does this app suitable for non-IPSec-encrypted connection?

Asked by Sergey Prokhorov

I ask my question because my provider doesn't use IPSec and don't provide any PSK/Certificate, but app's UI don't allow to stay IPSec encryption parameters non-filled.
http://help.internet.beeline.ru/internet/install/windows7/l2tp (see pp 11 - they suggest to select "Encryption not required" option)

Question information

Language:
English Edit question
Status:
Expired
For:
L2TP over IPsec VPN Manager Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:

This question was reopened

Revision history for this message
Werner Jaeger (werner-jaeger) said :
#1

Unfortunately this application, as it is now, requires IPSEC encryption, but I'm going to check how much effort it would be to change it to use L2TP/PPP only.

Revision history for this message
Sergey Prokhorov (seriy-pr) said :
#2

Thanks Werner Jaeger, that solved my question.

Revision history for this message
Werner Jaeger (werner-jaeger) said :
#3

I've implemented this feature now by adding a "disable IPSEC encryption" checkbox.

If you are interested in this feature you can check it out at:

https://launchpad.net/~werner-jaeger/+archive/ppa-werner-vpn-daily

Revision history for this message
Sergey Prokhorov (seriy-pr) said :
#4

doesn't work for me...

$ tail -f /var/log/syslog
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Opening client connection
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command invoke-rc.d xl2tpd stop
Jan 24 01:46:47 seriy-desktop xl2tpd[24922]: death_handler: Fatal signal 15 received
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Command invoke-rc.d xl2tpd stop finished with exit code 0
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command invoke-rc.d xl2tpd start
Jan 24 01:46:47 seriy-desktop xl2tpd[25615]: setsockopt recvref[22]: Protocol not available
Jan 24 01:46:47 seriy-desktop xl2tpd[25615]: This binary does not support kernel L2TP.
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: xl2tpd version xl2tpd-1.2.8 started on seriy-desktop PID:25616
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Forked by Scott Balmos and David Stipp, (C) 2001
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Inherited by Jeff McAdams, (C) 2002
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Forked again by Xelerance (www.xelerance.com) (C) 2006
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Listening on IP address 0.0.0.0, port 1701
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Command invoke-rc.d xl2tpd start finished with exit code 0
Jan 24 01:46:47 seriy-desktop L2tpIPsecVpnControlDaemon: Closing client connection
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Connecting to host tp.internet.beeline.ru, port 1701
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Connection established to 85.21.0.255, 1701. Local: 30668, Remote: 39020 (ref=0/0).
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Calling on tunnel 30668
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: Call established with 85.21.0.255, Local: 58683, Remote: 62521, Serial: 1 (ref=0/0)
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: start_pppd: I'm running:
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "/usr/sbin/pppd"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "passive"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "nodetach"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: ":"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "file"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "/etc/ppp/blne.options.xl2tpd"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "ipparam"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "85.21.0.255"
Jan 24 01:46:47 seriy-desktop xl2tpd[25616]: "/dev/pts/2"
Jan 24 01:46:47 seriy-desktop pppd[25617]: Plugin passprompt.so loaded.
Jan 24 01:46:47 seriy-desktop pppd[25617]: pppd 2.4.5 started by root, uid 0
Jan 24 01:46:47 seriy-desktop NetworkManager[1473]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/ppp0, iface: ppp0)
Jan 24 01:46:47 seriy-desktop NetworkManager[1473]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/ppp0, iface: ppp0): no ifupdown configuration found.
Jan 24 01:46:47 seriy-desktop pppd[25617]: Using interface ppp0
Jan 24 01:46:47 seriy-desktop pppd[25617]: Connect: ppp0 <--> /dev/pts/2

$ ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
    link/ether 00:22:15:f3:c9:52 brd ff:ff:ff:ff:ff:ff
    inet 10.167.82.64/21 brd 10.167.87.255 scope global eth1
    inet6 fe80::222:15ff:fef3:c952/64 scope link
       valid_lft forever preferred_lft forever
3: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN qlen 1000
    link/ether f0:7d:68:71:3e:1d brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f27d:68ff:fe71:3e1d/64 scope link
       valid_lft forever preferred_lft forever
4: mon.wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN qlen 1000
    link/ieee802.11/radiotap f0:7d:68:71:3e:1d brd ff:ff:ff:ff:ff:ff
5: pan0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN
    link/ether 2a:2e:11:5b:10:2e brd ff:ff:ff:ff:ff:ff
21: ppp0: <POINTOPOINT,MULTICAST,NOARP> mtu 1460 qdisc noop state DOWN qlen 3
    link/ppp

$ cat /etc/xl2tpd/xl2tpd.conf
; /etc/xl2tpd/xl2tpd.conf - configuration file for use with L2TP over IPsec.
; $Id$

; Manual: xl2tpd.conf(5)

; Created: ?? ???. 24 01:41:04 2012
; by: The L2TP IPsec VPN Manager application version 1.0.3
;
; WARNING! All changes made in this file will be lost!

[global]
; listen-addr = 192.168.178.28
debug avp = no
debug network = no
debug packet = no
debug state = no
debug tunnel = no

[lac blne]
lns = tp.internet.beeline.ru
pppoptfile = /etc/ppp/blne.options.xl2tpd
length bit = no
redial = yes
redial timeout = 5
max redials = 5

$ cat /etc/ppp/blne.options.xl2tpd
# /etc/ppp/blne.options.xl2tpd - Options used by PPP when a connection is made by an L2TP daemon
# $Id$

# Manual: PPPD(8)

# Created: ?? ???. 24 01:41:04 2012
# by: The L2TP IPsec VPN Manager application version 1.0.3
#
# WARNING! All changes made in this file will be lost!

#debug
#dump
#record /var/log/pppd

plugin passprompt.so
ipcp-accept-local
ipcp-accept-remote
idle 72000
ktune
noproxyarp
asyncmap 0
noauth
crtscts
lock
hide-password
modem
noipx

ipparam L2tpIPsecVpn-blne

promptprog "/usr/bin/L2tpIPsecVpn"

refuse-eap
refuse-pap

remotename ""
name "seriyps"

Maybe I must submit a bug-report? Currently only http://code.google.com/p/vpnpptp/ works for me, but this program is sooo ugly, I think. It produce following configs:

$ cat /etc/xl2tpd/xl2tpd.conf
[global]
access control = yes

[lac beeline0vpnpptp]
name = seriyps
lns = 85.21.0.255
pppoptfile = /etc/ppp/peers/beeline0vpnpptp
ppp debug = yes
tunnel rws = 8
tx bps = 100000000

$ sudo cat /etc/ppp/peers/beeline0vpnpptp
#pty "/usr/sbin/pptp 85.21.0.255 --nolaunchpppd --nobuffer"
remotename beeline0vpnpptp
user "seriyps"
password "<my_password>"
linkname beeline0vpnpptp
lock
usepeerdns
nodeflate
nobsdcomp
noauth
persist
nopcomp
noaccomp
maxfail 10
debug
logfile /var/log/ppp/vpnlog
refuse-eap
refuse-pap

Revision history for this message
Werner Jaeger (werner-jaeger) said :
#5

Installing 1.2.7+dfsg-1 from https://launchpad.net/ubuntu/oneiric/i386/xl2tpd/1.2.7+dfsg-1 and locking the version should solve the problem.

Please tell me if using this version of xl2tpd actually solves the problem.

See also question https://answers.launchpad.net/l2tp-ipsec-vpn/+question/180136

Revision history for this message
Sergey Prokhorov (seriy-pr) said :
#6

Install xl2tpd from https://launchpad.net/ubuntu/oneiric/i386/xl2tpd/1.2.7+dfsg-1, got the same result

Jan 25 03:06:53 seriy-desktop L2tpIPsecVpnControlDaemon: Opening client connection
Jan 25 03:06:53 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command invoke-rc.d xl2tpd start
Jan 25 03:06:53 seriy-desktop xl2tpd[2753]: setsockopt recvref[22]: Protocol not available
Jan 25 03:06:53 seriy-desktop xl2tpd[2753]: This binary does not support kernel L2TP.
Jan 25 03:06:53 seriy-desktop L2tpIPsecVpnControlDaemon: Command invoke-rc.d xl2tpd start finished with exit code 0
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: xl2tpd version xl2tpd-1.2.6 started on seriy-desktop PID:2755
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Forked by Scott Balmos and David Stipp, (C) 2001
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Inherited by Jeff McAdams, (C) 2002
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Forked again by Xelerance (www.xelerance.com) (C) 2006
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Listening on IP address 0.0.0.0, port 1701
Jan 25 03:06:53 seriy-desktop L2tpIPsecVpnControlDaemon: Closing client connection
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Connecting to host tp.internet.beeline.ru, port 1701
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Connection established to 85.21.0.251, 1701. Local: 53955, Remote: 56623 (ref=0/0).
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Calling on tunnel 53955
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: Call established with 85.21.0.251, Local: 13478, Remote: 45476, Serial: 1 (ref=0/0)
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: start_pppd: I'm running:
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "/usr/sbin/pppd"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "passive"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "nodetach"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: ":"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "file"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "/etc/ppp/l2tpvpn-beeline.options.xl2tpd"
Jan 25 03:06:53 seriy-desktop xl2tpd[2755]: "/dev/pts/1"
Jan 25 03:06:53 seriy-desktop pppd[2757]: Plugin passprompt.so loaded.
Jan 25 03:06:53 seriy-desktop pppd[2757]: pppd 2.4.5 started by root, uid 0
Jan 25 03:06:53 seriy-desktop NetworkManager[1198]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/ppp0, iface: ppp0)
Jan 25 03:06:53 seriy-desktop NetworkManager[1198]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/ppp0, iface: ppp0): no ifupdown configuration found.
Jan 25 03:06:53 seriy-desktop pppd[2757]: Using interface ppp0
Jan 25 03:06:53 seriy-desktop pppd[2757]: Connect: ppp0 <--> /dev/pts/1

sometomes it logs smth like

Jan 25 03:15:38 seriy-desktop xl2tpd[4458]: Can not find tunnel 53955 (refhim=0)
Jan 25 03:15:38 seriy-desktop xl2tpd[4458]: network_thread: unable to find call or tunnel to handle packet. call = 13478, tunnel = 53955 Dumping.
Jan 25 03:15:46 seriy-desktop xl2tpd[4458]: Can not find tunnel 53955 (refhim=0)
Jan 25 03:15:46 seriy-desktop xl2tpd[4458]: network_thread: unable to find call or tunnel to handle packet. call = 13478, tunnel = 53955 Dumping.
Jan 25 03:15:54 seriy-desktop xl2tpd[4458]: Can not find tunnel 53955 (refhim=0)
Jan 25 03:15:54 seriy-desktop xl2tpd[4458]: network_thread: unable to find call or tunnel to handle packet. call = 13478, tunnel = 53955 Dumping.

after that.

$ xl2tpd -h

xl2tpd version: xl2tpd-1.2.6

But, as I say before, http://code.google.com/p/vpnpptp/ works for me with both xl2tpd versions.

Revision history for this message
Werner Jaeger (werner-jaeger) said :
#7

Ok. I tried it on my machine and it seems to work for me. So I'm kind of clueless for the moment. Might it be, that something conflicts with the vpnpptp installation?

However, your syslog output suggests to me. that something went wrong with PPP.

To further diagnose please uncomment the debug statement in

/etc/ppp/blne.options.xl2tpd

so that it reads like this:

# Manual: PPPD(8)

# Created: ?? ???. 24 01:41:04 2012
# by: The L2TP IPsec VPN Manager application version 1.0.3
#
# WARNING! All changes made in this file will be lost!

debug
#dump
#record /var/log/pppd

Try to connect again and copy the syslog output.

There should be lines like this in the log:

pppd[7018]: Connect: ppp0 <--> /dev/pts/0
pppd[7018]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x49493c9c> <pcomp> <accomp>]
pppd[7018]: rcvd [LCP ConfReq id=0x1 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0xa00f16cf> <pcomp> <accomp>]
pppd[7018]: sent [LCP ConfAck id=0x1 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0xa00f16cf> <pcomp> <accomp>]
pppd[7018]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x49493c9c> <pcomp> <accomp>]
pppd[7018]: sent [LCP EchoReq id=0x0 magic=0x49493c9c]
pppd[7018]: rcvd [LCP EchoRep id=0x0 magic=0xa00f16cf]
pppd[7018]: rcvd [CHAP Challenge id=0x1 <83e6bcbc103747b600704a9df1e4f2c1>, name = "bras255"]

Revision history for this message
Sergey Prokhorov (seriy-pr) said :
#8

Cleanup all unrelevant files in /etc/ppp/ and create new vpn connection setings, so

$ sudo find /etc/ppp/ -type f
/etc/ppp/ip-up
/etc/ppp/chap-secrets
/etc/ppp/ipv6-up
/etc/ppp/resolv.conf
/etc/ppp/ip-down
/etc/ppp/options.pptp
/etc/ppp/ip-down.d/L2tpIPsecVpn-down
/etc/ppp/ip-down.d/0000usepeerdns
/etc/ppp/ip-down.d/postfix
/etc/ppp/ip-down.d/bind9
/etc/ppp/ip-down.d/0dns-down
/etc/ppp/ip-down.d/-ip-down
/etc/ppp/ip-down.d/0clampmss
/etc/ppp/ip-up.d/0000usepeerdns
/etc/ppp/ip-up.d/1bacula_ip_detector
/etc/ppp/ip-up.d/postfix
/etc/ppp/ip-up.d/0dns-up
/etc/ppp/ip-up.d/L2tpIPsecVpn-up
/etc/ppp/ip-up.d/0clampmss
/etc/ppp/pptpd-options
/etc/ppp/pap-secrets
/etc/ppp/l2tp-ipsec-vpn-beeline.options.xl2tpd
/etc/ppp/getIPSecInfo.lib
/etc/ppp/ipv6-down

Uncomment "debug" option and run connection

$ tail -f /var/log/syslog
Jan 26 02:00:07 seriy-desktop L2tpIPsecVpnControlDaemon: Opening client connection
Jan 26 02:00:07 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command ipsec setup stop
Jan 26 02:00:07 seriy-desktop ipsec_setup: Stopping Openswan IPsec...
Jan 26 02:00:09 seriy-desktop kernel: [ 2214.316043] NET: Unregistered protocol family 15
Jan 26 02:00:09 seriy-desktop ipsec_setup: ...Openswan IPsec stopped
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Command ipsec setup stop finished with exit code 0
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command invoke-rc.d xl2tpd stop
Jan 26 02:00:09 seriy-desktop xl2tpd[2662]: death_handler: Fatal signal 15 received
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Command invoke-rc.d xl2tpd stop finished with exit code 0
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Executing command invoke-rc.d xl2tpd start
Jan 26 02:00:09 seriy-desktop xl2tpd[30749]: setsockopt recvref[22]: Protocol not available
Jan 26 02:00:09 seriy-desktop xl2tpd[30749]: This binary does not support kernel L2TP.
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: xl2tpd version xl2tpd-1.2.6 started on seriy-desktop PID:30750
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: Forked by Scott Balmos and David Stipp, (C) 2001
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: Inherited by Jeff McAdams, (C) 2002
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: Forked again by Xelerance (www.xelerance.com) (C) 2006
Jan 26 02:00:09 seriy-desktop xl2tpd[30750]: Listening on IP address 0.0.0.0, port 1701
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Command invoke-rc.d xl2tpd start finished with exit code 0
Jan 26 02:00:09 seriy-desktop L2tpIPsecVpnControlDaemon: Closing client connection
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Connecting to host tp.internet.beeline.ru, port 1701
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Connection established to 85.21.0.251, 1701. Local: 11999, Remote: 18364 (ref=0/0).
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Calling on tunnel 11999
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Call established with 85.21.0.251, Local: 48972, Remote: 54972, Serial: 1 (ref=0/0)
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: start_pppd: I'm running:
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "/usr/sbin/pppd"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "passive"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "nodetach"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: ":"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "file"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "/etc/ppp/l2tp-ipsec-vpn-beeline.options.xl2tpd"
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: "/dev/pts/0"
Jan 26 02:00:14 seriy-desktop pppd[30766]: Plugin passprompt.so loaded.
Jan 26 02:00:14 seriy-desktop pppd[30766]: pppd 2.4.5 started by root, uid 0
Jan 26 02:00:14 seriy-desktop pppd[30766]: using channel 3
Jan 26 02:00:14 seriy-desktop NetworkManager[1283]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/ppp0, iface: ppp0)
Jan 26 02:00:14 seriy-desktop NetworkManager[1283]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/ppp0, iface: ppp0): no ifupdown configuration found.
Jan 26 02:00:14 seriy-desktop pppd[30766]: Using interface ppp0
Jan 26 02:00:14 seriy-desktop pppd[30766]: Connect: ppp0 <--> /dev/pts/0
Jan 26 02:00:14 seriy-desktop pppd[30766]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x54a01ee9> <pcomp> <accomp>]
Jan 26 02:00:14 seriy-desktop pppd[30766]: rcvd [LCP ConfReq id=0x1 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0x4b905927> <pcomp> <accomp>]
Jan 26 02:00:14 seriy-desktop pppd[30766]: sent [LCP ConfAck id=0x1 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0x4b905927> <pcomp> <accomp>]
Jan 26 02:00:14 seriy-desktop pppd[30766]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x54a01ee9> <pcomp> <accomp>]
Jan 26 02:00:14 seriy-desktop pppd[30766]: rcvd [CHAP Challenge id=0x1 <96fc5df7e36001bcb614a9b8a1cdb6a5>, name = "bras251"]
Jan 26 02:00:14 seriy-desktop pppd[30766]: sent [CHAP Response id=0x1 <3c15911d9376ca4cfe91df5838d90552>, name = "seriyps"]
Jan 26 02:00:14 seriy-desktop pppd[30766]: rcvd [proto=0x3] 01 00 04
Jan 26 02:00:14 seriy-desktop pppd[30766]: discarding proto 0x3 in phase 5
Jan 26 02:00:14 seriy-desktop pppd[30766]: rcvd [proto=0x1] 01 00 0a 03 06 55 15 00 fb
Jan 26 02:00:14 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
Jan 26 02:00:16 seriy-desktop pppd[30766]: rcvd [proto=0x1] 02 00 0a 03 06 55 15 00 fb
Jan 26 02:00:16 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
Jan 26 02:00:18 seriy-desktop pppd[30766]: rcvd [proto=0x1] 03 00 0a 03 06 55 15 00 fb
Jan 26 02:00:18 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
Jan 26 02:00:20 seriy-desktop pppd[30766]: rcvd [proto=0x1] 04 00 0a 03 06 55 15 00 fb
Jan 26 02:00:20 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
Jan 26 02:00:22 seriy-desktop pppd[30766]: rcvd [proto=0x1] 05 00 0a 03 06 55 15 00 fb
Jan 26 02:00:22 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
Jan 26 02:00:24 seriy-desktop pppd[30766]: rcvd [LCP EchoReq id=0x1 magic=0x4b905927 54 a0 1e e9]
Jan 26 02:00:24 seriy-desktop pppd[30766]: sent [LCP EchoRep id=0x1 magic=0x54a01ee9 54 a0 1e e9]
Jan 26 02:00:24 seriy-desktop pppd[30766]: rcvd [proto=0x1] 06 00 0a 03 06 55 15 00 fb
Jan 26 02:00:24 seriy-desktop pppd[30766]: discarding proto 0x1 in phase 5
...............(cycled sent-rcvd)............

$ ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
^C
--- 8.8.8.8 ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 1999ms

$ ping google.com
PING google.com (209.85.173.105) 56(84) bytes of data.
^C
--- google.com ping statistics ---
3 packets transmitted, 0 received, 100% packet loss, time 1999ms

$ ip route
default via 10.167.80.1 dev eth1
10.0.0.0/8 via 10.167.80.1 dev eth1 proto static
10.167.80.0/21 dev eth1 proto kernel scope link src 10.167.82.64 metric 1
78.107.23.0/24 via 10.167.80.1 dev eth1 proto static
78.107.51.0/28 via 10.167.80.1 dev eth1 proto static
78.107.196.0/22 via 10.167.80.1 dev eth1 proto static
78.107.235.4/30 via 10.167.80.1 dev eth1 proto static
83.102.146.96/27 via 10.167.80.1 dev eth1 proto static
83.102.231.32/28 via 10.167.80.1 dev eth1 proto static
85.21.72.80/28 via 10.167.80.1 dev eth1 proto static
85.21.79.0/24 via 10.167.80.1 dev eth1 proto static
85.21.90.0/24 via 10.167.80.1 dev eth1 proto static
85.21.108.16/28 via 10.167.80.1 dev eth1 proto static
85.21.138.208/28 via 10.167.80.1 dev eth1 proto static
169.254.0.0/16 dev eth1 scope link metric 1000
217.118.84.213 via 10.167.80.1 dev eth1 proto static
217.118.84.249 via 10.167.80.1 dev eth1 proto static
233.33.210.0/24 via 10.167.82.64 dev eth1 proto static

(there is no ppp* interfaces in routes!!!)

$ nslookup tp.internet.beeline.ru
Server: 85.21.192.3
Address: 85.21.192.3#53

Name: tp.internet.beeline.ru
Address: 85.21.0.251

$ ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
    link/ether 00:22:15:f3:c9:52 brd ff:ff:ff:ff:ff:ff
    inet 10.167.82.64/21 brd 10.167.87.255 scope global eth1
    inet6 fe80::222:15ff:fef3:c952/64 scope link
       valid_lft forever preferred_lft forever
3: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN qlen 1000
    link/ether f0:7d:68:71:3e:1d brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f27d:68ff:fe71:3e1d/64 scope link
       valid_lft forever preferred_lft forever
4: mon.wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN qlen 1000
    link/ieee802.11/radiotap f0:7d:68:71:3e:1d brd ff:ff:ff:ff:ff:ff
5: pan0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN
    link/ether 72:7f:9b:e5:2a:62 brd ff:ff:ff:ff:ff:ff
9: ppp0: <POINTOPOINT,MULTICAST,NOARP> mtu 1460 qdisc noop state DOWN qlen 3
    link/ppp

=======

FYI, working configuration through "vpnpptp" produce following output:

$ tail -f /var/log/syslog

Jan 26 02:15:52 seriy-desktop xl2tpd[2301]: setsockopt recvref[22]: Protocol not available
Jan 26 02:15:52 seriy-desktop xl2tpd[2301]: This binary does not support kernel L2TP.
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: xl2tpd version xl2tpd-1.2.6 started on seriy-desktop PID:2302
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Forked by Scott Balmos and David Stipp, (C) 2001
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Inherited by Jeff McAdams, (C) 2002
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Forked again by Xelerance (www.xelerance.com) (C) 2006
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Listening on IP address 0.0.0.0, port 1701
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Connecting to host 85.21.0.255, port 1701
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Connection established to 85.21.0.255, 1701. Local: 60158, Remote: 41485 (ref=0/0).
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Calling on tunnel 60158
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Call established with 85.21.0.255, Local: 54164, Remote: 25906, Serial: 1 (ref=0/0)
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: start_pppd: I'm running:
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "/usr/sbin/pppd"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "passive"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "nodetach"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: ":"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "name"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "seriyps"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "debug"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "file"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "/etc/ppp/peers/beeline"
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: "/dev/pts/0"
Jan 26 02:15:52 seriy-desktop pppd[2311]: pppd 2.4.5 started by root, uid 0
Jan 26 02:15:52 seriy-desktop pppd[2311]: using channel 4
Jan 26 02:15:52 seriy-desktop NetworkManager[1283]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/ppp0, iface: ppp0)
Jan 26 02:15:52 seriy-desktop NetworkManager[1283]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/ppp0, iface: ppp0): no ifupdown configuration found.
Jan 26 02:15:52 seriy-desktop pppd[2311]: Using interface ppp0
Jan 26 02:15:52 seriy-desktop pppd[2311]: Connect: ppp0 <--> /dev/pts/0
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xe0d8008b>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [LCP ConfReq id=0x1 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0xa4994059> <pcomp> <accomp>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [LCP ConfRej id=0x1 <pcomp> <accomp>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0xe0d8008b>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [LCP ConfReq id=0x2 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0xa4994059>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [LCP ConfAck id=0x2 <mru 1460> <asyncmap 0xa0000> <auth chap MD5> <magic 0xa4994059>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [CHAP Challenge id=0x1 <653b846f1ed43f8300704a9d19dab227>, name = "bras255"]
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [CHAP Response id=0x1 <ad3a2bb6e7a5d7808b8d43ef730d149a>, name = "seriyps"]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [CHAP Success id=0x1 ""]
Jan 26 02:15:52 seriy-desktop pppd[2311]: CHAP authentication succeeded
Jan 26 02:15:52 seriy-desktop pppd[2311]: CHAP authentication succeeded
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: rcvd [IPCP ConfReq id=0x1 <addr 85.21.0.255>]
Jan 26 02:15:52 seriy-desktop pppd[2311]: sent [IPCP ConfAck id=0x1 <addr 85.21.0.255>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: rcvd [IPCP ConfReq id=0x2 <addr 85.21.0.255>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: sent [IPCP ConfAck id=0x2 <addr 85.21.0.255>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: sent [IPCP ConfReq id=0x2 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns2 0.0.0.0>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: rcvd [IPCP ConfNak id=0x2 <addr 95.26.139.28> <ms-dns1 85.21.192.5> <ms-dns2 213.234.192.7>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: sent [IPCP ConfReq id=0x3 <addr 95.26.139.28> <ms-dns1 85.21.192.5> <ms-dns2 213.234.192.7>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: rcvd [IPCP ConfAck id=0x3 <addr 95.26.139.28> <ms-dns1 85.21.192.5> <ms-dns2 213.234.192.7>]
Jan 26 02:15:54 seriy-desktop pppd[2311]: local IP address 95.26.139.28
Jan 26 02:15:54 seriy-desktop pppd[2311]: remote IP address 85.21.0.255
Jan 26 02:15:54 seriy-desktop pppd[2311]: primary DNS address 85.21.192.5
Jan 26 02:15:54 seriy-desktop pppd[2311]: secondary DNS address 213.234.192.7
Jan 26 02:15:54 seriy-desktop pppd[2311]: Script /etc/ppp/ip-up started (pid 2357)
Jan 26 02:15:54 seriy-desktop postfix/master[2576]: reload -- version 2.8.5, configuration /etc/postfix
Jan 26 02:15:54 seriy-desktop pppd[2311]: Script /etc/ppp/ip-up finished (pid 2357), status = 0x0
Jan 26 02:16:02 seriy-desktop pppd[2311]: rcvd [LCP EchoReq id=0x1 magic=0xa4994059 e0 d8 00 8b]

and routes

$ ip route
default dev ppp0 scope link
10.0.0.0/8 via 10.167.80.1 dev eth1 proto static
10.167.80.0/21 dev eth1 proto kernel scope link src 10.167.82.64 metric 1
...
85.21.0.255 via 10.167.80.1 dev eth1
85.21.0.255 dev ppp0 proto kernel scope link src 95.26.139.28
...

Revision history for this message
Werner Jaeger (werner-jaeger) said :
#9

Thanks for the really comprehensive information.

The authentication server don't ack CHAP authentication answer.

The log form the non working configuration is;

Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Connecting to host tp.internet.beeline.ru, port 1701
Jan 26 02:00:14 seriy-desktop xl2tpd[30750]: Connection established to 85.21.0.251, 1701. Local:

But the corresponding log from working configuration through "vpnpptp" is:

Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Connecting to host 85.21.0.255, port 1701
Jan 26 02:15:52 seriy-desktop xl2tpd[2302]: Connection established to 85.21.0.255, 1701. Local:

I' suggest that you enter the IP address (85.21.0.255) instead of the DNS name (tp.internet.beeline.ru).

Please tell me if this solves the problem.

Meanwhile I'm going to further analyse the provided information.

Revision history for this message
Launchpad Janitor (janitor) said :
#10

This question was expired because it remained in the 'Open' state without activity for the last 15 days.