- This topic has 10 replies, 4 voices, and was last updated Feb 29-10:01 pm by DaveW.
-
Posts
-
wasp
Need to configure a VPN connection with openvpn, with wicd and connman not possible, how can I do?
Thanks
anticapitalista
Haven’t tried it, but this might be of some help
connman-how-to-set-up-openconnect-vpn-with-csd-wrapper-correctly/464422
or- This reply was modified 3 years, 7 months ago by anticapitalista.
- This reply was modified 3 years, 7 months ago by anticapitalista.
Philosophers have interpreted the world in many ways; the point is to change it.
antiX with runit - leaner and meaner.
wasp
Haven’t tried it, but this might be of some help
connman-how-to-set-up-openconnect-vpn-with-csd-wrapper-correctly/464422
orI have an openvpn profile, the only way to make it work without too much trouble, is to install network manager and the openvpn plugin.
I don’t like this solution but for now I don’t think there are other solutions …Anonymous
wasp
I found a simple way for those with an openvpn profile. Install openvpn and from the terminal give
sudo openvpn –config (profile name)
And it will connect to the vpn network …
DaveW
Well, once upon a time, openvpn was working for me. But I have run into a snag of some kind.
Since my last actual subscription to a VPN service, I installed Firejail and apparmor, with Firefox and Thunderbird running in separate jails.
This may be unrelated to the openvpn problem. At some point, I also removed Network Manager, due to a conflict with wicd (when I disconnected, NM would reconnect a short time later). Am I correct that wicd is actually a gui for ceni (which is the actual n.m.)?
In the past, I used a gui app from the VPN service provider (AirVPN, Eddie-ui). It worked very nicely. But needing a server in another location, I’ve been looking at other providers, using openvpn (with an app, or directly from openvpn). In either case, the initial handshakes seem to process normally, but the VPN tunnel is not established (in one case), or established but not properly directed to my browser. (I will attempt another post with details.)
In the original post, I included long terminal dialogues from attempts to connect to 2 different providers (trial subscriptions). I have edited those out, since it makes the thread look formidable.
- This reply was modified 3 years, 2 months ago by anticapitalista.
- This reply was modified 3 years, 2 months ago by DaveW.
- This reply was modified 3 years, 2 months ago by DaveW. Reason: post was too long. terminal dialogues not relevant
Strange… I just made a long post. But it seems to have disappeared… although, at the top of the thread, it says I submitted something. Guess I’ll try again.
Strange again… It reappeared. I made an edit, and it disappeared. Perhaps it will resurface in awhile.
- This reply was modified 3 years, 2 months ago by DaveW.
In my previous post, which disappeared, I copied terminal dialogue from a couple of attempts to connect to 2 different commercial VPN providers (trial subscriptions), directly from openvpn, using the ca.crt, client.cert, client.key, and Server.conf (or Server.ovpn) files provided. The process seems to interact with the servers, but in one case, ends with “authorization failed”, in the other “Initialization Sequence Completed.” But neither connects to the VPN.
The last successful use of vpn was several months back, with AirVPN’s openvpn Eddie-ui. Since then, I have installed firejail and apparmor. I don’t know if these might interfere with openvpn (which I am not running inside firejail). My system is 32 bit, Antix 17, using ceni with wicd.
Internet connection (wired or wireless) works fine, with no VPN. No doubt, I have some kind of misconfiguration. Where should I look?
Thanks.
NOTE: I submitted another post on 2-29-2020 at 4:17pm, which appears to be delayed somewhere. Watch for it… (It should appear after this one, in sequence.)
- This reply was modified 3 years, 2 months ago by DaveW.
- This reply was modified 3 years, 2 months ago by DaveW.
It looks like my long post resurfaced… but it is now obsolete (my apologies). Since then, I have had partial success…
Experiments with VPNs… (Antix 17, 32 bit, with firejail and apparmor, Firefox-esr, Thunderbird)
AirVPN works with Eddie-ui v. 2.16.3 and v.2.18.7 (the latter is supposed to work with other vpn providers).
These apps were installed via Synaptic from…
for v.2.16.3 — deb http://eddie.website/repository/apt/ stable main
for v.2.18.7 — deb http://eddie.website/repository/apt/ testing mainAirVPN connects rapidly with Eddie-ui, to any of its servers. A browser (opened outside of firejail) shows a new IP address. However, a browser opened inside of firejail has no internet connection.
Cyberghost and zoogvpn… Neither will connect via Eddie, although the dialogue looks promising to start with. When connection fails, Eddie moves on to another server. If it hits an AirVPN server, it connects.
Using openvpn directly…
(From root terminal, with vpn provider’s credentials and config / ovpn files in /etc/openvpn…cd /etc/openvpn ls # for list of config files openvpn --config ServerName.ovpnZoogvpn (free subscription) authorization fails.
Cyberghost… appears to connect, but browser does not recognize the connection (even with restart). Here is the tail end of the terminal dialogue:Sat Feb 29 13:53:02 2020 us=256695 /sbin/ip route add 91.214.64.163/32 via 192.168.227.1 Sat Feb 29 13:53:02 2020 us=259062 /sbin/ip route add 0.0.0.0/1 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=261259 /sbin/ip route add 128.0.0.0/1 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=263526 /sbin/ip route add 10.253.200.1/32 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=265618 Initialization Sequence CompletedIs there a setting in ceni or wicd which will cause the computer to use the appropriate IP for the vpn?
VPNsecure.me
Their private app (32 bit, Linux Debian) initially failed to connect, due to an unrecognized command in a config file which they provided. They said problem was due to the openvpn version (2.4.0). After upgrading to v. 2.4.4 (from Synaptic repo: deb http://iso.mxrepo.com/antix/testing/testing nonfree nosystemd main), the same problem continued. (AirVPN worked with either version of openvpn. The newer version did not bring successful connections to cyberghost, zoogvpn, or vpnsecure.me)I commented out the offending line, of the config file. After restart of app, it declared “Connected.” However, my browser did not recognize the connection. Their “ip check” button opens another browser, which also could not find the internet connection. I sent a logfile to them, but no answer, yet.
Thinking that the Eddie client could be interfering with openvpn for other providers, I uninstalled it. However, the problems with other providers persist. So, I’ll probably re-install it, since it is the vpn service that actually works for me, at the moment. But I need to know how to make a firejailed program use the vpn connection.
Your thoughts would be appreciated.
(This post disappeared. So, I am trying again.)
As noted previously, I’m having trouble connecting to commercial VPN servers.
Experiments with VPNs… (my system: Antix 17, 32 bit, with firejail and apparmor, Firefox-esr, Thunderbird)
AirVPN works with Eddie-ui (a gui openvpn client) v.2.16.3 and v.2.18.7 (the latter is also supposed to work with other vpn providers).
These apps were installed via Synaptic from…
for v.2.16.3 — deb http://eddie.website/repository/apt/ stable main
for v.2.18.7 — deb http://eddie.website/repository/apt/ testing mainUsing the Eddie client, AirVPN connects rapidly to any of its servers. A browser (opened outside of firejail) shows a new IP address. However, a browser opened inside of firejail has no internet connection. Why not?
Cyberghost and zoogvpn… Neither will connect via Eddie, although the dialogue looks promising to start with. When connection fails, Eddie moves on to another server in the list. When it gets to an AirVPN server, it connects.
Using openvpn directly…
From root terminal, with vpn provider’s credentials and config (or .ovpn) files in /etc/openvpn…cd /etc/openvpn ls # for list of config files in directory openvpn --config DesiredServerName.ovpnZoogvpn (free subscription) authorization fails.
Cyberghost… appears to connect, but browser does not recognize the connection (even with restart). Here are the last few lines of the terminal dialogue.Sat Feb 29 13:53:02 2020 us=256695 /sbin/ip route add 91.214.64.163/32 via 192.168.227.1 Sat Feb 29 13:53:02 2020 us=259062 /sbin/ip route add 0.0.0.0/1 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=261259 /sbin/ip route add 128.0.0.0/1 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=263526 /sbin/ip route add 10.253.200.1/32 via 10.253.203.233 Sat Feb 29 13:53:02 2020 us=265618 Initialization Sequence CompletedIf the VPN is actually up, browsers don’t connect to it. Does ceni and/or wicd need to be configured in some way?
VPNsecure.me
This company has a proprietary app (32 bit, Linux Debian) which installed on my system (with minor difficulty). Initially, it failed to connect, due to an unrecognized command in a company provided config file. Their rep said problem was due to a buggy openvpn version (2.4.0). After upgrading to v. 2.4.4 (from Synaptic repo: deb http://iso.mxrepo.com/antix/testing/testing nonfree nosystemd main), the same problem continued. (AirVPN worked with either version of openvpn. The newer version did not bring successful connections to cyberghost, zoogvpn, or vpnsecure.me)I commented out the offending line, in their config file. After restart of app, it declared “Connected.” However, my browsers did not recognize the connection. Their “ip check” button opens another browser, which also could not find the internet connection. I sent a logfile to them, but no answer, yet.
Thinking that the Eddie client could be interfering with openvpn for other providers, I uninstalled it. However, the problems with other providers persist (openvpn direct connection doesn’t happen). So, I’ll probably re-install Eddie, since so far, AirVPN actually works for me.
But even for that, I don’t know how to make a firejailed browser use the vpn connection.
- You must be logged in to reply to this topic.
