Open GoogleCodeExporter opened 8 years ago
Additional Information: The problem must be the router, because I set up an
UBUNTU Server 10.04 and made a VPN Pass-through to it, and then it works.
So I am absolutely sure THE VPN SERVER OF THE ROUTER IS THE PROBLEM
Original comment by johannes...@gmail.com
on 18 Jun 2011 at 3:29
So, I compared the Ubuntu Server 10.04 with the Vigor router now and I figured
out something that was the solution for me:
the vigor asks the peer to authenticate and it refused. so if the peer is an
ISP it will never authenticate himselve, why should he... so the key is the
noauth property
so i changed the configuration in the /etc/ppp/options.l2tp file and now it
works !!!
BEFORE (default configuration of Vigor2130):
root@Vigor2130:/etc/ppp# cat options.l2tp
lock
noccp
novj
novjccomp
nopcomp
noaccomp
proxyarp
lcp-echo-interval 3
name l2tp-server
mtu 1000
ms-dns 192.168.1.1
AFTER (and working):
root@Vigor2130:/etc/ppp# cat options.l2tp
192.168.1.1: <---- here I added the ip
#debug
noauth <---- here I added the noauth property
lock
noccp
novj
novjccomp
nopcomp
noaccomp
proxyarp
lcp-echo-interval 3
name l2tp-server
mtu 1000
ms-dns 192.168.1.1
Original comment by johannes...@gmail.com
on 18 Jun 2011 at 4:23
i figured out one interesting thing. with deleting the noauth attribute, i cant
connect as usually.
BUT: when i shorten my username to less then 6 characters, it works in any
condition. my normal username would have 8 characters, what does not work.
clipping it to 6 characters, and it works with the default configuration.... hm
tested with several machines (linux ubuntu lucid lynx, mac os x 10.6, ios 4.3,
ios 5 beta1) always the same: username more then 6 characters, peer refused to
auth.....
DRAYTEK-TEAM: Repair this! or limit the username box to 6 characters. SOLVING
SUCH A RIDDLE SHOULD NOT BE A SHIPPED TO THE CUSTOMERS. WE HAVE PAID MONEY FOR
IT, AND NOT TOO LESS... THEREFORE WE WANT A WORKING PRODUCT!!!
SO, CHECK IT OUT. PROBLEM OCCURS WHITH USERNAMES WHICH HAVE MORE THEN 6
CHARACTERS
REPAIR THIS AND SUBMIT AN UPDATET RELEASE OF THE FIRMWARE. THX
With best regards,
a very dissatisfied customer.
Original comment by johannes...@gmail.com
on 21 Jun 2011 at 8:56
Hi Johannes,
I'm also a Vigor-2130 user.
I happened to found one issue that if you change the username/password of an
existing account of IPSEC/L2TP, the password won't be changed in the
/etc/ppp/chap-secrets.
ex:
1 l2tp-server "1" *
12 l2tp-server "12" *
11 l2tp-server "1234567" *
I changed the third username/password 1234567/1234567 to 11/11, but the
password was not changed. I don't think the length of username/password is the
root cause of your issue. You can try to add a new account whose length is more
than 6 characters instead of changing an existing account.
Original comment by wedid...@gmail.com
on 22 Jun 2011 at 6:58
Hi Wedid,
I checked the username and password in the /etc/ppp/chap-secrets and them were
right.
for testing a made a clean install of the router with FW1.5.1 and added new
accounts, starting fom username with 2 characters to 8 characters. always the
same password. worked fine for usernames from 2 to 6 characters. but user with
7 and 8 brought the router to crash the vpn system. first error is "peer
refused to authenticate" and this is followed by the error "asynchronous
network error". after the asynchronous network error, vpn is broken, so the
usernames with 2 to 6 characters also cant login anymore. but this networkerror
only apperas by login of users with more then 6 characters.
this router has such a buggy implementation of openwrt. I bought a draytek
router because I thought it would be a gread product. I HAVE NEVER HAD SUCH A
BUGGY CRAP BEFORE.
Original comment by johannes...@gmail.com
on 22 Jun 2011 at 8:08
Original issue reported on code.google.com by
johannes...@gmail.com
on 18 Jun 2011 at 3:17