pptdp MPPE kernel support

[oooops]

Hello Marcel! how are you?

I am testing vpn capabilities on the RW, specially pptpd and openvpn. I finished with pptpd, with bad news.. the kernel module for encryption (MPPE) is not there!! I am using the latest snapshot from 20080521.

Here are the logs, and part of options.pptpd also i am including output from lsmod :

daemon.log :

Jun 9 13:15:30 fw1 pppd[5363]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
Jun 9 13:15:30 fw1 pppd[5363]: pppd 2.4.4 started by root, uid 0
Jun 9 13:15:30 fw1 pppd[5363]: Using interface ppp0
Jun 9 13:15:30 fw1 pppd[5363]: Connect: ppp0 <--> /dev/pts/1
Jun 9 13:15:30 fw1 pptpd[5362]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jun 9 13:15:30 fw1 pppd[5363]: MPPE required, but kernel has no support.
Jun 9 13:15:30 fw1 pppd[5363]: Connection terminated.
Jun 9 13:15:30 fw1 pppd[5363]: Connect time 0.0 minutes.
Jun 9 13:15:30 fw1 pppd[5363]: Sent 0 bytes, received 44 bytes.
Jun 9 13:15:30 fw1 pptpd[5362]: CTRL: Reaping child PPP[5363]
Jun 9 13:15:31 fw1 pppd[5363]: Exit.
Jun 9 13:15:31 fw1 pptpd[5362]: CTRL: Client 192.168.10.101 control connection finished

options.pptpd:

# BSD licensed ppp-2.4.2 upstream with MPPE only, kernel module ppp_mppe.o
# {{{
refuse-pap
refuse-chap
refuse-mschap
# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft
# Challenge Handshake Authentication Protocol, Version 2] authentication.
require-mschap-v2
# Require MPPE 128-bit encryption
# (note that MPPE requires the use of MSCHAP-V2 during authentication)
require-mppe-128
# }}}

output of lsmod:
Module Size Used by
ppp_async 12036 0
crc_ccitt 3200 1 ppp_async
ppp_generic 27540 1 ppp_async
slhc 7168 1 ppp_generic
iptable_filter 3972 1
ip_tables 14708 1 iptable_filter
x_tables 15620 1 ip_tables
capability 5772 0
commoncap 8192 1 capability
bridge 52632 0
llc 8596 1 bridge
ac 6660 0
battery 13452 0
fan 6276 0
rtc 10132 0
thermal 17076 0
ohci_hcd 21900 0
button 9360 0
shpchp 32544 0
processor 38088 1 thermal
pci_hotplug 29864 1 shpchp
usbcore 130444 2 ohci_hcd
serio_raw 8068 0
e100 35224 0
tulip 50464 0
i2c_piix4 9492 0
i2c_core 24576 1 i2c_piix4
scsi_wait_scan 2432 0
lpfc 213176 0
megaraid_sas 29872 0
megaraid_mbox 33064 0
megaraid_mm 12068 1 megaraid_mbox
aacraid 63668 0
DAC960 68648 0
3w_9xxx 33796 0
3w_xxxx 27424 0
mptsas 32400 0
mptfc 17548 0
mptspi 19084 0
mptscsih 26752 3 mptsas,mptfc,mptspi
mptbase 60384 4 mptsas,mptfc,mptspi,mptscsih
atp870u 30464 0
c395x 34472 0
sim710 6664 0
53c700 29984 1 sim710
qla1280 119084 0
dmx3191d 15232 0
sym53c8xx 72780 0
qlogicfas408 8200 0
aha152x 37168 0
aha1740 8960 0
initio 19908 0
BusLogic? 71444 0
arcmsr 23552 0
aic7xxx 162360 3
aic79xx 182232 0
sg 31912 0

Do you need something else to troubleshoot?

Thanks!!!!

[oooops]

hello... i found what was going on... i follow a link of a diferent ticket... and there is the solution:
http://gentoo-wiki.com/HOWTO_Set_up_a_vpn_client_with_mppe_encryption

There are a few lines that need to be added, as the modules for the encryption are there.. this are the lines:

Add the following to /etc/modules.autoload.d/kernel-2.6 if they were compiled as modules:
File: /etc/modules.autoload.d/kernel-2.6

ppp_mppe
sha1
ecb
arc4

what i did is to locate the modules to see if they were there (they were) so i just added those lines, save-config, reboot.. and voila!!! pptpd working, as you can see -daemon.log- :

Jun 9 14:04:24 fw1 pptpd[17992]: CTRL: Client 192.168.x.101 control connection started
Jun 9 14:04:24 fw1 pptpd[17992]: CTRL: Starting call (launching pppd, opening GRE)
Jun 9 14:04:24 fw1 pppd[17993]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
Jun 9 14:04:24 fw1 pppd[17993]: pppd 2.4.4 started by root, uid 0
Jun 9 14:04:24 fw1 pppd[17993]: Using interface ppp0
Jun 9 14:04:24 fw1 pppd[17993]: Connect: ppp0 <--> /dev/pts/0
Jun 9 14:04:24 fw1 pptpd[17992]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Jun 9 14:04:24 fw1 pppd[17993]: MPPE 128-bit stateless compression enabled
Jun 9 14:04:26 fw1 pppd[17993]: found interface eth1 for proxy arp
Jun 9 14:04:26 fw1 pppd[17993]: local IP address 192.168.x.250
Jun 9 14:04:26 fw1 pppd[17993]: remote IP address 192.168.x.251

So, i guees for the next build, just have to add those lines!!

Thanks again for RW