>Mar 7 10:33:47 localhost pptpd[13138]: MGR: Launching /usr/sbin/pptpctrl to handle client > >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: local address = 192.168.0.229 >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: remote address = 192.168.0.230 >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: pppd options file = /etc/ppp/options.pptpd > >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Client 82.204.242.242 control connection started > >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Received PPTP Control Message (type: >1) >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Made a START CTRL CONN >RPLY packet >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: I wrote 156 bytes to >the client. >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Sent packet to client >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Received PPTP Control Message (type: >7) >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Set parameters to 100000000 maxbps, >64 window size >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Made a OUT CALL RPLY >packet >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Starting call (launching pppd, opening >GRE) >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: pty_fd = 6 >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: tty_fd = 7 >Mar 7 10:33:47 localhost pptpd[13139]: CTRL (PPPD Launcher): program binary = >/usr/sbin/pppd >Mar 7 10:33:47 localhost pptpd[13139]: CTRL (PPPD Launcher): local address = >192.168.0.229 >Mar 7 10:33:47 localhost pptpd[13139]: CTRL (PPPD Launcher): remote address = >192.168.0.230 >Mar 7 10:33:47 localhost pppd[13139]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded. >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: I wrote 32 bytes to >the client. >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Sent packet to client >Mar 7 10:33:47 localhost pppd[13139]: pppd 2.4.3 started by root, uid >0 >Mar 7 10:33:47 localhost pppd[13139]: Using interface ppp0 >Mar 7 10:33:47 localhost pppd[13139]: Connect: ppp0 <--> /dev/pts/1 >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Received PPTP Control Message (type: >15) >Mar 7 10:33:47 localhost pptpd[13138]: CTRL: Got a SET LINK INFO >packet with standard ACCMs >Mar 7 10:34:17 localhost pppd[13139]: LCP: timeout sending Config-Requests >Mar 7 10:34:17 localhost pppd[13139]: Connection terminated. >Mar 7 10:34:17 localhost pppd[13139]: Modem hangup >Mar 7 10:34:17 localhost pppd[13139]: Exit. >Mar 7 10:34:17 localhost pptpd[13138]: GRE: read(fd=6,buffer=804e620,len=8196) from PTY failed: status >= -1 error = Input/output error, usually caused by unexpected termination >of pppd, check option syntax and pppd logs >Mar 7 10:34:17 localhost pptpd[13138]: CTRL: PTY read or GRE write >failed (pty,gre)=(6,7) >Mar 7 10:34:17 localhost pptpd[13138]: CTRL: Reaping child PPP[13139] >Mar 7 10:34:17 localhost pptpd[13138]: CTRL: Client ххх.ххх.ххх.ххх control connection finished > >Mar 7 10:34:17 localhost pptpd[13138]: CTRL: Exiting now >Mar 7 10:34:17 localhost pptpd[11303]: MGR: Reaped child 13138 > >это лог сервера. > >правила файерволла на сервере: >$ipt -A INPUT -i $EXT_IF -p 47 -j ACCEPT >$ipt -A OUTPUT -o $EXT_IF -p 47 -j ACCEPT >$ipt -A FORWARD -p 47 -j ACCEPT > >$ipt -A INPUT -i $EXT_IF -p tcp --dport 1723 -j ACCEPT >$ipt -A OUTPUT -o $EXT_IF -p tcp --sport 1723 -j ACCEPT >$ipt -A INPUT -i $EXT_IF -p udp --dport 1723 -j ACCEPT >$ipt -A OUTPUT -o $EXT_IF -p udp --sport 1723 -j ACCEPT > >$ipt -A INPUT -i ppp+ -j ACCEPT >$ipt -A OUTPUT -o ppp+ -j ACCEPT >$ipt -A FORWARD -i ppp+ -j ACCEPT >$ipt -A FORWARD -o ppp+ -j ACCEPT > >правила файерволла у меня на шлюзе: >#pptpd >$ipt -A INPUT -i $OUT_IF -p 47 -j ACCEPT >$ipt -A OUTPUT -o $OUT_IF -p 47 -j ACCEPT >$ipt -A INPUT -i $OUT_IF -p tcp --dport 1723 -j ACCEPT > >$ipt -A OUTPUT -o $OUT_IF -p tcp --sport 1723 -j ACCEPT >$ipt -A INPUT -i $OUT_IF -p udp --dport 1723 -j ACCEPT > >$ipt -A OUTPUT -o $OUT_IF -p udp --sport 1723 -j ACCEPT > >$ipt -A INPUT -i ppp+ -j ACCEPT >$ipt -A OUTPUT -o ppp+ -j ACCEPT >$ipt -A FORWARD -i ppp+ -d 192.168.200.1 -j ACCEPT >$ipt -A FORWARD -o ppp+ -j ACCEPT > >где грабли? >вроде все разрешено... но... >ГРЕ не поднимается. Кто сталкивался - помогите плиз. в правилах файервола не видно где разрешено ходить протоколу gre попробуй разрешить его хождение. отпиши поднялся впн или нет.
|