Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: vpnc: devel

vpnc under cygwin/win32

  

 
vpnc devel RSS feed   Index | Next | Previous | View Threaded


der.einstein at googlemail

Nov 27, 2007, 1:21 PM

Post #1 of 6 (1213 views)
Permalink
vpnc under cygwin/win32
Hi there,
I just got vpnc compiled fine under cygwin but only version 0.4.0 and
current svn. With both I am able to connect to the Cisco VPN Server of our
university (Uni Bayreuth), or at least it seems so. The client tells me
everything is ok, but I cannot access restricted areas of the uni net. I
think there went something wrong by changing the route tables. Please read
the following output of vpnc and route print, hopefully you can tell me
what's wrong.

Greets, Andreas Heider

vpnc output:

me[at]mantikor ~/vpnc-svn-r270
$ ./vpnc --local-port 0 --no-detach --ifmode tap
Enter username for 132.180.252.49: s2anheid[at]stmail
Enter password for s2anheid[at]stmail@132.180.252.49:
Microsoft (R) Windows Script Host, Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. Alle Rechte vorbehalten.

Device: vpnc
TAP-Win32 Driver Version 8.4
Microsoft (R) Windows Script Host, Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. Alle Rechte vorbehalten.

VPN Gateway: 132.180.252.49
Internal Address: 132.180.224.224
Internal Netmask:
Interface: "vpnc"
Configuring "vpnc" interface...
done.
Configuring networks:
Route configuration done.
VPNC started in foreground...


routing:

route print
===========================================================================
Schnittstellenliste
0x1 ........................... MS TCP Loopback
interface
0x2 ...00 ff 42 29 db e3 ...... TAP-Win32 Adapter V8
0x3 ...00 13 d3 6f 1f c6 ...... Bluetooth PAN Network Adapter
NDIS Driver
0x1000005 ...00 13 d3 6e 1a 95 ...... IEEE 802.11g Wireless Card.
0x1000006 ...00 13 d3 f0 36 bc ...... Realtek RTL8139/810x Family Fast
Ethernet
NIC
===========================================================================
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Anzahl
0.0.0.0 0.0.0.0 132.180.252.49 132.180.224.224 1
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.38 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
131.188.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
132.180.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
132.180.224.0 255.255.255.0 132.180.224.224 132.180.224.224 1
132.180.224.224 255.255.255.255 127.0.0.1 127.0.0.1 1
132.180.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
192.109.202.0 255.255.255.192 132.180.224.224 132.180.224.224 1
192.168.1.0 255.255.255.0 192.168.1.38 192.168.1.38 1
192.168.1.38 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.1.255 255.255.255.255 192.168.1.38 192.168.1.38 1
224.0.0.0 224.0.0.0 132.180.224.224 132.180.224.224 1
224.0.0.0 224.0.0.0 192.168.1.38 192.168.1.38 1
255.255.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
Standardgateway: 192.168.1.1
===========================================================================
Ständige Routen:
Keine

routing when vpnc is not running:

route print
===========================================================================
Schnittstellenliste
0x1 ........................... MS TCP Loopback interface
0x2 ...00 ff 42 29 db e3 ...... TAP-Win32 Adapter V8
0x3 ...00 13 d3 6f 1f c6 ...... Bluetooth PAN Network Adapter NDIS Driver
0x1000005 ...00 13 d3 6e 1a 95 ...... IEEE 802.11g Wireless Card.
0x1000006 ...00 13 d3 f0 36 bc ...... Realtek RTL8139/810x Family Fast
Ethernet
NIC
===========================================================================
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Anzahl
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.38 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.38 192.168.1.38 1
192.168.1.38 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.1.255 255.255.255.255 192.168.1.38 192.168.1.38 1
224.0.0.0 224.0.0.0 192.168.1.38 192.168.1.38 1
255.255.255.255 255.255.255.255 192.168.1.38 2 1
Standardgateway: 192.168.1.1
===========================================================================
Ständige Routen:
Keine


gofman.mike at gmail

Nov 28, 2007, 10:06 AM

Post #2 of 6 (1037 views)
Permalink
Re: vpnc under cygwin/win32 [In reply to]
Hello all.
Is there anyone currently working on the Nortel branch?
Is it being integrated into the main branch?
I'd like to talk them.
I intend to work on integrating the Nortel support into KVPNC and I need
some help.


jmvpnc at loplof

Nov 28, 2007, 11:11 AM

Post #3 of 6 (1032 views)
Permalink
Re: vpnc under cygwin/win32 [In reply to]
On Tue, Nov 27, 2007 at 10:21:23PM +0100, Andreas Heider wrote:
> I just got vpnc compiled fine under cygwin but only version 0.4.0 and
> current svn. With both I am able to connect to the Cisco VPN Server of our
> university (Uni Bayreuth), or at least it seems so. The client tells me
> everything is ok, but I cannot access restricted areas of the uni net. I
> think there went something wrong by changing the route tables. Please read
> the following output of vpnc and route print, hopefully you can tell me
> what's wrong.

Unfortunately, I can't. Instead I'm quite confused:


> VPN Gateway: 132.180.252.49
> Internal Address: 132.180.224.224
...
> Netzwerkziel Netzwerkmaske Gateway Schnittstelle Anzahl
> 0.0.0.0 0.0.0.0 132.180.252.49 132.180.224.224 1
> 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.38 1
> 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
> 131.188.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
> 132.180.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
> 132.180.224.0 255.255.255.0 132.180.224.224 132.180.224.224 1
> 132.180.224.224 255.255.255.255 127.0.0.1 127.0.0.1 1
> 132.180.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
> 192.109.202.0 255.255.255.192 132.180.224.224 132.180.224.224 1
> 192.168.1.0 255.255.255.0 192.168.1.38 192.168.1.38 1
> 192.168.1.38 255.255.255.255 127.0.0.1 127.0.0.1 1
> 192.168.1.255 255.255.255.255 192.168.1.38 192.168.1.38 1
> 224.0.0.0 224.0.0.0 132.180.224.224 132.180.224.224 1
> 224.0.0.0 224.0.0.0 192.168.1.38 192.168.1.38 1
> 255.255.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
> Standardgateway: 192.168.1.1

If I read the code in vpnc-script-win.js correctly, there should have
been a line like "132.180.252.49 255.255.255.255 192.168.1.1
192.168.1.38 1". Also, why are there two default routes? Maybe the old
default route should be deleted?
Btw, when INTERNAL_IP4_NETMASK is not set, the linux script uses
255.255.255.255 as netmask. Is there a specific reason why this isn't
done on windows? (ok, linux will currently ignore the value of
INTERNAL_IP4_NETMASK and always use 255.255.255.255 but that's already
fixed in my sources).

Ciao
Joerg

PS: Can you please tell me a sample address that should be reachable but
isn't?
--
Joerg Mayer <jmayer[at]loplof.de>
We are stuck with technology when what we really want is just stuff that
works. Some say that should read Microsoft instead of technology.
_______________________________________________
vpnc-devel mailing list
vpnc-devel[at]unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/


paolo.zarpellon at gmail

Nov 29, 2007, 6:05 AM

Post #4 of 6 (1039 views)
Permalink
Re: vpnc under cygwin/win32 [In reply to]
On Nov 28, 2007 8:11 PM, Joerg Mayer <jmvpnc[at]loplof.de> wrote:
> On Tue, Nov 27, 2007 at 10:21:23PM +0100, Andreas Heider wrote:
> > I just got vpnc compiled fine under cygwin but only version 0.4.0 and
> > current svn. With both I am able to connect to the Cisco VPN Server of our
> > university (Uni Bayreuth), or at least it seems so. The client tells me
> > everything is ok, but I cannot access restricted areas of the uni net. I
> > think there went something wrong by changing the route tables. Please read
> > the following output of vpnc and route print, hopefully you can tell me
> > what's wrong.
>
> Unfortunately, I can't. Instead I'm quite confused:
>
>
> > VPN Gateway: 132.180.252.49
> > Internal Address: 132.180.224.224
> ...
> > Netzwerkziel Netzwerkmaske Gateway Schnittstelle Anzahl
> > 0.0.0.0 0.0.0.0 132.180.252.49 132.180.224.224 1
> > 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.38 1
> > 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
> > 131.188.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
> > 132.180.0.0 255.255.0.0 132.180.224.224 132.180.224.224 1
> > 132.180.224.0 255.255.255.0 132.180.224.224 132.180.224.224 1
> > 132.180.224.224 255.255.255.255 127.0.0.1 127.0.0.1 1
> > 132.180.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
> > 192.109.202.0 255.255.255.192 132.180.224.224 132.180.224.224 1
> > 192.168.1.0 255.255.255.0 192.168.1.38 192.168.1.38 1
> > 192.168.1.38 255.255.255.255 127.0.0.1 127.0.0.1 1
> > 192.168.1.255 255.255.255.255 192.168.1.38 192.168.1.38 1
> > 224.0.0.0 224.0.0.0 132.180.224.224 132.180.224.224 1
> > 224.0.0.0 224.0.0.0 192.168.1.38 192.168.1.38 1
> > 255.255.255.255 255.255.255.255 132.180.224.224 132.180.224.224 1
> > Standardgateway: 192.168.1.1
>
> If I read the code in vpnc-script-win.js correctly, there should have
> been a line like "132.180.252.49 255.255.255.255 192.168.1.1
> 192.168.1.38 1".

there was a fix which went in the trunk not long ago to fix a couple
of issue with vpnc-script-win.js, one of those was an issue with the
VPN gateway route.

> Also, why are there two default routes? Maybe the old
> default route should be deleted?
> Btw, when INTERNAL_IP4_NETMASK is not set, the linux script uses
> 255.255.255.255 as netmask. Is there a specific reason why this isn't
> done on windows? (ok, linux will currently ignore the value of
> INTERNAL_IP4_NETMASK and always use 255.255.255.255 but that's already
> fixed in my sources).

windows (xp, at least) does not let you use 255.255.255.255 as netmask:

$ netsh interface ip set address TAP2 static 10.0.0.1 255.255.255.255
255.255.255.255 is not an acceptable value for mask.

In vpnc-script-win.js, the netmask is currently hardcoded to
255.255.255.0. There was a patch to set it to either
INTERNAL_IP4_NETMASK or some other default value if
INTERNAL_IP4_NETMASK was not set but it never got applied.

Regards,
Paolo

> Ciao
> Joerg
>
> PS: Can you please tell me a sample address that should be reachable but
> isn't?
> --
> Joerg Mayer <jmayer[at]loplof.de>
> We are stuck with technology when what we really want is just stuff that
> works. Some say that should read Microsoft instead of technology.
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel[at]unix-ag.uni-kl.de
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/
>
_______________________________________________
vpnc-devel mailing list
vpnc-devel[at]unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/


jmvpnc at loplof

Nov 29, 2007, 9:52 AM

Post #5 of 6 (1026 views)
Permalink
Re: vpnc under cygwin/win32 [In reply to]
On Thu, Nov 29, 2007 at 03:05:57PM +0100, Paolo Zarpellon wrote:
> > If I read the code in vpnc-script-win.js correctly, there should have
> > been a line like "132.180.252.49 255.255.255.255 192.168.1.1
> > 192.168.1.38 1".
>
> there was a fix which went in the trunk not long ago to fix a couple
> of issue with vpnc-script-win.js, one of those was an issue with the
> VPN gateway route.

He use the (then) current version: ~/vpnc-svn-r270

> > Also, why are there two default routes? Maybe the old
> > default route should be deleted?

What about this point?

> > Btw, when INTERNAL_IP4_NETMASK is not set, the linux script uses
> > 255.255.255.255 as netmask. Is there a specific reason why this isn't
> > done on windows? (ok, linux will currently ignore the value of
> > INTERNAL_IP4_NETMASK and always use 255.255.255.255 but that's already
> > fixed in my sources).
>
> windows (xp, at least) does not let you use 255.255.255.255 as netmask:
>
> $ netsh interface ip set address TAP2 static 10.0.0.1 255.255.255.255
> 255.255.255.255 is not an acceptable value for mask.

Interesting: Are you running in tun or in tap mode? The name seems to
indicate you are using tap mode instead of tun mode. Maybe that is the
reason why a host mask isn't possible. While I'm at it: In the Unix
version of the script, the interface is set up in the script. How is it
set up on Windows?

Ciao
Joerg
--
Joerg Mayer <jmayer[at]loplof.de>
We are stuck with technology when what we really want is just stuff that
works. Some say that should read Microsoft instead of technology.
_______________________________________________
vpnc-devel mailing list
vpnc-devel[at]unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/


paolo.zarpellon at gmail

Nov 30, 2007, 7:15 AM

Post #6 of 6 (1028 views)
Permalink
Re: vpnc under cygwin/win32 [In reply to]
On Nov 29, 2007 6:52 PM, Joerg Mayer <jmvpnc[at]loplof.de> wrote:
> On Thu, Nov 29, 2007 at 03:05:57PM +0100, Paolo Zarpellon wrote:
> > > If I read the code in vpnc-script-win.js correctly, there should have
> > > been a line like "132.180.252.49 255.255.255.255 192.168.1.1
> > > 192.168.1.38 1".
> >
> > there was a fix which went in the trunk not long ago to fix a couple
> > of issue with vpnc-script-win.js, one of those was an issue with the
> > VPN gateway route.
>
> He use the (then) current version: ~/vpnc-svn-r270
>
> > > Also, why are there two default routes? Maybe the old
> > > default route should be deleted?
>
> What about this point?

I'm not sure. AFAIK some concentrators are configured to send only the
default entry but I am surprised to see two default entries with the
same metric and also some other routes.

>
> > > Btw, when INTERNAL_IP4_NETMASK is not set, the linux script uses
> > > 255.255.255.255 as netmask. Is there a specific reason why this isn't
> > > done on windows? (ok, linux will currently ignore the value of
> > > INTERNAL_IP4_NETMASK and always use 255.255.255.255 but that's already
> > > fixed in my sources).
> >
> > windows (xp, at least) does not let you use 255.255.255.255 as netmask:
> >
> > $ netsh interface ip set address TAP2 static 10.0.0.1 255.255.255.255
> > 255.255.255.255 is not an acceptable value for mask.
>
> Interesting: Are you running in tun or in tap mode?

In windows it is tap mode only

> The name seems to
> indicate you are using tap mode instead of tun mode. Maybe that is the
> reason why a host mask isn't possible. While I'm at it: In the Unix
> version of the script, the interface is set up in the script. How is it
> set up on Windows?

It's the same. The script configures the interface (and the routes) by
invoking netsh commands.

Paolo

>
> Ciao
> Joerg
> --
>
> Joerg Mayer <jmayer[at]loplof.de>
> We are stuck with technology when what we really want is just stuff that
> works. Some say that should read Microsoft instead of technology.
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel[at]unix-ag.uni-kl.de
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/
>
_______________________________________________
vpnc-devel mailing list
vpnc-devel[at]unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/

vpnc devel RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact lists@gossamer-threads.com
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.