inoyat
Зарегистрирован: 08 апр 2013, 11:54 Сообщения: 15
|
Простая конфигурация:
vpdn enable vpdn-group 1 accept-dialin protocol any virtual-template 1 username test1 password 0 test1 username test2 password 0 test2 interface Loopback4 ip address 192.168.44.254 255.255.255.0 interface GigabitEthernet1 ip address 192.168.186.247 255.255.255.0 vlan-id dot1q 186 interface GigabitEthernet2 ip address 10.10.10.19 255.255.255.0 vlan-id dot1q 5 interface Virtual-Template1 ip unnumbered Loopback4 ip mtu 1492 ip virtual-reassembly peer match aaa-pools peer default ip address pool TEST no keepalive no ppp lcp fast-start ppp encrypt mppe 128 ppp authentication ms-chap-v2 ms-chap chap callin ! ip local pool TEST 192.168.222.2 192.168.222.10
Интерфейс Gi1 включен в локалку, к интерфейсу Gi2 напрямую подключен тестовый ноутбук.
1. подключение по локалке на адрес интерфейса Gi1 (у клиента адрес из той же подсети)
*Nov 1 11:58:40.503: PPTP 00026:010CD:________: sss-started -> state change start-sss to estabd *Nov 1 11:58:40.503: PPTP 00026:_____:________: L2X session data plane setup successful *Nov 1 11:58:40.503: PPTP:(Tnl0:Sn10321)L2X setup sss switching *Nov 1 11:58:40.503: L2X:Session DB (Tnl/Sn: 0/10321): Stored the switching session in the session DB *Nov 1 11:58:40.503: PPTP:(Tnl0:Sn10321)L2X s/w switching session provisioned *Nov 1 11:58:40.503: VPDN Received L2TUN socket message Connected *Nov 1 11:58:40.503: VPDN uid:38 VPDN session up *Nov 1 11:58:40.503: PPP: Alloc Context [7F9E8BA1E568] *Nov 1 11:58:40.503: ppp38 PPP: Phase is ESTABLISHING *Nov 1 11:58:40.503: ppp38 PPP: Using AAA Unique Id = 3B *Nov 1 11:58:40.503: ppp38 PPP: Authorization required *Nov 1 11:58:40.503: ppp38 PPP: Using vpn set call direction *Nov 1 11:58:40.503: ppp38 PPP: Treating connection as a callin *Nov 1 11:58:40.503: ppp38 PPP: Session handle[CB000026] Session id[38] *Nov 1 11:58:40.503: ppp38 PPP LCP: negotiation authorized = 1, tacacs author = 0 *Nov 1 11:58:40.503: ppp38 LCP: Event[OPEN] State[Initial to Starting] *Nov 1 11:58:40.503: ppp38 PPP LCP: Enter passive mode, state[Stopped] *Nov 1 11:58:42.496: ppp38 PPP LCP: Exit passive mode, state[Starting] *Nov 1 11:58:42.496: ppp38 PPP LCP: neg is authorized, processing CP UP event *Nov 1 11:58:42.496: ppp38 LCP: O CONFREQ [Starting] id 1 len 15 *Nov 1 11:58:42.496: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:42.496: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:42.496: ppp38 LCP: Event[UP] State[Starting to REQsent] *Nov 1 11:58:44.512: ppp38 LCP: O CONFREQ [REQsent] id 2 len 15 *Nov 1 11:58:44.512: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:44.512: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:44.512: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:46.529: ppp38 LCP: O CONFREQ [REQsent] id 3 len 15 *Nov 1 11:58:46.529: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:46.529: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:46.529: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:48.544: ppp38 LCP: O CONFREQ [REQsent] id 4 len 15 *Nov 1 11:58:48.544: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:48.544: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:48.544: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:50.560: ppp38 LCP: O CONFREQ [REQsent] id 5 len 15 *Nov 1 11:58:50.560: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:50.560: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:50.560: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:52.577: ppp38 LCP: O CONFREQ [REQsent] id 6 len 15 *Nov 1 11:58:52.577: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:52.577: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:52.577: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:54.592: ppp38 LCP: O CONFREQ [REQsent] id 7 len 15 *Nov 1 11:58:54.592: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:54.592: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:54.592: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:56.609: ppp38 LCP: O CONFREQ [REQsent] id 8 len 15 *Nov 1 11:58:56.609: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:56.609: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:56.609: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:58:58.625: ppp38 LCP: O CONFREQ [REQsent] id 9 len 15 *Nov 1 11:58:58.625: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:58:58.625: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:58:58.625: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:59:00.640: ppp38 LCP: O CONFREQ [REQsent] id 10 len 15 *Nov 1 11:59:00.640: ppp38 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 11:59:00.640: ppp38 LCP: MagicNumber 0x2EBD33FA (0x05062EBD33FA) *Nov 1 11:59:00.640: ppp38 LCP: Event[Timeout+] State[REQsent to REQsent] *Nov 1 11:59:02.657: ppp38 PPP DISC: LCP failed to negotiate *Nov 1 11:59:02.657: PPP: NET STOP send to AAA. *Nov 1 11:59:02.657: ppp38 LCP: Event[Timeout-] State[REQsent to Stopped] *Nov 1 11:59:02.657: ppp38 LCP: Event[DOWN] State[Stopped to Starting] *Nov 1 11:59:02.657: ppp38 PPP: Clearing AAA Unique Id = 3B *Nov 1 11:59:02.657: ppp38 PPP: Phase is DOWN *Nov 1 11:59:02.657: VPDN uid:38 disconnect (AAA) IETF: 9/nas-error Ascend: 24/PPP LCP Fail
2. подключение с тестового ноутбука
*Nov 1 12:49:48.155: PPTP 00001:01000:________: sss-started -> state change start-sss to estabd *Nov 1 12:49:48.159: PPTP 00001:_____:________: L2X session data plane setup successful *Nov 1 12:49:48.167: L2X:Session DB (Tnl/Sn: 0/2): Stored the switching session in the session DB *Nov 1 12:49:48.175: PPTP:(Tnl0:Sn2)Provisioned: idb=none, session_sip=1,idb_switching=0, sw_mode=1 *Nov 1 12:49:48.175: PPTP:(Tnl0:Sn2)L2X s/w switching session provisioned *Nov 1 12:49:48.175: VPDN Received L2TUN socket message <xCCN - Session Connected> *Nov 1 12:49:48.187: VPDN uid:1 VPDN session up *Nov 1 12:49:48.199: ppp1 PPP: Send Message[Dynamic Bind Response] *Nov 1 12:49:48.199: ppp1 PPP: Using vpn set call direction *Nov 1 12:49:48.199: ppp1 PPP: Treating connection as a callin *Nov 1 12:49:48.199: ppp1 PPP: Session handle[76000003] Session id[1] *Nov 1 12:49:48.199: ppp1 PPP: Phase is ESTABLISHING, Passive Open *Nov 1 12:49:48.199: ppp1 LCP: State is Listen *Nov 1 12:49:49.099: ppp1 LCP: I CONFREQ [Listen] id 1 len 20 *Nov 1 12:49:49.099: ppp1 LCP: ACCM 0x00000000 (0x020600000000) *Nov 1 12:49:49.099: ppp1 LCP: MagicNumber 0xA9DFA97F (0x0506A9DFA97F) *Nov 1 12:49:49.099: ppp1 LCP: PFC (0x0702) *Nov 1 12:49:49.099: ppp1 LCP: ACFC (0x0802) *Nov 1 12:49:49.099: ppp1 PPP: Authorization required *Nov 1 12:49:49.103: ppp1 LCP: O CONFREQ [Listen] id 1 len 15 *Nov 1 12:49:49.103: ppp1 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 12:49:49.103: ppp1 LCP: MagicNumber 0x0711C1D9 (0x05060711C1D9) *Nov 1 12:49:49.103: ppp1 LCP: O CONFACK [Listen] id 1 len 20 *Nov 1 12:49:49.103: ppp1 LCP: ACCM 0x00000000 (0x020600000000) *Nov 1 12:49:49.103: ppp1 LCP: MagicNumber 0xA9DFA97F (0x0506A9DFA97F) *Nov 1 12:49:49.103: ppp1 LCP: PFC (0x0702) *Nov 1 12:49:49.103: ppp1 LCP: ACFC (0x0802) *Nov 1 12:49:49.103: ppp1 LCP: I CONFACK [ACKsent] id 1 len 15 *Nov 1 12:49:49.103: ppp1 LCP: AuthProto MS-CHAP-V2 (0x0305C22381) *Nov 1 12:49:49.103: ppp1 LCP: MagicNumber 0x0711C1D9 (0x05060711C1D9) *Nov 1 12:49:49.103: ppp1 LCP: State is Open *Nov 1 12:49:49.103: ppp1 PPP: Phase is AUTHENTICATING, by this end *Nov 1 12:49:49.103: ppp1 MS-CHAP-V2: O CHALLENGE id 1 len 27 from "Router" *Nov 1 12:49:49.111: ppp1 MS-CHAP-V2: I RESPONSE id 1 len 59 from "test1" *Nov 1 12:49:49.115: ppp1 PPP: Phase is FORWARDING, Attempting Forward *Nov 1 12:49:49.115: ppp1 PPP: Phase is AUTHENTICATING, Unauthenticated User *Nov 1 12:49:49.115: ppp1 PPP: Sent MSCHAP_V2 LOGIN Request *Nov 1 12:49:49.123: ppp1 PPP: Received LOGIN Response PASS *Nov 1 12:49:49.123: ppp1 PPP: Phase is FORWARDING, Attempting Forward *Nov 1 12:49:49.123: ppp1 PPP: Send Message[Connect Local] *Nov 1 12:49:49.183: %LINK-3-UPDOWN: Interface Virtual-Access2, changed state to up L2X_ADJ: Vi2:midchain adj repopulate, nothing to do *Nov 1 12:49:49.187: Vi3 PPP: Phase is DOWN, Setup *Nov 1 12:49:49.191: VPDN Vi3 Virtual interface created for unknown, bandwidth 100000 Kbps *Nov 1 12:49:49.191: VPDN Vi3 Setting up dataplane for L2-L3, Vi3 *Nov 1 12:49:49.195: PPTP:(Tnl0:Sn2)L2X s/w switching session updated *Nov 1 12:49:49.195: PPTP:(Tnl0:Sn2)L2X s/w switching session bound L2X_ADJ: Vi3:allocated ctx, size 1 *Nov 1 12:49:49.199: PPTP:(Tnl0:Sn2)VPDN L2TP s/w session mode changed to L2_L3 *Nov 1 12:49:49.199: PPTP:(Tnl0:Sn2)Updated: idb=Vi3, session_sip=1,idb_switching=1, sw_mode=2 *Nov 1 12:49:49.203: VPDN Received L2TUN socket message <Dataplane UP> *Nov 1 12:49:49.203: ppp1 PPP: Bind to [Virtual-Access3] *Nov 1 12:49:49.203: Vi3 PPP: Send Message[Static Bind Response] *Nov 1 12:49:49.207: %LINK-3-UPDOWN: Interface Virtual-Access3, changed state to up L2X_ADJ: Vi3:midchain adj repopulate, nothing to do L2X_ADJ: Vi3:midchain adj reqd for ip 0.0.0.0, cid 0 L2X_ADJ: Vi3:midchain adj reqd for ip 0.0.0.0, cid 0 *Nov 1 12:49:49.207: Vi3 PPP: Phase is AUTHENTICATING, Authenticated User *Nov 1 12:49:49.211: Vi3 PPP: Sent LCP AUTHOR Request *Nov 1 12:49:49.211: Vi3 PPP: Sent IPCP AUTHOR Request *Nov 1 12:49:49.215: Vi3 LCP: Received AAA AUTHOR Response PASS *Nov 1 12:49:49.215: Vi3 IPCP: Received AAA AUTHOR Response PASS *Nov 1 12:49:49.215: Vi3 MS-CHAP-V2: O SUCCESS id 1 len 46 msg is "S=788AC042362D9FEEEA149B35CAA951CC96353BA6" *Nov 1 12:49:49.219: Vi3 PPP: Phase is UP *Nov 1 12:49:49.219: Vi3 IPCP: O CONFREQ [Closed] id 1 len 10 *Nov 1 12:49:49.219: Vi3 IPCP: Address 192.168.44.254 (0x0306C0A82CFE) *Nov 1 12:49:49.219: Vi3 PPP: Sent CCP AUTHOR Request *Nov 1 12:49:49.219: Vi3 PPP: Process pending ncp packets *Nov 1 12:49:49.223: Vi3 CCP: Received AAA AUTHOR Response PASS *Nov 1 12:49:49.223: Vi3 CCP: O CONFREQ [Closed] id 1 len 10 *Nov 1 12:49:49.223: Vi3 CCP: MS-PPC supported bits 0x01000040 (0x120601000040) *Nov 1 12:49:49.323: Vi3 CCP: I CONFREQ [REQsent] id 1 len 15 *Nov 1 12:49:49.323: Vi3 CCP: Deflate 0x7800 (0x1A047800) *Nov 1 12:49:49.323: Vi3 CCP: MVRCA 0x7800 (0x18047800) *Nov 1 12:49:49.323: Vi3 CCP: BSDLZW 47 (0x15032F) *Nov 1 12:49:49.323: Vi3 CCP: O CONFREJ [REQsent] id 1 len 15 *Nov 1 12:49:49.323: Vi3 CCP: Deflate 0x7800 (0x1A047800) *Nov 1 12:49:49.323: Vi3 CCP: MVRCA 0x7800 (0x18047800) *Nov 1 12:49:49.323: Vi3 CCP: BSDLZW 47 (0x15032F) *Nov 1 12:49:49.323: Vi3 CCP: I CONFREJ [REQsent] id 1 len 10 *Nov 1 12:49:49.323: Vi3 CCP: MS-PPC supported bits 0x01000040 (0x120601000040) *Nov 1 12:49:49.323: Vi3 CCP: O CONFREQ [REQsent] id 2 len 4 *Nov 1 12:49:49.323: Vi3 IPCP: I CONFREQ [REQsent] id 1 len 28 *Nov 1 12:49:49.323: Vi3 IPCP: CompressType VJ 15 slots CompressSlotID (0x0206002D0F01) *Nov 1 12:49:49.323: Vi3 IPCP: Address 0.0.0.0 (0x030600000000) *Nov 1 12:49:49.323: Vi3 IPCP: PrimaryDNS 0.0.0.0 (0x810600000000) *Nov 1 12:49:49.323: Vi3 IPCP: SecondaryDNS 0.0.0.0 (0x830600000000) *Nov 1 12:49:49.323: Vi3 AAA/AUTHOR/IPCP: Start. Her address 0.0.0.0, we want 0.0.0.0 *Nov 1 12:49:49.323: Vi3 AAA/AUTHOR/IPCP: Done. Her address 0.0.0.0, we want 0.0.0.0 *Nov 1 12:49:49.323: Vi3 IPCP: Pool returned 192.168.222.2 *Nov 1 12:49:49.323: Vi3 IPCP: O CONFREJ [REQsent] id 1 len 22 *Nov 1 12:49:49.327: Vi3 IPCP: CompressType VJ 15 slots CompressSlotID (0x0206002D0F01) *Nov 1 12:49:49.327: Vi3 IPCP: PrimaryDNS 0.0.0.0 (0x810600000000) *Nov 1 12:49:49.327: Vi3 IPCP: SecondaryDNS 0.0.0.0 (0x830600000000) *Nov 1 12:49:49.327: Vi3 IPCP: I CONFACK [REQsent] id 1 len 10 *Nov 1 12:49:49.327: Vi3 IPCP: Address 192.168.44.254 (0x0306C0A82CFE) *Nov 1 12:49:49.327: Vi3 CCP: I CONFREQ [REQsent] id 2 len 4 *Nov 1 12:49:49.327: Vi3 CCP: O CONFACK [REQsent] id 2 len 4 *Nov 1 12:49:49.327: Vi3 CCP: I CONFACK [ACKsent] id 2 len 4 *Nov 1 12:49:49.327: Vi3 CCP: State is Open *Nov 1 12:49:49.327: Vi3 CCP: Compression not negotiated *Nov 1 12:49:49.327: Vi3 CCP: Decompression not negotiated *Nov 1 12:49:49.327: Vi3 CCP: Negotiation mismatch, closing CCP *Nov 1 12:49:49.327: Vi3 CCP: O TERMREQ [Open] id 3 len 4 *Nov 1 12:49:49.327: Vi3 IPCP: I CONFREQ [ACKrcvd] id 2 len 10 *Nov 1 12:49:49.331: Vi3 IPCP: Address 0.0.0.0 (0x030600000000) *Nov 1 12:49:49.331: Vi3 IPCP: O CONFNAK [ACKrcvd] id 2 len 10 *Nov 1 12:49:49.331: Vi3 IPCP: Address 192.168.222.2 (0x0306C0A8DE02) *Nov 1 12:49:49.343: Vi3 CCP: I TERMACK [TERMsent] id 3 len 4 *Nov 1 12:49:49.343: Vi3 CCP: State is Closed *Nov 1 12:49:49.343: Vi3 IPCP: I CONFREQ [ACKrcvd] id 3 len 10 *Nov 1 12:49:49.343: Vi3 IPCP: Address 192.168.222.2 (0x0306C0A8DE02) *Nov 1 12:49:49.343: Vi3 IPCP: O CONFACK [ACKrcvd] id 3 len 10 *Nov 1 12:49:49.343: Vi3 IPCP: Address 192.168.222.2 (0x0306C0A8DE02) *Nov 1 12:49:49.343: Vi3 IPCP: State is Open
В какую сторону копать? Что в локалке может так корежить траффик? С учетом того что в влане 186 всего два адреса - на циске и на клиенте. Заранее спасибо.
|