Connect to RAS callback server: route problem


Login or Register for Dates, Times and to Reply

 
Thread Tools Search this Thread
# 1  
Question Connect to RAS callback server: route problem

I'm trying to use my Gentoo Linux home workstation for connecting to a Windows RAS callback server through analogic telephone line (PSTN).

I'm using pppd and successfully configured pppd's options and chat files, both for the outgoing call and for receiving the incoming callback. All seems going well (negotiation of authentication method, encryption, compression), and at the end I am greeted with the following lines:

Code:
local  IP address 10.74.49.117
remote IP address 10.74.49.22

The pppd daemon is running and I can even receive the DNS information from the remote host. But there's a problem. Simply I cannot ping any host on the remote network (which is 10.0.0.0/8). For example, I am not able to ping the server 10.74.49.22 !

Normally, I'm connecting to the internet through my homenetwork LAN, which subnet is 192.168.0.0/24. So I have an interface card eth0 (192.168.0.3) and a router as the default gateway (192.168.0.100):

Code:
localhost ~ # route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         192.168.0.100   0.0.0.0         UG    0      0        0 eth0

I have tried to exclude all possible problems, so:
  1. I've cleaned my routing table and removed the two entries referencing eth0, leaving only the loopback destination.
  2. I have made the connection, and pppd automatically added a new default gateway pointing to the server (10.74.49.22), using the new interface ppp0.
  3. I have cleaned "/etc/resolv.conf" and trying to access the machines on the remote network by specifying the IP address. At this point I realized that I couldn't even ping the gateway (10.74.49.22)!

Stuck at this point, I've rebooted into Windows, made the connection and looked at the routing table:
Code:
===========================================================================
Active Routes:
Network Address            Mask             Gateway       Interface  Metric   
          0.0.0.0          0.0.0.0     10.74.49.117    10.74.49.117       1   
      10.74.49.22  255.255.255.255     10.74.49.117    10.74.49.117       1
     10.74.49.117  255.255.255.255        127.0.0.1       127.0.0.1       50
   10.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       50
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1   
        224.0.0.0        240.0.0.0     10.74.49.117    10.74.49.117       1
  255.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       1
Default gateway:          10.74.49.117
===========================================================================

Here I can ping the server (10.74.49.22) and every machine in the 10.0.0.0/8 network.
Notice that the assigned local address is automatically become the default gateway... Smilie
At this point I've reduced the routing table, also removing the default gateway and adding a static route to the destination 10.0.0.0/8 through the gateway 10.74.49.117 (which is the local ip address of the ppp interface assigned to me by the server):

Code:
===========================================================================
Active Routes:
Network Address            Mask             Gateway       Interface  Metric
         10.0.0.0        255.0.0.0     10.74.49.117    10.74.49.117       1  
     10.74.49.117  255.255.255.255        127.0.0.1       127.0.0.1       50
   10.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       50
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
  255.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       1
===========================================================================

Also with this routing table I can ping all the 10.0.0.0/8 subnet.
So, I've switched back to Linux, made the connection and "copied" the above routing table...
The result? No answer from any remote host..... Smilie

This thing is driving me mad!! Oh, I've forgot to say that I haven't setup any firewall and I've tried all the operations with the root user.
I've also tried to look into the transmitted/received packets on the ppp0 device with tcpdump tool, but no packets are TX/RX at all...

Is it possible that the pppd daemon establishes successfully the connection but actually there is some problem with the compression or encryption or something else negotiated with the RAS server?

Sorry for the long post, any help would be REALLY, REALLY appreciated Smilie
# 2  
Is the Windows RAS server configured to "route or forward IP packets"?

When the far servers see your Gentoo machines IP address, do they know to route those packets through the Windows RAS server?
# 3  
Unfortunately, I haven't any access or control over the RAS Server, so I don't know if it is configured to "route or forward IP packets".

But I bet yes, because otherwise how could I connect and able to reach the remote network when I use a Windows client?

And I think the problem is happening before, because from my Linux client, once connected with pppd, I am not even able to ping the RAS Server (10.74.49.22) as well as all the other machines on the 10.0.0.0/8 subnet.
# 4  
have you got

Code:
route add default <ip-of-RAS-server>

is traceroute showing all your packets going out of the ppp interface?
# 5  
Yes. pppd automatically adds a default gateway in the way you said. So I have:

Code:
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.74.49.22     0.0.0.0         UG    0      0        0 ppp0

On Linux, traceroute shows nothing, it "hangs"... Also a simple ping to the RAS server isn't working. On Windows, tracert works and I see packets going through the server (10.74.49.22).
# 6  
Quote:
Originally Posted by robotronic
On Linux, traceroute shows nothing, it "hangs"...
Does it hang or show stars after timeouts?

Have you got ppp debugging turned on so you can get a log of what pppd thinks it's doing?
# 7  
Well, traceroute doesn't hang, prints out a bunch of asterisks.
And yes, I've already turned on debug for pppd. Following, I'm trying to clear out the entire situation:

Code:
1a) Routing table on Windows, before the connection:
===========================================================================
Active Routes:
Network Address            Mask             Gateway       Interface  Metric   
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1   
===========================================================================

Code:
1b) Routing table on Windows, after the connection:
===========================================================================
Active Routes:
Network Address            Mask             Gateway       Interface  Metric   
          0.0.0.0          0.0.0.0     10.74.49.117    10.74.49.117       1   
      10.74.49.22  255.255.255.255     10.74.49.117    10.74.49.117       1
     10.74.49.117  255.255.255.255        127.0.0.1       127.0.0.1       50
   10.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       50
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1   
        224.0.0.0        240.0.0.0     10.74.49.117    10.74.49.117       1
  255.255.255.255  255.255.255.255     10.74.49.117    10.74.49.117       1
Default gateway:          10.74.49.117
===========================================================================

Code:
1c) tracert 10.74.49.117 (myself):

Tracing route to localhost [10.74.49.117] over a maximum of 30 hops:

  1    <1 ms    <1 ms    <1 ms  localhost [10.74.49.117]

Trace complete.

Code:
1d) tracert 10.74.49.22 (the RAS Server):

Tracing route to 10.74.49.22 over a maximum of 30 hops

  1   320 ms   307 ms   312 ms  10.74.49.22

Trace complete.

Code:
1e) tracert 10.54.39.11 (a test machine on the remote network):

Tracing route to test1 [10.54.39.11] over a maximum of 30 hops:

  1   343 ms   309 ms   311 ms  10.74.49.22
  2     *        *        *     Request timed out.
  3   516 ms   310 ms   297 ms  test1 [10.54.39.11]

Trace complete.

Code:
2a) Routing table on Linux, before the connection:

localhost ppp # route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo

Code:
2b) Routing table on Linux, after the connection:

localhost ppp # route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
10.74.49.22     0.0.0.0         255.255.255.255 UH    0      0        0 ppp0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         10.74.49.22     0.0.0.0         UG    0      0        0 ppp0

Code:
2c) traceroute -n 10.74.49.117 (myself):
traceroute to 10.74.49.117 (10.74.49.117), 30 hops max, 38 byte packets
 1  10.74.49.117  0.043 ms  0.017 ms  0.017 ms

Code:
2d) traceroute -n 10.74.49.22 (the RAS Server):
traceroute to 10.74.49.22 (10.74.49.22), 30 hops max, 38 byte packets
 1  * * *
 2  * * *
 3  * * *
 ... ... ...
28  * * *
29  * * *
30  * * *

Code:
2e) traceroute -n 10.54.39.11 (a test machine on the remote network):
traceroute to 10.54.39.11 (10.54.39.11), 30 hops max, 38 byte packets
 1  * * *
 2  * * *
 3  * * *
 ... ... ...
28  * * *
29  * * *
30  * * *



And this is the connection phase where all seems going well, otherwise I don't think pppd could exit with no errors:

Code:
localhost ppp # cat dial_winnt 
#!/bin/bash
# Call the Windows RAS Server
/usr/sbin/pppd file "/etc/ppp/options.nt"
# Wait for a callback from the Windows RAS server
/usr/sbin/pppd file "/etc/ppp/options.callback"

localhost ppp # ./dial_winnt 
Serial connection established.
using channel 1
Using interface ppp0
Connect: ppp0 <--> /dev/ttyS0
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <callback CBCP> <magic 0x15e1dd6d> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x0 <asyncmap 0x0> <auth eap> <magic 0x27c62cc> <pcomp> <accomp> <callback CBCP> <mrru 1614> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]> < 17 04 00 33>]
sent [LCP ConfRej id=0x0 <callback CBCP> <mrru 1614> < 17 04 00 33>]
rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <callback CBCP> <magic 0x15e1dd6d> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth eap> <magic 0x27c62cc> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
sent [LCP ConfNak id=0x1 <auth chap MD5>]
rcvd [LCP ConfReq id=0x2 <asyncmap 0x0> <auth chap MS-v2> <magic 0x27c62cc> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
sent [LCP ConfAck id=0x2 <asyncmap 0x0> <auth chap MS-v2> <magic 0x27c62cc> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
cbcp_lowerup
want: 14
rcvd [CHAP Challenge id=0x0 <b0725c14fc0d2d38f9f71b1c06c55707>, name = "RASSERVER"]
sent [CHAP Response id=0x0 <2cd54819963de15acb32003bdeb27d3200000000000000003ec36dc144fafc62bb3d1894be8951148ceba541b6de5b1b00>, name = "mylogin"]
rcvd [CHAP Success id=0x0 "S=1CC2C9577D1CACE412D2DA7E8BC7E22777222AE2"]
CHAP authentication succeeded
cbcp_open
rcvd [CBCP Request id=0x1 < AdminDefined delay = 0>]
length: 3
user admin defined allowed
cbcp_resp cb_type=8
cbcp_resp CONF_ADMIN
sent [CBCP Response id=0x1 < AdminDefined delay = 5>]
rcvd [CBCP Ack id=0x1 < AdminDefined delay = 5>]
sent [LCP TermReq id=0x2 "Call me back, please"]
rcvd [LCP TermAck id=0x2 "Call me back, please"]
Connection terminated.

Serial connection established.
using channel 2
Using interface ppp0
Connect: ppp0 <--> /dev/ttyS0
rcvd [LCP ConfReq id=0x0 <asyncmap 0x0> <auth eap> <magic 0x68676e11> <pcomp> <accomp> <mrru 1614> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]> < 17 04 00 34>]
sent [LCP ConfReq id=0x1 <asyncmap 0x0> <callback CBCP> <magic 0xab0df31c> <pcomp> <accomp>]
sent [LCP ConfRej id=0x0 <mrru 1614> < 17 04 00 34>]
rcvd [LCP ConfRej id=0x1 <callback CBCP>]
sent [LCP ConfReq id=0x2 <asyncmap 0x0> <magic 0xab0df31c> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <auth eap> <magic 0x68676e11> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
sent [LCP ConfNak id=0x1 <auth chap MD5>]
rcvd [LCP ConfAck id=0x2 <asyncmap 0x0> <magic 0xab0df31c> <pcomp> <accomp>]
rcvd [LCP ConfReq id=0x2 <asyncmap 0x0> <auth chap MS-v2> <magic 0x68676e11> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
sent [LCP ConfAck id=0x2 <asyncmap 0x0> <auth chap MS-v2> <magic 0x68676e11> <pcomp> <accomp> <endpoint [local:72.c8.4e.3c.43.a9.48.56.b4.8f.96.40.90.72.dc.e0.00.00.00.00]>]
cbcp_lowerup
want: 14
rcvd [CHAP Challenge id=0x0 <3e6effb1eaa7475edbe5a1b6e0222053>, name = "RASSERVER"]
sent [CHAP Response id=0x0 <0beb8c708ddedfc90b971fa0755d61dd0000000000000000a528126f365186da8db35c4b01cc974d2d5a9ee016fc7c6600>, name = "mylogin"]
rcvd [CHAP Success id=0x0 "S=1D9EF7FE8E327E03F678D504705C80375B8DC19C"]
CHAP authentication succeeded
sent [CCP ConfReq id=0x1 <mppe +H -M +S +L -D -C>]
rcvd [CCP ConfReq id=0x4 <mppe -H +M +S +L -D +C>]
sent [CCP ConfNak id=0x4 <mppe -H -M +S -L -D -C>]
rcvd [IPCP ConfReq id=0x5 <compress VJ 0f 01> <addr 10.74.49.22>]
sent [IPCP TermAck id=0x5]
rcvd [CCP ConfNak id=0x1 <mppe -H -M +S -L -D -C>]
sent [CCP ConfReq id=0x2 <mppe -H -M +S -L -D -C>]
rcvd [CCP ConfReq id=0x6 <mppe -H -M +S -L -D -C>]
sent [CCP ConfAck id=0x6 <mppe -H -M +S -L -D -C>]
rcvd [CCP ConfAck id=0x2 <mppe -H -M +S -L -D -C>]
MPPE 128-bit stateful compression enabled
sent [IPCP ConfReq id=0x1 <compress VJ 0f 01> <addr 0.0.0.0>]
rcvd [IPCP ConfNak id=0x1 <addr 10.74.49.117>]
sent [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 10.74.49.117>]
rcvd [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 10.74.49.117>]
rcvd [IPCP ConfReq id=0x7 <compress VJ 0f 01> <addr 10.74.49.22>]
sent [IPCP ConfAck id=0x7 <compress VJ 0f 01> <addr 10.74.49.22>]
local  IP address 10.74.49.117
remote IP address 10.74.49.22

Login or Register for Dates, Times and to Reply

Previous Thread | Next Thread
Thread Tools Search this Thread
Search this Thread:
Advanced Search

Test Your Knowledge in Computers #143
Difficulty: Easy
Apple released a Unix system called Darwin in 2000 which became the core of the Mac OS X operating system, which was later renamed macOS.
True or False?

10 More Discussions You Might Find Interesting

1. Linux

How to connect Linux server (configure two way authentication) with Windows server?

Hi my name is Manju. ->I have configure the two way authentication on my linux server. ->Now I am able to apply two way authenticator on particuler user. ->Now I want to map this linux server to my AD server. ->Kindly tell me how to map AD(Active Directory) with this linux server. ... (0 Replies)
Discussion started by: manjusharma128
0 Replies

2. Shell Programming and Scripting

Problem connect to a different server then do sudo login and finally run some scripts and get result

I have to write a shell script in my current linux server and I have to connect to a different server then do sudo login and finally run some scripts residing in a particular directory and get results back. I am starting to write my shell script as below but after I do ssh login it prompts for... (2 Replies)
Discussion started by: Devesh5683
2 Replies

3. Shell Programming and Scripting

Connect (SSH) to Windows server via Linux server through a script and passing command.. but failing

I am trying to connect to Windows server via Linux server through a script and run two commands " cd and ls " But its giving me error saying " could not start the program" followed by the command name i specify e g : "cd" i am trying in this manner " ssh username@servername "cd... (5 Replies)
Discussion started by: sunil seelam
5 Replies

4. UNIX for Advanced & Expert Users

Public key to connect from one ftp server to other server

How to generate public key to connect from one ftp server to other server to use in scripting. (1 Reply)
Discussion started by: sridhardwh
1 Replies

5. Linux

Generate public key to connect from one ftp server to other server

How to generate public key to connect from one ftp server to other server to use in scripting. (0 Replies)
Discussion started by: sridhardwh
0 Replies

6. Solaris

Not able to delete the route on one of the server

I try to delete the route on one of the server But I am not able to do it its show the error # route delete 10.1.88.0 10.37.201.33 delete host 10.1.88.0: gateway 10.37.201.33: not in table If I add the route also its shows the error message # route add -net 10.1.88.0 10.37.201.33 add net... (5 Replies)
Discussion started by: bapu1981
5 Replies

7. AIX

problem with command 'route -q' in AIX 5.3

Hi all! I have a problem.I access to AIX server via SSH,then i use command 'route -q', after that i can't connect to AIX server.Please help me to fix this problem. Thanks & Best Regards (1 Reply)
Discussion started by: bachtq
1 Replies

8. AIX

problem with host route

Hi, I have a system with network interfaces en0 and en1 en0: physical ip: 1.1.1.10 virtual ip1: 192.168.100.11 virtual ip2: 192.168.100.12 en1: physical ip: 1.1.1.20 virtual ip1: 192.168.100.20 virtual ip2: 192.168.100.21 default gateway ist 192.168.100.254 when I open a... (12 Replies)
Discussion started by: funksen
12 Replies

9. IP Networking

When to use static route on server?

Hi guys, sorry for asking noob question. When do we really need to add a static route on the server? I encounter this situation whereby a client trigger a network packet to the destination but the destination does not know how to return the traffic back to the client (source). The issue was... (4 Replies)
Discussion started by: DrivesMeCrazy
4 Replies

10. Cybersecurity

J need help to make callback by Modem (AIX)

Are there any of you who have a description which can help me to make a callback on AIX. My userīs call in by a telefonnumber at I want AIX to disconnect the line and make a callback to the user who had logged on AIX. The advantage of this is we have security on who we allow to call our... (2 Replies)
Discussion started by: Carsten Lesmark
2 Replies

Featured Tech Videos