<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="Author" content="Diederick van Dijk">
<title>LINUX PPP/NT Konfiguracija</title>
<LINK href="../style/van-dijk.css" rel="stylesheet" type="text/css">
</head>
<body>
<p>
<a href="PPP-NT-HOWTO-1.html"><img SRC="../gif/prev.gif" ALT="Previous" NOSAVE height=16 width=16></a><a href="PPP-NT-HOWTO-3.html"><img SRC="../gif/next.gif" ALT="Next" NOSAVE height=16 width=16></a><a href="PPP-NT-HOWTO.html#inh4"><img SRC="../gif/toc.gif" ALT="Contents" NOSAVE height=16 width=16></a>
<hr>
<br>
<h2>
<a NAME="kap4"></a>
4 PPP povezava z uporabo MS-CHAP
</h2>
Prvi korak k vzpostavitvi PPP povezavo s funkcijo povratnega klica, je nastavitev "navadne" PPP povezave preko MS-CHAP protokola.
<h3>
<a NAME="kap4.1"></a>
4.1 'pppd' klicni skript
</h3>
'pppd' klicni skript, ki je opisan v tem odstavku je en primer klicnega skripta.
<hr>
<pre>
#!/bin/bash
# Poklicimo Windows NT 4.0 Server
/usr/sbin/pppd /dev/modem 38400 file "/etc/ppp/options.nt"
</pre>
<hr>
<i>Datoteka: dial_winnt</i>
<BR><BR>
Datoteka z razlago parametrov dial_winnt :
<hr WIDTH="100%">
<table COLS=2 WIDTH="100%">
<tr>
<td>/dev/modem</td>
<td>: naprava, na katero je priklopljen modem</td>
</tr>
<tr>
<td>38400</td>
<td>: hitrost vrat</td>
</tr>
<tr>
<td>datoteka "/etc/ppp/options.nt"</td>
<td>: datoteka z ostalimi možnostmi - glej <a href="#kap4.2">4.2</a></td>
<tr>
</table>
<hr>
<h3>
<a NAME="kap4.2"></a>
4.2 Konfiguracijska datoteka /etc/ppp/options.nt
</h3>
In this file you find the other options for the pppd-deamon.
V tej datoteki so ostale možnosti za prikriti proces pppd.
<pre>
connect '/usr/sbin/chat -v -f /etc/ppp/win_nt.chat'
crtscts
bsdcomp 15
lock
debug
192.168.0.3:0.0.0.0
name "domain\\my_login"
remotename "inbelnt"
-detach
receive-all
</pre>
<hr WIDTH="100%">
<i>Datoteka: /etc/ppp/options.nt</i>
Datoteka z razlago parametrov /etc/ppp/options.nt :
<br>
<hr WIDTH="100%">
<table COLS=2 WIDTH="100%">
<tr>
<td>
connect '....'
</td>
<td>
: Modemska povezava je vzpostavljena s programom 'chat'.
Informacije, ki so potrebne za 'chat' se nahajajo v datoteki win_nt.chat (to pomeni možnost -f).
Datoteka win_nt.chat je razložena spodaj. Parameter -v pomeni, da so vse dnevniške datoteke prek syslogd shranjene v /var/log/messages.
</td>
</tr>
<tr>
<td>
crtscts
</td>
<td>
: Uporabi hardverski nadzor
</td>
</tr>
<tr>
<td>
bsdcomp 15
</td>
<td>
: Uporabi bsd-slog kompresijo
</td>
</tr>
<tr>
<td>
lock
</td>
<td>
: Zakleni modem
</td>
</tr>
<tr>
<td>
debug
</td>
<td>
: Aktiviraj razhroščevalno datoteko. Vsa sporočila so shranjena v /var/log/messages.
</td>
</tr>
<tr>
<td>
192.168.0.3:0.0.0.0
</td>
<td>
: Definicija oddaljenega ter lokalnega naslova IP v stilu: from <local_ip_addr>:<remote_ip_addr>.
</td>
</tr>
<tr>
<td>
name "domain\\my_login"
</td>
<td>
: Vaše NT uporabniško ime. To mora biti enako kot v chap-secrets datoteki.
Najvarneje je uporabiti domena\\uporabnik obliko.
</td>
</tr>
<tr>
<td>
remotename "inbelnt"
</td>
<td>
: Ime vašega NT strežnika. PPPD ga potrebuje za chap-secrets datoteko.
</td>
</tr>
<tr>
<td>
-detach
</td>
<td>
: Odklopi se z nadzornega terminala. PPPD bo postal proces v ozadju.
</td>
</tr>
<tr>
<td>
receive-all
</td>
<td>
: To je za "žužkaste" OS, kot MS, ki ne znajo prav dobro uporabljati asyncmap.
</td>
</tr>
</table>
<hr>
<BR><BR>
Datoteka z razlago parametrov /etc/ppp/win_nt.chat :
<br>
<hr>
<pre>
TIMEOUT 60 : Prekini po 60 sekundah, če ni odziva.
ABORT BUSY : Prekliči, če je modem zaseden.
ABORT "NO DIALTONE" : Prekliči, če ni klicnega signala.
ABORT ERROR : Prekliči, če modem javi napako.
ABORT "NO CARRIER" : Prekliči, če ni nosilca.
"" +++ATZ : Inicializiraj modem.
OK ATE1Q0&C1&S0DT555222 : Kliči 555222
CONNECT "" : Čakaj, da modem javi vzpostavljeno povezavo.
</pre>
<hr>
<i>Datoteka: win_nt.chat</i>
<br>
<h3>
<a NAME="kap4.3"></a>
4.3 Konfiguracijska datoteka /etc/ppp/chap-secrets
</h3>
PPPD prikriti proces uporablja chap-secrets za avtentikacijo z NT strežnikom. Izgledal naj bi nekako takole:
<BR><BR>
<hr>
<pre>
# Skrivnosti za avtentikacijo z uporabo CHAP protokola
# klient streznik skrivnost naslov IP
domena\\uporabnisko_ime streznik_nt moje_geslo
streznik_nt domain\\uporabnisko_ime moje_geslo
</pre>
<hr WIDTH="100%">
<i>Datoteka: /etc/ppp/chap-secrets</i>
<BR><BR><br>
Ne uporabljajte presledkov v tej datoteki! Najboljši način za ločitev parametrov je s pomočjo tipke 'TAB'.
<BR><BR>
The client ( 'my_login') parameter is the same as your NT login name.
The server ('inbel') parameter is free of choice. It is only used internally
in the Linux PPPD-daemon. The NT server doesn't use this parameter in his
authentication process.
Klientski 'uporabnisko_ime' parameter je enako vašemu uporabniškemu imenu za NT.
Strežniški 'streznik_nt' parameter je poljuben. Potreben je samo lokalno - za delovanje PPPD prikritega procesa.
NT strežnik ne uporablja tega parametra pri avtentikacijskem postopku.
<h3>
<a NAME="kap4.4"></a>
4.4 Protokol PPP/MS-CHAP-LINK
</h3>
Sedaj je čas za vzpostavitev povezave. Ker je v vseh konfiguracijskih datotekah 'debug' parameter vklopljen, se sporočila dodajajo v
/var/log/messages dnevniško datoteko. Kako spremeniti syslog.conf datoteko je opisano v
<a href="PPP-NT-HOWTO-4.html#kap6">Appendix</a>.
Start the script dial_winnt in a window. If you want to follow
online the log messages type 'tail -f /var/log/messages' in another window.
Poženite skript 'dial_winnt' v oknu. Če želite sprotno preverjanje dnevnika /var/log/messages, poženite
'tail -f /var/log/messages' v novem oknu.
<BR><BR>
Dnevniška datoteka bi morala izgledati nekako takole:
<hr WIDTH="100%">
<font size=-1>
<pre>
Jan 26 15:50:25 dijklinux pppd[487]: pppd 2.3.5 started by root, uid 0
Jan 26 15:50:27 dijklinux chat[488]: timeout set to 60 seconds
Jan 26 15:50:27 dijklinux chat[488]: abort on (BUSY)
Jan 26 15:50:27 dijklinux chat[488]: abort on (NO DIALTONE)
Jan 26 15:50:27 dijklinux chat[488]: abort on (ERROR)
Jan 26 15:50:27 dijklinux chat[488]: abort on (NO CARRIER)
Jan 26 15:50:27 dijklinux chat[488]: send (+++ATZ^M)
Jan 26 15:50:27 dijklinux chat[488]: expect (OK)
Jan 26 15:50:28 dijklinux chat[488]: +++ATZ^M^M
Jan 26 15:50:28 dijklinux chat[488]: OK
Jan 26 15:50:28 dijklinux chat[488]: -- got it
Jan 26 15:50:28 dijklinux chat[488]: send (ATE1Q0&C1&S0DT555222^M)
Jan 26 15:50:28 dijklinux chat[488]: expect (CONNECT)
Jan 26 15:50:28 dijklinux chat[488]: ^M
Jan 26 15:50:48 dijklinux chat[488]: ATE1Q0&C1&S0DT555222^M^M
Jan 26 15:50:48 dijklinux chat[488]: CONNECT
Jan 26 15:50:48 dijklinux chat[488]: -- got it
Jan 26 15:50:48 dijklinux chat[488]: send (^M)
Jan 26 15:50:48 dijklinux pppd[487]: Serial connection established.
Jan 26 15:50:49 dijklinux kernel: PPP: version 2.2.0 (dynamic channel allocation)
Jan 26 15:50:49 dijklinux kernel: PPP Dynamic channel allocation code copyright 1995 Caldera, Inc.
Jan 26 15:50:49 dijklinux kernel: PPP line discipline registered.
Jan 26 15:50:49 dijklinux kernel: registered device ppp0
Jan 26 15:50:49 dijklinux pppd[487]: Using interface ppp0
Jan 26 15:50:49 dijklinux pppd[487]: Connect: ppp0 <--> /dev/modem
Jan 26 15:50:49 dijklinux pppd[487]: sent [LCP ConfReq id=0x1 <magic 0xf64ec667> <pcomp> <accomp>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [LCP ConfReq id=0x0 <asyncmap 0x0> <auth chap 80> <magic 0x2d9a> <pcomp> <accomp>]
Jan 26 15:50:50 dijklinux pppd[487]: sent [LCP ConfAck id=0x0 <asyncmap 0x0> <auth chap 80> <magic 0x2d9a> <pcomp> <accomp>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [LCP ConfAck id=0x1 <magic 0xf64ec667> <pcomp> <accomp>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [CHAP Challenge id=0x6 <1287ba1a2a0db761>, name = ""]
Jan 26 15:50:50 dijklinux pppd[487]: sent [CHAP Response id=0x6 <000000000000000000000000000000000000000000000000cd01dbc384fc5f3bd6f747bb642a1addfaefac7f654f48ab01>, name = "my_login"]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [CHAP Success id=0x6 ""]
Jan 26 15:50:50 dijklinux pppd[487]: sent [IPCP ConfReq id=0x1 <addr 192.168.0.3> <compress VJ 0f 01>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [CCP ConfReq id=0x1 < 12 06 00 00 00 01>]
Jan 26 15:50:50 dijklinux pppd[487]: sent [CCP ConfReq id=0x1]
Jan 26 15:50:50 dijklinux pppd[487]: sent [CCP ConfRej id=0x1 < 12 06 00 00 00 01>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [IPCP ConfReq id=0x2 <compress VJ 0f 01> <addr 192.168.0.1>]
Jan 26 15:50:50 dijklinux pppd[487]: sent [IPCP ConfAck id=0x2 <compress VJ 0f 01> <addr 192.168.0.1>]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [IPXCP ConfReq id=0x3 <network 4b484d98> <node 000000000001>]
Jan 26 15:50:50 dijklinux pppd[487]: Unsupported protocol (0x802b) received ; This is IPX
Jan 26 15:50:50 dijklinux pppd[487]: sent [LCP ProtRej id=0x2 80 2b 01 03 00 12 01 06 4b 48 4d 98 02 08 00 00 00 00 00 01]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [IPCP ConfAck id=0x1 <addr 192.168.0.3> <compress VJ 0f 01>]
Jan 26 15:50:50 dijklinux pppd[487]: local IP address 192.168.0.3
Jan 26 15:50:50 dijklinux pppd[487]: remote IP address 192.168.0.1
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [CCP ConfAck id=0x1]
Jan 26 15:50:50 dijklinux pppd[487]: rcvd [CCP TermReq id=0x4 00 00 02 dc]
Jan 26 15:50:50 dijklinux pppd[487]: sent [CCP TermAck id=0x4]
Jan 26 15:50:53 dijklinux pppd[487]: sent [CCP ConfReq id=0x1]
Jan 26 15:50:53 dijklinux pppd[487]: rcvd [CCP TermAck id=0x1]
Jan 26 15:50:53 dijklinux pppd[487]: sent [CCP TermReq id=0x2"No compression negotiated"]
Jan 26 15:50:54 dijklinux pppd[487]: rcvd [CCP TermAck id=0x2]
</pre>
</font>
<br>
<hr WIDTH="100%">
<i><tt>Del datoteke /var/log/messages</tt></i>
<BR><BR>
<hr><a href="PPP-NT-HOWTO-1.html"><img SRC="../gif/prev.gif" ALT="Previous" NOSAVE height=16 width=16></a><a href="PPP-NT-HOWTO-3.html"><img SRC="../gif/next.gif" ALT="Next" NOSAVE height=16 width=16></a><a href="PPP-NT-HOWTO.html#inh4"><img SRC="../gif/toc.gif" ALT="Contents" NOSAVE height=16 width=16></a>
Spremenjeni Linux PPP/NT HOWTO V2.1
</p>
</body>
</html>