Jump to content
Not connected, Your IP: 3.142.98.111
ignignokt

No DNS resolution at all once connected - Arch Linux

Recommended Posts

Suddenly I'm unable to resolve any hosts at all once connected to AirVPN.  I've tried using both the Eddie GUI and the stable 2.16 command line client as well as the 2.17 experimental build.

At first, I couldn't get past the "Checking DNS" step. On the Support staff's advice I disabled both Check DNS and disabled IPV6.  Now I can get past the "Checking DNS" point and connect but I cannot resolve any hosts at all.

 

Here is the log using Eddie 2.16 command line:

arl@popcorn eddie-cli]$ . 2019.04.04 14:25:47 - Eddie version: 2.16.3 / linux_x64, System: Linux, Name: Arch Linux \r (\l), Version: Linux popcorn 5.0.4-arch1-1-ARCH #1 SMP PREEMPT Sat Mar 23 21:00:33 UTC 2019 x86_64 GNU/Linux, Mono/.Net: 4.6.2 (Stable 4.6.2.16/ac9e222); Framework: v4.0.30319
. 2019.04.04 14:25:48 - Reading options from /home/carl/Downloads/eddie-cli/default.xml
I 2019.04.04 14:25:48 - Press 'X' to Cancel, 'N' to connect/reconnect to the best available server.
. 2019.04.04 14:25:48 - Command line arguments (6): servers.whitelist="Capricornus,Brussels,Belgium" login="**" password="**" ipv6.mode="Disable" dns.check="False" connect="True"
. 2019.04.04 14:25:48 - Profile path: /home/carl/Downloads/eddie-cli/default.xml
. 2019.04.04 14:25:49 - OpenVPN Driver - Found, /dev/net/tun
. 2019.04.04 14:25:49 - OpenVPN - Version: 2.4.6 - OpenSSL 1.1.0h  27 Mar 2018, LZO 2.10 (/home/carl/Downloads/eddie-cli/openvpn)
. 2019.04.04 14:25:49 - SSH - Version: OpenSSH_7.9p1, OpenSSL 1.1.1b  26 Feb 2019 (/usr/bin/ssh)
. 2019.04.04 14:25:49 - SSL - Version: stunnel 5.40 (/home/carl/Downloads/eddie-cli/stunnel)
. 2019.04.04 14:25:49 - curl - Version: 7.64.0 (/usr/bin/curl)
. 2019.04.04 14:25:49 - Certification Authorities: /home/carl/Downloads/eddie-cli/res//cacert.pem
W 2019.04.04 14:25:49 - Recovery. Unexpected crash?
. 2019.04.04 14:25:49 - Routes, removed a route previously added, 194.187.251.91 for gateway 10.12.174.1
. 2019.04.04 14:25:49 - Routes, removed a route previously added, 2001:ac8:27:a:d655:22aa:7624:7223 for gateway fde6:7a:7d20:8ae::1
. 2019.04.04 14:25:49 - DNS of the system restored to original settings (Rename method)
. 2019.04.04 14:25:49 - Updating systems & servers data ...
I 2019.04.04 14:25:49 - Checking login ...
! 2019.04.04 14:25:50 - Logged in.
. 2019.04.04 14:25:50 - Systems & servers data update completed
I 2019.04.04 14:25:50 - Session starting.
I 2019.04.04 14:25:56 - Checking authorization ...
! 2019.04.04 14:25:56 - Connecting to Capricornus (Belgium, Brussels)
[carl@popcorn eddie-cli]$ . 2019.04.04 14:25:57 - OpenVPN > OpenVPN 2.4.6 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Apr 27 2018
. 2019.04.04 14:25:57 - OpenVPN > library versions: OpenSSL 1.1.0h  27 Mar 2018, LZO 2.10
. 2019.04.04 14:25:57 - Connection to OpenVPN Management Interface
[carl@popcorn eddie-cli]$ . 2019.04.04 14:25:57 - OpenVPN > MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:3100
. 2019.04.04 14:25:57 - OpenVPN > Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
. 2019.04.04 14:25:57 - OpenVPN > Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
. 2019.04.04 14:25:57 - OpenVPN > Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
. 2019.04.04 14:25:57 - OpenVPN > Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
. 2019.04.04 14:25:57 - OpenVPN > TCP/UDP: Preserving recently used remote address: [AF_INET]194.187.251.93:443
. 2019.04.04 14:25:57 - OpenVPN > Socket Buffers: R=[212992->212992] S=[212992->212992]
. 2019.04.04 14:25:57 - OpenVPN > UDP link local: (not bound)
. 2019.04.04 14:25:57 - OpenVPN > UDP link remote: [AF_INET]194.187.251.93:443
[carl@popcorn eddie-cli]$ . 2019.04.04 14:25:57 - OpenVPN > TLS: Initial packet from [AF_INET]194.187.251.93:443, sid=d04f6298 ee783d1f
. 2019.04.04 14:25:57 - OpenVPN > MANAGEMENT: Client connected from [AF_INET]127.0.0.1:3100
. 2019.04.04 14:25:57 - OpenVPN > VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
. 2019.04.04 14:25:57 - OpenVPN > VERIFY KU OK
. 2019.04.04 14:25:57 - OpenVPN > Validating certificate extended key usage
. 2019.04.04 14:25:57 - OpenVPN > ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
. 2019.04.04 14:25:57 - OpenVPN > VERIFY EKU OK
. 2019.04.04 14:25:57 - OpenVPN > VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Capricornus, emailAddress=info@airvpn.org
[carl@popcorn eddie-cli]$ . 2019.04.04 14:25:57 - OpenVPN > Control Channel: TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
. 2019.04.04 14:25:57 - OpenVPN > [Capricornus] Peer Connection Initiated with [AF_INET]194.187.251.93:443
[carl@popcorn eddie-cli]$ . 2019.04.04 14:25:58 - OpenVPN > SENT CONTROL [Capricornus]: 'PUSH_REQUEST' (status=1)
. 2019.04.04 14:25:58 - OpenVPN > PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway ipv6 def1 bypass-dhcp,dhcp-option DNS 10.12.174.1,dhcp-option DNS6 fde6:7a:7d20:8ae::1,tun-ipv6,route-gateway 10.12.174.1,topology subnet,ping 10,ping-restart 60,ifconfig-ipv6 fde6:7a:7d20:8ae::1074/64 fde6:7a:7d20:8ae::1,ifconfig 10.12.174.118 255.255.255.0,peer-id 4,cipher AES-256-GCM'
. 2019.04.04 14:25:58 - OpenVPN > Pushed option removed by filter: 'redirect-gateway ipv6 def1 bypass-dhcp'
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: timers and/or timeouts modified
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: compression parms modified
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: --ifconfig/up options modified
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: route-related options modified
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: peer-id set
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: adjusting link_mtu to 1625
. 2019.04.04 14:25:58 - OpenVPN > OPTIONS IMPORT: data channel crypto options modified
. 2019.04.04 14:25:58 - OpenVPN > Data Channel: using negotiated cipher 'AES-256-GCM'
. 2019.04.04 14:25:58 - OpenVPN > Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
. 2019.04.04 14:25:58 - OpenVPN > Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
. 2019.04.04 14:25:58 - OpenVPN > ROUTE_GATEWAY 192.168.2.1/255.255.255.0 IFACE=enp4s0 HWADDR=38:60:77:9f:10:f4
. 2019.04.04 14:25:58 - OpenVPN > GDG6: remote_host_ipv6=n/a
. 2019.04.04 14:25:58 - OpenVPN > ROUTE6: default_gateway=UNDEF
. 2019.04.04 14:25:58 - OpenVPN > TUN/TAP device tun0 opened
. 2019.04.04 14:25:58 - OpenVPN > TUN/TAP TX queue length set to 100
. 2019.04.04 14:25:58 - OpenVPN > do_ifconfig, tt->did_ifconfig_ipv6_setup=1
. 2019.04.04 14:25:58 - OpenVPN > /sbin/ip link set dev tun0 up mtu 1500
. 2019.04.04 14:25:58 - OpenVPN > /sbin/ip addr add dev tun0 10.12.174.118/24 broadcast 10.12.174.255
. 2019.04.04 14:25:58 - OpenVPN > /sbin/ip -6 addr add fde6:7a:7d20:8ae::1074/64 dev tun0
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip route add 194.187.251.93/32 via 192.168.2.1
E 2019.04.04 14:26:03 - OpenVPN > ERROR: Linux route add command failed: external program exited with error status: 2
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip route add 0.0.0.0/1 via 10.12.174.1
. 2019.04.04 14:26:03 - OpenVPN > RTNETLINK answers: File exists
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip route add 128.0.0.0/1 via 10.12.174.1
. 2019.04.04 14:26:03 - OpenVPN > add_route_ipv6(::/3 -> fde6:7a:7d20:8ae::1 metric -1) dev tun0
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip -6 route add ::/3 dev tun0
. 2019.04.04 14:26:03 - OpenVPN > add_route_ipv6(2000::/4 -> fde6:7a:7d20:8ae::1 metric -1) dev tun0
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip -6 route add 2000::/4 dev tun0
. 2019.04.04 14:26:03 - OpenVPN > add_route_ipv6(3000::/4 -> fde6:7a:7d20:8ae::1 metric -1) dev tun0
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip -6 route add 3000::/4 dev tun0
. 2019.04.04 14:26:03 - OpenVPN > add_route_ipv6(fc00::/7 -> fde6:7a:7d20:8ae::1 metric -1) dev tun0
. 2019.04.04 14:26:03 - OpenVPN > /sbin/ip -6 route add fc00::/7 dev tun0
. 2019.04.04 14:26:03 - /etc/resolv.conf moved to /etc/resolv.conf.eddie as backup
. 2019.04.04 14:26:03 - DNS of the system updated to VPN DNS (Rename method: /etc/resolv.conf generated)
. 2019.04.04 14:26:03 - Routes, added a new route, 194.187.251.91 for gateway 10.12.174.1
. 2019.04.04 14:26:03 - Routes, added a new route, 2001:ac8:27:a:d655:22aa:7624:7223 for gateway fde6:7a:7d20:8ae::1
. 2019.04.04 14:26:03 - Flushing DNS
I 2019.04.04 14:26:03 - Checking route IPv4
I 2019.04.04 14:26:04 - Checking route IPv6
! 2019.04.04 14:26:05 - Connected.
. 2019.04.04 14:26:05 - OpenVPN > Initialization Sequence Completed

And here is the log for 2.17. Note that 2.17 doesn't get very far at all. It never moves beyond the "Collecting Information" step:

 

eddie-cli_2.17.2_linux_x64_portable]$ . 2019.04.04 14:22:56 - Eddie version: 2.17.2 / linux_x64, System: Linux, Name: Arch Linux \r (\l), Version: Linux popcorn 5.0.4-arch1-1-ARCH #1 SMP PREEMPT Sat Mar 23 21:00:33 UTC 2019 x86_64 GNU/Linux, Mono/.Net: 4.6.2 (Stable 4.6.2.16/ac9e222); Framework: v4.0.30319
. 2019.04.04 14:22:56 - Reading options from /home/carl/Downloads/eddie-cli_2.17.2_linux_x64_portable/default.xml
I 2019.04.04 14:22:56 - Press 'X' to Cancel, 'N' to connect/reconnect to the best available server.
. 2019.04.04 14:22:56 - Command line arguments (4): servers.whitelist="Capricornus,Brussels,Belgium" login="**" password="**" connect="True"
. 2019.04.04 14:22:56 - Profile path: /home/carl/Downloads/eddie-cli_2.17.2_linux_x64_portable/default.xml
. 2019.04.04 14:22:58 - OpenVPN Driver - Found, /dev/net/tun
. 2019.04.04 14:22:58 - OpenVPN - Version: 2.4.6 - OpenSSL 1.1.0h  27 Mar 2018, LZO 2.10 (/home/carl/Downloads/eddie-cli_2.17.2_linux_x64_portable/openvpn)
. 2019.04.04 14:22:58 - SSH - Version: OpenSSH_7.9p1, OpenSSL 1.1.1b  26 Feb 2019 (/usr/bin/ssh)
. 2019.04.04 14:22:58 - SSL - Version: stunnel 5.40 (/home/carl/Downloads/eddie-cli_2.17.2_linux_x64_portable/stunnel)
. 2019.04.04 14:22:58 - curl - Version: 7.64.0 (/usr/bin/curl)
. 2019.04.04 14:22:58 - Certification Authorities: /home/carl/Downloads/eddie-cli_2.17.2_linux_x64_portable/res//cacert.pem
I 2019.04.04 14:22:58 - Checking login ...
! 2019.04.04 14:22:58 - Logged in.
I 2019.04.04 14:22:58 - Ready
. 2019.04.04 14:22:59 - Collect information about AirVPN completed

This is what happens when I try to run openvpn with my generated AirVPN config. It never gets past the Initialization step:

 

Thu Apr  4 14:09:21 2019 OpenVPN 2.4.7 [git:makepkg/2b8aec62d5db2c17+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 19 2019
Thu Apr  4 14:09:21 2019 library versions: OpenSSL 1.1.1b  26 Feb 2019, LZO 2.10
Thu Apr  4 14:09:21 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Apr  4 14:09:21 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Apr  4 14:09:23 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]91.207.57.114:443
Thu Apr  4 14:09:23 2019 Socket Buffers: R=[131072->425984] S=[16384->425984]
Thu Apr  4 14:09:23 2019 Attempting to establish TCP connection with [AF_INET]91.207.57.114:443 [nonblock]
Thu Apr  4 14:09:24 2019 TCP connection established with [AF_INET]91.207.57.114:443
Thu Apr  4 14:09:24 2019 TCP_CLIENT link local: (not bound)
Thu Apr  4 14:09:24 2019 TCP_CLIENT link remote: [AF_INET]91.207.57.114:443
Thu Apr  4 14:09:24 2019 TLS: Initial packet from [AF_INET]91.207.57.114:443, sid=695f5069 3af31c9d
Thu Apr  4 14:09:24 2019 VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Thu Apr  4 14:09:24 2019 VERIFY KU OK
Thu Apr  4 14:09:24 2019 Validating certificate extended key usage
Thu Apr  4 14:09:24 2019 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Thu Apr  4 14:09:24 2019 VERIFY EKU OK
Thu Apr  4 14:09:24 2019 VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Castor, emailAddress=info@airvpn.org
Thu Apr  4 14:09:25 2019 Control Channel: TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
Thu Apr  4 14:09:25 2019 [Castor] Peer Connection Initiated with [AF_INET]91.207.57.114:443
Thu Apr  4 14:09:26 2019 SENT CONTROL [Castor]: 'PUSH_REQUEST' (status=1)
Thu Apr  4 14:09:26 2019 PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway  def1 bypass-dhcp,dhcp-option DNS 10.12.237.1,route-gateway 10.12.237.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.12.237.186 255.255.255.0,peer-id 0,cipher AES-256-GCM'
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: timers and/or timeouts modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: compression parms modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: --ifconfig/up options modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: route options modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: route-related options modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: peer-id set
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: adjusting link_mtu to 1627
Thu Apr  4 14:09:26 2019 OPTIONS IMPORT: data channel crypto options modified
Thu Apr  4 14:09:26 2019 Data Channel: using negotiated cipher 'AES-256-GCM'
Thu Apr  4 14:09:26 2019 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Thu Apr  4 14:09:26 2019 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Thu Apr  4 14:09:26 2019 ROUTE_GATEWAY 192.168.2.1/255.255.255.0 IFACE=enp4s0 HWADDR=38:60:77:9f:10:f4
Thu Apr  4 14:09:26 2019 TUN/TAP device tun0 opened
Thu Apr  4 14:09:26 2019 TUN/TAP TX queue length set to 100
Thu Apr  4 14:09:26 2019 /usr/bin/ip link set dev tun0 up mtu 1500
Thu Apr  4 14:09:26 2019 /usr/bin/ip addr add dev tun0 10.12.237.186/24 broadcast 10.12.237.255
Thu Apr  4 14:09:26 2019 /usr/bin/ip route add 91.207.57.114/32 via 192.168.2.1
Thu Apr  4 14:09:26 2019 /usr/bin/ip route add 0.0.0.0/1 via 10.12.237.1
Thu Apr  4 14:09:26 2019 /usr/bin/ip route add 128.0.0.0/1 via 10.12.237.1
Thu Apr  4 14:09:26 2019 Initialization Sequence Completed

resolv.conf looks correct:

cat /etc/resolv.conf
# Generated by Eddie v2.16.3 | https://eddie.website

nameserver 10.12.174.1
nameserver fde6:7a:7d20:8ae::1

When connected to the VPN, I cant resolve anything. It eventually times out but here I just killed it:

$ resolvectl query google.com
^C
$

When not connected, resolution works fine:

 

$ resolvectl query google.com
google.com: 64.233.177.113                     -- link: enp4s0
            64.233.177.102                     -- link: enp4s0
            64.233.177.100                     -- link: enp4s0
            64.233.177.139                     -- link: enp4s0
            64.233.177.138                     -- link: enp4s0
            64.233.177.101                     -- link: enp4s0

I've tried the advice for enabling DNS push here but the result is the same:

https://airvpn.org/topic/9608-how-to-accept-dns-push-on-linux-systems-with-resolvconf/

 

Anyone have any ideas? This has been happening for a few days and I have not made any changes to the system.  My Windows machine works just fine with AirVPN.

Share this post


Link to post

Hello!

 

Did you also try disabling Check if Tunnel works, in addition to Check DNS? Preferences>Advanced. Then re-connect to a server.


Moderators do not speak on behalf of AirVPN. Only the Official Staff account does. Please also do not run Tor Exit Servers behind AirVPN, thank you.
Did you make a guide or how-to for something? Then contact me to get it listed in my new user guide's Guides Section, so that the community can find it more easily.

Share this post


Link to post

Yes, I have disabled all of the following - IPv6, Check DNS, Check if Tunnel works

 

There is no change, I'm still unable to resolve anything at all.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...