手邊兩台K2P皆刷成Padavan,一台當VPN Server,一台當VPN Client,都走PPTP協定
K2P-A是VPN Server(PPTP+MS-CHAPv2+MPPE-128)
K2P-B是VPN Client(PPTP+MS-CHAPv2+MPPE-128)
K2P-B要成功連線進K2P-A卻跟抽獎,重連20次可能才一次成功,兩台加密認證都直接固定
當我用Win7直接連K2P-A正常,連20次成功20次,透過K2P-A撈出來的連線紀錄如下
Oct 10 12:07:51 pptpd[18516]: CTRL: Client 來源IP control connection started
Oct 10 12:07:51 pptpd[18516]: CTRL: Starting call (launching pppd, opening GRE)
Oct 10 12:07:51 pppd[18517]: Plugin pptp.so loaded.
Oct 10 12:07:51 pppd[18517]: PPTP plugin version 0.8.5 compiled for pppd-2.4.7
Oct 10 12:07:51 pppd[18517]: pppd 2.4.7 started by admin, uid 0
Oct 10 12:07:51 pppd[18517]: Couldn't allocate PPP unit 10 as it is already in use
Oct 10 12:07:51 pppd[18517]: Using interface ppp11
Oct 10 12:07:51 pppd[18517]: Connect: ppp11 <--> pptp (來源IP)
Oct 10 12:07:51 pppd[18517]: hacklog shanxun debug: username <k2p>
Oct 10 12:07:54 pppd[18517]: MPPE 128-bit stateless compression enabled
Oct 10 12:07:56 pppd[18517]: found interface br0 for proxy arp
Oct 10 12:07:56 pppd[18517]: local IP address 192.168.2.245
Oct 10 12:07:56 pppd[18517]: remote IP address 192.168.2.247
Oct 10 12:07:56 VPN server: peer 來源IP (k2p) connected - ifname: ppp11, local IP: 192.168.2.247
當我用K2P-B連K2P-A卻連線失敗,連20次可能才成功1次,透過K2P-A撈出來的連線紀錄如下
Oct 10 12:09:14 pppd[18421]: LCP terminated by peer (User request)
Oct 10 12:09:14 pptpd[18420]: CTRL: Reaping child PPP[18421]
Oct 10 12:09:14 pptpd[18420]: CTRL: Client pppd TERM sending
Oct 10 12:09:14 pptpd[18420]: CTRL: Client pppd finish wait
Oct 10 12:09:14 pppd[18421]: Terminating on signal 15
Oct 10 12:09:16 pptpd[18537]: CTRL: Client 來源IP control connection started
Oct 10 12:09:17 pptpd[18537]: CTRL: Starting call (launching pppd, opening GRE)
Oct 10 12:09:17 pppd[18538]: Plugin pptp.so loaded.
Oct 10 12:09:17 pppd[18538]: PPTP plugin version 0.8.5 compiled for pppd-2.4.7
Oct 10 12:09:17 pppd[18538]: pppd 2.4.7 started by admin, uid 0
Oct 10 12:09:17 pppd[18538]: Couldn't allocate PPP unit 10 as it is already in use
Oct 10 12:09:17 pppd[18538]: Using interface ppp11
Oct 10 12:09:17 pppd[18538]: Connect: ppp11 <--> pptp (來源IP)
Oct 10 12:09:17 pppd[18538]: hacklog shanxun debug: username <k2p>
Oct 10 12:09:17 pppd[18421]: Connection terminated.
Oct 10 12:09:17 pppd[18421]: Connect time 26.6 minutes.
Oct 10 12:09:17 pppd[18421]: Sent 100 bytes, received 0 bytes.
Oct 10 12:09:17 pppd[18421]: Modem hangup
Oct 10 12:09:17 pppd[18421]: Exit.
Oct 10 12:09:17 pptpd[18420]: CTRL: Client 來源IP control connection finished
Oct 10 12:09:47 pppd[18538]: CCP: timeout sending Config-Requests
這邊我有發現只要有出現MPPE 128-bit stateless compression enabled這一行就會成功連線
測試到這邊合理懷疑是K2P-B的問題
但是我在Win7架VPN Server給K2P-B連,卻都正常 @@
另外做一個測試就是刻意把密碼打錯,log正確顯是驗證錯誤,然後會持續反覆重連
但是密碼正確的狀況下卻只連線一次失敗就不會動了
這部分看得出問題點出在哪裡嗎,爬了許多文章有提到,加密認證強制固定,不要選Auto可是卻沒有效果
剛好手邊拿了兩台支援VPN Client的AP來測試連線
小米路由器MINI(官方韌體)失敗無法連線
Oct 14 00:36:56 pptpd[28205]: CTRL: Client 來源IP control connection started
Oct 14 00:36:57 pptpd[28205]: CTRL: Starting call (launching pppd, opening GRE)
Oct 14 00:36:57 pppd[28206]: Plugin pptp.so loaded.
Oct 14 00:36:57 pppd[28206]: PPTP plugin version 0.8.5 compiled for pppd-2.4.7
Oct 14 00:36:57 pppd[28206]: pppd 2.4.7 started by admin, uid 0
Oct 14 00:36:57 pppd[28206]: Using interface ppp10
Oct 14 00:36:57 pppd[28206]: Connect: ppp10 <--> pptp (來源IP)
Oct 14 00:37:04 pppd[28206]: hacklog shanxun debug: username <k2p>
Oct 14 00:37:34 pppd[28206]: IPCP: timeout sending Config-Requests
Oct 14 00:37:34 pppd[28206]: Connection terminated.
Oct 14 00:37:34 pppd[28206]: Connect time 0.7 minutes.
Oct 14 00:37:34 pppd[28206]: Sent 100 bytes, received 0 bytes.
Oct 14 00:37:34 pppd[28206]: Exit.
Oct 14 00:37:34 pptpd[28205]: CTRL: Reaping child PPP[28206]
Oct 14 00:37:34 pptpd[28205]: CTRL: Client pppd TERM sending
Oct 14 00:37:34 pptpd[28205]: CTRL: Client pppd finish wait
Oct 14 00:37:34 pptpd[28205]: CTRL: EOF or bad error reading ctrl packet length.
Oct 14 00:37:34 pptpd[28205]: CTRL: couldn't read packet header (exit)
Oct 14 00:37:34 pptpd[28205]: CTRL: Fatal error reading control message in disconnect sequence
Oct 14 00:37:34 pptpd[28205]: CTRL: Client 來源IP control connection finished
另一台RT-N18U(官方韌體)可以成功使用MS-CHAPv2
內文搜尋

X