Pptp Vpn?
 

We use a PPTP VPN to our router at the office. Is there software to do this on the N800, preferably using OS2008?

Re: Pptp Vpn?
 

Fanoush (one of the regulars here) has some info about PPTP here:
http://fanoush.wz.cz/maemo/#pptp

Re: Pptp Vpn?
 

Myself, I've beeen waiting ffoor the chaos to end, but yes go to http://maemo.lancode.de and he has the needed pptp client software. Now what I don't yet know is if the OS2008 kernel includes mppe (micrsoft point to point encription[?]) built in. If so you can config things and run, if not you'll have to wait for a 3rd party kernel.

Re: Pptp Vpn?
 

Hi,

I have flashed fanoush's 2.2007.50-2 kernel with MPPE support an I'm currently trying to load the corresponding modules - though with limited success so far.

According to Fanoush's description the modules arc4, sha1 and ppp_mppe need to be loaded, which doesn't work due to unresolved dependencies.
http://fanoush.wz.cz/maemo/#pptp

Via dmesg output I was able to figure out, that first the crypto_algapi module has to be loaded before arc4 and sha1 can be loaded. But I still don't know, what the prerequisites for ppp_mppe are.

insmod ppp_mppe just gives a

No further hint in dmesg what exactly is missing. To bad modprobe/depmod is broken on the N800. :(

Currently I have the following modules loaded

Any idea which module I have to load first before I can load ppp_mppe?

Solved
I found a working lsmode sequence:

crypto_algapi
arc4
sha1
cryptomgr
blkcipher
cbc
pcbc
ecb
ppp_mpp3

Re: Pptp Vpn?
 

I have not tried in OS2008 yet, just enabled it in kernel. Thanks for figuring out the module list. Will add it to missing OS2008 section for others. Did you manage to connect?

Re: Pptp Vpn?
 

Yes. Didn't do extensive tests so far and also routing is not yet setup, but connecting to a PPTP server with 128-bit MPPE encryption and MS-CHAPv2 authentication seems to work fine.

Just disconnecting via poff is not working.

Re: Pptp Vpn?
 

Ok,

I know why poff doesn't work. On line 40 of /usr/bin/poff, the word getopts is a bash not ash command. go here. and get a bash install that works around the busybox conflict and then you can change the #!/bin/sh at the start of poff and pon to #!/bin/bash.

Re: Pptp Vpn?
 

Hi!

I think, these are not strictly necessary:

At least it works for me without them.

Tilman

Re: Pptp Vpn?
 

BTW, I had problems with DNS and PPTP on OS 2007 (HE) and found the solution:

/etc/ppp/ip-up.local was called with the umask set such that /tmp/resolv.conf.ppp0 was created with 0600 permissions. dnsmasq running as "nobody" couldn't read it and stopped answering DNS queries.

Solution: Insert
before the end of the first "if" block in /etc/ppp/ip-up.local

This problem is fixed in OS 2008 btw.

Maybe this is useful for some people...

Re: Pptp Vpn?
 

What do I do if i can't even insmod crypto_algapi.ko? I'm screwed aren't I...

I'm using OS2008 2.2007.51-3 and I get the error message:

insmod: cannot insert 'crypto_algapi.ko': Unknown symbol in module (-1): No such file or directory

I'll keep messing around with it, but I'm not incredibly optimistic. Just thought this should be documented haha.

-alien

EDIT: Nevermind, I'm an idiot.

Re: Pptp Vpn?
 

I'd seriously recommend not using pptp, if you have a need for vpn technologies I'd recommend openvpn (for people using windows) or IPSec if you are a linux house.
(Windows doesn't really support IPSec that well in XP)
Setting up IPSec/Openvpn saved me considerable time in admin, and it performed far better (IMHO)

Re: Pptp Vpn?
 

The problem is the majority of people won't be able to control what VPN solution their employer uses.

Re: Pptp Vpn?
 

Hi,

I'm on IT 0S2007.

I followed fanoush instructions: flashed the kernel, inserted the modules (sha1, arc4 and ppp_mppe) .

Then I downloaded the pptp client from http://maemo.lancode.de

Everything went fine, but when I launch the VPN tunnel, I get

No auth is possible
and
MPPE required, but MS-CHAP[v2] auth not performed.

According to the pptpclient troubleshooting guide, this is often caused by a version mismatch between the module and the pppd. However, pppd is at version 2.4.2, pptp-client is at 1.7.0. As to fanoush modules, I have no idea.

Anybody knows what's wrong?






flashed the kernel,

Re: Pptp Vpn?
 

Can be also some conflicting pppd options, see also
http://www.nabble.com/MPPE-required%...html#a10192337

If insmod worked and you see line about mppe in kernel log (type dmesg) it may be something else than missing mppe. See also http://ubuntuforums.org/showthread.php?t=16562, do you see "sent [LCP TermReq id=0x2 "MPPE required but not available"]" line too?

Re: Pptp Vpn?
 

Hi,

I checked the /etc/ppp/options file and all the PAP directives are commented out.

insmod worked. dmesg produces the line:
"PPP MPPE Compression module registered"

And finally, yes, I do have the line in the debug log:
"sent [LCP TermReq id=0x2 "MPPE required but not available"]"
just after the line:
"MPPE required, but MS-CHAP[v2] auth not performed"

lsmod result:

Module Size Used by
ppp_mppe 6756 0 - Live 0xbf05a000
arc4 1760 0 - Live 0xbf058000
sha1 2368 0 - Live 0xbf056000
g_file_storage 24456 0 - Live 0xbf04f000
cx3110x 50632 0 - Live 0xbf041000
umac 258596 1 cx3110x, Live 0xbf000000


Thanks in advance, Daniel

Re: Pptp Vpn?
 

Ok, I found the problem.

When entering my username and password in the chap-secrets file, I made a mistake. Since I corrected it, I can connect successfully. Yay.

I want to thank especially fanoush for his amazing contributions to the community. Thanks!

Re: Pptp Vpn?
 

And the passwords/secrets? From the article linked above "If you want MPPE, add "refuse-pap" to the options, and remove the entriers from pap-secrets that you added, instead adding them to chap-secrets. ". So you do have username and password in chap-secrets?

Then I don't know. Looks like the software on your side is installed fine. Either it is something bad in your configuration or maybe the other side doesn't support mppe after all?

Re: Pptp Vpn?
 

Oh, nevermind, disregard last post, great you got it working.

Re: Pptp Vpn?
 

I got it working thanks to you, fanoush.

And with your last message you hit it on the nail again, since the culprit was with the chap secrets (a typo).

Now, I'm trying to do the routing.

I put a script file with route commands in /etc/ppp/ip-up.d/
but it doesn't appear to run though.

I wonder if anyone is using /etc/ppp/ip-up.d/ scripts succesfully on IT 0S2007?

Re: Pptp Vpn?
 

Just to clarify the last point:

On debian based systems, after pppd establishes a connection and assigns an IP, scripts in /etc/ppp/ip-up.d are run with run-parts. It is ip-up that launches them while making available to those scripts some variables pointing to the gateway, interface and IP.

Scripts in the /etc/ppp/ip-up.d have to conform to a couple of rules in order to run, like the name should not have any suffix, they have to be owned by root, etc.

It can be troublesome to troubleshoot them. And that's what I'm trying to do right now. Therefore I was wondering if anyone has had success with them on IT 0S2007.

Thanks.

Ulysses

Re: Pptp Vpn?
 

Hi all,

I am trying to get the PPTP client working using HotspotVPN's service. I followed fanoush's instructions on flashing the kernel and loading the required modules in sequence.
Now when I start pppd with 'pppd call HotspotVPN' (HotspotVPN being the remotename configured in /etc/ppp/peers/HotspotVPN) I get the following:

and this:

It seems that it is trying to connect. I also noticed that a ppp0 interface is not created like it is on my Ubuntu. I am not sure what program/scripts creates this interface - excuse my knowledge.

After a lot of fighting I was able to get it working on my Ubuntu using the NetworkManager. I feel l am very close to get it to work on my N800. Has anybody gotten HotspotVPN to work on the N800/N810?

Any help would be appreciated.

Thanks.

Re: Pptp Vpn?
 

solved. the require_mppe option had to be enabled. :p

Re: Pptp Vpn?
 

Hi all, just bought a new N800, and trying to get PPtp working.

I have installed the pptp client, however I have not flashed the kernel yet or installed the modules.

One thing that I noticed on this site: http://pptpclient.sourceforge.net/ho...ian-dkms.phtml
is that it says the mppe support is included in kernel 2.6.15 & above, does this mean I no longer have to get the latest kernel from the infamous fanoush?

I currently am getting the following error when trying to load the client:

rcvd [CHAP Success id=0x0 "S=CDA9CA38B8C4A9BABD04E67299D45CE64BA55FB2"]
CHAP authentication succeeded
MPPE required, but kernel has no support.


I am fairly fluent in Linux, however I have never flashed a Kernel before so I am trying to avoid it (if that's possible).

I am currently running OS2008 v. 2.2007.51-3
Linux Nokia-N800-51-3 2.6.21-omap1 #2 Fri Dec 7 11:17:13 EET 2007 armv6l unknown

Would really appreciate some help, thanks everyone.

Re: Pptp Vpn?
 

Well, mppe support is in the kernel code, however it is not compiled into the standard Internet Tablet kernels. So yes, you definitely have to install fanoush' kernel (or compile your own, of course). Flashing the kernel is easy. And if you mess it up (don't know how you would apart from pulling the wire or running out of power, though), you can just flash the original kernel from the original firmware download. There are command line options to the flasher for that. This way your root filesystem is not touched.

While you are at flashing, I highly recommend fanoush' boot menu and booting from SD cards. Backing up is much easier and having a rescue system on the internal flash is worth a lot.

Re: Pptp Vpn?
 

Hi,

I am new to my N810 with OS2008 and the latest over-the-air updates installed (there were just one). I need PPTP support and am new to both the N810 and Linux.
I managed to get the "becomeroot" package installed (Eko One repository, http://gronmayer.com/it/dl.php?id=136).
I followed this thread and links to other and I pretty much got:
kernel-2.2007.50-2-custom.tar.gz and modules-2.2007.50-2-custom.tar.gz (Fanoush kernels, fanoush.wz.cz/maemo/ for OS 2008) then also Fanoush kernel_flasher utility.
I extracted the Kernel (tar zxvf kernel-2.2007.50-2-custom.tar.gz) and got a zImage kernel image.
I installed it with the kernel_flasher (all files on the internal memory, not on the SD card). Then rebooted the device (reboot command).

Now my device does not boot (Nokia screen for 60 seconds and turns down, not sign of booting, and that's it) I think I can fix that re-flashing the OS2008. But still I have questions.

What did I miss to get this poor result out of my kernel flashing?
What do I do with the modules provided? I have extracted them, but do I need to replace the existing modules, or just use the required ones to get PPTP working?
Is there a dummy guide, end to end "how do I install PPTP support on N810 with OS2008"?
What about the the pptp-client-1.7.1 also mentioned in this thread, is it required? Makes your life easier because you don't have to define config files to define a PPTP session?
I apology if my question appears simple, I am willing to write this dummy guide if I sort out how to get my device working and share it with the community.

Re: Pptp Vpn?
 

Do anybody have ppp_mppe and crypto modules for latest diablo update ( 43-7)?
I compiled its from source but can't load :(
May by kernel config is wrong or my hands :)

Re: Pptp Vpn?
 

The kernel you flashed is too old for latest OS2008. You missed version info listed on my site but still sorry for that, it is too easy to miss it. I am not using pptp myself so I am quite slow in updating that kernel image. I'l try to do it tomorrow (~24 hours from now). I wanted to compile custom kernel for latest OS update for usage with my own device anyway so let's kill two birds with two stones at the same time ;-)

Re: Pptp Vpn?
 

I would actually need the pptp support without MMPE, with no encryption whatsoever, if anyone can build a deb for that, would be great!

Re: Pptp Vpn?
 

I am new to internettablettalk(just got my n810 for christmas). My workplace uses a microsoft IAS to provide vpn to us, so as Fanoush's vpn kernel/modules are outdated I took it upon myself to create my own kernel, and everything seems to be working. I also managed to get pon, poff and ip-up.d to work by editing the scripts a bit.

I am not ready to package any of this, but if there is interest for these modifications I would be more than happy to share them with anyone

Re: Pptp Vpn?
 

I am definatly interested in this, I have been working on this for a few days now with little success. I have an N800 with the latest Diable updates. My main problem has been with the routing and getting the Chap to Auth. I am a total Newb to Linux but have read virtually every relavent post on here over the last few months so have a little knowledge. A GUI frontend for this would be a godsend.

Re: Pptp Vpn?
 

I second casper27's need, and hope you can help the rest of us with something that is easy to follow. Thanks.

Re: Pptp Vpn?
 

Any further with this? I am just getting it about working each time now but seem to have to change the routing slightly each time. Also putting inmod the modules each time is getting a bit tedious. Anyone up to the challenge of getting a workable GUI frontend for this. Before you ask why im not doing it I have not got a clue how??

Re: Pptp Vpn?
 

Hi
I am new with nokia n810
and i am trying to make pptp work with my officce's VPN
my officce's VPN need mppe
i have installed pptp client
i have flashed the fanoush kernel
but i don't know how to install the new kernel's modules
any help ?
thanks

Re: Pptp Vpn?
 

You have to insert them in the correct order using the command
insmod filename
It is covered on one of the pages in this thread but I cannot remember which order it is in. If you have a quick read through some of the pages you should be able to find it.

Re: Pptp Vpn?
 

thank you casper i found the right secuence for insmod
but how i could make this process automatic ?
if i need to add a route each time the pptp link is active ? what can i do ?
thank you again

Re: Pptp Vpn?
 

Hi everybody.
Any news for N810 pptp Client??
if no, there are any possibility to use a openvpn in a pptp server?
sorry, but i a newbie in N810