openl2tp.org
http://forums.openl2tp.org/

openl2tp as client - CHAP password rejected
http://forums.openl2tp.org/viewtopic.php?f=3&t=77
Page 1 of 1

Author:  Brad R [ Mon Aug 29, 2011 1:32 pm ]
Post subject:  openl2tp as client - CHAP password rejected

Hello all, I'm having difficulty configuring openl2tp to connect to an unencrypted remote server. Looking at the packets, I can see that the server is rejecting the CHAP password. I know the password is good; it works with xl2tpd (xl2tpd has other issues on my system, but CHAP authentication is not one of them). So I'm assuming that I've configured openl2tp incorrectly...but from reading the documentation, I can't figure out what I'm doing wrong.

Here's my openl2tpd.start config file, with dummy username, password, and server name. I'm loading this with the command "l2tpconfig config restore file=openl2tpd.start"

Code:
tunnel profile modify profile_name=default \
   our_udp_port=1701

ppp profile modify profile_name=default \
   auth_eap=no auth_mschapv1=no auth_mschapv2=no \
   auth_pap=no default_route=no local_name=USerNAme

tunnel create tunnel_name=CrossBridge \
   dest_ipaddr=yadayadayada.net \
   trace_flags=ppp,protocol,transport,ppp_control

session create tunnel_name=CrossBridge \
   session_name=CrossBridge \
   user_name=USerNAme \
   user_password=PAssWOrd \
   trace_flags=ppp_control,protocol

system modify deny_remote_tunnel_creates=yes



And here's the syslog dump from a connect attempt:

Code:
Aug 29 08:19:06 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: sending SCCRQ
Aug 29 08:19:06 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: waiting for tunnel up
Aug 29 08:19:06 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: SCCRP received from peer 757
Aug 29 08:19:06 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: sending SCCCN to peer 757
Aug 29 08:19:06 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: sending ICRQ to peer 757/0
Aug 29 08:19:07 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: ICRP received from peer 757
Aug 29 08:19:07 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: sending ICCN to peer 757/77
Aug 29 08:19:07 Bradsnew pppd[22532]: Plugin pppol2tp.so loaded.
Aug 29 08:19:07 Bradsnew pppd[22532]: Plugin openl2tp.so loaded.
Aug 29 08:19:07 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: SLI received from peer 757
Aug 29 08:19:07 Bradsnew pppd[22532]: pppd 2.4.5 started by root, uid 0
Aug 29 08:19:07 Bradsnew pppd[22532]: Using interface ppp0
Aug 29 08:19:07 Bradsnew pppd[22532]: Connect: ppp0 <-->
Aug 29 08:19:07 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: SLI received from peer 757
Aug 29 08:19:08 Bradsnew pppd[22532]: CHAP authentication failed: Rejected^J^M
Aug 29 08:19:08 Bradsnew pppd[22532]: CHAP authentication failed
Aug 29 08:19:08 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: SLI received from peer 757
Aug 29 08:19:08 Bradsnew pppd[22532]: Connection terminated.
Aug 29 08:19:08 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: Optional AVPs ignored for message CDN: parse_flags=400000000000
Aug 29 08:19:08 Bradsnew openl2tpd[2035]: PROTO: tunl 25527/36998: CDN received from peer 757
Aug 29 08:19:08 Bradsnew openl2tpd[2035]: PROTO: session 25527/36998, CDN error 2/6: A generic vendor-specific error occurred - Locally generated disconnect
Aug 29 08:19:08 Bradsnew avahi-daemon[1471]: Withdrawing workstation service for ppp0.
Aug 29 08:19:08 Bradsnew pppd[22532]: Exit.
Aug 29 08:19:18 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: STOPCCN received
Aug 29 08:19:18 Bradsnew openl2tpd[2035]: PROTO: tunl 25527: STOPCCN error 1/0: General request to clear control connection


I'd be happy to run the test again with additional debug messages if that would help in diagnosis. But I imagine I've done something obviously wrong.

Page 1 of 1 All times are UTC [ DST ]
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/