[vpnc-devel] Cygwin woes....

Ted Gulesserian tguless at bigfoot.com
Mon Sep 10 17:45:34 CEST 2007 

For sanity's sake I tried the exact same thing with Win32 - I downloaded and
built the latest vpnc off svn trunk in cygwin, I downloaded the stable
version of Win32 OpenVPN - I copied a working default.conf from my Ubuntu
7.04 installation (vpnc works off Feisty Fawn repositories for me).  I am
getting the exact same problem in Win32 so not sure it is an XP 64 issue. 

Is there a specific version of OpenVPN that vpnc works with on Windows?

Thanks, 
Ted

-----Original Message-----
From: vpnc-devel-bounces at unix-ag.uni-kl.de
[mailto:vpnc-devel-bounces at unix-ag.uni-kl.de] On Behalf Of Paolo Zarpellon
Sent: Monday, September 10, 2007 2:59 AM
To: vpnc list to send bug reports and discussions with developers
Subject: Re: [vpnc-devel] Cygwin woes....

Ted,
cygwin on winxp x86 is ok as I use it every day so there must be
something to do with winxp x64. However, I would like
to figure out whether it is a problem with vpnc/tap or the script which
configures the tap interface and the routes.
According to what you report the TAP interface does get properly configured
and the "Connection..." message disappears though vpnc is still running
in foreground. Could you please try to set up the TAP interface and one
route
to an internal network manually? Follow these steps:
a) Rename "Local Area Connection 6" (or whatever name your tap interface
has)
    to "TAP" as it is easier and shorter to type ;-)
b) run vpnc
c) write down the internal address (I will call it X.X.X.X)
d) netsh interface ip set address TAP static X.X.X.X 255.255.255.0
e) route add Y.Y.Y.Y mask M.M.M.M X.X.X.X
   where Y.Y.Y.Y is some network you should reach through vpn and
M.M.M.M is its mask
f) check that the ip address is correct on the TAP interface
(ipconfig); media state should not be "disconnected"
g) check that the added route appears in the routing table (route print)
h) (nice to do) sniff packets on the TAP interface (any sniffer would do)
i) ping some host on network Y.Y.Y.Y (don't use the name, use the ip
address instead)

Thanks,
Paolo

On 9/9/07, Ted Gulesserian <tguless at bigfoot.com> wrote:
> Hello Paolo - Here is all my stdout - Do you know how to make vpnc more
> verbose?   I guess I need the TAP interface to be more verbose as well?
>
> Also a side note - the TAP interface on rc4 of OpenVPN  does not work with
> vpnc at all - meaning I get much less logs spit out then what I show
below.
>
> Again this is on cygwin WinXP x64 - haven't tested on x86 - I will if u
want
> me to.  The reason this would be great help is because Cisco themselves
are
> not supporting their own VPN solution on win XP 64.  Way to give their
> customers the shaft.
>
> Here is the info you requested - Thanks for looking into this!
>
>
> $ /usr/local/sbin/vpnc --local-port 0 --ifmode tap --no-detach --natt-mode
> force-natt
> Enter password for tgulessa at usvpn.sonybmg.com:
> Microsoft (R) Windows Script Host Version 5.6
> Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
>
> Device: Local Area Connection 6
> TAP-Win32 Driver Version 8.1
> Microsoft (R) Windows Script Host Version 5.6
> Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
>
> VPN Gateway: 170.171.1.10
> Internal Address: 10.105.252.97
> Internal Netmask: 255.255.254.0
> Interface: "Local Area Connection 6"
> Configuring "Local Area Connection 6" interface...
> done.
> Configuring networks:
> Route configuration done.
> VPNC started in foreground...
>
> -----Original Message-----
> From: vpnc-devel-bounces at unix-ag.uni-kl.de
> [mailto:vpnc-devel-bounces at unix-ag.uni-kl.de] On Behalf Of Paolo Zarpellon
> Sent: Monday, September 10, 2007 2:06 AM
> To: vpnc list to send bug reports and discussions with developers
> Subject: Re: [vpnc-devel] Cygwin woes....
>
> Hi Ted,
> could you please post again what you see on the screen, including
> the command you typed to run vpnc? After the "Connecting..." icon
> goes away do you get the prompt back (you do run vpnc with
> --no-detach, don't you?)? I'll try and see if I can find some win XP64
> system to run vpnc on but I cannot guarantee I'll find one.
> Thanks,
> Paolo
>
> On 9/9/07, Ted Gulesserian <tguless at bigfoot.com> wrote:
> > Sorry for responding to this so late... I had to reinstall OS etc.
> >
> > This is regarding the issue with using vpnc on cygwin on windows XP64.
> >
> > Here is the information your requested.  After waiting a while the TAP
> > interface "Connecting.." icon goes away and when I run ipconfig at the
> > command prompt, this is the information it shows for the TAP interface:
> >
> > Ethernet adapter Local Area Connection 3:
> >
> >    Connection-specific DNS Suffix  . :
> >    Autoconfiguration IP Address. . . : 169.254.188.2
> >    Subnet Mask . . . . . . . . . . . : 255.255.0.0
> >    Default Gateway . . . . . . . . . :
> >
> > I want to help resolve this issue, as it is preventing me from
connecting
> to
> > my office from my XP64 bit installation.  Also I should correct that the
> > link I used to install openVPN is this:
> >
> >
>
http://openvpn.se/files/install_packages/openvpn-2.0.5-gui-1.0.3-install-aut
> > o_xp64.exe
> >
> > I realize this is no help.  Let me know if you like me to crank up log
> > levels on anything.  Although not sure how I would do it on the the TAP
> > interface.  Let me know what other information I can provide.
> >
> > Thanks,
> > Ted
> >
> > -----Original Message-----
> > From: vpnc-devel-bounces at unix-ag.uni-kl.de
> > [mailto:vpnc-devel-bounces at unix-ag.uni-kl.de] On Behalf Of Paolo
Zarpellon
> > Sent: Tuesday, July 31, 2007 10:04 AM
> > To: vpnc list to send bug reports and discussions with developers
> > Subject: Re: [vpnc-devel] Cygwin woes....
> >
> > Hi Ted,
> >
> > On 7/24/07, Ted Gulesserian <tguless at yahoo.com> wrote:
> > > Hello everyone - First off I want to thank everyone for the amazing
work
> > > done here.
> > >
> > > Here is a description of my problem with Cygwin:
> > >
> > > On windows XP 64 I downloaded the 64 bit openvpn client from the
> following
> > > location:
> > >
> > >
> >
>
http://openvpn.se/files/install_packages/openvpn-2.0.9-gui-1.0.3-install.exe
> > >
> > > I compiled the latest SVN checkout of vpnc under cygwin and installed
it
> > to
> > > /usr/local/sbin
> > >
> > > I used the same /etc/vpnc/default.conf that I have been using with my
> > Ubuntu
> > > installation on my laptop for several months.
> > >
> > > When I run the following:
> > >
> > > /usr/local/sbin/vpnc --local-port 0 --ifmode tap --no-detach
--natt-mode
> > > force-natt
> > >
> > > I see this on the screen:
> > >
> > > Enter password for aaa at aaa.aaa.com:
> > >
> > > Microsoft (R) Windows Script Host Version 5.6
> > >
> > > Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
> > >
> > >
> > >
> > > Device: Local Area Connection 4
> > >
> > > TAP-Win32 Driver Version 8.1
> > >
> > > Microsoft (R) Windows Script Host Version 5.6
> > >
> > > Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
> > >
> > >
> > >
> > > VPN Gateway: 170.171.1.10
> > >
> > > Internal Address: 10.105.253.26
> > > Internal Netmask: 255.255.254.0
> >
> > This is what should get assigned to your TAP interface
> >
> > > Interface: "Local Area Connection 4"
> > >
> > > Configuring "Local Area Connection 4" interface...
> > >
> > > done.
> > >
> > > Configuring networks:
> > > Route configuration done.
> >
> > It looks like the script failed to install the routes to reach your
> > internal networks.
> > You may try to install one or two manually and see if you can at least
> > reach them.
> >
> > >
> > > VPNC started in foreground...
> > >
> > >
> > >
> > > Then I see the OpenVPN NIC icon in the taskbar show a "busy status"
> while
> > it
> > > attempts to pull an IP address from the DHCP server at my work; after
a
> > > while it acts like it pulled an IP, but based on the IP it pulls and
the
> > > gateway and name server it pulls I know it has gotten bogus
information
> > > because it is not in the right subnet. If I try to ping any server
> inside
> > my
> > > work network I get "Unreachable" errors.
> >
> > What gets assigned to the TAP interface (ip, mask, etc.)?
> >
> > Paolo
> >
> > >
> > > Can someone give me some guidance on what I am doing wrong here?
> > >
> > > Thanks,
> > >
> > > Ted
> > >
> > >
> > > _______________________________________________
> > > vpnc-devel mailing list
> > > vpnc-devel at unix-ag.uni-kl.de
> > > https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> > > http://www.unix-ag.uni-kl.de/~massar/vpnc/
> > >
> > >
> >
> > _______________________________________________
> > vpnc-devel mailing list
> > vpnc-devel at unix-ag.uni-kl.de
> > https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> > http://www.unix-ag.uni-kl.de/~massar/vpnc/
> >
> > _______________________________________________
> > vpnc-devel mailing list
> > vpnc-devel at unix-ag.uni-kl.de
> > https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> > http://www.unix-ag.uni-kl.de/~massar/vpnc/
> >
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel at unix-ag.uni-kl.de
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/
>
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel at unix-ag.uni-kl.de
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/
>
_______________________________________________
vpnc-devel mailing list
vpnc-devel at unix-ag.uni-kl.de
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/

More information about the vpnc-devel mailing list