<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.E-MailFormatvorlage17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=DE link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span lang=EN-US>Hi at all!<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>I have the following problem:<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>I try to connect my linux client (centos
5.2; openswan 2.6.16; xl2tpd 1.1.12) to a cisco 2811 router.<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>And the client wants the server to
authenticate itself, so I tried to handle this with the option refuse/require
authentication.<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>Because the cisco specialists also told me
to try this, because they think their configuration is correct, maybe or maybe
not. <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>So I have to change my config, but it
doesn’t work at all. <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>output: refuse
authentication = no<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: Connecting to host 172.16.0.1, port 1701 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: Connection established to 172.16.0.1, 1701. Local:
59623, Remote: 5931 (ref=0/0). <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: Calling on tunnel 59623 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: Call established with 172.16.0.1, Local: 23024, Remote:
9, Serial: 2 (ref=0/0) <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 pppd[5779]: pppd 2.4.4 started by root, uid 0<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 pppd[5779]: Using interface ppp0<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 pppd[5779]: Connect: ppp0 <--> /dev/pts/6<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: handle_avps: dont know how to handle atribute 46. <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: handle_avps: dont know how to handle atribute 104.
<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:34
ac-conn1 xl2tpd[5679]: control_finish: Connection closed to 172.16.0.1, serial
2 (Locally generated disconnect) <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 19:49:44
ac-conn1 xl2tpd[5679]: control_finish: Connection closed to 172.16.0.1, port
1701 (), Local: 59623, Remote: 5931 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>output: refuse
authentication = yes or require authentication = yes/no<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 xl2tpd[5687]: Connecting to host 172.16.0.1, port 1701 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 xl2tpd[5687]: Connection established to 172.16.0.1, 1701. Local:
27322, Remote: 33910 (ref=0/0). <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 xl2tpd[5687]: Calling on tunnel 27322 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 xl2tpd[5687]: Call established with 172.16.0.1, Local: 10145, Remote:
10, Serial: 1 (ref=0/0) <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 kernel: CSLIP: code copyright 1989 Regents of the University of
California<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 kernel: PPP generic driver version 2.4.2<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 pppd[5732]: pppd 2.4.4 started by root, uid 0<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 pppd[5732]: Using interface ppp0<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:02:33
ac-conn1 pppd[5732]: Connect: ppp0 <--> /dev/pts/2<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:03:03
ac-conn1 pppd[5732]: No response to PAP authenticate-requests<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:03:03
ac-conn1 pppd[5732]: Connection terminated.<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:03:03
ac-conn1 pppd[5732]: Exit.<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:03:03
ac-conn1 xl2tpd[5687]: call_close: Call 10145 to 172.16.0.1 disconnected <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'>Sep 17 20:03:13
ac-conn1 xl2tpd[5687]: control_finish: Connection closed to 172.16.0.1, port
1701 (), Local: 27322, Remote: 33910 <o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>And the cisco debug:<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>refuse authentication = no<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:04:44.555 MEST: ppp7 PPP:
Using vpn set call direction<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:04:44.555 MEST: ppp7 PPP:
Treating connection as a callin<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:04:44.555 MEST: ppp7 PPP:
Session handle[F5000009] Session id[7]<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:04:44.819 MEST: ppp7 PPP: Authorization
required<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>refuse authentication = yes or require
authentication = yes/no<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.527 MEST: ppp9 PPP:
Using vpn set call direction<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.527 MEST: ppp9 PPP:
Treating connection as a callin<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.527 MEST: ppp9 PPP:
Session handle[1800000B] Session id[9]<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.803 MEST: ppp9 PPP:
Authorization required<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.811 MEST: ppp9 PAP: I
AUTH-REQ id 1 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.811 MEST: ppp9 PAP:
Authenticating peer ac-conn1<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.811 MEST: ppp9 PPP:
Sent PAP LOGIN Request<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.811 MEST: ppp9 PPP:
Received LOGIN Response PASS<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.819 MEST: Vi2.1 PPP:
Sent LCP AUTHOR Request<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.819 MEST: Vi2.1 PPP:
Sent IPCP AUTHOR Request<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.819 MEST: Vi2.1 LCP:
Received AAA AUTHOR Response PASS<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.819 MEST: Vi2.1 IPCP:
Received AAA AUTHOR Response PASS<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:38.819 MEST: Vi2.1 PAP:
O AUTH-ACK id 1 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:41.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 2 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:41.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:41.811 MEST: Vi2.1 PAP:
O AUTH-ACK id 2 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:44.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 3 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:44.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:44.811 MEST: Vi2.1 PAP:
O AUTH-ACK id 3 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:47.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 4 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:47.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:47.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:50.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 5 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:50.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:50.811 MEST: Vi2.1 PAP:
O AUTH-ACK id 5 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:53.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 6 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:53.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:53.811 MEST: Vi2.1 PAP:
O AUTH-ACK id 6 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:56.811 MEST: Vi2.1 PAP:
I AUTH-REQ id 7 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:56.811 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:56.815 MEST: Vi2.1 PAP:
O AUTH-ACK id 7 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:59.815 MEST: Vi2.1 PAP:
I AUTH-REQ id 8 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:59.815 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:21:59.815 MEST: Vi2.1 PAP:
O AUTH-ACK id 8 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:02.815 MEST: Vi2.1 PAP:
I AUTH-REQ id 9 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:02.815 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:02.815 MEST: Vi2.1 PAP:
O AUTH-ACK id 9 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:05.815 MEST: Vi2.1 PAP:
I AUTH-REQ id 10 len 19 from "ac-conn1"<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:05.815 MEST: Vi2.1 PAP:
Resending Auth-Ack<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US>*Sep 17 2008 22:22:05.815 MEST: Vi2.1 PAP:
O AUTH-ACK id 10 len 5<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>Maybe someone has an answer why it
doesn’t work, or why the pppd doesn’t match with the acknowledge.<o:p></o:p></span></p>
<p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p>
<p class=MsoNormal><span lang=EN-US>Thanks Hennes<o:p></o:p></span></p>
<p class=MsoNormal><o:p> </o:p></p>
</div>
</body>
</html>