RE: ppp chap with different password

From: R. Benjamin Kessler (ben@xxxxxxxxxxxxxxxxxxxxx)
Date: Sun Jan 13 2002 - 17:02:13 GMT-3

• Next message: tom cheung: "Re: ppp chap with different password"
• Previous message: kyle prevey: "dial-peer HELP!"
• Maybe in reply to: alain faure: "ppp chap with different password"
• Next in thread: tom cheung: "Re: ppp chap with different password"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
your passwords need to be the same on both sides. Instead of what you had
do the following:

r1

username toto2 pass cisco1

int dial 1
ppp authen chap
ppp chap hostname toto1
ppp chap password cisco1
-----------------------------
r2

username toto1 pass cisco1

int dial 1
ppp authen chap
ppp chap hostname toto2
ppp chap password cisco1

This will work now. Remember, CHAP authentication doesn't send the password
across the line, it sends a hashed version of it; as a result, both sides
have to have the same passwords configured in order for the hash comparison
(MD/DES compare) to work.

Hope this helps.

Ben
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
alain faure
Sent: Sunday, January 13, 2002 1:22 PM
To: ccielab@groupstudy.com
Subject: ppp chap with different password

Hello.

Here is my config it don't work

r1

username toto2 pass cisco2

int dial 1
ppp authen chap
ppp chap hostname toto1
ppp chap password cisco1
-----------------------------
r2

username toto1 pass cisco1

int dial 1
ppp authen chap
ppp chap hostname toto2
ppp chap password cisco2

i cannot find the mistake here the debug (look at "MD/DES compare failed):

05:56:50: %LINK-3-UPDOWN: Interface Async17, changed state to up

05:56:50: %DIALER-6-BIND: Interface Async17 bound to profile Dialer1.

05:56:50: As17 PPP: Treating connection as a callin.

06:14:00: %LINK-3-UPDOWN: Interface Async1, changed state to up

06:14:00: %DIALER-6-BIND: Interface As1 bound to profile Di1

06:14:00: As1 PPP: Treating connection as a callout

06:14:00: As1 PPP: Phase is ESTABLISHING, Active Open

06:14:00: As1 PPP: No remote authentication for call-out

06:14:00: As1 LCP: O CONFREQ [Closed] id 125 len 20

06:14:00: As1 LCP: ACCM 0x000A0000 (0x0206000A0000)

06:14:00: As1 LCP: MagicNumber 0x0162AB62 (0x05060162AB62)

06:14:00: As1 LCP: PFC (0x0702)

06:14:00: .As1 LCP: ACFC (0x0802)

06:14:00: As1 LCP: I CONFREQ [REQsent] id 179 len 25

06:14:00: As1 LCP: ACCM 0x000A0000 (0x020

05:56:55: As17 CHAP: Using alternate hostname user1

05:56:55: As17 CHAP: O CHALLENGE id 32 len 26 from "user1"

05:56:55: As17 CHAP: I RESPONSE id 32 len 26 from "user2"

05:56:55: As17 CHAP: O FAILURE id 32 len 25 msg is "MD/DES compare
failed"6000A0000)
06:14:00: As1 LCP: AuthProto CHAP (0x0305C22305)

06:14:00: As1 LCP: MagicNumber 0x01774972 (0x050601774972)

06:14:00: As1 LCP: PFC (0x0702)

06:14:00: As1 LCP: ACFC (0x0802)

06:14:00: As1 LCP: O CONFACK [REQsent] id 179 len 25

06:14:00: As1 LCP: ACCM 0x000A0000 (0x0206000A0000)

06:14:00: As1 LCP: AuthProto CHAP (0x0305C22305)

06:14:00: As1 LCP: MagicNumber 0x01774972 (0x050601774972)

Best regards

• Next message: tom cheung: "Re: ppp chap with different password"
• Previous message: kyle prevey: "dial-peer HELP!"
• Maybe in reply to: alain faure: "ppp chap with different password"
• Next in thread: tom cheung: "Re: ppp chap with different password"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:56:27 GMT-3