<< | Thread Index | >> ]    [ << | Date Index | >> ]

To: Doug Johnson <doug.johnson,AT,vifanusa,DOT,com>,"'cipe-l,AT,inka,DOT,de'" <cipe-l,AT,inka,DOT,de>
Subject: RE: Help on connecting WIN2k workstation to Cipe VPN server on Li nux
From: Artem Dmytrenko <admytren,AT,internet2,DOT,edu>
Date: Fri, 27 Jun 2003 17:33:54 -0400
In-reply-to: <1AEB768E2548D611869F000255478B0A355261@NTUSA2>

I think your problem is that you're trying to connect two different machines
to the same cipe adapter. On your server, you should create separate adapter
for each connection.

At 04:13 PM 6/27/2003 -0400, Doug Johnson wrote:
I have found that the console does connect for the problem below.  Therefore
I have a few routing problems to solve.  I do have a question on why (when
connected) my messages file on the Linux machine shows each VPN client
constantly re-establishing the connection:

Jun 27 15:49:35 linus kernel: cipcb0: new peer 68.118.80.170:6849
Jun 27 15:49:43 linus kernel: cipcb0: new peer 68.26.201.109:6849
Jun 27 15:49:57 linus kernel: cipcb0: new peer 68.118.80.170:6849
Jun 27 15:50:07 linus kernel: cipcb0: new peer 68.26.201.109:6849
Jun 27 15:50:17 linus kernel: cipcb0: new peer 68.118.80.170:6849
.......

This looks to me a config issue and I am sort of lost. I found only 1
reference in the archives but no answer. The connections do not seem to drop
but I don't notice it. Any info would be appreciated.

Doug


-----Original Message----- From: Doug Johnson [mailto:doug.johnson,AT,vifanusa,DOT,com Sent: Friday, June 27, 2003 2:07 PM To: 'cipe-l,AT,inka,DOT,de' Subject: FW: Help on connecting WIN2k workstation to Cipe VPN server on Li nux


The first one for some reason didn't post. So, let me try it again. Please forgive me if two of these show up...

> Hey gang! I currently have 2 networks connected by a CIPE VPN and it works
> quiet well (except for a few small issues with MASQUERADE drops in
> IPTABLES which I am still dealing with). I am wanting to connect a WIN2K
> Pro workstation to the VPN as well and am having a few problems.  I have
> installed the windoze CIPE client on the workstation. Here is its config:
>
> #########################################
>
> In the adapter settings of the Win2k box:
> IP Address: 10.1.0.3  (I am assuming that I am using the IP of the virtual
> adapter of the local machine here)
> Subnet Mask: 255.255.255.0
> Default Gateway: (blank)
>
> DNS Server entries are both blank as well.
>
> In the CIPE Peer setting I have the following info:
> Local IP Addres: 0.0.0.0 Port 6849 (I used to use 51000 but the vin client
> would not accept over 4 in this field)
> Peer IP Address: 66.43.188.40 Port 6849
> Local PTP Address:10.1.0.3
> Remote PTP Address: 10.1.0.1
> Status Enabled: (checked)
> Static Key - Matched Exactly to the server - Hidden here to protect the
> tempted :)
> Cipher: Blowfish
> Timeout seconds: 600
>
> #############################################
>
> The CIPE server
> options.cipcb0 file:
>
> dynip
> cttl 64
> maxerr -1
> ptpaddr 10.1.0.2 (This is for the other always up connected LAN - maybe a
> problem here)
> ipaddr 10.1.0.1
> me vpn.vifanusa.com:6849
> peer 0.0.0.0
> key (once again hidden, sorry)
>
> ifcfg-cipcb0 file:
>
> USERCTL=no
> PEERDNS=no
> TYPE=CIPE
> DEVICE=cipcb0
> ONBOOT=yes
> IPADDR=10.1.0.1
> MYPORT=6849
> PTPADDR=10.1.0.2  (This is for the other always up connected LAN - maybe a
> problem here)
>
> ################################################
>
> The laptop that I am trying to install this adapter on has three ways to
> connect to the Internet.
> 1. Ethernet (Here I do not need the Cipe client since they are locally
> connected at that time
> 2. WiFi 802.11b ( I need it here but I don't think it uses a NDIS standard
> adpater for this. We have had other problems with other VPN softwares
> because of the NDIS compatiable issues.
> 3. Dial-up through a PCS phone. This connection takes place after the user
> has logged into the WIN2k laptop. I am not sure if it makes a difference
> here.
>
>
> My questions are as follows:
>       Do I have something incorrect in my configs?
>       Are there issues with the type of connections I am trying to
> establish?
>       Can I use one server for multiple type of connections (dedicated LAN
> and roaming clients)?
>
> Thanks much in advance...
> Doug

--
Message sent by the cipe-l,AT,inka,DOT,de mailing list.
Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
Other commands available with "help" in body to the same address.
CIPE info and list archive:
<URL:http://sites.inka.de/~bigred/devel/cipe.html>

--
Message sent by the cipe-l,AT,inka,DOT,de mailing list.
Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
Other commands available with "help" in body to the same address.
CIPE info and list archive: <URL:http://sites.inka.de/~bigred/devel/cipe.html>


<< | Thread Index | >> ]    [ << | Date Index | >> ]