[npppd] hang on Starting peer

jonsec · #1 **(View Single Post)** 30th September 2022

Hi

I want to run pptp server on my openbsd.

But when I connect from Windows 10, it does not connect and hangs.

Error code from windows connection is 807.

I start nppd service from console for better trace and output is :

Code:

root# npppd -d
2022-09-30 03:04:34:NOTICE: Starting npppd pid=47651 version=5.0.0
2022-09-30 03:04:34:NOTICE: Load configuration
from='/etc/npppd/npppd.conf' successfully.
2022-09-30 03:04:34:INFO: pppx0 Started pppx
2022-09-30 03:04:34:INFO: ipcp=PPTP pool dyn_pool=[192.0.2.0/24]
pool=[192.0.2.0/24]
2022-09-30 03:04:34:INFO: Loading pool config successfully.
2022-09-30 03:04:34:INFO: pptpd Listening _OPNEBSD_IP:1723/tcp (PPTP
PAC) [PPTP]
2022-09-30 03:04:34:INFO: pptpd Listening _OPNEBSD_IP:gre (PPTP PAC)
2022-09-30 03:04:34:DEBUG: accept_add: accepting on fd 7
2022-09-30 03:04:37:INFO: pptpd ctrl=0 Starting
peer=_WINDOWS_IP_:12890/tcp sock=_OPNEBSD_IP:1723/tcp
2022-09-30 21:22:39:ERR: pptpd ctrl=0 Timeout in state idle
2022-09-30 21:22:39:NOTICE: pptpd ctrl=0 logtype=Finished

I use this config :

Code:

root# echo 'net.pipex.enable=1' >> /etc/sysctl.conf
root# echo 'net.inet.gre.allow=1' >> /etc/sysctl.conf
root# echo 'net.inet.gre.wccp=1' >> /etc/sysctl.conf



root# vi /etc/npppd/npppd.conf
# GLOBAL
set max-session 15
set user-max-session 1

# TUNNEL
tunnel PPTP protocol pptp {
 listen on _IP_
 pptp-vendor-name "npppd"
 mppe required
 mppe-key-length 128
 mppe-key-state stateless
 idle-timeout 3600
}

# IPCP
ipcp PPTP {
 pool-address "192.0.2.0/24"
 dns-servers 8.8.8.8 8.8.4.4
 allow-user-selected-address no
}

# INTERFACE
interface pppx0 address 192.0.2.1 ipcp PPTP

# AUTHENTICATION
authentication LOCAL type local {
    users-file "/etc/npppd/npppd-users"
}

bind tunnel from PPTP authenticated by LOCAL to pppx0



root# echo "_USERNAME_:password=_PASSWORD_:" > /etc/npppd/npppd-users
root# rcctl enable npppd
root# reboot

where is the problem?

jggimi · #2 **(View Single Post)** 1st October 2022

I'll guess: you cannot assign addresses from the 192.0.2.0/24 subnet. It's reserved for documentation and examples only.

jonsec · #3 **(View Single Post)** 2nd October 2022

Quote:

Originally Posted by jggimi

I'll guess: you cannot assign addresses from the 192.0.2.0/24 subnet. It's reserved for documentation and examples only.

Thanks jggimi.

hmmm , I think I am going the wrong way.

I want to use OpenBSD server for access to the internet for hidden main ip.

So this is my goal :

jggimi · #4 **(View Single Post)** 2nd October 2022

WireGuard would be a far simpler provisioning implementation for a VPN. (For an "inside" subnet you would still want to use something valid, such as a subnet defined within RFC 1918.)

jonsec · #5 **(View Single Post)** 3rd October 2022

Quote:

Originally Posted by jggimi

WireGuard would be a far simpler provisioning implementation for a VPN. (For an "inside" subnet you would still want to use something valid, such as a subnet defined within RFC 1918.)

You are wonderful. ❤️

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
How to troubleshoot a hang in OpenBSD?	quisquous	OpenBSD General	11	1st January 2014 09:21 PM
npppd and bind not playing nice	quisquous	OpenBSD General	4	8th September 2013 05:55 PM
pf interfering with local lan peer communication	tomp	OpenBSD Security	3	2nd September 2011 09:12 PM
Introduction plus SSH login hang question.	pico	OpenBSD General	7	2nd April 2010 06:08 AM