OpenVPN connection through GSM device



Hi,
i'm able to start an OpenVPN connection using Network Manager.
It work fine if i start it through ethernet connection (previously activate)...but it work bad if i start VPN through GSM/GPRS device connection (previously activate).

I'm able to start, but after a bit time (about some minutes) it go down.

Below the fragment of Network Manager (DEBUG mode) logs:

Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <info> Starting VPN service 'openvpn'...
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <info> VPN service 'openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 2125
Nov 16 15:35:13 myWorkstation kernel: tun: Universal TUN/TAP device driver, 1.6
Nov 16 15:35:13 myWorkstation kernel: tun: (C) 1999-2004 Max Krasnyansky <maxk qualcomm com>
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <info> VPN service 'openvpn' appeared; activating connections
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.828958] [nm-vpn-connection.c:902] get_secrets(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/VPN) requesting VPN secrets pass #1
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.831977] [nm-agent-manager.c:1100] nm_agent_manager_get_secrets(): Secrets requested for connection /org/freedesktop/NetworkManager/Set)
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.832486] [nm-settings-connection.c:850] nm_settings_connection_get_secrets(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/vpn:2) secrets requ'
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.841727] [nm-agent-manager.c:1015] get_start(): (0xf81f8/vpn) system settings secrets sufficient
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.842228] [nm-settings-connection.c:706] agent_secrets_done_cb(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/vpn:2) existing secrets returned
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.842587] [nm-settings-connection.c:712] agent_secrets_done_cb(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/vpn:2) secrets request completed
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.847864] [nm-settings-connection.c:751] agent_secrets_done_cb(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/vpn:2) new agent secrets processd
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <debug> [1321457713.848273] [nm-vpn-connection.c:870] get_secrets_cb(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/VPN) asking service if additional secrets ard
Nov 16 15:35:13 myWorkstation NetworkManager[2033]: <info> VPN plugin state changed: 1
Nov 16 15:35:14 myWorkstation NetworkManager[2033]: <debug> [1321457714.22935] [nm-vpn-connection.c:840] plugin_need_secrets_cb(): (355653c0-34d3-4777-ad25-f9a498b7ef8e/VPN) service indicated no additional d
Nov 16 15:35:14 myWorkstation NetworkManager[2033]: <info> VPN plugin state changed: 3
Nov 16 15:35:14 myWorkstation NetworkManager[2033]: <info> VPN connection 'VPN' (Connect) reply received.
Nov 16 15:35:14 myWorkstation nm-openvpn[2127]: OpenVPN 2.1.3 arm-unknown-linux-gnueabi [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Oct 22 2010
Nov 16 15:35:14 myWorkstation nm-openvpn[2127]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Nov 16 15:35:14 myWorkstation nm-openvpn[2127]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Nov 16 15:35:14 myWorkstation nm-openvpn[2127]: WARNING: file '/etc/openvpn/certs/xxxxxxxxx-key.pem' is group or others accessible
Nov 16 15:35:14 myWorkstation nm-openvpn[2127]: /usr/bin/openssl-vulnkey -q -b 2048 -m <modulus omitted>
Nov 16 15:35:16 myWorkstation nm-openvpn[2127]: LZO compression initialized
Nov 16 15:35:16 myWorkstation nm-openvpn[2127]: UDPv4 link local: [undef]
Nov 16 15:35:16 myWorkstation nm-openvpn[2127]: UDPv4 link remote: [AF_INET]xx.xx.xxx.xxx:1194
Nov 16 15:35:44 myWorkstation nm-openvpn[2127]: [serverVpnPrdItaly] Peer Connection Initiated with [AF_INET]91.213.153.15:1194
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <debug> [1321457749.191751] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x1090
Nov 16 15:35:49 myWorkstation nm-openvpn[2127]: TUN/TAP device tun0 opened
Nov 16 15:35:49 myWorkstation nm-openvpn[2127]: /usr/libexec/nm-openvpn-service-openvpn-helper tun0 1500 1542 10.9.0.101 10.9.0.1 init
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> VPN connection 'VPN' (IP Config Get) reply received.
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> VPN Gateway: xx.xx.xxx.xxx
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Internal Gateway: 10.9.0.1
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Tunnel Device: tun0
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Internal IP4 Address: 10.9.0.101
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Internal IP4 Prefix: 32
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Internal IP4 Point-to-Point Address: 10.9.0.1
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Maximum Segment Size (MSS): 0
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Static Route: 10.9.0.1/16   Next Hop: 10.9.0.1
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Static Route: 10.9.0.1/16   Next Hop: 10.9.0.1
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Forbid Default Route: no
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> Internal IP4 DNS: 10.1.3.1
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <info> DNS Domain: '(none)'
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <debug> [1321457749.292845] [nm-system.c:222] sync_addresses(): (tun0): syncing addresses (family 2)
Nov 16 15:35:49 myWorkstation NetworkManager[2033]: <debug> [1321457749.319842] [nm-system.c:311] sync_addresses(): (tun0): adding address '10.9.0.101/0'
Nov 16 15:35:49 myWorkstation dnsmasq[1229]: reading /etc/resolv.conf
Nov 16 15:35:49 myWorkstation dnsmasq[1229]: using nameserver xx.xx.xxx.xxx#53
Nov 16 15:35:49 myWorkstation dnsmasq[1229]: using nameserver xx.xx.xxx.xxx#53
Nov 16 15:35:49 myWorkstation nm-openvpn[2127]: Initialization Sequence Completed
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <info> VPN connection 'VPN' (IP Config Get) complete.
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <info> Policy set 'VPN' (tun0) as default for IPv4 routing and DNS.
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <debug> [1321457750.338515] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x1090
Nov 16 15:35:50 myWorkstation NetworkManager[2033]:    SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Nov 16 15:35:50 myWorkstation NetworkManager[2033]:    SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <debug> [1321457750.340617] [nm-udev-manager.c:589] handle_uevent(): UDEV event: action 'add' subsys 'net' device 'tun0'
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <debug> [1321457750.341959] [nm-udev-manager.c:518] net_add(): ignoring interface with type 65534
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <debug> [1321457750.342611] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x110D1
Nov 16 15:35:50 myWorkstation NetworkManager[2033]: <info> VPN plugin state changed: 4
Nov 16 15:36:53 myWorkstation nm-openvpn[2127]: [serverVpnPrdItaly] Inactivity timeout (--ping-restart), restarting
Nov 16 15:36:53 myWorkstation nm-openvpn[2127]: SIGUSR1[soft,ping-restart] received, process restarting
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: Re-using SSL/TLS context
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: LZO compression initialized
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: UDPv4 link local: [undef]
Nov 16 15:36:55 myWorkstation nm-openvpn[2127]: UDPv4 link remote: [AF_INET]xx.xx.xxx.xxx:1194
Nov 16 15:37:20 myWorkstation nm-openvpn[2127]: [serverVpnPrdItaly] Peer Connection Initiated with [AF_INET]91.213.153.15:1194
Nov 16 15:37:23 myWorkstation nm-openvpn[2127]: Preserving previous TUN/TAP instance: tun0
Nov 16 15:37:23 myWorkstation nm-openvpn[2127]: /usr/libexec/nm-openvpn-service-openvpn-helper tun0 1500 1542 10.9.0.101 10.9.0.1 restart
Nov 16 15:37:23 myWorkstation NetworkManager[2033]: <warn> VPN plugin failed: 2
Nov 16 15:37:23 myWorkstation nm-openvpn[2127]: script failed: external program exited with error status: 1
Nov 16 15:37:23 myWorkstation nm-openvpn[2127]: Exiting
Nov 16 15:37:23 myWorkstation dnsmasq[1229]: reading /etc/resolv.conf
Nov 16 15:37:23 myWorkstation dnsmasq[1229]: using nameserver xx.xx.xxx.xxx#53
Nov 16 15:37:23 myWorkstation dnsmasq[1229]: using nameserver xx.xx.xxx.xxx#53
Nov 16 15:37:23 myWorkstation dnsmasq[1229]: using nameserver 10.1.3.1#53
Nov 16 15:37:23 myWorkstation NetworkManager[2033]: <debug> [1321457843.428219] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x1090
Nov 16 15:37:23 myWorkstation NetworkManager[2033]: <debug> [1321457843.428550] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x1090
Nov 16 15:37:23 myWorkstation NetworkManager[2033]:    SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0)
Nov 16 15:37:23 myWorkstation NetworkManager[2033]: <debug> [1321457843.530137] [nm-udev-manager.c:589] handle_uevent(): UDEV event: action 'remove' subsys 'net' device 'tun0'
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <debug> [1321457844.464924] [nm-netlink-monitor.c:117] link_msg_handler(): netlink link message: iface idx 7 flags 0x1090
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <warn> VPN plugin failed: 1
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <info> VPN plugin state changed: 6
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <info> VPN plugin state change reason: 0
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <warn> error disconnecting VPN: Could not process the request because no VPN connection was active.
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <debug> [1321457844.735260] [nm-system.c:1349] flush_routes(): (tun0) failed to lookup interface index
Nov 16 15:37:24 myWorkstation NetworkManager[2033]: <debug> [1321457844.737429] [nm-system.c:222] sync_addresses(): (ppp0): syncing addresses (family 2)
Nov 16 15:37:25 myWorkstation dnsmasq[1229]: reading /etc/resolv.conf
Nov 16 15:37:25 myWorkstation dnsmasq[1229]: using nameserver xx.xx.xxx.xxx#53
Nov 16 15:37:25 myWorkstation dnsmasq[1229]: using nameserver 1xx.xx.xxx.xxx#53
Nov 16 15:37:25 myWorkstation NetworkManager[2033]: <info> Policy set 'GPRS' (ppp0) as default for IPv4 routing and DNS.
Nov 16 15:37:31 myWorkstation NetworkManager[2033]: <info> VPN service 'openvpn' disappeared
Nov 16 15:37:33 myWorkstation NetworkManager[2033]: <debug> [1321457853.2683] [nm-vpn-service.c:267] ensure_killed(): waiting for VPN service pid 2125 to exit
Nov 16 15:37:33 myWorkstation NetworkManager[2033]: <debug> [1321457853.2817] [nm-vpn-service.c:269] ensure_killed(): VPN service pid 2125 cleaned up


Thanks and regards

F

--
____________________________________________________
Francesco Andrisani
mailto:francesco andrisani acotel com
Acotel Spa
http://www.acotel.com
Via della Valle dei Fontanili, 29
00168 Roma
Tel +390661141200
Fax +39066149936
____________________________________________________

Le informazioni contenute nella comunicazione che precede possono essere riservate e sono, comunque, destinate esclusivamente alla persona o all’ente sopraindicati. La diffusione, distribuzione e/o copiatura non autorizzata del documento trasmesso da parte di qualsiasi soggetto è proibita. La sicurezza e la correttezza dei messaggi di posta elettronica non possono essere garantite. Se avete ricevuto questo messaggio per errore, Vi preghiamo di contattarci immediatamente. Grazie.

This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any transmission. If you receive this message in error, please immediately delete it and all copies of it from your system, destroy any hard copies of it and notify the sender. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. Thanks




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]