Staff 9973 Posted ... @crypto1.0 Hello! In Raspbian 10 you don't have a module for table "security". You can safely ignore those warnings, as Network Lock rules will be set anyway, no need of that table. Kind regards Share this post Link to post
crypto1.0 4 Posted ... 3 hours ago, Staff said: @crypto1.0 Hello! In Raspbian 10 you don't have a module for table "security". You can safely ignore those warnings, as Network Lock rules will be set anyway, no need of that table. Kind regards Thank you. At the beginning it didn't work and i though the issue was related to those warning. Then i tried to remove opennic dns on my connection settings and now it's working like a charm 1 Staff reacted to this Share this post Link to post
colorman 26 Posted ... Strange; Sat May 16 10:12:27.909 2020 net_route_add: 134.19.179.133/32 via 192.168.178.1 dev eth0 table 0 metric 0 Sat May 16 10:12:27.909 2020 Sat May 16 10:12:27.909 2020 Connecting to [nl3.vpn.airdns.org]:443 (134.19.179.133) via UDPv4 Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:27.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:27.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:28.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:28.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:29.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:29.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:30.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:30.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:31.909 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:31.909 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:32.910 2020 UDP send exception: send: Operation not permitted Sat May 16 10:12:32.910 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 10:12:33.218 2020 Server poll timeout, trying next remote entry... Sat May 16 10:12:33.218 2020 EVENT: RECONNECTING Sat May 16 10:12:33.218 2020 ERROR: Backup copy of resolv.conf not found. Sat May 16 10:12:33.229 2020 Network filter successfully restored Sat May 16 10:12:33.229 2020 ERROR: N_RECONNECT Sat May 16 10:12:33.229 2020 EVENT: RESOLVE Sat May 16 10:12:33.229 2020 Network filter and lock is using iptables Share this post Link to post
eburom 16 Posted ... Hello. I've been using hummingbird with just ovpn configuration files for some time and works great, but when I've tried to use commandline options I found some trouble. I compared different configuration files and saw that they where really similar one to another: # diff AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn AirVPN_ES-Barcelona_Eridanus_UDP-443.ovpn 4c4 < # AirVPN_NL-Alblasserdam_Alcyone_UDP-443 --- > # AirVPN_ES-Barcelona_Eridanus_UDP-443 9c9 < remote 213.152.161.116 443 --- > remote 185.183.106.2 443 This made me think that I could have a reduced amount of configuration files and call hummingbird with its --server option to pick the server. # hummingbird -s 213.152.161.116 AirVPN_ES-Barcelona_Eridanus_UDP-443.ovpn But It didn't work as It looks like network lock adds the IP in the configuration file instead of the one provided as an argument (logs at the end) I tried to do it setting network lock off and worked fine. Hummingbird - AirVPN OpenVPN 3 Client 1.0.2 - 4 February 2020 Sat May 16 12:09:37.245 2020 Starting thread Sat May 16 12:09:37.245 2020 OpenVPN core 3.6.3 AirVPN linux x86_64 64-bit Sat May 16 12:09:37.250 2020 Frame=512/2048/512 mssfix-ctrl=1250 Sat May 16 12:09:37.254 2020 UNUSED OPTIONS 3 [resolv-retry] [infinite] 4 [nobind] 5 [persist-key] 6 [persist-tun] 7 [auth-nocache] 8 [route-delay] [5] 9 [verb] [3] 10 [explicit-exit-notify] [5] Sat May 16 12:09:37.254 2020 EVENT: RESOLVE Sat May 16 12:09:37.254 2020 Network filter and lock is using iptables-legacy Sat May 16 12:09:37.260 2020 Successfully loaded kernel module iptable_filter Sat May 16 12:09:37.275 2020 Successfully loaded kernel module iptable_nat Sat May 16 12:09:37.281 2020 Successfully loaded kernel module iptable_mangle Sat May 16 12:09:37.286 2020 Successfully loaded kernel module iptable_security Sat May 16 12:09:37.291 2020 Successfully loaded kernel module iptable_raw Sat May 16 12:09:37.296 2020 Successfully loaded kernel module ip6table_filter Sat May 16 12:09:37.312 2020 Successfully loaded kernel module ip6table_nat Sat May 16 12:09:37.318 2020 Successfully loaded kernel module ip6table_mangle Sat May 16 12:09:37.323 2020 Successfully loaded kernel module ip6table_security Sat May 16 12:09:37.328 2020 Successfully loaded kernel module ip6table_raw Sat May 16 12:09:37.331 2020 Network filter successfully initialized Sat May 16 12:09:37.331 2020 Local IPv4 address 192.168.1.7 Sat May 16 12:09:37.331 2020 Local interface enp62s0u1u2 Sat May 16 12:09:37.331 2020 Local interface wlp2s0 Sat May 16 12:09:37.331 2020 Setting up network filter and lock Sat May 16 12:09:37.331 2020 Allowing system DNS 127.0.0.1 to pass through the network filter Sat May 16 12:09:37.331 2020 Adding IPv4 server 185.183.106.2 to network filter Sat May 16 12:09:37.349 2020 Network filter and lock successfully activated Sat May 16 12:09:37.349 2020 Contacting 213.152.161.116:443 via UDP Sat May 16 12:09:37.349 2020 EVENT: WAIT Sat May 16 12:09:37.349 2020 net_route_best_gw query IPv4: 213.152.161.116/32 Sat May 16 12:09:37.349 2020 sitnl_route_best_gw result: via 192.168.1.1 dev enp62s0u1u2 Sat May 16 12:09:37.349 2020 net_route_add: 213.152.161.116/32 via 192.168.1.1 dev enp62s0u1u2 table 0 metric 0 Sat May 16 12:09:37.350 2020 Sat May 16 12:09:37.350 2020 Connecting to [213.152.161.116]:443 (213.152.161.116) via UDPv4 Sat May 16 12:09:37.350 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:37.350 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 12:09:38.254 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:38.254 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 12:09:39.255 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:39.255 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 12:09:40.255 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:40.255 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 12:09:41.255 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:41.255 2020 ERROR: NETWORK_SEND_ERROR Sat May 16 12:09:42.256 2020 UDP send exception: send: Operation not permitted Sat May 16 12:09:42.256 2020 ERROR: NETWORK_SEND_ERROR 1 Staff reacted to this Share this post Link to post
Staff 9973 Posted ... @eburom Hello and thank you! We confirm the bug you found. It is being fixed and a new version will be released before the end of May. Kind regards Share this post Link to post
Staff 9973 Posted ... @colorman Hello! The quoted error is usually caused by a firewall rule blocking UDP, can you please check? Kind regards 4 hours ago, colorman said: Sat May 16 10:12:27.909 2020 UDP send exception: send: Operation not permitted Share this post Link to post
eburom 16 Posted ... Thanks for taking care this fast. I also had some trouble when trying to use the --proto option to pick the protocol to be used. In this case, when compared a TCP and UDP configuration files there's one extra different field in the UDP one so I'm not sure if I should have used some additional parameter in the commnad. Files differ in: # diff AirVPN_NL-Alblasserdam_Alcyone_TCP-443.ovpn AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn 4c4 < # AirVPN_NL-Alblasserdam_Alcyone_TCP-443 --- > # AirVPN_NL-Alblasserdam_Alcyone_UDP-443 16a17 > explicit-exit-notify 5 22c23 < proto tcp --- > proto udp I tried calling hummingbird with the UDP configuration file but overriding the protocol with tcp. # hummingbird -P tcp AirVPN_NL-Alblasserdam_Alcyone_UDP-443.ovpn The logs attached show the exact same as when run without de protocol argument (at the end). I also checked sockets open in my system: $ ss -tu Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port Process udp ESTAB 0 0 192.168.1.70:58304 213.152.161.116:https PS: As a side note, hummingbird asks for superuser even to check the help (-h) and wont run show this help if already running. Hummingbird - AirVPN OpenVPN 3 Client 1.0.2 - 4 February 2020 Sun May 17 00:26:40.247 2020 Starting thread Sun May 17 00:26:40.247 2020 OpenVPN core 3.6.3 AirVPN linux x86_64 64-bit Sun May 17 00:26:40.251 2020 Frame=512/2048/512 mssfix-ctrl=1250 Sun May 17 00:26:40.256 2020 UNUSED OPTIONS 3 [resolv-retry] [infinite] 4 [nobind] 5 [persist-key] 6 [persist-tun] 7 [auth-nocache] 8 [route-delay] [5] 9 [verb] [3] 10 [explicit-exit-notify] [5] Sun May 17 00:26:40.256 2020 EVENT: RESOLVE Sun May 17 00:26:40.256 2020 Network filter and lock is using iptables-legacy Sun May 17 00:26:40.261 2020 Successfully loaded kernel module iptable_filter Sun May 17 00:26:40.276 2020 Successfully loaded kernel module iptable_nat Sun May 17 00:26:40.282 2020 Successfully loaded kernel module iptable_mangle Sun May 17 00:26:40.288 2020 Successfully loaded kernel module iptable_security Sun May 17 00:26:40.292 2020 Successfully loaded kernel module iptable_raw Sun May 17 00:26:40.298 2020 Successfully loaded kernel module ip6table_filter Sun May 17 00:26:40.312 2020 Successfully loaded kernel module ip6table_nat Sun May 17 00:26:40.318 2020 Successfully loaded kernel module ip6table_mangle Sun May 17 00:26:40.323 2020 Successfully loaded kernel module ip6table_security Sun May 17 00:26:40.328 2020 Successfully loaded kernel module ip6table_raw Sun May 17 00:26:40.331 2020 Network filter successfully initialized Sun May 17 00:26:40.331 2020 Local IPv4 address 192.168.1.70 Sun May 17 00:26:40.331 2020 Local interface enp62s0u1u2 Sun May 17 00:26:40.331 2020 Local interface wlp2s0 Sun May 17 00:26:40.331 2020 Setting up network filter and lock Sun May 17 00:26:40.331 2020 Allowing system DNS 127.0.0.1 to pass through the network filter Sun May 17 00:26:40.331 2020 Adding IPv4 server 213.152.161.116 to network filter Sun May 17 00:26:40.348 2020 Network filter and lock successfully activated Sun May 17 00:26:40.348 2020 Contacting 213.152.161.116:443 via UDP Sun May 17 00:26:40.348 2020 EVENT: WAIT Sun May 17 00:26:40.348 2020 net_route_best_gw query IPv4: 213.152.161.116/32 Sun May 17 00:26:40.348 2020 sitnl_route_best_gw result: via 192.168.1.1 dev enp62s0u1u2 Sun May 17 00:26:40.348 2020 net_route_add: 213.152.161.116/32 via 192.168.1.1 dev enp62s0u1u2 table 0 metric 0 Sun May 17 00:26:40.349 2020 Sun May 17 00:26:40.349 2020 Connecting to [213.152.161.116]:443 (213.152.161.116) via UDPv4 Sun May 17 00:26:40.405 2020 EVENT: CONNECTING Sun May 17 00:26:40.405 2020 Tunnel Options:V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client Sun May 17 00:26:40.405 2020 Peer Info: IV_VER=3.6.3 AirVPN IV_PLAT=linux IV_NCP=2 IV_TCPNL=1 IV_PROTO=2 IV_LZO_STUB=1 IV_COMP_STUB=1 IV_COMP_STUBv2=1 UV_IPV6=yes IV_GUI_VER=Hummingbird - AirVPN OpenVPN 3 Client 1.0.2 IV_SSL=mbed TLS 2.16.3 Sun May 17 00:26:40.498 2020 VERIFY OK : depth=1 cert. version : 3 serial number : 8C:D8:43:EF:E4:5F:20:03 issuer name : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org subject name : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org issued on : 2014-04-11 10:15:45 expires on : 2024-04-08 10:15:45 signed using : RSA with SHA1 RSA key size : 4096 bits basic constraints : CA=true Sun May 17 00:26:40.498 2020 VERIFY OK : depth=0 cert. version : 3 serial number : 6D issuer name : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org subject name : C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Alcyone, emailAddress=info@airvpn.org issued on : 2016-12-28 13:56:41 expires on : 2026-12-26 13:56:41 signed using : RSA with SHA-512 RSA key size : 4096 bits basic constraints : CA=false cert. type : SSL Server key usage : Digital Signature, Key Encipherment ext key usage : TLS Web Server Authentication Sun May 17 00:26:40.806 2020 SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-256-GCM-SHA384 Sun May 17 00:26:40.806 2020 Session is ACTIVE Sun May 17 00:26:40.806 2020 EVENT: GET_CONFIG Sun May 17 00:26:40.806 2020 Sending PUSH_REQUEST to server... Sun May 17 00:26:40.942 2020 OPTIONS: 0 [comp-lzo] [no] 1 [redirect-gateway] [ipv6] [def1] [bypass-dhcp] 2 [dhcp-option] [DNS] [10.5.220.1] 3 [dhcp-option] [DNS6] [fde6:7a:7d20:1dc::1] 4 [tun-ipv6] 5 [route-gateway] [10.5.220.1] 6 [topology] [subnet] 7 [ping] [10] 8 [ping-restart] [60] 9 [ifconfig-ipv6] [fde6:7a:7d20:1dc::10b4/64] [fde6:7a:7d20:1dc::1] 10 [ifconfig] [10.5.220.182] [255.255.255.0] 11 [peer-id] [2] 12 [cipher] [AES-256-GCM] Sun May 17 00:26:40.942 2020 PROTOCOL OPTIONS: cipher: AES-256-GCM digest: NONE ncp enabled: yes compress: LZO_STUB peer ID: 2 Sun May 17 00:26:40.942 2020 EVENT: ASSIGN_IP Sun May 17 00:26:40.942 2020 VPN Server has pushed IPv4 DNS server 10.5.220.1 Sun May 17 00:26:40.946 2020 Setting pushed IPv4 DNS server 10.5.220.1 in resolv.conf Sun May 17 00:26:40.946 2020 VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1dc::1 Sun May 17 00:26:40.950 2020 Setting pushed IPv6 DNS server fde6:7a:7d20:1dc::1 in resolv.conf Sun May 17 00:26:40.950 2020 net_iface_mtu_set: mtu 1500 for tun0 Sun May 17 00:26:40.951 2020 net_iface_up: set tun0 up Sun May 17 00:26:40.951 2020 net_addr_add: 10.5.220.182/24 brd 10.5.220.255 dev tun0 Sun May 17 00:26:40.951 2020 net_addr_add: fde6:7a:7d20:1dc::10b4/64 dev tun0 Sun May 17 00:26:40.951 2020 net_route_add: 0.0.0.0/1 via 10.5.220.1 dev tun0 table 0 metric 0 Sun May 17 00:26:40.951 2020 net_route_add: 128.0.0.0/1 via 10.5.220.1 dev tun0 table 0 metric 0 Sun May 17 00:26:40.952 2020 net_route_add: ::/1 via fde6:7a:7d20:1dc::1 dev tun0 table 0 metric 0 Sun May 17 00:26:40.952 2020 net_route_add: 8000::/1 via fde6:7a:7d20:1dc::1 dev tun0 table 0 metric 0 Sun May 17 00:26:40.952 2020 Connected via tun Sun May 17 00:26:40.952 2020 LZO-ASYM init swap=0 asym=1 Sun May 17 00:26:40.952 2020 Comp-stub init swap=0 Sun May 17 00:26:40.952 2020 EVENT: CONNECTED 213.152.161.116:443 (213.152.161.116) via /UDPv4 on tun/10.5.220.182/fde6:7a:7d20:1dc::10b4 gw=[10.5.220.1/fde6:7a:7d20:1dc::1] Sun May 17 00:26:40.952 2020 Server has pushed its own DNS. Removing system DNS from network filter. Sun May 17 00:26:40.956 2020 System DNS 127.0.0.1 is now rejected by the network filter Share this post Link to post
colorman 26 Posted ... 18 hours ago, Staff said: @colorman Hello! The quoted error is usually caused by a firewall rule blocking UDP, can you please check? Kind regards Hello Staff, It was a one time thing. Not seen again. If you look at yesterday's eburom post, you can see he had the same error. Share this post Link to post
Staff 9973 Posted ... @colorman Hello! When you get UDP send exception: send: Operation not permitted please check the firewall rules, store them and send them to us.@eburom On 5/17/2020 at 12:59 AM, eburom said: PS: As a side note, hummingbird asks for superuser even to check the help (-h) and wont run show this help if already running. Both cases are intended. On 5/17/2020 at 12:59 AM, eburom said: I tried calling hummingbird with the UDP configuration file but overriding the protocol with tcp. We will check - (EDIT: bug confirmed); in general an UDP based profile is not compatible (explicit-exit-notify is incompatible with proto tcp) with protocol TCP. Maybe a better behavior might be: allow the override and let OpenVPN library throw the critical error, then exit. That's a design decision, we will check what the developer thinks about it. Kind regards Share this post Link to post
acyclovir 0 Posted ... (edited) I am unable to run Hummingbird through Eddie, on Mac Os X High Sierra, the option is grayed, i have selected the path of hummingbird binaries but it keeps loop trying to connect / disconnect Edited ... by acyclovir Hummingbird only compatible since Mojave or later Share this post Link to post