Ubuntu
network-manager-pptp package

network-manager-pptp forgets to add a route when connecting to (split) VPN

Bug #953861 reported by tankdriver
14
This bug affects 3 people
Affects Status Importance Assigned to Milestone
network-manager-pptp (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

What I expected to happen:
Connect successfully to company VPN, use company resources normally.

What happened instead:
Connect successfully to company VPN, can not do anything, network is dead.

The company VPN is set up only for some services, so in the VPN-settings,
"Use this connection only for resources on its network" is checked.
It is working on Windows without any problems, so i looked at the routing table
and saw that a route is missing on ubuntu:

original routing table, vpn enabled:
$ route
Kernel-IP-Routentabelle
Ziel Router Genmask Flags Metric Ref Use Iface
default 192.168.1.1 0.0.0.0 UG 0 0 0 eth0
10.20.40.100 * 255.255.255.255 UH 0 0 0 ppp0
link-local * 255.255.0.0 U 1000 0 0 eth0
192.168.1.0 * 255.255.255.0 U 1 0 0 eth0
193.XXX.XXX.XXX 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
193.XXX.XXX.XXX 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0

"fixed" (in my case) routing table, vpn enabled and fully working:
$ route
Kernel-IP-Routentabelle
Ziel Router Genmask Flags Metric Ref Use Iface
default 192.168.1.1 0.0.0.0 UG 0 0 0 eth0
10.0.0.0 * 255.0.0.0 U 0 0 0 ppp0
10.20.40.100 * 255.255.255.255 UH 0 0 0 ppp0
link-local * 255.255.0.0 U 1000 0 0 eth0
192.168.1.0 * 255.255.255.0 U 1 0 0 eth0
193.XXX.XXX.XXX 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
193.XXX.XXX.XXX 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0

The workaround is to add a route manually, targeting the company network, using ppp0

Windows adds this route automatically.

Please fix this bug, this was very time-consuming and annoying to find out the root cause of the problem.

$ lsb_release -rd
Description: Ubuntu precise (development branch)
Release: 12.04

$ apt-cache policy network-manager-pptp
network-manager-pptp:
  Installiert: 0.9.2.0-1ubuntu1
  Kandidat: 0.9.2.0-1ubuntu1
  Versionstabelle:
 *** 0.9.2.0-1ubuntu1 0
        500 http://at.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages
        100 /var/lib/dpkg/status

This bug appears in Ubuntu 11.10 too.

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in network-manager-pptp (Ubuntu):
status: New → Confirmed
Revision history for this message
bq (balique) wrote :

I can confirm the problem,

I have upgraded from 10.04 to 12.04 and pptp based vpn stopped working.

What I did :
I did copy the '/etc/ppp/chap-secrets' and '/etc/peers/name_of_the_company' from the old setup to the new machine.

In the older release the pppd call was all I needed to do , but now :

Connecting is ok :

$ sudo /usr/sbin/pppd nodetach call name_of_the_company
Connect: ppp0 <--> /dev/pts/4
CHAP authentication succeeded
MPPE 128-bit stateless compression enabled
local IP address 10.10.116.34
remote IP address 10.10.116.0

other terminal :
$ ping 10.10.16.162
-- no response

$ route -n |grep ppp0

10.10.116.0 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0

$ sudo route add -net 10.10.16.0/24 ppp0

$ route -n |grep ppp0
10.10.16.0 0.0.0.0 255.255.255.0 U 0 0 0 ppp0
10.10.116.0 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0

$ ping 10.10.16.162
PING 10.10.16.162 (10.10.16.162) 56(84) bytes of data.
64 bytes from 10.10.16.162: icmp_req=1 ttl=252 time=124 ms

regards, bq

Revision history for this message
bq (balique) wrote :

oups, now I see, that my report is not about "network-manager-pptp" but about 'pppd' itself ... but that can mean that the problem is there in pppd , and not in the network manager.

Revision history for this message
bq (balique) wrote :

I am sorry, I was wrong, I forgot to copy file /etc/ppp/ip-up.d/route-traffic from the old setup :( sorry, it works as before

Revision history for this message
Thomas Hood (jdthood) wrote :

Hi. What's the status of this bug in Ubuntu 12.04?

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.