PPPoE под FreeBSD
Добавлено: 2007-05-04 11:52:44
Всем доброго дня!
Есть локальная сеть 10.0.0.0/24 и маршрутизатор на котором поднята FreeBSD 6.2
Одна сетевая (её адрес 10.0.0.1) смотрит в локалку другая в Инэт (её адрес 10.10.10.3)
В Инэт проходим через ADSL-модем (его адрес 10.10.10.1)
Настроен фаерволл на основе PF-фильтра после которого поднят Squid...
если модем ноастроен как РОУТЕР - проблем нет! Все довольны...
но возникла необходимость поднять почтовый сервер, в связи с чем необходимо перевести модем в режим БРИДЖа.
вот конфиг для PPPoE:
default:
Ukrtel:
set device PPPoE:vr1
set MTU 1492
set MRU 1492
set dial
set crtscts off
set speed sync
accept lqr
set timeout 0
disable deflate
disable pred1
disable vjcomp
disable acfcomp
disable protocomp
set log Phase LCP IPCP CCP Warning Error Alert
add default HISADDR
set login
enable chap
enable dns
set authname <USER>
set authkey <PASS>
set server /var/run/ppp/ppp.pid "" 0117
##############################################
запускаю ppp:
ppp -ddial Ukrtel
Working in ddial mode
Using interface: tun0
смотрю ifconfig:
ifconfig
vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::217:9aff:febb:b3b4%vr0 prefixlen 64 scopeid 0x1
inet 10.0.0.1 netmask 0xffffff00 broadcast 10.0.0.255
ether 00:17:9a:bb:b3:b4
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
vr1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::217:9aff:febc:ab8%vr1 prefixlen 64 scopeid 0x2
inet 10.10.10.3 netmask 0xffffff00 broadcast 10.10.10.255
ether 00:17:9a:bc:0a:b8
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fwe0: flags=108802<BROADCAST,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
options=8<VLAN_MTU>
ether 02:04:61:0c:fc:46
ch 1 dma -1
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
inet 127.0.0.1 netmask 0xff000000
pfsync0: flags=0<> mtu 2020
syncpeer: 224.0.0.240 maxupd: 128
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33208
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
Opened by PID 4301
tun1: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun2: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun3: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun4: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun5: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun6: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
но в результате ничего не коннэктится!!! ...и не пингуется!...
вот кусок ppp.log:
######################################
May 4 10:56:10 gw ppp[4300]: Phase: Using interface: tun0
May 4 10:56:10 gw ppp[4300]: Phase: deflink: Created in closed state
May 4 10:56:10 gw ppp[4300]: Phase: Listening at local socket /var/run/ppp/ppp.pid.
May 4 10:56:10 gw ppp[4301]: Phase: PPP Started (ddial mode).
May 4 10:56:10 gw ppp[4301]: Phase: bundle: Establish
May 4 10:56:10 gw ppp[4301]: Phase: deflink: closed -> opening
May 4 10:56:10 gw ppp[4301]: Phase: deflink: Connected!
May 4 10:56:10 gw ppp[4301]: Phase: deflink: opening -> dial
May 4 10:56:10 gw ppp[4301]: Phase: deflink: dial -> carrier
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_ACNAME (hook "Lviv_BRAS1")
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_SESSIONID
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_SUCCESS
May 4 10:56:11 gw ppp[4301]: Phase: deflink: carrier -> login
May 4 10:56:11 gw ppp[4301]: Phase: deflink: login -> lcp
May 4 10:56:11 gw ppp[4301]: LCP: FSM: Using "deflink" as a transport
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Initial --> Closed
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Closed --> Stopped
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigReq(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x3cb919c0
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendConfigReq(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x6f53d351
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendConfigAck(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x3cb919c0
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerStart
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Stopped --> Ack-Sent
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigAck(1) state = Ack-Sent
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x6f53d351
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Ack-Sent --> Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerUp
May 4 10:56:11 gw ppp[4301]: Phase: bundle: Authenticate
May 4 10:56:11 gw ppp[4301]: Phase: deflink: his = PAP, mine = CHAP 0x05
May 4 10:56:11 gw ppp[4301]: Phase: Pap Output: <ИМЯ_ПОЛЬЗОВАТЕЛЯ> ********
May 4 10:56:11 gw ppp[4301]: Phase: Chap Output: CHALLENGE
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvTerminateReq(2) state = Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerDown
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendTerminateAck(2) state = Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Opened --> Stopping
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigReq(1) state = Stopping
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0xb1242a49
May 4 10:56:14 gw ppp[4301]: LCP: deflink: RecvConfigReq(2) state = Stopping
May 4 10:56:14 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:14 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:14 gw ppp[4301]: LCP: MAGICNUM[6] 0xb1242a49
May 4 10:56:15 gw ppp[4301]: LCP: deflink: LayerFinish
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Stopping --> Stopped
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Stopped --> Closed
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Closed --> Initial
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Disconnected!
May 4 10:56:15 gw ppp[4301]: Phase: deflink: lcp -> logout
May 4 10:56:15 gw ppp[4301]: Phase: deflink: logout -> hangup
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Disconnected!
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Connect time: 5 secs: 87 octets in, 152 octets out
May 4 10:56:15 gw ppp[4301]: Phase: deflink: 5 packets in, 5 packets out
May 4 10:56:15 gw ppp[4301]: Phase: total 47 bytes/sec, peak 72 bytes/sec on Fri May 4 10:56:12 2007
######################################
ВОПРОС:
проблема в модеме? PF-фильтре? ppp.conf? Помогите!.. пожайлуста
Есть локальная сеть 10.0.0.0/24 и маршрутизатор на котором поднята FreeBSD 6.2
Одна сетевая (её адрес 10.0.0.1) смотрит в локалку другая в Инэт (её адрес 10.10.10.3)
В Инэт проходим через ADSL-модем (его адрес 10.10.10.1)
Настроен фаерволл на основе PF-фильтра после которого поднят Squid...
если модем ноастроен как РОУТЕР - проблем нет! Все довольны...
но возникла необходимость поднять почтовый сервер, в связи с чем необходимо перевести модем в режим БРИДЖа.
вот конфиг для PPPoE:
default:
Ukrtel:
set device PPPoE:vr1
set MTU 1492
set MRU 1492
set dial
set crtscts off
set speed sync
accept lqr
set timeout 0
disable deflate
disable pred1
disable vjcomp
disable acfcomp
disable protocomp
set log Phase LCP IPCP CCP Warning Error Alert
add default HISADDR
set login
enable chap
enable dns
set authname <USER>
set authkey <PASS>
set server /var/run/ppp/ppp.pid "" 0117
##############################################
запускаю ppp:
ppp -ddial Ukrtel
Working in ddial mode
Using interface: tun0
смотрю ifconfig:
ifconfig
vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::217:9aff:febb:b3b4%vr0 prefixlen 64 scopeid 0x1
inet 10.0.0.1 netmask 0xffffff00 broadcast 10.0.0.255
ether 00:17:9a:bb:b3:b4
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
vr1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet6 fe80::217:9aff:febc:ab8%vr1 prefixlen 64 scopeid 0x2
inet 10.10.10.3 netmask 0xffffff00 broadcast 10.10.10.255
ether 00:17:9a:bc:0a:b8
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fwe0: flags=108802<BROADCAST,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
options=8<VLAN_MTU>
ether 02:04:61:0c:fc:46
ch 1 dma -1
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
inet 127.0.0.1 netmask 0xff000000
pfsync0: flags=0<> mtu 2020
syncpeer: 224.0.0.240 maxupd: 128
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33208
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
Opened by PID 4301
tun1: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun2: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun3: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun4: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun5: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
tun6: flags=8010<POINTOPOINT,MULTICAST> mtu 1500
но в результате ничего не коннэктится!!! ...и не пингуется!...
вот кусок ppp.log:
######################################
May 4 10:56:10 gw ppp[4300]: Phase: Using interface: tun0
May 4 10:56:10 gw ppp[4300]: Phase: deflink: Created in closed state
May 4 10:56:10 gw ppp[4300]: Phase: Listening at local socket /var/run/ppp/ppp.pid.
May 4 10:56:10 gw ppp[4301]: Phase: PPP Started (ddial mode).
May 4 10:56:10 gw ppp[4301]: Phase: bundle: Establish
May 4 10:56:10 gw ppp[4301]: Phase: deflink: closed -> opening
May 4 10:56:10 gw ppp[4301]: Phase: deflink: Connected!
May 4 10:56:10 gw ppp[4301]: Phase: deflink: opening -> dial
May 4 10:56:10 gw ppp[4301]: Phase: deflink: dial -> carrier
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_ACNAME (hook "Lviv_BRAS1")
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_SESSIONID
May 4 10:56:11 gw ppp[4301]: Phase: Received NGM_PPPOE_SUCCESS
May 4 10:56:11 gw ppp[4301]: Phase: deflink: carrier -> login
May 4 10:56:11 gw ppp[4301]: Phase: deflink: login -> lcp
May 4 10:56:11 gw ppp[4301]: LCP: FSM: Using "deflink" as a transport
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Initial --> Closed
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Closed --> Stopped
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigReq(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x3cb919c0
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendConfigReq(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x6f53d351
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendConfigAck(1) state = Stopped
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x3cb919c0
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerStart
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Stopped --> Ack-Sent
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigAck(1) state = Ack-Sent
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0x6f53d351
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[5] 0xc223 (CHAP 0x05)
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Ack-Sent --> Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerUp
May 4 10:56:11 gw ppp[4301]: Phase: bundle: Authenticate
May 4 10:56:11 gw ppp[4301]: Phase: deflink: his = PAP, mine = CHAP 0x05
May 4 10:56:11 gw ppp[4301]: Phase: Pap Output: <ИМЯ_ПОЛЬЗОВАТЕЛЯ> ********
May 4 10:56:11 gw ppp[4301]: Phase: Chap Output: CHALLENGE
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvTerminateReq(2) state = Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: LayerDown
May 4 10:56:11 gw ppp[4301]: LCP: deflink: SendTerminateAck(2) state = Opened
May 4 10:56:11 gw ppp[4301]: LCP: deflink: State change Opened --> Stopping
May 4 10:56:11 gw ppp[4301]: LCP: deflink: RecvConfigReq(1) state = Stopping
May 4 10:56:11 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:11 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:11 gw ppp[4301]: LCP: MAGICNUM[6] 0xb1242a49
May 4 10:56:14 gw ppp[4301]: LCP: deflink: RecvConfigReq(2) state = Stopping
May 4 10:56:14 gw ppp[4301]: LCP: MRU[4] 1492
May 4 10:56:14 gw ppp[4301]: LCP: AUTHPROTO[4] 0xc023 (PAP)
May 4 10:56:14 gw ppp[4301]: LCP: MAGICNUM[6] 0xb1242a49
May 4 10:56:15 gw ppp[4301]: LCP: deflink: LayerFinish
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Stopping --> Stopped
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Stopped --> Closed
May 4 10:56:15 gw ppp[4301]: LCP: deflink: State change Closed --> Initial
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Disconnected!
May 4 10:56:15 gw ppp[4301]: Phase: deflink: lcp -> logout
May 4 10:56:15 gw ppp[4301]: Phase: deflink: logout -> hangup
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Disconnected!
May 4 10:56:15 gw ppp[4301]: Phase: deflink: Connect time: 5 secs: 87 octets in, 152 octets out
May 4 10:56:15 gw ppp[4301]: Phase: deflink: 5 packets in, 5 packets out
May 4 10:56:15 gw ppp[4301]: Phase: total 47 bytes/sec, peak 72 bytes/sec on Fri May 4 10:56:12 2007
######################################
ВОПРОС:
проблема в модеме? PF-фильтре? ppp.conf? Помогите!.. пожайлуста
НАТ у меня поднят и редирект работает, когда юзеры идут в Инэт - фришка их перенаправляет на squid... (в PF-фильтре):
!..