK
Aug 31 20:00:02 host mpd: [B-2] IPCP: SendConfigAck #8
Aug 31 20:00:02 host mpd: [B-2] IPADDR 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] IPCP: state change Ack-Rcvd --> Opened
Aug 31 20:00:02 host mpd: [B-2] IPCP: LayerUp
Aug 31 20:00:02 host mpd: [B-2] 192.168.10.255 -> 192.168.10.200
Aug 31 20:00:02 host mpd: [B-2] IFACE: Up event
Aug 31 20:00:52 host mpd: [L-2] LCP: rec'd Terminate Request #9 (Opened)
Aug 31 20:00:52 host mpd: [L-2] LCP: state change Opened --> Stopping
Aug 31 20:00:52 host mpd: [L-2] Link: Leave bundle "B-2"
Aug 31 20:00:52 host mpd: [B-2] Bundle: Status update: up 0 links, total bandwidth 9600 bps
Aug 31 20:00:52 host mpd: [B-2] IPCP: Close event
Aug 31 20:00:52 host mpd: [B-2] IPCP: state change Opened --> Closing
Aug 31 20:00:52 host mpd: [B-2] IPCP: SendTerminateReq #3
Aug 31 20:00:52 host mpd: [B-2] IPCP: LayerDown
Aug 31 20:00:52 host mpd: [B-2] IFACE: Down event
Aug 31 20:00:52 host mpd: [B-2] CCP: Close event
Aug 31 20:00:52 host mpd: [B-2] CCP: state change Opened --> Closing
Aug 31 20:00:52 host mpd: [B-2] CCP: SendTerminateReq #3
Aug 31 20:00:52 host mpd: [B-2] CCP: LayerDown
Aug 31 20:00:52 host mpd: [B-2] IPCP: Down event
Aug 31 20:00:52 host mpd: [B-2] IPCP: LayerFinish
Aug 31 20:00:52 host mpd: [B-2] Bundle: No NCPs left. Closing links...
Aug 31 20:00:52 host mpd: [B-2] IPCP: state change Closing --> Initial
Aug 31 20:00:52 host mpd: [B-2] CCP: Down event
Aug 31 20:00:52 host mpd: [B-2] CCP: LayerFinish
Aug 31 20:00:52 host mpd: [B-2] CCP: state change Closing --> Initial
Aug 31 20:00:52 host mpd: [B-2] Bundle: Shutdown
Aug 31 20:00:52 host mpd: [L-2] LCP: SendTerminateAck #4
Aug 31 20:00:52 host mpd: [L-2] LCP: LayerDown
Aug 31 20:00:54 host mpd: [L-2] LCP: rec'd Terminate Request #10 (Stopping)
Aug 31 20:00:54 host mpd: [L-2] LCP: SendTerminateAck #5
Aug 31 20:00:54 host mpd: [L-2] LCP: state change Stopping --> Stopped
Aug 31 20:00:54 host mpd: [L-2] LCP: LayerFinish
Aug 31 20:00:54 host mpd: [L-2] PPTP call terminated
Aug 31 20:00:54 host mpd: [L-2] Link: DOWN event
Aug 31 20:00:54 host mpd: [L-2] LCP: Close event
Aug 31 20:00:54 host mpd: [L-2] LCP: state change Stopped --> Closed
Aug 31 20:00:54 host mpd: [L-2] LCP: Down event
Aug 31 20:00:54 host mpd: [L-2] LCP: state change Closed --> Initial
Aug 31 20:00:54 host mpd: [L-2] Link: SHUTDOWN event
Aug 31 20:00:54 host mpd: [L-2] Link: Shutdown
в natd.conf
Код: Выделить всё
cat /etc/natd.conf
dynamic yes
same_ports yes
use_sockets yes
redirect_port tcp 192.168.1.5:52001 52001
#redirect_port tcp 192.168.1.2:53 53
redirect_port tcp 192.168.1.5:5555 5555
redirect_port tcp 192.168.1.2:4625 4625
redirect_port tcp 192.168.1.2:4626 4626
redirect_port tcp 192.168.1.2:2608 2608
redirect_port tcp 192.168.1.2:1723 1723
firewall
Код: Выделить всё
#!/bin/sh
fwcmd="/sbin/ipfw -q"
${fwcmd} -f flush
${fwcmd} add 100 pass all from any to any via lo0
${fwcmd} add 200 deny all from any to 127.0.0.0/8
${fwcmd} add 300 deny ip from 127.0.0.0/8 to any
${fwcmd} add divert natd ip from any to 88.147.172.98 in via ng0
${fwcmd} add check-state
${fwcmd} add allow udp from me to any 53 keep-state
${fwcmd} add divert natd ip from 192.168.1.0/24 to any out via ng0
${fwcmd} add allow ip from any to any
mpd.conf
Код: Выделить всё
startup:
# configure mpd users
# Задаем пароль для доступа в web-intarface
# т.е меняем password на свой пароль
set user admin admin admin
# set user password cancer
# configure the console
set console self 127.0.0.1 5005
set console open
# configure the web server
set web self 0.0.0.0 5006
set web open
default:
load pppoe_jdsl
load pptp_server
pppoe_jdsl:
#
# PPPoE client: only outgoing calls, auto reconnect,
# ipcp-negotiated address, one-sided authentication,
# default route points on ISP's end
#
create bundle static B1
set iface route default
set ipcp ranges 0.0.0.0/0 0.0.0.0/0
set iface enable nat
set iface up-script /usr/local/etc/mpd5/ng-inet-up
create link static L1 pppoe
set link action bundle B1
set auth authname jdsl1******
set auth password ********
set link max-redial 0
set link mtu 1492
set link keep-alive 10 60
set pppoe iface em0
set pppoe service "*"
open
pptp_server:
# Определяем диапазон выдаваемых IP удалённым клиентам
# у меня с ...200 по ...220
set ippool add poolsat 192.168.1.200 192.168.1.220
create bundle template B
#set iface enable proxy-arp
set iface idle 0
set iface enable tcpmssfix
set ipcp yes vjcomp
# IP адрес сервера, который мы будем показывать клиентам
# в моем случае 192.168.10.255 (т.е левый IP)
set ipcp ranges 192.168.10.255/32 ippool poolsat
# Если есть свой ДНС сервер, то меняем IP адрес
#set ipcp dns 192.168.1.1
Enable Microsoft Point-to-Point encryption (MPPE)
set bundle enable compression
set ccp yes mppc
set mppc yes compress e40 e56 e128 stateless
create link template L pptp
set link enable multilink
set link yes acfcomp protocomp
set link action bundle B
set link no pap chap
set link enable chap
set link enable chap-msv1
set link enable chap-msv2
set link mtu 1460
set link keep-alive 10 75
Configure PPTP and open link
# Тут указываем IP сетевой карты которая смотрит в ИНЕТ
set pptp self 192.168.1.2
set link enable incoming
ng-inet-up
Код: Выделить всё
#!/bin/sh
ROUTE=/sbin/route
$ROUTE delete default
$ROUTE add default $4
что не так сделал?
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:08:53
paradox
а ты что патчи на ядро накладывал?
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:13:52
server801
какие?если про модуль компрессии -то да.
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:16:01
paradox
выключи компрессию
и настрой сначала без нее
потому чтоона может давать такую траблу
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:18:14
server801
Код: Выделить всё
set mppc yes compress e40 e56 e128 stateless
закомментить?
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:21:50
paradox
Код: Выделить всё
set bundle enable compression
set ccp yes mppc
set mppc yes compress e40 e56 e128 stateless
Код: Выделить всё
set ccp yes mppc
set mppc e40 e56 e128 stateless
как то так
Re: Как настроить раздачу тырнета фрей
Добавлено: 2009-08-31 19:52:04
server801
не то.все правильно было.надо что б при подключении клиента в файер добавлялись правила.подключение есть,а дальше получается клиент заперт.вот в момент подключения
Код: Выделить всё
ifconfig
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=9b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM>
ether 00:0c:29:e7:81:f3
inet 192.168.1.2 netmask 0xffffff00 broadcast 192.168.1.255
media: Ethernet autoselect (1000baseTX <full-duplex>)
status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> metric 0 mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff000000
ng0: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1492
inet 88.147.172.98 --> 88.147.128.127 netmask 0xffffffff
ng1: flags=88d1<UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST> metric 0 mtu 1218
inet 192.168.10.255 --> 192.168.10.200 netmask 0xffffffff
Код: Выделить всё
ipfw show
00100 0 0 allow ip from any to any via lo0
00200 0 0 deny ip from any to 127.0.0.0/8
00300 0 0 deny ip from 127.0.0.0/8 to any
00400 16126 3156779 divert 8668 ip from any to 88.147.172.98 in via ng0
00600 0 0 check-state
00700 8 868 allow udp from me to any dst-port 53 keep-state
00800 4027 640986 divert 8668 ip from 192.168.1.0/24 to any out via ng0
00900 69891 9566081 allow ip from any to any
65535 2346 210160 allow ip from any to any