AirVPN over TOR: sudo openvpn initializes ok, then

[cyberninja 2]

Below is my log showing I was able to sudo openvpn the OVPN file for AirVPN over TOR. It got initiazed ok then the socket was closed with this error: RTNETLINK answers: Operation not permitted.

Here is the log and if you can tell me how to fix what's causing the error it would be greatly appreciated:

Fri Sep 28 23:00:08 2012 OpenVPN 2.2.2 x86_64-unknown-linux-gnu [sSL] [LZO2] [EPOLL] [PKCS11] [eurephia] built on Apr 5 2012

Fri Sep 28 23:00:08 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables

Fri Sep 28 23:00:08 2012 WARNING: file '/etc/openvpn/keys/airvpntoruser.key' is group or others accessible

Fri Sep 28 23:00:08 2012 LZO compression initialized

Fri Sep 28 23:00:08 2012 Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]

Fri Sep 28 23:00:08 2012 Socket Buffers: R=[87380->131072] S=[16384->131072]

Fri Sep 28 23:00:08 2012 Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]

Fri Sep 28 23:00:08 2012 Local Options hash (VER=V4): '958c5492'

Fri Sep 28 23:00:08 2012 Expected Remote Options hash (VER=V4): '79ef4284'

Fri Sep 28 23:00:08 2012 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay

Fri Sep 28 23:00:08 2012 Attempting to establish TCP connection with 127.0.0.1:9050 [nonblock]

Fri Sep 28 23:00:08 2012 TCP connection established with 127.0.0.1:9050

Fri Sep 28 23:00:08 2012 TCPv4_CLIENT link local: [undef]

Fri Sep 28 23:00:08 2012 TCPv4_CLIENT link remote: 127.0.0.1:9050

Fri Sep 28 23:00:09 2012 TLS: Initial packet from 127.0.0.1:9050, sid=3f4a87b4 c7b44f0c

Fri Sep 28 23:00:14 2012 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org

Fri Sep 28 23:00:14 2012 VERIFY OK: nsCertType=SERVER

Fri Sep 28 23:00:14 2012 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org

Fri Sep 28 23:00:19 2012 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key

Fri Sep 28 23:00:19 2012 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication

Fri Sep 28 23:00:19 2012 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key

Fri Sep 28 23:00:19 2012 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication

Fri Sep 28 23:00:19 2012 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA

Fri Sep 28 23:00:19 2012 [server] Peer Connection Initiated with 127.0.0.1:9050

Fri Sep 28 23:00:21 2012 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)

Fri Sep 28 23:00:26 2012 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)

Fri Sep 28 23:00:26 2012 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.5.0.1,comp-lzo no,route 10.5.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.5.2.30 10.5.2.29'

Fri Sep 28 23:00:26 2012 OPTIONS IMPORT: timers and/or timeouts modified

Fri Sep 28 23:00:26 2012 OPTIONS IMPORT: LZO parms modified

Fri Sep 28 23:00:26 2012 OPTIONS IMPORT: --ifconfig/up options modified

Fri Sep 28 23:00:26 2012 OPTIONS IMPORT: route options modified

Fri Sep 28 23:00:26 2012 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified

Fri Sep 28 23:00:26 2012 ROUTE default_gateway=192.168.1.1

Fri Sep 28 23:00:26 2012 TUN/TAP device tun0 opened

Fri Sep 28 23:00:26 2012 TUN/TAP TX queue length set to 100

Fri Sep 28 23:00:26 2012 /sbin/ip link set dev tun0 up mtu 1500

Fri Sep 28 23:00:26 2012 /sbin/ip addr add dev tun0 local 10.5.2.30 peer 10.5.2.29

Fri Sep 28 23:00:26 2012 /sbin/ip route add 127.0.0.1/32 via 192.168.1.1

RTNETLINK answers: File exists

Fri Sep 28 23:00:26 2012 ERROR: Linux route add command failed: external program exited with error status: 2

Fri Sep 28 23:00:26 2012 /sbin/ip route add 0.0.0.0/1 via 10.5.2.29

Fri Sep 28 23:00:26 2012 /sbin/ip route add 128.0.0.0/1 via 10.5.2.29

Fri Sep 28 23:00:26 2012 /sbin/ip route add 10.5.0.1/32 via 10.5.2.29

Fri Sep 28 23:00:26 2012 GID set to nobody

Fri Sep 28 23:00:26 2012 UID set to nobody

Fri Sep 28 23:00:26 2012 Initialization Sequence Completed

Fri Sep 28 23:02:26 2012 [server] Inactivity timeout (--ping-restart), restarting

Fri Sep 28 23:02:26 2012 TCP/UDP: Closing socket

Fri Sep 28 23:02:26 2012 SIGUSR1[soft,ping-restart] received, process restarting

Fri Sep 28 23:02:26 2012 Restart pause, 5 second(s)

Fri Sep 28 23:02:31 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables

Fri Sep 28 23:02:31 2012 Re-using SSL/TLS context

Fri Sep 28 23:02:31 2012 LZO compression initialized

Fri Sep 28 23:02:31 2012 Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]

Fri Sep 28 23:02:31 2012 Socket Buffers: R=[87380->131072] S=[16384->131072]

Fri Sep 28 23:02:31 2012 Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]

Fri Sep 28 23:02:31 2012 Local Options hash (VER=V4): '958c5492'

Fri Sep 28 23:02:31 2012 Expected Remote Options hash (VER=V4): '79ef4284'

Fri Sep 28 23:02:31 2012 Attempting to establish TCP connection with 127.0.0.1:9050 [nonblock]

Fri Sep 28 23:02:31 2012 TCP connection established with 127.0.0.1:9050

Fri Sep 28 23:02:36 2012 recv_socks_reply: TCP port read timeout expired: Operation now in progress (errno=115)

Fri Sep 28 23:02:36 2012 TCP/UDP: Closing socket

Fri Sep 28 23:02:36 2012 /sbin/ip route del 10.5.0.1/32

RTNETLINK answers: Operation not permitted

Fri Sep 28 23:02:36 2012 ERROR: Linux route delete command failed: external program exited with error status: 2

Fri Sep 28 23:02:36 2012 /sbin/ip route del 127.0.0.1/32

RTNETLINK answers: Operation not permitted

Fri Sep 28 23:02:36 2012 ERROR: Linux route delete command failed: external program exited with error status: 2

Fri Sep 28 23:02:36 2012 /sbin/ip route del 0.0.0.0/1

RTNETLINK answers: Operation not permitted

Fri Sep 28 23:02:36 2012 ERROR: Linux route delete command failed: external program exited with error status: 2

Fri Sep 28 23:02:36 2012 /sbin/ip route del 128.0.0.0/1

RTNETLINK answers: Operation not permitted

Fri Sep 28 23:02:36 2012 ERROR: Linux route delete command failed: external program exited with error status: 2

Fri Sep 28 23:02:36 2012 Closing TUN/TAP interface

Fri Sep 28 23:02:36 2012 /sbin/ip addr del dev tun0 local 10.5.2.30 peer 10.5.2.29

RTNETLINK answers: Operation not permitted

Fri Sep 28 23:02:36 2012 Linux ip addr del failed: external program exited with error status: 2

Fri Sep 28 23:02:36 2012 SIGTERM[soft,init_instance] received, process exiting

[Staff 9815]

Below is my log showing I was able to sudo openvpn the OVPN file for AirVPN over TOR. It got initiazed ok then the socket was closed with this error: RTNETLINK answers: Operation not permitted.

Hello!

Comparing this log with your previous logs, it's unclear why OpenVPN tries to modify the routing table with "ip route" etc. instead of "route". Do you need multiple routing tables? Assuming that your kernel supports policy routing (you run an Ubuntu distribution, right...?), please check group permissions:

http://ubuntuforums.org/showthread.php?t=1867166

See in particular post number 5 by "Jonathan L".

Kind regards

[cyberninja 2]

Thank you for your response. I am using Red Hat Enterprise Linux 6 (version 6.3). I'll check the link you provided. I'm not aware that I need multiple routing tables - my guess is that I don't need multiple.