CentOS 7 PPTP VPN問題請教(瘋狂斷線) - Linux
By Anonymous
at 2015-12-21T00:28
at 2015-12-21T00:28
Table of Contents
已經弄了1個月半,從不會架(連yum也搞不懂)
到現在指令算是熟悉下總共過了1個半月.
目前遇到的問題就是手機各家都試過(Android 5.x ~6.0)使用4G連上VPN Server後
最長約10分鐘,短則2分鐘左右,系統一定會看到錯誤訊息
Modem hangup
Connect time 5.8 minutes.
Sent 34578343 bytes, received 859432 bytes.
Script /etc/ppp/ip-down started (pid 23070)
MPPE disabled
sent [LCP TermReq id=0x2 "MPPE disabled"]
Connection terminated.
Waiting for 1 child processes...
script /etc/ppp/ip-down, pid 23070
Script /etc/ppp/ip-down finished (pid 23070), status = 0x0
MPPE都會被切斷. 有找過板上的舊文,該使用者說最後是調整MTU改善
但是調過後都沒用還是會斷線
ppp1 連上來是1396
ppp0 adsl撥接1492
以下是我的pptp設定
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
ms-dns 168.95.1.1
ms-dns 8.8.8.8
debug
lock
nobsdcomp
novj
novjccomp
nologfd
logfile /var/log/pptpd.log
這個是iptables裡面的設定
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [129:8141]
-A POSTROUTING -o ppp0 -s 192.168.11.0/24 -j SNAT --to-source 1.162.87.130
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i ppp0 -p tcp --sport 1200:65534 --dport ssh -j REJECT (對外REJECT)
-A INPUT -i enp2s0 -s 192.168.1.5 -p tcp --dport ssh -j ACCEPT (家裡跳版)
-A INPUT -i ppp0 -p tcp --dport 1723 -j ACCEPT (給外面連VPN用的)
-A INPUT -i ppp0 -p gre -j ACCEPT (給外面連VPN用的)
請有經驗的網友們可以指點一下嗎?
謝謝
--
到現在指令算是熟悉下總共過了1個半月.
目前遇到的問題就是手機各家都試過(Android 5.x ~6.0)使用4G連上VPN Server後
最長約10分鐘,短則2分鐘左右,系統一定會看到錯誤訊息
Modem hangup
Connect time 5.8 minutes.
Sent 34578343 bytes, received 859432 bytes.
Script /etc/ppp/ip-down started (pid 23070)
MPPE disabled
sent [LCP TermReq id=0x2 "MPPE disabled"]
Connection terminated.
Waiting for 1 child processes...
script /etc/ppp/ip-down, pid 23070
Script /etc/ppp/ip-down finished (pid 23070), status = 0x0
MPPE都會被切斷. 有找過板上的舊文,該使用者說最後是調整MTU改善
但是調過後都沒用還是會斷線
ppp1 連上來是1396
ppp0 adsl撥接1492
以下是我的pptp設定
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
ms-dns 168.95.1.1
ms-dns 8.8.8.8
debug
lock
nobsdcomp
novj
novjccomp
nologfd
logfile /var/log/pptpd.log
這個是iptables裡面的設定
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [129:8141]
-A POSTROUTING -o ppp0 -s 192.168.11.0/24 -j SNAT --to-source 1.162.87.130
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i ppp0 -p tcp --sport 1200:65534 --dport ssh -j REJECT (對外REJECT)
-A INPUT -i enp2s0 -s 192.168.1.5 -p tcp --dport ssh -j ACCEPT (家裡跳版)
-A INPUT -i ppp0 -p tcp --dport 1723 -j ACCEPT (給外面連VPN用的)
-A INPUT -i ppp0 -p gre -j ACCEPT (給外面連VPN用的)
請有經驗的網友們可以指點一下嗎?
謝謝
--
Tags:
Linux
All Comments
By Leila
at 2015-12-21T09:27
at 2015-12-21T09:27
By Frederic
at 2015-12-25T03:10
at 2015-12-25T03:10
By Mason
at 2015-12-26T07:04
at 2015-12-26T07:04
Related Posts
請問電腦反應有點慢
By Edward Lewis
at 2015-12-17T23:55
at 2015-12-17T23:55
ubuntu 有線上網 裝置無法管理 求解決
By John
at 2015-12-17T14:41
at 2015-12-17T14:41
Wifi Direct 封包嗅探
By Hazel
at 2015-12-17T10:52
at 2015-12-17T10:52
socket payload問題
By Caroline
at 2015-12-16T22:44
at 2015-12-16T22:44
