VPN issues following a password change

[davotoula]

Using 1.06h I changed my VPN password to a strong password which was around 12 characters including symbols.

I did this while logged in over VPN and lost connectivity.

When back home I attempted to connect from internal network and the router did a factory reset on me (!).

I took the opportunity to upgrade to 1.06h.dt2 but have not been able to use VPN since the upgrade, using same settings as before.

I am trying to connect from a MAc and get the following when using verbose logging:

Code: Select all

Tue Sep  9 10:23:02 2014 : publish_entry SCDSet() failed: Success!
Tue Sep  9 10:23:02 2014 : publish_entry SCDSet() failed: Success!
Tue Sep  9 10:23:09 2014 : PPTP connecting to server 'YYYYY' (XX.XX.XX.XX)...
Tue Sep  9 10:23:09 2014 : PPTP connect errno = 61 Connection refused

Can I troubleshoot this on the router, for example using remote syslog?
Could it be a hardware problem, "fried" VPN chip?

thanks

[billion_fan]

Using 1.06h I changed my VPN password to a strong password which was around 12 characters including symbols.

I did this while logged in over VPN and lost connectivity.

When back home I attempted to connect from internal network and the router did a factory reset on me (!).

I took the opportunity to upgrade to 1.06h.dt2 but have not been able to use VPN since the upgrade, using same settings as before.

I am trying to connect from a MAc and get the following when using verbose logging:

Code: Select all

Tue Sep  9 10:23:02 2014 : publish_entry SCDSet() failed: Success!
Tue Sep  9 10:23:02 2014 : publish_entry SCDSet() failed: Success!
Tue Sep  9 10:23:09 2014 : PPTP connecting to server 'YYYYY' (XX.XX.XX.XX)...
Tue Sep  9 10:23:09 2014 : PPTP connect errno = 61 Connection refused

Can I troubleshoot this on the router, for example using remote syslog?
Could it be a hardware problem, "fried" VPN chip?

thanks

Try setting up another VPN account with a username test and password test, see if you can dial in using a remote connection

I don't think there is a VPN chip, its software based, syslog server will show the same information as your system log

If you still have issues post a picture of your PPTP setup

[davotoula]

Ehrm, I had accidently left VPN disabled.

I have now corrected it and can see I'm getting authentication error, even using the suggested test:test credentials.

I will double check date and time once back home. Anything else that could cause auth failure?

Code: Select all

Wed Sep 10 10:09:00 2014 : publish_entry SCDSet() failed: Success!
Wed Sep 10 10:09:00 2014 : publish_entry SCDSet() failed: Success!
Wed Sep 10 10:09:04 2014 : PPTP connecting to server 'Xxxxxx' ...
Wed Sep 10 10:09:04 2014 : PPTP connection established.
Wed Sep 10 10:09:04 2014 : PPTP set port-mapping for en3, interface: 4, protocol: 0, privatePort: 0
Wed Sep 10 10:09:04 2014 : using link 0
Wed Sep 10 10:09:04 2014 : Using interface ppp0
Wed Sep 10 10:09:04 2014 : Connect: ppp0 <--> socket[34:17]
Wed Sep 10 10:09:04 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x42e845b5> <pcomp> <accomp>]
Wed Sep 10 10:09:04 2014 : rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x51c13aa2> <pcomp> <accomp>]
Wed Sep 10 10:09:04 2014 : lcp_reqci: returning CONFACK.
Wed Sep 10 10:09:04 2014 : sent [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x51c13aa2> <pcomp> <accomp>]
Wed Sep 10 10:09:04 2014 : rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x42e845b5> <pcomp> <accomp>]
Wed Sep 10 10:09:04 2014 : sent [LCP EchoReq id=0x0 magic=0x42e845b5]
Wed Sep 10 10:09:04 2014 : rcvd [CHAP Challenge id=0x1 <3b56659e36261330f2de7428dd68b141>, name = "pptpd"]
Wed Sep 10 10:09:04 2014 : sent [CHAP Response id=0x1 <c181b043f8c849fd3eb282b76c1acb14000000000000000086f8e5adf0fa2474d833629cacd93fa99c5cdcca608b768200>, name = "test"]
Wed Sep 10 10:09:04 2014 : rcvd [LCP EchoRep id=0x0 magic=0x51c13aa2]
Wed Sep 10 10:09:04 2014 : rcvd [CHAP Failure id=0x1 "E=691 R=1 C=3B56659E36261330F2DE7428DD68B141 V=0 M=I don't like you.  Go 'way."]
Wed Sep 10 10:09:04 2014 : MS-CHAP authentication failed: I don't like you.  Go 'way.
Wed Sep 10 10:09:04 2014 : rcvd [LCP TermReq id=0x2 "Authentication failed"]
Wed Sep 10 10:09:04 2014 : LCP terminated by peer (Authentication failed)
Wed Sep 10 10:09:04 2014 : sent [LCP TermAck id=0x2]
Wed Sep 10 10:09:04 2014 : PPTP error when reading socket : EOF
Wed Sep 10 10:09:04 2014 : PPTP error when reading header : read -1, expected 12 bytes
Wed Sep 10 10:09:04 2014 : Connection terminated.
Wed Sep 10 10:09:04 2014 : PPTP clearing port-mapping for en3
Wed Sep 10 10:09:04 2014 : PPTP disconnecting...
Wed Sep 10 10:09:04 2014 : PPTP disconnected

[davotoula]

Finally resolved.

First I had ti correct my time zone because time was off by 1 hour (GMT vs London).

Following that the simple test:test started working.

Next I couldn't get my normal user with strong password to get working.

The password was: 0eZO8#h^GyZjBw#

The log on the router was:

Code: Select all

 
  Sep 10 21:27:33  daemon  pppv[912]: Plugin /lib/pptpd-logwtmp.so loaded.
  Sep 10 21:27:33  daemon  pppv[912]: The remote system is required to authenticate itself
  Sep 10 21:27:33  daemon  pppv[912]: but I couldn't find any suitable secret (password) for it to use to do so.
  Sep 10 21:27:33  daemon  pppv[912]: (None of the available passwords would let it use an IP address.)
  Sep 10 21:27:46  daemon  DHCP SERVER: DHCP request from 8c:... 
  Sep 10 21:27:46  daemon  DHCP SERVER: DHCP ack to 8c.... 

Changing to a password without symbols seems to work but doesn't make me comfortable about the integrity of the whole thing

Thanks for your help in any case!