With ESS Beta 1a on Vista VPN not work

Discussion in 'ESET Smart Security v3 Beta Forum' started by cREoz, May 12, 2007.

Thread Status:
Not open for further replies.
  1. cREoz

    cREoz Registered Member

    Joined:
    May 12, 2007
    Posts:
    2
    After i installed ESS Beta 1/1a on Vista Ultimate, my VPN fail to connect. In both automatic/interactive mode.
    VPN server debug log:
    Code:
    using channel 22
    Using interface ppp0
    Connect: ppp0 <--> /dev/pts/2
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0xc59d2e89> <pcomp> <accomp>]
    LCP: timeout sending Config-Requests
    Connection terminated.
    Modem hangup
    If disable firewall, VPN connection success.
    VPN server debug log:
    Code:
    using channel 19
    Using interface ppp0
    Connect: ppp0 <--> /dev/pts/2
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x2a34fb87> <pcomp> <accomp>]
    rcvd [LCP ConfReq id=0x0 <mru 1400> <magic 0x2b7e7719> <pcomp> <accomp> <callback CBCP>]
    sent [LCP ConfRej id=0x0 <callback CBCP>]
    rcvd [LCP ConfReq id=0x1 <mru 1400> <magic 0x2b7e7719> <pcomp> <accomp>]
    sent [LCP ConfAck id=0x1 <mru 1400> <magic 0x2b7e7719> <pcomp> <accomp>]
    sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x2a34fb87> <pcomp> <accomp>]
    rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x2a34fb87> <pcomp> <accomp>]
    sent [LCP EchoReq id=0x0 magic=0x2a34fb87]
    sent [CHAP Challenge id=0xcd <fda98da566ec1840ea22ed332b736667>, name = "pptpd"]
    rcvd [LCP Ident id=0x2 magic=0x2b7e7719 "MSRASV5.20"]
    rcvd [LCP Ident id=0x3 magic=0x2b7e7719 "MSRAS-0-JOHN-PC"]
    rcvd [LCP EchoRep id=0x0 magic=0x2b7e7719]
    rcvd [CHAP Response id=0xcd <89f22fb18381297d11907ff3c747291c00000000000000008f60ec73a6f450b85485552d8e85af9a276dc8f7f3d
    sent [CHAP Success id=0xcd "S=9CE9F358D3265D10A0BC77AF6987850CEC8B4837 M=Access granted"]
    sent [CCP ConfReq id=0x1 <mppe +H -M +S -L -D -C>]
    rcvd [CCP ConfReq id=0x4 <mppe +H -M +S -L -D +C>]
    sent [CCP ConfNak id=0x4 <mppe +H -M +S -L -D -C>]
    rcvd [IPCP ConfReq id=0x5 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
    sent [IPCP TermAck id=0x5]
    rcvd [CCP ConfAck id=0x1 <mppe +H -M +S -L -D -C>]
    rcvd [CCP ConfReq id=0x6 <mppe +H -M +S -L -D -C>]
    sent [CCP ConfAck id=0x6 <mppe +H -M +S -L -D -C>]
    MPPE 128-bit stateless compression enabled
    sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 172.16.0.1>]
    rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
    sent [IPCP ConfReq id=0x2 <addr 172.16.0.1>]
    rcvd [IPCP ConfAck id=0x2 <addr 172.16.0.1>]
    rcvd [IPCP ConfReq id=0x7 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
    sent [IPCP ConfRej id=0x7 <ms-wins 0.0.0.0> <ms-wins 0.0.0.0>]
    rcvd [IPCP ConfReq id=0x8 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
    sent [IPCP ConfNak id=0x8 <addr 10.8.12.201> <ms-dns1 10.8.12.2> <ms-dns3 10.8.12.2>]
    rcvd [IPCP ConfReq id=0x9 <addr 10.8.12.201> <ms-dns1 10.8.12.2> <ms-dns3 10.8.12.2>]
    sent [IPCP ConfAck id=0x9 <addr 10.8.12.201> <ms-dns1 10.8.12.2> <ms-dns3 10.8.12.2>]
    found interface eth0 for proxy arp
    local  IP address 172.16.0.1
    remote IP address 10.8.12.201
    pptpd-logwtmp.so ip-up ppp0 tester 10.8.3.128
    Script /etc/ppp/ip-up started (pid 3878)
     
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    In IDS setup, enable logging of all blocked connections, then try to connect via vpn and finally check the firewall log for blocked connections. Perhaps this will help you find out why you cannot connect with the firewall enabled.
     
  3. cREoz

    cREoz Registered Member

    Joined:
    May 12, 2007
    Posts:
    2
    Code:
    [B]Time			Event			Source		Target		Protocol	Rule/worm name	Application	User[/B]
    12.05.2007 19:07:39	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    12.05.2007 19:07:39	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:35	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:33	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    12.05.2007 19:07:31	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:27	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:27	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    12.05.2007 19:07:23	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:19	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    12.05.2007 19:07:19	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:15	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:12	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    12.05.2007 19:07:11	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:08	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:06	No used rule found	10.8.3.128	10.8.3.8	PPTP			
    12.05.2007 19:07:06	No used rule found	10.8.3.8	10.8.3.128	PPTP			
    IP of server - 10.8.3.8
    IP of Vista computer - 10.8.3.128

    P.S. %( What for i have checked "Notify user".
    Notify window blinked on screen. After closed it open again and again and again....

    P.P.S. After creating rule to allow commucation over PPTP Protocol in both direction (In and Out) for all - connect is success, but internet wont work %(

    P.P.P.S. Small bug. Button "Open in new window" in tools -> log files (with advanced mode user interface) not work %)
     
    Last edited: May 12, 2007
Thread Status:
Not open for further replies.