PPTP VPN with MPPE problem
wangyan
wangyan2 at cernet.com
Sat Aug 13 09:21:50 CEST 2005
Hi, I have a problem about Cisco PPTP VPN with MPPE Authentication.
I use FreeRadius 1.0.4 with MySQL 4.1.10.
I want to establish a PPTP VPN authenticated by FreeRadius.
The problem is when I use pix525(os6.34), I can establish the PPTP VPN with
MPPE 128, MS-CHAP.
But when I use cisco7204(12.2-29), I can only establish the PPTP VPN without
MPPE, MS-CHAP.
When I use cisco7204 local db for authentication, I can establish the PPTP
VPN with MPPE 128, MS-CHAP.
I use the same configuration on radius server.
I think the problem is freeradius.
But it is strange. Because FreeRadius support mppe key and the pix test
succeed.
----7204 configuration----
interface Virtual-Template1
ip unnumbered FastEthernet1/0
peer default ip address pool test
ppp encrypt mppe auto stateful
ppp authentication ms-chap chap
----windowsxp vpn client----
MS-CHAP, maximum strength encryption.
It displayed the encrytion type is not match.
7204 debug ppp mppe event
5:41:33: Vi1 MS-CHAP: O SUCCESS id 29 len 4
15:41:33: Vi1 MPPE: don't understand all options, NAK
15:41:33: Vi1 MPPE: RADIUS keying material missing
Any one can help me?
More information about the Freeradius-Users
mailing list