MikroTik

Community discussions
https://forum.mikrotik.com/

Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via pptp

https://forum.mikrotik.com/viewtopic.php?t=82592

Page 1 of 1

Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via pptp

Posted: Wed Mar 05, 2014 4:40 pm
by wDw
Hello everybody!
Problem is that Ubuntu PCs do not connect to Mikrotik using pptp.

I set up my mikrotik router as a pptp server with following parameters in "ppp->pptp server" menu:
Code: Select all
Enabled - yes
Max MTU/Max MRU - 1460
MRRU - empty
Keepalive timeout - 10
Default profile - Default
Authentication: pap - on; chap - on; mschap1 - on; mschap2 - on

ros code

/ppp aaa> print
      use-radius: no
      accounting: no
      interim-update: 0s

ros code

/ppp profile> print
Flags: * - default 
 0 * name="default" local-address=192.168.2.1 use-mpls=default 
     use-compression=default use-vj-compression=default use-encryption=default 
     only-one=default change-tcp-mss=yes 

 3 * name="default-encryption" local-address=192.168.2.1 use-mpls=default 
     use-compression=default use-vj-compression=default use-encryption=yes 
     only-one=default change-tcp-mss=default

ros code

/ppp secret> print 
Flags: X - disabled 
 #   NAME       SERVICE CALLER-ID      PASSWORD      PROFILE      REMOTE-ADDRESS 
 4   one_mik... pptp                   xxxxxxxx        default-e... 192.168.2.10

ros code

/ip firewall filter> print
Flags: X - disabled, I - invalid, D - dynamic 
 5   chain=input action=accept protocol=tcp dst-port=1723 
 6   chain=input action=accept protocol=gre
During connection attempt following strings goes to log:

ros code

Mar/05/2014 18:22:53 pptp,info TCP connection established from 89.xxx.xxx.xxx
Mar/05/2014 18:22:53 pptp,ppp,info <pptp-0>: waiting for call...
Mar/05/2014 18:22:53 pptp,debug,packet rcvd Start-Control-Connection-Request from 89.xxx.xxx.xxx
Mar/05/2014 18:22:53 pptp,debug,packet     protocol-version=0x0100
Mar/05/2014 18:22:53 pptp,debug,packet     framing-capabilities=3
Mar/05/2014 18:22:53 pptp,debug,packet     bearer-capabilities=3
Mar/05/2014 18:22:53 pptp,debug,packet     maximum-channels=65535
Mar/05/2014 18:22:53 pptp,debug,packet     firmware-revision=1
Mar/05/2014 18:22:53 pptp,debug,packet     host-name=local
Mar/05/2014 18:22:53 pptp,debug,packet     vendor-name=cananian
Mar/05/2014 18:22:53 pptp,debug,packet sent Start-Control-Connection-Reply to 89.xxx.xxx.xxx
Mar/05/2014 18:22:53 pptp,debug,packet     protocol-version=0x0100
Mar/05/2014 18:22:53 pptp,debug,packet     result-code=1
Mar/05/2014 18:22:53 pptp,debug,packet     error-code=0
Mar/05/2014 18:22:53 pptp,debug,packet     framing-capabilities=2
Mar/05/2014 18:22:53 pptp,debug,packet     bearer-capabilities=0
Mar/05/2014 18:22:53 pptp,debug,packet     maximum-channels=0
Mar/05/2014 18:22:53 pptp,debug,packet     firmware-revision=1
Mar/05/2014 18:22:53 pptp,debug,packet     host-name=MikroTik
Mar/05/2014 18:22:53 pptp,debug,packet     vendor-name=MikroTik
Mar/05/2014 18:22:54 pptp,debug,packet rcvd Outgoing-Call-Request from 89.xxx.xxx.xxx
Mar/05/2014 18:22:54 pptp,debug,packet     call-id=14019
Mar/05/2014 18:22:54 pptp,debug,packet     call-serial-number=0
Mar/05/2014 18:22:54 pptp,debug,packet     minimum-bps=2400
Mar/05/2014 18:22:54 pptp,debug,packet     maximum-bps=10000000
Mar/05/2014 18:22:54 pptp,debug,packet     bearer-type=3
Mar/05/2014 18:22:54 pptp,debug,packet     framing-type=3
Mar/05/2014 18:22:54 pptp,debug,packet     packet-recv-window-size=3
Mar/05/2014 18:22:54 pptp,debug,packet     packet-processing-delay=0
Mar/05/2014 18:22:54 pptp,debug,packet     phone-number-length=0
Mar/05/2014 18:22:54 pptp,debug,packet     phone-number=
Mar/05/2014 18:22:54 pptp,debug,packet     subaddress=
Mar/05/2014 18:22:54 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP lowerup
Mar/05/2014 18:22:54 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP open
Mar/05/2014 18:22:54 pptp,debug,packet sent Outgoing-Call-Reply to 89.xxx.xxx.xxx
Mar/05/2014 18:22:54 pptp,debug,packet     call-id=4274
Mar/05/2014 18:22:54 pptp,debug,packet     peers-call-id=14019
Mar/05/2014 18:22:54 pptp,debug,packet     result-code=1
Mar/05/2014 18:22:54 pptp,debug,packet     error-code=0
Mar/05/2014 18:22:54 pptp,debug,packet     cause-code=0
Mar/05/2014 18:22:54 pptp,debug,packet     connect-speed=100000
Mar/05/2014 18:22:54 pptp,debug,packet     packet-recv-window-size=100
Mar/05/2014 18:22:54 pptp,debug,packet     packet-processing-delay=0
Mar/05/2014 18:22:54 pptp,debug,packet     physical-channel-id=0
Mar/05/2014 18:22:55 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP timer
Mar/05/2014 18:22:55 pptp,ppp,debug,packet  <89.xxx.xxx.xxx>: sent  <89.xxx.xxx.xxx>: rcvd  <89.xxx.xxx.xxx>: sent  <89.xxx.xxx.xxx>: rcvd  <89.xxx.xxx.xxx>: sent  <89.xxx.xxx.xxx>: rcvd  <89.xxx.xxx.xxx>: sent LCP ConfReq id=0x1
Mar/05/2014 18:22:55 pptp,ppp,debug,packet    <mru 1460>
Mar/05/2014 18:22:55 pptp,ppp,debug,packet    <magic 0x205ad5ef>
Mar/05/2014 18:22:55 pptp,ppp,debug,packet    <auth  mschap2>
Mar/05/2014 18:22:56 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP timer
Mar/05/2014 18:22:56 pptp,ppp,debug,packet  <89.xxx.xxx.xxx>: sent LCP ConfReq id=0x2
Mar/05/2014 18:22:56 pptp,ppp,debug,packet    <mru 1460>
Mar/05/2014 18:22:56 pptp,ppp,debug,packet    <magic 0x205ad5ef>
Mar/05/2014 18:22:56 pptp,ppp,debug,packet    <auth  mschap2>
Mar/05/2014 18:22:58 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP timer
Mar/05/2014 18:22:58 pptp,ppp,debug,packet  <89.xxx.xxx.xxx>: sent LCP ConfReq id=0x3
Mar/05/2014 18:22:58 pptp,ppp,debug,packet    <mru 1460>
Mar/05/2014 18:22:58 pptp,ppp,debug,packet    <magic 0x205ad5ef>
Mar/05/2014 18:22:58 pptp,ppp,debug,packet    <auth  mschap2>
Mar/05/2014 18:23:00 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP timer
Mar/05/2014 18:23:00 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP timeout sending ConfReq
Mar/05/2014 18:23:00 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP lowerdown
Mar/05/2014 18:23:00 pptp,ppp,info <pptp-0>: terminating...
Mar/05/2014 18:23:00 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP lowerdown
Mar/05/2014 18:23:00 pptp,ppp,debug <89.xxx.xxx.xxx>: LCP down event in starting state
Mar/05/2014 18:23:00 pptp,ppp,info <pptp-0>: disconnected
Ubuntu client pc has following set up:
/etc/ppp/options.pptp

bash code

lock
noauth
refuse-pap
refuse-eap
refuse-chap
refuse-mschap
nobsdcomp
nodeflate
BTW, If I enable pap, chap, eap, mschap - nothing changes, it still doesn't connect.

/etc/ppp/chap-secrets

bash code

# Secrets for authentication using CHAP
# client        server  secret                  IP addresses
one_mikrotik    pptp    xxxxxx  *
/etc/ppp/peers/mikrotik

bash code

pty "pptp 91.xxx.xxx.xxx --nolaunchpppd"
name one_mikrotik
remotename PPTP
defaultroute
file /etc/ppp/options.pptp
ipparam mikrotik
Following text I see in ubuntu console:

bash code

# pon mikrotik debug nodetach
using channel 22
Using interface ppp0
Connect: ppp0 <--> /dev/pts/2
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xc17b4eb> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xc17b4eb> <pcomp> <accomp>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0xc17b4eb> <pcomp> <accomp>]
Modem hangup
Connection terminated.
Script pptp 91.xxx.xxx.xxx --nolaunchpppd finished (pid 5150), status = 0x0
Please help me to solve this issue.
I should also say, that windows PCs, another mikrotik router and even android and maemo phones can easily connect via pptp.
This problem is the same on two xubuntu 12.04 pcs.

Thank you in advance!

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via

Posted: Sun Mar 09, 2014 7:10 pm
by wDw
I had a possibility to check VPN on RB951 with RouterOS 5.26, but connecting using 192.168.x.x adresses. Result is the same ubuntu pc can't connect to RB.

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via

Posted: Thu Mar 13, 2014 4:31 pm
by wDw
Problem still exist.
I've just upgraded RB to 6.10 and nothing changed (regarding pptp), ubuntu clients attempt to connect, but can't achieve it.
Read some threads with same problems on other forums, but no solution found.

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via

Posted: Fri Mar 14, 2014 5:54 am
by benitton
I had similar issues, and they were related to the firewall ports. Did you enable all the required ports for PPTP to work on you mikrotik? The rules you need are:

TCP-1723 and GRE (protocol 47).

I use MSCHAP, that will help with the encryption, CHAP and PAP do not permit traffic to be encrypted.

Hope this helps.

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via

Posted: Fri Mar 14, 2014 10:25 am
by wDw
I had similar issues, and they were related to the firewall ports. Did you enable all the required ports for PPTP to work on you mikrotik? The rules you need are:

TCP-1723 and GRE (protocol 47).

I use MSCHAP, that will help with the encryption, CHAP and PAP do not permit traffic to be encrypted.

Hope this helps.
Thank you for your reply!
Unfortunately it won't help, since such rules I've already added:

/ip firewall filter> print
Flags: X - disabled, I - invalid, D - dynamic
5 chain=input action=accept protocol=tcp dst-port=1723
6 chain=input action=accept protocol=gre

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via

Posted: Fri Mar 21, 2014 1:42 pm
by wDw
Updated to 6.11 - problem is still the same. May be such ticket was already opened - please, then, point me to it.

Re: Cannot connect from ubuntu to Mikrotik RB750GL 5.24 via pptp

Posted: Sat Aug 13, 2016 12:11 am
by BurstNET
Was a solution ever found for this issue?
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/