Hi,

I have two 2800 routers on the same ISP and am trying to connect the two together on a LAN-to-LAN PPTP connection. They are both running firmware v2.8.2.

I've carefully followed the example here...

http://www.draytek.co.uk/support/vpn_setup.html

However the VPN doesn't get established.

On the LOCAL router I get the following in the Syslog output (x.x.x.x being the remote IP)

Dialing Node1 (Remote) : x.x.x.x
Dialing Node1 (Remote) : x.x.x.x
PPP Start (VPN-0, user123)
PPP Start (VPN-0, user123)
CHAP Login Failed (VPN-0, user123) -
CHAP Login Failed (VPN-0, user123) -
PPTP Local Event: EVENT-DROP-CALL peer:x.x.x.x
Receive Peer:x.x.x.x CALL-DISCONNECT-NOTIFY message!! Ready to disconnect.

On the REMOTE end I get (y.y.y.y being the remote IP as seen by remote router)...

PPP Start (VPN-0)
PPP Start (VPN-0)
CHAP Login Failed () -
PPTP Local Event: EVENT-DROP-CALL peer:y.y.y.y

Now if I'm reading the logs correctly it looks like the username information is getting lost along the way??

Does anyone have any ideas what is going on here?

Many thanks

After much head scratching I've managed to answer my own question.

The issue is down to the length of password I was using, unbelievable!

A short password, in my case 7 characters, seems okay. Anything much longer and it doesn't like it.

Didn't find this documented anywhere, ahwell.

If you can only use 7 characters, I'd stop using PPTP and go over IPSec immediately. At the best of times, PPTP is not too secure. I thought you could use up to 16 characters but I'm not sure why I think that.

Yep, there's a 7 character limit on CHAP passwords on the draytek. Other passwords can be 16 though.

Watch out as it doesn't escape them properly so if your password generator includes interesting characters like ` " ' then you could be in severe problems when you apply the password!

Poor show from Draytek that this isn't documented. If it is then it's not easy to find!