Re: pptp with encryption on SuSE 9.0

From: /dev/rob0 (rob0_at_gmx.co.uk)
Date: 03/21/04 

Date: Sun, 21 Mar 2004 12:05:08 -0600

On Sun, 21 Mar 2004 09:07:26 -0500, Chuck Mattern wrote:

A good post with a lot of useful information. I hope others take notice
of the kind of information they should be putting into their posts.

> I'm trying to set up an encrypted pptp connection from my Treo 270
> using Mergix VPN to my home PC running SuSE 9.0 and having issues.

Is PPTP the only VPN option from this thing? I just find PPTP rather
distasteful, since the only encryption possible is named "Microsoft",
and it has a non-free license. I prefer OpenVPN, because it uses
OpenSSH for encryption.

A strength of PPTP is the server-client model for scalability, but if
you're the only user you don't need that.

> I can make an unencrypted connection from the Treo via the Internet
> and from my Win2K laptop (just doing that for a sanity check) via my
> home LAN but if I require encryption on the client both fail with a

I have had the same issue on pptpd's I maintain. Funny thing is that
when I don't require encryption I get it at 128-bit!

> -I have mppe in the options file:
> mppe-40
> mppe-128
> mppe-stateless

What else is in there? I use these:
#v+
+chap
+chapms
+chapms-v2
#v-

You might also want to try "debug" until you get things working.

> Below is a sample of one session from the Treo to the PC as seen
> through syslog:

"debug" will show you the dialogue between server and client wherein
they discuss what sort of encryption is to be used. For me that logs to
/var/log/debug, but that of course depends on your syslog.conf.

> Any assistance would be appreciated!

I guess I haven't helped much. Like I said, I really dislike PPTP. :)
They (poptop.org) do have a mailing list which probably has more
posters who understand PPTP and pptpd. I got mine working and leave it
alone as much as possible. :) 

-- 
  /dev/rob0 - preferred_email=i$((28*28+28))@softhome.net
  or put "not-spam" or "/dev/rob0" in Subject header to reply

Relevant Pages

  • Re: Thought on Cotse.net?
    ... "You have to understand that Cotse is a competitor and that we are ... truth that PPTP had issues once, but those issues were fixed with the ... and we also force military grade encryption (something Cotse also ... Cotse is not anonymous and does have logs, ...
    (alt.privacy)
  • Re: NAT and PPTP
    ... but will likely need some help analyzing the existing code, ... PPTP is really very close to PPPoE, except that it runs over TCP (for call ... The call control mechnism has no real security, ... Linksys routers have a PPTP implementation that does no encryption. ...
    (freebsd-net)
  • Re: NAT and PPTP
    ... One of my question is how many pptp or pppoe sessions ... > Linksys routers have a PPTP implementation that does no encryption. ...
    (freebsd-net)
  • PPTP, IAS Radius and Cisco 1801
    ... I'm no able to use encryption nor compression... ... on the client i get 742 error... ... aaa authentication login console none ... Default PPTP VPDN group ...
    (comp.dcom.sys.cisco)