Vpn e Soho 77
Inviato: ven 21 ott , 2005 10:09 am
Ciao a tutti sono un nuovo utente di questo forum e ho un problema con VPN.
Ho realizzato una VPN con un router SOHO 77 con il protocollo pptp.
Inizialmente riuscivo ad entrare e uscire tranquillamente dalla vpn ma improvvisamente senza aver cambiato nessuna impostazione non riesco + ad accederci. Io utilizzo la connessione remota di windows come client vpn.
Vi incollo la configurazione attuale:
Building configuration...
Current configuration : 2187 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname soho
!
logging buffered 4096 debugging
logging rate-limit console 10 except errors
enable secret 5 **************************/
!
username ****** password 0 ********
username ******* password 0 ***********
ip subnet-zero
no ip finger
!
no ip dhcp-client network-discovery
vpdn enable
no vpdn logging
!
vpdn-group *******-dial-in
! Default L2TP VPDN group
! Default PPTP VPDN group
accept-dialin
protocol any
virtual-template 1
!
!
!
!
interface Tunnel0
ip unnumbered Dialer0
tunnel source Dialer0
tunnel destination **.***.***.***
!
interface Ethernet0
ip address ***.***.**.*** 255.255.255.240
no ip mroute-cache
!
interface Virtual-Template1
ip unnumbered Ethernet0
ip nat inside
peer default ip address pool mio-pool-per-vpn
ppp authentication chap
!
interface ATM0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
hold-queue 224 in
!
interface Dialer0
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication pap callin
ppp pap sent-username ********************** password 7 ***************
!
ip local pool mio-pool-per-vpn ***.***.***.** ***.***.**.***
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
ip route 10.0.0.0 255.255.255.0 ***.***.**.***
ip route 192.168.0.0 255.255.255.0 Tunnel0
no ip http server
!
logging 10.0.0.80
access-list 30 permit 10.0.0.33
access-list 30 permit 10.0.0.0 0.0.0.255
access-list 30 permit ***.***.**.** 0.0.0.15
dialer-list 1 protocol ip permit
!
line con 0
transport input none
stopbits 1
line vty 0 4
access-class 30 in
password ************
login
!
no scheduler max-task-time
end
Ho attivato il debug della vpdn ed ecco cosi mi succede quando provo a connettermi:
*Mar 1 18:35:43.387: Vi2 VTEMPLATE: Reuse Vi2, recycle queue size 0
*Mar 1 18:35:43.391: Vi2 VTEMPLATE: Hardware address ****.****.****
*Mar 1 18:35:43.391: Vi2 VPDN: Virtual interface created
*Mar 1 18:35:43.391: Vi2 VPDN: Clone from Vtemplate 1
*Mar 1 18:35:43.391: Vi2 VTEMPLATE: Has a new cloneblk vtemplate, now it has vtemplate
*Mar 1 18:35:43.395: Vi2 VTEMPLATE: ************* CLONE VACCESS2 *****************
*Mar 1 18:35:43.395: Vi2 VTEMPLATE: Clone from Virtual-Template1
interface Virtual-Access2
default ip address
no ip address
encap ppp
ip unnumbered Ethernet0
ip nat inside
end
*Mar 1 18:35:43.539: Vi2 VPDN: Bind interface direction=2
*Mar 1 18:35:43.543: %LINK-3-UPDOWN: Interface Virtual-Access2, changed state to up
*Mar 1 18:35:43.543: Vi2 VPDN: O out
*Mar 1 18:35:44.543: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to up
*Mar 1 18:35:45.543: Vi2 VPDN: O out
*Mar 1 18:35:45.703: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:45.703: Vi2 VPDN: O out
*Mar 1 18:35:47.559: Vi2 VPDN: O out
*Mar 1 18:35:48.695: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:48.695: Vi2 VPDN: O out
*Mar 1 18:35:49.559: Vi2 VPDN: O out
*Mar 1 18:35:51.559: Vi2 VPDN: O out
*Mar 1 18:35:52.699: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:52.699: Vi2 VPDN: O out
*Mar 1 18:35:53.559: Vi2 VPDN: O out
*Mar 1 18:35:55.559: Vi2 VPDN: O out
*Mar 1 18:35:56.687: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:56.691: Vi2 VPDN: O out
*Mar 1 18:35:57.559: Vi2 VPDN: O out
*Mar 1 18:35:59.559: Vi2 VPDN: O out
*Mar 1 18:36:00.687: Vi2 PPTP: I, payload length 48
*Mar 1 18:36:00.687: Vi2 VPDN: O out
*Mar 1 18:36:01.559: Vi2 VPDN: O out
*Mar 1 18:36:03.559: Vi2 VPDN: Reset
*Mar 1 18:36:03.559: Vi2 VPDN: Reset
*Mar 1 18:36:03.563: Vi2 VPDN: Unbind interface
*Mar 1 18:36:03.563: Vi2 VTEMPLATE: Free vaccess
*Mar 1 18:36:03.563: VTEMPLATE: Clean up dirty vaccess queue, size 1
*Mar 1 18:36:03.563: Vi2 VTEMPLATE: Found a dirty vaccess clone with vtemplate
*Mar 1 18:36:03.567: Vi2 VTEMPLATE: ************ UNCLONE VACCESS2 **************
*Mar 1 18:36:03.567: Vi2 VTEMPLATE: Unclone to-be-freed command#4
interface Virtual-Access2
default ip nat inside
default ip unnumbered Ethernet0
default encap ppp
default ip address
end
*Mar 1 18:36:03.635: Vi2 VTEMPLATE: Remove cloneblk vtemplate with vtemplate
*Mar 1 18:36:03.639: Vi2 VTEMPLATE: Set default settings with no ip address
*Mar 1 18:36:03.683: Vi2 VTEMPLATE: Add vaccess to recycle queue, queue size 1
*Mar 1 18:36:04.687: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to down
Il client si comporta cosi:
Si connette
in fase di autenticazione ci sta un pochettino e dopo mi da il seguente messaggio di errore:
errore 619: La porta è disconnessa
Ringrazio tutte le persone che vorranno aiutarmi.
A presto.
Ho realizzato una VPN con un router SOHO 77 con il protocollo pptp.
Inizialmente riuscivo ad entrare e uscire tranquillamente dalla vpn ma improvvisamente senza aver cambiato nessuna impostazione non riesco + ad accederci. Io utilizzo la connessione remota di windows come client vpn.
Vi incollo la configurazione attuale:
Building configuration...
Current configuration : 2187 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname soho
!
logging buffered 4096 debugging
logging rate-limit console 10 except errors
enable secret 5 **************************/
!
username ****** password 0 ********
username ******* password 0 ***********
ip subnet-zero
no ip finger
!
no ip dhcp-client network-discovery
vpdn enable
no vpdn logging
!
vpdn-group *******-dial-in
! Default L2TP VPDN group
! Default PPTP VPDN group
accept-dialin
protocol any
virtual-template 1
!
!
!
!
interface Tunnel0
ip unnumbered Dialer0
tunnel source Dialer0
tunnel destination **.***.***.***
!
interface Ethernet0
ip address ***.***.**.*** 255.255.255.240
no ip mroute-cache
!
interface Virtual-Template1
ip unnumbered Ethernet0
ip nat inside
peer default ip address pool mio-pool-per-vpn
ppp authentication chap
!
interface ATM0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
hold-queue 224 in
!
interface Dialer0
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication pap callin
ppp pap sent-username ********************** password 7 ***************
!
ip local pool mio-pool-per-vpn ***.***.***.** ***.***.**.***
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
ip route 10.0.0.0 255.255.255.0 ***.***.**.***
ip route 192.168.0.0 255.255.255.0 Tunnel0
no ip http server
!
logging 10.0.0.80
access-list 30 permit 10.0.0.33
access-list 30 permit 10.0.0.0 0.0.0.255
access-list 30 permit ***.***.**.** 0.0.0.15
dialer-list 1 protocol ip permit
!
line con 0
transport input none
stopbits 1
line vty 0 4
access-class 30 in
password ************
login
!
no scheduler max-task-time
end
Ho attivato il debug della vpdn ed ecco cosi mi succede quando provo a connettermi:
*Mar 1 18:35:43.387: Vi2 VTEMPLATE: Reuse Vi2, recycle queue size 0
*Mar 1 18:35:43.391: Vi2 VTEMPLATE: Hardware address ****.****.****
*Mar 1 18:35:43.391: Vi2 VPDN: Virtual interface created
*Mar 1 18:35:43.391: Vi2 VPDN: Clone from Vtemplate 1
*Mar 1 18:35:43.391: Vi2 VTEMPLATE: Has a new cloneblk vtemplate, now it has vtemplate
*Mar 1 18:35:43.395: Vi2 VTEMPLATE: ************* CLONE VACCESS2 *****************
*Mar 1 18:35:43.395: Vi2 VTEMPLATE: Clone from Virtual-Template1
interface Virtual-Access2
default ip address
no ip address
encap ppp
ip unnumbered Ethernet0
ip nat inside
end
*Mar 1 18:35:43.539: Vi2 VPDN: Bind interface direction=2
*Mar 1 18:35:43.543: %LINK-3-UPDOWN: Interface Virtual-Access2, changed state to up
*Mar 1 18:35:43.543: Vi2 VPDN: O out
*Mar 1 18:35:44.543: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to up
*Mar 1 18:35:45.543: Vi2 VPDN: O out
*Mar 1 18:35:45.703: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:45.703: Vi2 VPDN: O out
*Mar 1 18:35:47.559: Vi2 VPDN: O out
*Mar 1 18:35:48.695: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:48.695: Vi2 VPDN: O out
*Mar 1 18:35:49.559: Vi2 VPDN: O out
*Mar 1 18:35:51.559: Vi2 VPDN: O out
*Mar 1 18:35:52.699: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:52.699: Vi2 VPDN: O out
*Mar 1 18:35:53.559: Vi2 VPDN: O out
*Mar 1 18:35:55.559: Vi2 VPDN: O out
*Mar 1 18:35:56.687: Vi2 PPTP: I, payload length 48
*Mar 1 18:35:56.691: Vi2 VPDN: O out
*Mar 1 18:35:57.559: Vi2 VPDN: O out
*Mar 1 18:35:59.559: Vi2 VPDN: O out
*Mar 1 18:36:00.687: Vi2 PPTP: I, payload length 48
*Mar 1 18:36:00.687: Vi2 VPDN: O out
*Mar 1 18:36:01.559: Vi2 VPDN: O out
*Mar 1 18:36:03.559: Vi2 VPDN: Reset
*Mar 1 18:36:03.559: Vi2 VPDN: Reset
*Mar 1 18:36:03.563: Vi2 VPDN: Unbind interface
*Mar 1 18:36:03.563: Vi2 VTEMPLATE: Free vaccess
*Mar 1 18:36:03.563: VTEMPLATE: Clean up dirty vaccess queue, size 1
*Mar 1 18:36:03.563: Vi2 VTEMPLATE: Found a dirty vaccess clone with vtemplate
*Mar 1 18:36:03.567: Vi2 VTEMPLATE: ************ UNCLONE VACCESS2 **************
*Mar 1 18:36:03.567: Vi2 VTEMPLATE: Unclone to-be-freed command#4
interface Virtual-Access2
default ip nat inside
default ip unnumbered Ethernet0
default encap ppp
default ip address
end
*Mar 1 18:36:03.635: Vi2 VTEMPLATE: Remove cloneblk vtemplate with vtemplate
*Mar 1 18:36:03.639: Vi2 VTEMPLATE: Set default settings with no ip address
*Mar 1 18:36:03.683: Vi2 VTEMPLATE: Add vaccess to recycle queue, queue size 1
*Mar 1 18:36:04.687: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to down
Il client si comporta cosi:
Si connette
in fase di autenticazione ci sta un pochettino e dopo mi da il seguente messaggio di errore:
errore 619: La porta è disconnessa
Ringrazio tutte le persone che vorranno aiutarmi.
A presto.