Dan Holliman writes:
> mpd.links file:
> 
>  pptp0:
>          set link type pptp
>          set pptp self 128.32.43.97
>          set pptp enable incoming
>          set pptp disable originate
> 
> mpd.conf file:
> 
> default:
>         load pptp0
> 
> pptp0:
>         new -i ng0 pptp0 pptp0
>         set iface disable on-demand
>         set iface enable proxy-arp
>         set iface idle 0
>         set bundle disable multilink
>         set link yes acfcomp protocomp
>         set link no pap chap
>         set link enable chap
>         set link keep-alive 10 60
>         set ipcp yes vjcomp
>         set ipcp ranges 128.32.43.97/32 10.186.221.0/24
                          ^^^^^^^^^^^^
>         set bundle enable compression
>         set ccp yes mppc
>         set ccp yes mpp-e40
>         set ccp yes mpp-e128
>         set ccp yes mpp-stateless

That line is the problem.. Change "128.32.43.97" to "10.186.221.x"
where "10.186.221.x" is the address of the mpd machine on the
private network.  This line is setting the IP addresses of the
point-to-point link that is the "inside" of the tunnel. What you've
got will make the remote machine think that the route to 128.32.43.97
is via the PPTP, ok, so take the packet and wrap it in a GRE packet
and send that to 128.32.43.97, ok, so what was the route to
128.32.43.97? Oops.. that is, infinite routing loop.

Also, "10.186.221.0/24" looks fishy.. the peer is not going to know
what IP it should want so there's no need to allow leeway (ie, 24 vs 32).
You should change to a definite address, eg, 10.186.221.123/32.

So something like

        set ipcp ranges 10.186.221.100/32 10.186.221.101/32

should work better.

-Archie

___________________________________________________________________________
Archie Cobbs   *   Whistle Communications, Inc.  *   http://www.whistle.com


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message

Reply via email to