Jump to content
Not connected, Your IP: 3.145.106.7
Staff

Linux: AirVPN Suite 1.1.0 beta available

Recommended Posts

Bluetit can only be used by users in the airvpn group. Try:

$ sudo -u airvpn goldcrest -O

If you want to be able to run goldcrest with your own user, do this, then relog:

$ sudo usermod -aG airvpn "$USER"

.

NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post
@Staff
Two error's with start goldcrest?

2021-04-21 07:50:25 ERROR: Cannot allow system DNS to pass through network filter
2021-04-21 07:50:30 Resolved server nl3.vpn.airdns.org into IPv4 213.152.162.156
2021-04-21 07:50:30 Adding IPv4 server 213.152.162.156 to network filter
2021-04-21 07:50:30 ERROR: Cannot activate network filter and lock
2021-04-21 07:50:32 Contacting 213.152.162.156:443 via UDP
2021-04-21 07:50:32 EVENT: WAIT


 


 

Share this post


Link to post
@colorman

Hello!

Thank you for your tests once again.

As usual, can you please send us the complete Bluetit log (output of the command sudo journalctl | grep bluetit) printed after the problem has occurred? Can you also tell us the current system firewall when the problem occurs?

Kind regards
 

Share this post


Link to post
45 minutes ago, Staff said:
@colorman

Hello!

Thank you for your tests once again.

As usual, can you please send us the complete Bluetit log (output of the command sudo journalctl | grep bluetit) printed after the problem has occurred? Can you also tell us the current system firewall when the problem occurs?

Kind regards
 
I use opensuse leap 15.2
firewalld0.5.5-lp152.6.3

localhost:~ # journalctl | grep bluetit
Apr 21 07:29:57 localhost bluetit[2122]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 21 07:29:57 localhost bluetit[2122]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 21 07:29:57 localhost bluetit[2122]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 21 07:29:57 localhost bluetit[2127]: Bluetit daemon started with PID 2127
Apr 21 07:29:57 localhost bluetit[2127]: External network is reachable via gateway 192.168.178.1 through interface eth0
Apr 21 07:29:57 localhost bluetit[2127]: Successfully connected to D-Bus
Apr 21 07:29:57 localhost bluetit[2127]: Reading run control directives from file /etc/airvpn/bluetit.rc
Apr 21 07:29:57 localhost bluetit[2127]: IPv6 is available in this system
Apr 21 07:29:57 localhost bluetit[2127]: Bluetit successfully initialized and ready
Apr 21 07:29:57 localhost bluetit[2127]: Requesting network IP and country to AirVPN ipleak.net via secure connection
Apr 21 07:29:57 localhost bluetit[2127]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access r
ights?)
Apr 21 07:29:57 localhost bluetit[2127]: AirVPN Manifest updater thread started
Apr 21 07:29:57 localhost bluetit[2127]: AirVPN Manifest update interval is 15 minutes
Apr 21 07:29:57 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 07:29:58 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 07:45:00 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 07:45:00 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "version"
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "openvpn_info"
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "bluetit_status -> Bluetit is ready"
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "reset_bluetit_options -> Bluetit options successfully reset"
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "set_openvpn_profile -> OK"
Apr 21 07:50:25 localhost bluetit[2127]: Requested method "start_connection"
Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN3 connection successfully started
Apr 21 07:50:25 localhost bluetit[2127]: Network filter and lock are using iptables-legacy
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_filter
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_nat
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_mangle
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_security
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_raw
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_filter
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_nat
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_mangle
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_security
Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_raw
Apr 21 07:50:25 localhost bluetit[2127]: WARNING: firewalld is running on this system and may interfere with network filter and lock
Apr 21 07:50:25 localhost bluetit[2127]: Network filter successfully initialized
Apr 21 07:50:25 localhost bluetit[2127]: Starting VPN Connection
Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN3 client successfully created and initialized.
Apr 21 07:50:25 localhost bluetit[2127]: TUN persistence is enabled.
Apr 21 07:50:25 localhost bluetit[2127]: Successfully set OpenVPN3 client configuration
Apr 21 07:50:25 localhost bluetit[2127]: Starting OpenVPN3 connection thread
Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 21 07:50:25 localhost bluetit[2127]: Connection statistics updater thread started
Apr 21 07:50:25 localhost bluetit[2127]: Frame=512/2048/512 mssfix-ctrl=1250
Apr 21 07:50:25 localhost bluetit[2127]: UNUSED OPTIONS
Apr 21 07:50:25 localhost bluetit[2127]: EVENT: RESOLVE
Apr 21 07:50:25 localhost bluetit[2127]: Local IPv4 address 192.168.178.11
Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address 2001:1c04:509:4000:7d23:1c57:30a4:830
Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address 2001:1c04:509:4000:aaa1:59ff:fe2f:523e
Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address fe80::aaa1:59ff:fe2f:523e
Apr 21 07:50:25 localhost bluetit[2127]: Local interface eth0
Apr 21 07:50:25 localhost bluetit[2127]: Setting up network filter and lock
Apr 21 07:50:25 localhost bluetit[2127]: Allowing system DNS 84.116.46.20 to pass through the network filter
Apr 21 07:50:25 localhost bluetit[2127]: Allowing system DNS 84.116.46.21 to pass through the network filter
Apr 21 07:50:25 localhost bluetit[2127]: ERROR: Cannot allow system DNS to pass through network filter
Apr 21 07:50:30 localhost bluetit[2127]: Resolved server nl3.vpn.airdns.org into IPv4 213.152.162.156
Apr 21 07:50:30 localhost bluetit[2127]: Adding IPv4 server 213.152.162.156 to network filter
Apr 21 07:50:30 localhost bluetit[2127]: ERROR: Cannot activate network filter and lock
Apr 21 07:50:32 localhost bluetit[2127]: Contacting 213.152.162.156:443 via UDP
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: WAIT
Apr 21 07:50:32 localhost bluetit[2127]: net_route_best_gw query IPv4: 213.152.162.156/32
Apr 21 07:50:32 localhost bluetit[2127]: sitnl_route_best_gw result: via 192.168.178.1 dev eth0
Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 213.152.162.156/32 via 192.168.178.1 dev eth0 table 0 metric 0
Apr 21 07:50:32 localhost bluetit[2127]: Connecting to [nl3.vpn.airdns.org]:443 (213.152.162.156) via UDPv4
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: CONNECTING
Apr 21 07:50:32 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC
,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 07:50:32 localhost bluetit[2127]: Peer Info:
Apr 21 07:50:32 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.
org, signature: RSA-SHA1
Apr 21 07:50:32 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s
ignature: RSA-SHA512
Apr 21 07:50:32 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T
LSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 07:50:32 localhost bluetit[2127]: Session is ACTIVE
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a
stronger algorithm. Support for SHA1 signatures will be dropped in the future
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: GET_CONFIG
Apr 21 07:50:32 localhost bluetit[2127]: Sending PUSH_REQUEST to server...
Apr 21 07:50:32 localhost bluetit[2127]: OPTIONS:
Apr 21 07:50:32 localhost bluetit[2127]: PROTOCOL OPTIONS:
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: ASSIGN_IP
Apr 21 07:50:32 localhost bluetit[2127]: VPN Server has pushed IPv4 DNS server 10.24.146.1
Apr 21 07:50:32 localhost bluetit[2127]: Setting pushed IPv4 DNS server 10.24.146.1 in resolv.conf
Apr 21 07:50:32 localhost bluetit[2127]: VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1492::1
Apr 21 07:50:32 localhost bluetit[2127]: Setting pushed IPv6 DNS server fde6:7a:7d20:1492::1 in resolv.conf
Apr 21 07:50:32 localhost bluetit[2127]: net_iface_mtu_set: mtu 1500 for tun0
Apr 21 07:50:32 localhost bluetit[2127]: net_iface_up: set tun0 up
Apr 21 07:50:32 localhost bluetit[2127]: net_addr_add: 10.24.146.221/24 brd 10.24.146.255 dev tun0
Apr 21 07:50:32 localhost bluetit[2127]: net_addr_add: fde6:7a:7d20:1492::10db/64 dev tun0
Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 0.0.0.0/1 via 10.24.146.1 dev tun0 table 0 metric 0
Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 128.0.0.0/1 via 10.24.146.1 dev tun0 table 0 metric 0
Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: ::/1 via fde6:7a:7d20:1492::1 dev tun0 table 0 metric 0
Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 8000::/1 via fde6:7a:7d20:1492::1 dev tun0 table 0 metric 0
Apr 21 07:50:32 localhost bluetit[2127]: TunPersist: saving tun context:
Apr 21 07:50:32 localhost bluetit[2127]: Connected via tun
Apr 21 07:50:32 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1
Apr 21 07:50:32 localhost bluetit[2127]: Comp-stub init swap=0
Apr 21 07:50:32 localhost bluetit[2127]: EVENT: CONNECTED nl3.vpn.airdns.org:443 (213.152.162.156) via /UDPv4 on tun/10.24.146.221/fde6:7a
:7d20:1492::10db gw=[10.24.146.1/fde6:7a:7d20:1492::1]
Apr 21 07:50:32 localhost bluetit[2127]: Server has pushed its own DNS. Removing system DNS from network filter.
Apr 21 07:50:32 localhost bluetit[2127]: System DNS 84.116.46.20 is now rejected by the network filter
Apr 21 07:50:32 localhost bluetit[2127]: System DNS 84.116.46.21 is now rejected by the network filter
Apr 21 08:00:00 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 08:00:00 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 08:15:00 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 08:15:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 08:30:01 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 08:30:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 08:45:01 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 08:45:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 08:49:01 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC
,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 08:49:01 localhost bluetit[2127]: Peer Info:
Apr 21 08:49:01 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.
org, signature: RSA-SHA1
Apr 21 08:49:01 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s
ignature: RSA-SHA512
Apr 21 08:49:01 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T
LSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 08:49:01 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1
Apr 21 08:49:01 localhost bluetit[2127]: Comp-stub init swap=0
Apr 21 09:00:01 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 09:00:02 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 09:15:02 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 09:15:02 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 09:30:02 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 09:30:03 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 09:45:03 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 09:45:03 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 09:47:30 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC
,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 09:47:30 localhost bluetit[2127]: Peer Info:
Apr 21 09:47:30 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.
org, signature: RSA-SHA1
Apr 21 09:47:30 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s
ignature: RSA-SHA512
Apr 21 09:47:30 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T
LSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 09:47:30 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1
Apr 21 09:47:30 localhost bluetit[2127]: Comp-stub init swap=0
Apr 21 10:00:03 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 10:00:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 10:15:04 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 10:15:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 10:30:04 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 10:30:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 10:45:04 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 10:45:05 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 10:45:59 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC
,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 10:45:59 localhost bluetit[2127]: Peer Info:
Apr 21 10:45:59 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.
org, signature: RSA-SHA1
Apr 21 10:45:59 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s
ignature: RSA-SHA512
Apr 21 10:45:59 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T
LSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 10:45:59 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1
Apr 21 10:45:59 localhost bluetit[2127]: Comp-stub init swap=0
Apr 21 11:00:05 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 11:00:05 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 11:15:05 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 11:15:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 11:30:06 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 11:30:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 11:44:28 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC
,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 11:44:28 localhost bluetit[2127]: Peer Info:
Apr 21 11:44:28 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.
org, signature: RSA-SHA1
Apr 21 11:44:28 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s
ignature: RSA-SHA512
Apr 21 11:44:28 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T
LSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 11:44:28 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1
Apr 21 11:44:28 localhost bluetit[2127]: Comp-stub init swap=0
Apr 21 11:45:06 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 11:45:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 12:00:06 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 12:00:07 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 12:15:07 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 12:15:07 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
Apr 21 12:30:07 localhost bluetit[2127]: Updating AirVPN Manifest
Apr 21 12:30:08 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server
localhost:~ #


 

Share this post


Link to post
@colorman

Hello!

Thanks! Can you please print all iptables-legacy rules while the connection is still active?  Please enter command (from another shell) iptables-legacy-save, then copy all and paste here, thanks!

Is this error occurring all the times, or occasionally?

Does the error persist if you stop firewalld?

Did you notice this error in some past 1.1.0 beta or RC version?

Kind regards
 

Share this post


Link to post
30 minutes ago, Staff said:
@colorman

Hello!

Thanks! Can you please print all iptables-legacy rules while the connection is still active?  Please enter command (from another shell) iptables-legacy-save, then copy all and paste here, thanks!

Is this error occurring all the times, or occasionally?
all the times
Does the error persist if you stop firewalld?
yes

Did you notice this error in some past 1.1.0 beta or RC version?
don't now
Kind regards

localhost:~ # iptables-legacy-save
# Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT_direct - [0:0]
:POSTROUTING_ZONES - [0:0]
:POSTROUTING_ZONES_SOURCE - [0:0]
:POSTROUTING_direct - [0:0]
:POST_public - [0:0]
:POST_public_allow - [0:0]
:POST_public_deny - [0:0]
:POST_public_log - [0:0]
:PREROUTING_ZONES - [0:0]
:PREROUTING_ZONES_SOURCE - [0:0]
:PREROUTING_direct - [0:0]
:PRE_public - [0:0]
:PRE_public_allow - [0:0]
:PRE_public_deny - [0:0]
:PRE_public_log - [0:0]
COMMIT
# Completed on Wed Apr 21 13:21:32 2021
# Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021
*mangle
:PREROUTING ACCEPT [5903:5050451]
:INPUT ACCEPT [5903:5050451]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [5234:1082789]
:POSTROUTING ACCEPT [5239:1083400]
:FORWARD_direct - [0:0]
:INPUT_direct - [0:0]
:OUTPUT_direct - [0:0]
:POSTROUTING_direct - [0:0]
:PREROUTING_ZONES - [0:0]
:PREROUTING_ZONES_SOURCE - [0:0]
:PREROUTING_direct - [0:0]
:PRE_public - [0:0]
:PRE_public_allow - [0:0]
:PRE_public_deny - [0:0]
:PRE_public_log - [0:0]
COMMIT
# Completed on Wed Apr 21 13:21:32 2021
# Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021
*raw
:PREROUTING ACCEPT [5903:5050451]
:OUTPUT ACCEPT [5234:1082789]
:OUTPUT_direct - [0:0]
:PREROUTING_ZONES - [0:0]
:PREROUTING_ZONES_SOURCE - [0:0]
:PREROUTING_direct - [0:0]
:PRE_public - [0:0]
:PRE_public_allow - [0:0]
:PRE_public_deny - [0:0]
:PRE_public_log - [0:0]
COMMIT
# Completed on Wed Apr 21 13:21:32 2021
# Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021
*security
:INPUT ACCEPT [5903:5050451]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [5234:1082789]
:FORWARD_direct - [0:0]
:INPUT_direct - [0:0]
:OUTPUT_direct - [0:0]
COMMIT
# Completed on Wed Apr 21 13:21:32 2021
# Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021
*filter
:INPUT ACCEPT [5894:5046198]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [5011:1064571]
-A OUTPUT -d 10.17.210.1/32 -j ACCEPT
COMMIT
# Completed on Wed Apr 21 13:21:32 2021
localhost:~ #


 

Share this post


Link to post

just testing...................

with eddie, hummingbird won't work.....
without oke....

strange things......

. 2021.04.21 14:12:54 - Eddie version: 2.20.0 / linux_x64, System: Linux, Name: Welcome to \S - Kernel \r (\l)., Version: Linux localhost 5.3.18-lp152.72-preempt #1 SMP PREEMPT Wed Apr 14 10:13:15 UTC 2021 (013936d) x86_64 x86_64 x86_64 GNU/Linux, Mono/.Net: 6.8.0.105 (tarball Tue Jun  9 05:38:43 UTC 2020); Framework: v4.0.30319
. 2021.04.21 14:12:54 - Command line arguments (2): path.resources="/usr/share/eddie-ui" path.exec="/usr/bin/eddie-ui"
. 2021.04.21 14:12:54 - Raise system privileges
. 2021.04.21 14:13:01 - Profile path: /home/gerrit/.config/eddie/default.profile
. 2021.04.21 14:13:02 - Reading options from /home/gerrit/.config/eddie/default.profile
. 2021.04.21 14:13:03 - Tun Driver - /dev/net/tun
. 2021.04.21 14:13:03 - OpenVPN - Version: 3.3.2 - Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 (/usr/local/bin/hummingbird)
. 2021.04.21 14:13:03 - SSH - Version: OpenSSH_8.1p1, OpenSSL 1.1.1d  10 Sep 2019 (/usr/bin/ssh)
. 2021.04.21 14:13:03 - SSL - Version: Initializing (/usr/sbin/stunnel)
. 2021.04.21 14:13:03 - curl - Version: 7.66.0 (/usr/bin/curl)
I 2021.04.21 14:13:03 - Ready
. 2021.04.21 14:13:04 - Collect information about AirVPN completed
I 2021.04.21 14:14:24 - Session starting.
I 2021.04.21 14:14:24 - Checking authorization ...
! 2021.04.21 14:14:25 - Connecting to Muscida (Netherlands, Alblasserdam)
. 2021.04.21 14:14:25 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:14:25 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:14:25 - Hummingbird > Starting thread
. 2021.04.21 14:14:25 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:14:25 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:14:25 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:14:25 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:14:25 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:14:25 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:14:25 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:14:25 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:14:25 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:14:25 - Hummingbird > 17 [nobind]
. 2021.04.21 14:14:25 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:14:25 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:14:25 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:14:25 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:14:25 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:14:25 - Disconnecting
. 2021.04.21 14:14:25 - Connection terminated.
. 2021.04.21 14:14:25 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:14:28 - Checking authorization ...
! 2021.04.21 14:14:28 - Connecting to Garnet (Netherlands, Alblasserdam)
. 2021.04.21 14:14:28 - Elevated: Command:hummingbird
. 2021.04.21 14:14:29 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:14:29 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:14:29 - Hummingbird > Starting thread
. 2021.04.21 14:14:29 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:14:29 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:14:29 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:14:29 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:14:29 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:14:29 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:14:29 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:14:29 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:14:29 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:14:29 - Hummingbird > 17 [nobind]
. 2021.04.21 14:14:29 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:14:29 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:14:29 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:14:29 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:14:29 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:14:29 - Disconnecting
. 2021.04.21 14:14:29 - Connection terminated.
. 2021.04.21 14:14:29 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:14:32 - Checking authorization ...
! 2021.04.21 14:14:32 - Connecting to Miram (Netherlands, Alblasserdam)
. 2021.04.21 14:14:32 - Elevated: Command:hummingbird
. 2021.04.21 14:14:32 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:14:32 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:14:32 - Hummingbird > Starting thread
. 2021.04.21 14:14:32 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:14:32 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:14:32 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:14:32 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:14:32 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:14:32 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:14:32 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:14:32 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:14:32 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:14:32 - Hummingbird > 17 [nobind]
. 2021.04.21 14:14:32 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:14:32 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:14:32 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:14:32 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:14:32 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:14:32 - Disconnecting
. 2021.04.21 14:14:32 - Connection terminated.
. 2021.04.21 14:14:32 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:14:35 - Cancel requested.
! 2021.04.21 14:14:35 - Session terminated.
I 2021.04.21 14:15:53 - Session starting.
I 2021.04.21 14:15:53 - Checking authorization ...
! 2021.04.21 14:15:53 - Connecting to Canis (Netherlands, Alblasserdam)
. 2021.04.21 14:15:53 - Elevated: Command:hummingbird
. 2021.04.21 14:15:53 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:15:53 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:15:53 - Hummingbird > Starting thread
. 2021.04.21 14:15:53 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:15:53 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:15:53 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:15:53 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:15:53 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:15:53 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:15:53 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:15:53 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:15:53 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:15:53 - Hummingbird > 17 [nobind]
. 2021.04.21 14:15:53 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:15:53 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:15:53 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:15:53 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:15:53 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:15:53 - Disconnecting
. 2021.04.21 14:15:53 - Connection terminated.
. 2021.04.21 14:15:53 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:15:56 - Checking authorization ...
! 2021.04.21 14:15:57 - Connecting to Alphard (Netherlands, Alblasserdam)
. 2021.04.21 14:15:57 - Elevated: Command:hummingbird
. 2021.04.21 14:15:57 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:15:57 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:15:57 - Hummingbird > Starting thread
. 2021.04.21 14:15:57 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:15:57 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:15:57 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:15:57 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:15:57 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:15:57 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:15:57 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:15:57 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:15:57 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:15:57 - Hummingbird > 17 [nobind]
. 2021.04.21 14:15:57 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:15:57 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:15:57 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:15:57 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:15:57 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:15:57 - Disconnecting
. 2021.04.21 14:15:57 - Connection terminated.
. 2021.04.21 14:15:57 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:16:00 - Checking authorization ...
! 2021.04.21 14:16:00 - Connecting to Aljanah (Netherlands, Alblasserdam)
. 2021.04.21 14:16:00 - Elevated: Command:hummingbird
. 2021.04.21 14:16:01 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:16:01 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:16:01 - Hummingbird > Starting thread
. 2021.04.21 14:16:01 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:16:01 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:16:01 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:16:01 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:16:01 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:16:01 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:16:01 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:16:01 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:16:01 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:16:01 - Hummingbird > 17 [nobind]
. 2021.04.21 14:16:01 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:16:01 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:16:01 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:16:01 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:16:01 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:16:01 - Disconnecting
. 2021.04.21 14:16:01 - Connection terminated.
. 2021.04.21 14:16:01 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:16:03 - Cancel requested.
! 2021.04.21 14:16:03 - Session terminated.
I 2021.04.21 14:17:44 - Session starting.
I 2021.04.21 14:17:45 - Checking authorization ...
! 2021.04.21 14:17:45 - Connecting to Mirach (Netherlands, Alblasserdam)
. 2021.04.21 14:17:45 - Elevated: Command:hummingbird
. 2021.04.21 14:17:45 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:17:45 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:17:45 - Hummingbird > Starting thread
. 2021.04.21 14:17:45 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:17:45 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:17:45 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:17:45 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:17:45 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:17:45 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:17:45 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:17:45 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:17:45 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:17:45 - Hummingbird > 17 [nobind]
. 2021.04.21 14:17:45 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:17:45 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:17:45 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:17:45 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:17:45 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:17:45 - Disconnecting
. 2021.04.21 14:17:45 - Connection terminated.
. 2021.04.21 14:17:45 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:17:48 - Checking authorization ...
! 2021.04.21 14:17:49 - Connecting to Celaeno (Netherlands, Alblasserdam)
. 2021.04.21 14:17:49 - Elevated: Command:hummingbird
. 2021.04.21 14:17:49 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:17:49 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:17:49 - Hummingbird > Starting thread
. 2021.04.21 14:17:49 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:17:49 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:17:49 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:17:49 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:17:49 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:17:49 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:17:49 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:17:49 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:17:49 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:17:49 - Hummingbird > 17 [nobind]
. 2021.04.21 14:17:49 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:17:49 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:17:49 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:17:49 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:17:49 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:17:49 - Disconnecting
. 2021.04.21 14:17:49 - Connection terminated.
. 2021.04.21 14:17:49 - Elevated: Command:dns-switch-rename-restore
I 2021.04.21 14:17:52 - Checking authorization ...
! 2021.04.21 14:17:52 - Connecting to Melnick (Netherlands, Alblasserdam)
. 2021.04.21 14:17:52 - Elevated: Command:hummingbird
. 2021.04.21 14:17:53 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021
. 2021.04.21 14:17:53 - Hummingbird > System and service manager in use is systemd
. 2021.04.21 14:17:53 - Hummingbird > Starting thread
. 2021.04.21 14:17:53 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit
. 2021.04.21 14:17:53 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250
. 2021.04.21 14:17:53 - Hummingbird > UNUSED OPTIONS
. 2021.04.21 14:17:53 - Hummingbird > 9 [route-delay] [5]
. 2021.04.21 14:17:53 - Hummingbird > 10 [explicit-exit-notify] [5]
. 2021.04.21 14:17:53 - Hummingbird > 13 [connect-retry-max] [1]
. 2021.04.21 14:17:53 - Hummingbird > 14 [verb] [3]
. 2021.04.21 14:17:53 - Hummingbird > 15 [persist-tun]
. 2021.04.21 14:17:53 - Hummingbird > 16 [persist-key]
. 2021.04.21 14:17:53 - Hummingbird > 17 [nobind]
. 2021.04.21 14:17:53 - Hummingbird > 18 [resolv-retry] [infinite]
. 2021.04.21 14:17:53 - Hummingbird > 19 [auth-nocache]
. 2021.04.21 14:17:53 - Hummingbird > 21 [ping-exit] [32]
. 2021.04.21 14:17:53 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC]
. 2021.04.21 14:17:53 - Hummingbird > EVENT: RESOLVE
! 2021.04.21 14:17:53 - Disconnecting
. 2021.04.21 14:17:53 - Connection terminated.
. 2021.04.21 14:17:53 - Elevated: Command:dns-switch-rename-restore
 

Share this post


Link to post
3 hours ago, colorman said:

just testing...................

with eddie, hummingbird won't work.....
without oke....

strange things......

 


Hello!

The "disconnecting" log entry comes from Eddie and it seems that Eddie does not receive any other log entry from Hummingbird justifying the disconnection. Is such an unexpected behavior experienced by your system even with older Hummingbird 1.1.0? If you run Hummingbird 1.1.0 RC 3 on its own (without Eddie) with the same configuration file generated by Eddie, what do you see?

Kind regards
 

Share this post


Link to post

@colorman

Hello!

Can you please also test Bluetit with nftables (which should be the default filtering platform in your openSUSE version)?

First, you need to install nft (it's a binary utility run by Bluetit as a frontend to nf_tables packet filter), if it's not already available in your system. Then, just run Goldcrest  as you usually do, but with the following, additional option:
--network-lock nftables

Check whether you still get an error, in Bluetit and Goldcrest logs, about network lock or not.

Kind regards


 

Share this post


Link to post

@Staffdon't understand what you mean with this the same configuration file generated by Eddie

with hummingbird on its own, I saw there was a lock in etc / airvpn, removed it.
but that was not the solution, there was immediately a new lock.

eddie with Hummingbird - AirVPN OpenVPN 3 Client 1.1.1 - January 7, 2020 works fine.

thanks for the support.

Share this post


Link to post
27 minutes ago, Staff said:

@colorman

Hello!

Can you please also test Bluetit with nftables (which should be the default filtering platform in your openSUSE version)?

First, you need to install nft (it's a binary utility run by Bluetit as a frontend to nf_tables packet filter), if it's not already available in your system. Then, just run Goldcrest  as you usually do, but with the following, additional option:
--network-lock nftables

Check whether you still get an error, in Bluetit and Goldcrest logs, about network lock or not.

Kind regards


 

gerrit@localhost:/usr/local/bin> ./goldcrest AirVPN_Netherlands_UDP-443-Entry3.ovpn --network-lock nftables
2021-04-21 18:32:05 Reading run control directives from file /home/gerrit/.config/goldcrest.rc
Goldcrest 1.1.0 RC3 - 16 April 2021

ERROR: profile nftables not found

Installed it!


 

Share this post


Link to post
18 minutes ago, colorman said:

@Staffdon't understand what you mean with this the same configuration file generated by Eddie

 


Hello!

Please generate a configuration file form the Configuration Generator (in your account "Client Area", in our web site) with the same protocol, port, destination server that cause the problem with Eddie+Hummingbird. Then run Hummingbird as Eddie does:
sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn

where foo.ovpn must be replaced by the full path and name of the ovpn configuration file you previously generated.

The options to disable network lock and reject DNS push are included to run Hummingbird in the same way Eddie does. In this way we should be able to see what happens to Hummingbird and maybe have some clue.

Kind regards
 

Share this post


Link to post
Quote

gerrit@localhost:/usr/local/bin> ./goldcrest AirVPN_Netherlands_UDP-443-Entry3.ovpn --network-lock nftables
2021-04-21 18:32:05 Reading run control directives from file /home/gerrit/.config/goldcrest.rc
Goldcrest 1.1.0 RC3 - 16 April 2021

ERROR: profile nftables not found


@colorman

That's expected, Goldcrest parser expects the configuration file at the end of the whole command, so it assumes that "nftables" is the configuration file.

Retry with:
./goldcrest --network-lock nftables AirVPN_Netherlands_UDP-443-Entry3.ovpn

Remember to specify the full path to *.ovpn file if necessary.

Kind regards
 

Share this post


Link to post
10 minutes ago, Staff said:

Hello!

Please generate a configuration file form the Configuration Generator (in your account "Client Area", in our web site) with the same protocol, port, destination server that cause the problem with Eddie+Hummingbird. Then run Hummingbird as Eddie does:
sudo hummingbird --network-lock off f--ingore-dns-push foo.ovpn

where foo.ovpn must be replaced by the full path and name of the ovpn configuration file you previously generated.

The options to disable network lock and reject DNS push are included to run Hummingbird in the same way Eddie does. In this way we should be able to see what happens to Hummingbird and maybe have some clue.

Kind regards
 
gerrit@localhost:/usr/local/bin> sudo ./hummingbird --network-lock off f--ingore-dns-push AirVPN_NL-Alblasserdam_Alshat_UDP-443.ovpn
Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021

Wed Apr 21 18:42:44.273 2021 System and service manager in use is systemd
ERROR:


 

Share this post


Link to post

@colorman

Typo (now fixed, please fix it yourself too). Enter:
sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn

Remember to specify the full path to the *.ovpn file if necessary.

Kind regards
 

Share this post


Link to post

localhost:~ # journalctl | grep bluetit                        
Apr 21 18:31:40 localhost bluetit[1944]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 21 18:31:40 localhost bluetit[1944]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 21 18:31:40 localhost bluetit[1944]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 21 18:31:40 localhost bluetit[1954]: Bluetit daemon started with PID 1954
Apr 21 18:31:40 localhost bluetit[1954]: External network is reachable via gateway 192.168.178.1 through interface eth0
Apr 21 18:31:40 localhost bluetit[1954]: Successfully connected to D-Bus
Apr 21 18:31:40 localhost bluetit[1954]: Reading run control directives from file /etc/airvpn/bluetit.rc
Apr 21 18:31:40 localhost bluetit[1954]: IPv6 is available in this system
Apr 21 18:31:40 localhost bluetit[1954]: Bluetit successfully initialized and ready
Apr 21 18:31:40 localhost bluetit[1954]: Requesting network IP and country to AirVPN ipleak.net via secure connection
Apr 21 18:31:40 localhost bluetit[1954]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access rights?)
Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest updater thread started
Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest update interval is 15 minutes
Apr 21 18:31:40 localhost bluetit[1954]: Updating AirVPN Manifest
Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest successfully retrieved from server
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "version"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "openvpn_info"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "bluetit_status -> Bluetit is ready"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "reset_bluetit_options -> Bluetit options successfully reset"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "set_options: network-lock (N) -> nftables"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "set_openvpn_profile -> OK"
Apr 21 18:44:59 localhost bluetit[1954]: Requested method "start_connection"
Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN3 connection successfully started
Apr 21 18:44:59 localhost bluetit[1954]: Network filter and lock are using nftables
Apr 21 18:44:59 localhost bluetit[1954]: Successfully loaded kernel module nf_tables
Apr 21 18:44:59 localhost bluetit[1954]: WARNING: firewalld is running on this system and may interfere with network filter and lock
Apr 21 18:44:59 localhost bluetit[1954]: Network filter successfully initialized
Apr 21 18:44:59 localhost bluetit[1954]: Starting VPN Connection
Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN3 client successfully created and initialized.
Apr 21 18:44:59 localhost bluetit[1954]: TUN persistence is enabled.
Apr 21 18:44:59 localhost bluetit[1954]: Successfully set OpenVPN3 client configuration
Apr 21 18:44:59 localhost bluetit[1954]: Starting OpenVPN3 connection thread
Apr 21 18:44:59 localhost bluetit[1954]: Connection statistics updater thread started
Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 21 18:44:59 localhost bluetit[1954]: Frame=512/2048/512 mssfix-ctrl=1250
Apr 21 18:44:59 localhost bluetit[1954]: UNUSED OPTIONS
Apr 21 18:44:59 localhost bluetit[1954]: EVENT: RESOLVE
Apr 21 18:44:59 localhost bluetit[1954]: Local IPv4 address 192.168.178.11
Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address 2001:1c04:509:4000:3d24:4faa:fc69:84a7
Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address 2001:1c04:509:4000:aaa1:59ff:fe2f:523e
Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address fe80::aaa1:59ff:fe2f:523e
Apr 21 18:44:59 localhost bluetit[1954]: Local interface eth0
Apr 21 18:44:59 localhost bluetit[1954]: Setting up network filter and lock
Apr 21 18:44:59 localhost bluetit[1954]: Allowing system DNS 84.116.46.20 to pass through the network filter
Apr 21 18:44:59 localhost bluetit[1954]: Allowing system DNS 84.116.46.21 to pass through the network filter
Apr 21 18:44:59 localhost bluetit[1954]: ERROR: Cannot allow system DNS to pass through network filter
Apr 21 18:45:01 localhost bluetit[1954]: Resolved server nl3.vpn.airdns.org into IPv4 134.19.179.205
Apr 21 18:45:01 localhost bluetit[1954]: Adding IPv4 server 134.19.179.205 to network filter
Apr 21 18:45:01 localhost bluetit[1954]: ERROR: Cannot activate network filter and lock
Apr 21 18:45:01 localhost bluetit[1954]: Contacting 134.19.179.205:443 via UDP
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: WAIT
Apr 21 18:45:01 localhost bluetit[1954]: net_route_best_gw query IPv4: 134.19.179.205/32
Apr 21 18:45:01 localhost bluetit[1954]: sitnl_route_best_gw result: via 192.168.178.1 dev eth0
Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 134.19.179.205/32 via 192.168.178.1 dev eth0 table 0 metric 0
Apr 21 18:45:01 localhost bluetit[1954]: Connecting to [nl3.vpn.airdns.org]:443 (134.19.179.205) via UDPv4
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: CONNECTING
Apr 21 18:45:01 localhost bluetit[1954]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA512,keysize 256,key-method 2,tls-client
Apr 21 18:45:01 localhost bluetit[1954]: Peer Info:
Apr 21 18:45:01 localhost bluetit[1954]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1
Apr 21 18:45:01 localhost bluetit[1954]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muhlifain/emailAddress=info@airvpn.org, signature: RSA-SHA512
Apr 21 18:45:01 localhost bluetit[1954]: SSL Handshake: peer certificate: CN=Muhlifain, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 21 18:45:01 localhost bluetit[1954]: Session is ACTIVE
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: GET_CONFIG
Apr 21 18:45:01 localhost bluetit[1954]: Sending PUSH_REQUEST to server...
Apr 21 18:45:01 localhost bluetit[1954]: OPTIONS:
Apr 21 18:45:01 localhost bluetit[1954]: PROTOCOL OPTIONS:
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: ASSIGN_IP
Apr 21 18:45:01 localhost bluetit[1954]: VPN Server has pushed IPv4 DNS server 10.34.50.1
Apr 21 18:45:01 localhost bluetit[1954]: Setting pushed IPv4 DNS server 10.34.50.1 in resolv.conf
Apr 21 18:45:01 localhost bluetit[1954]: VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1e32::1
Apr 21 18:45:01 localhost bluetit[1954]: Setting pushed IPv6 DNS server fde6:7a:7d20:1e32::1 in resolv.conf
Apr 21 18:45:01 localhost bluetit[1954]: net_iface_mtu_set: mtu 1500 for tun0
Apr 21 18:45:01 localhost bluetit[1954]: net_iface_up: set tun0 up
Apr 21 18:45:01 localhost bluetit[1954]: net_addr_add: 10.34.50.182/24 brd 10.34.50.255 dev tun0
Apr 21 18:45:01 localhost bluetit[1954]: net_addr_add: fde6:7a:7d20:1e32::10b4/64 dev tun0
Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 0.0.0.0/1 via 10.34.50.1 dev tun0 table 0 metric 0
Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 128.0.0.0/1 via 10.34.50.1 dev tun0 table 0 metric 0
Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: ::/1 via fde6:7a:7d20:1e32::1 dev tun0 table 0 metric 0
Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 8000::/1 via fde6:7a:7d20:1e32::1 dev tun0 table 0 metric 0
Apr 21 18:45:01 localhost bluetit[1954]: TunPersist: saving tun context:
Apr 21 18:45:01 localhost bluetit[1954]: Connected via tun
Apr 21 18:45:01 localhost bluetit[1954]: LZO-ASYM init swap=0 asym=1
Apr 21 18:45:01 localhost bluetit[1954]: Comp-stub init swap=0
Apr 21 18:45:01 localhost bluetit[1954]: EVENT: CONNECTED nl3.vpn.airdns.org:443 (134.19.179.205) via /UDPv4 on tun/10.34.50.182/fde6:7a:7d20:1e32::10b4 gw=[10.34.50.1/fde6:7a:7d20:1e32::1]
Apr 21 18:45:01 localhost bluetit[1954]: Server has pushed its own DNS. Removing system DNS from network filter.
Apr 21 18:45:01 localhost bluetit[1954]: System DNS 84.116.46.20 is now rejected by the network filter
Apr 21 18:45:01 localhost bluetit[1954]: System DNS 84.116.46.21 is now rejected by the network filter
localhost:~ #


 

Share this post


Link to post
5 minutes ago, Staff said:

@colorman

Typo (now fixed, please fix it yourself too). Enter:
sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn

Kind regards
 

gerrit@localhost:/usr/local/bin> sudo ./hummingbird --network-lock off --ignore-dns-push  AirVPN_NL-Alblasserdam_Alshat_UDP-443.ovpn
Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021

Wed Apr 21 18:51:45.069 2021 System and service manager in use is systemd
Wed Apr 21 18:51:45.078 2021 Starting thread
Wed Apr 21 18:51:45.078 2021 OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Wed Apr 21 18:51:45.079 2021 Frame=512/2048/512 mssfix-ctrl=1250
Wed Apr 21 18:51:45.080 2021 UNUSED OPTIONS
3 [resolv-retry] [infinite]
4 [nobind]
5 [persist-key]
6 [persist-tun]
7 [auth-nocache]
8 [verb] [3]
9 [explicit-exit-notify] [5]
10 [rcvbuf] [262144]
11 [sndbuf] [262144]
Wed Apr 21 18:51:45.080 2021 EVENT: RESOLVE
Segmentatiefout


 

Share this post


Link to post
@colorman

Good! Now network lock works with Goldcrest/Bluetit, when you force nftables. Momentarily, do not forget to force it, otherwise network lock will fail. We will be investigating on this bad issue.  Correction: it does not work with nftables as well.

About Hummingbird, thank you: we see that Hummingbird crashes when it is invoked in that way, as Eddie does, so we have now a track to understand what happens. We'll investigate on it as well, of  course.

Kind regards
 

Share this post


Link to post
@colorman

Hello!

Another piece of info please. When you run Hummingbird (and it "explodes"), do you have Bluetit daemon running as well?

Kind regards
 

Share this post


Link to post
12 hours ago, Staff said:
@colorman

Hello!

Another piece of info please. When you run Hummingbird (and it "explodes"), do you have Bluetit daemon running as well?

Kind regards
 
Yes Bluetit deamon starts with boot. But Goldcrest is not running.

(update) Found this?

localhost:~ # journalctl | grep bluetit   
Apr 22 07:31:44 localhost bluetit[2107]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 22 07:31:44 localhost bluetit[2107]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 22 07:31:44 localhost bluetit[2107]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Control process exited, code=exited status=1
Apr 22 07:31:44 localhost bluetit[2107]: Hummingbird client is running or it did not exit gracefully. Exiting.
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Unit entered failed state.
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Failed with result 'exit-code'.


 


And this...
(update) test with Bluetit - AirVPN OpenVPN 3 Service 1.0.0 - 7 January 2021 all fine!

 
* bluetit.service - AirVPN Bluetit Daemon
   Loaded: loaded (/etc/systemd/system/bluetit.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Thu 2021-04-22 07:31:44 CEST; 38s ago
  Process: 2107 ExecStart=/sbin/bluetit (code=exited, status=1/FAILURE)

 
Apr 22 07:31:44 localhost systemd[1]: Starting AirVPN Bluetit Daemon...
Apr 22 07:31:44 localhost bluetit[2107]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 22 07:31:44 localhost bluetit[2107]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Control process exited, code=exited status=1
Apr 22 07:31:44 localhost systemd[1]: Failed to start AirVPN Bluetit Daemon.
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Unit entered failed state.
Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Failed with result 'exit-code'.

Share this post


Link to post

localhost:~ # journalctl | grep bluetit
Apr 22 08:08:29 localhost bluetit[1947]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 22 08:08:29 localhost bluetit[1947]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 22 08:08:29 localhost bluetit[1947]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 22 08:08:29 localhost systemd[1]: bluetit.service: PID file /etc/airvpn/bluetit.lock not readable (yet?) after start: No such file or directory
Apr 22 08:08:29 localhost bluetit[1956]: Bluetit daemon started with PID 1956
Apr 22 08:08:29 localhost bluetit[1956]: External network is reachable via gateway 192.168.178.1 through interface eth0
Apr 22 08:08:29 localhost bluetit[1956]: Successfully connected to D-Bus
Apr 22 08:08:29 localhost bluetit[1956]: Reading run control directives from file /etc/airvpn/bluetit.rc
Apr 22 08:08:29 localhost bluetit[1956]: IPv6 is available in this system
Apr 22 08:08:29 localhost bluetit[1956]: Bluetit successfully initialized and ready
Apr 22 08:08:29 localhost bluetit[1956]: Requesting network IP and country to AirVPN ipleak.net via secure connection
Apr 22 08:08:29 localhost bluetit[1956]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access rights?)
Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest updater thread started
Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest update interval is 15 minutes
Apr 22 08:08:29 localhost bluetit[1956]: Updating AirVPN Manifest
Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest successfully retrieved from server


 

Share this post


Link to post
On 4/13/2021 at 3:54 PM, Staff said:
@pjnsmb

Hello!

Under your conditions, Bluetit resolves gb3.ipv6.vpn.airdns.org. We might have some issue with records update, at least for AAAA, so the problem is not in Bluetit. We are investigating, thank you, it is a useful head up.

Kind regards

 
@Staff

Hello
Any news or an update on this problem please ?

thanks
 

Share this post


Link to post
2 hours ago, Staff said:
@pjnsmb

Hello!

It has been sorted out, please try again now (for the readers: anyway not a Bluetit issue).

Kind regards
 
@Staff

Thanks for the reply and for the record it would appear I am now only connecting to  Betelgeuse each time I connect !

Can I give you some details to explain my situation -

Using systemd bluetit.service runs correctly on bootup on my computer and I can connect to any single U.K server  without a problem at all without needing to alter anything.

I cannot connect using :  
goldcrest --air-connect --air-country GB 
and I get the line :
WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)




Once  I have restarted bluetit.service I can connect to GB but each time it is the  Betelgeuse server.


peter@desktop:~/Desktop/VPN$ goldcrest --air-connect --air-country GB
2021-04-26 16:34:47 Reading run control directives from file /home/peter/.config/goldcrest.rc
Goldcrest 1.1.0 RC3 - 16 April 2021

2021-04-26 16:34:47 Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
2021-04-26 16:34:47 OpenVPN core 3.7 AirVPN linux x86_64 64-bit
2021-04-26 16:34:47 Bluetit is ready
2021-04-26 16:34:47 Bluetit options successfully reset
2021-04-26 16:34:47 Bluetit successfully set to command line options
2021-04-26 16:34:47 Requesting AirVPN connection to Bluetit
2021-04-26 16:34:48 Network filter and lock are using nftables
2021-04-26 16:34:48 Successfully loaded kernel module nf_tables
2021-04-26 16:34:48 Network filter successfully initialized
2021-04-26 16:34:48 Session network filter and lock successfully enabled
2021-04-26 16:34:48 AirVPN bootstrap servers are now allowed to pass through the network filter
2021-04-26 16:34:48 Logging in AirVPN user pjnsmb
2021-04-26 16:34:48 AirVPN user pjnsmb successfully logged in
2021-04-26 16:34:48 Selected user key: DESKTOP
2021-04-26 16:34:48 Starting connection to currently best AirVPN server in United Kingdom
2021-04-26 16:34:48 Starting VPN Connection
2021-04-26 16:34:48 TUN persistence is enabled.
2021-04-26 16:34:48 CIPHER OVERRIDE: CHACHA20-POLY1305
2021-04-26 16:34:48 Network lock set to 'nftables' by Bluetit policy
2021-04-26 16:34:48 Ignore DNS push is enabled by Bluetit policy
2021-04-26 16:34:48 OpenVPN core 3.7 AirVPN linux x86_64 64-bit
2021-04-26 16:34:48 Frame=512/2048/512 mssfix-ctrl=1250
2021-04-26 16:34:48 UNUSED OPTIONS
6 [resolv-retry] [infinite]
7 [nobind]
8 [persist-key]
9 [persist-tun]
10 [auth-nocache]
11 [verb] [3]
12 [explicit-exit-notify] [5]
2021-04-26 16:34:48 EVENT: RESOLVE
2021-04-26 16:34:48 Local IPv4 address 192.168.0.6
2021-04-26 16:34:48 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
2021-04-26 16:34:48 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
2021-04-26 16:34:48 Local IPv6 address fe80::154d:4265:bdaf:3d0
2021-04-26 16:34:48 Local interface enp3s0
2021-04-26 16:34:48 Setting up network filter and lock
2021-04-26 16:34:48 Allowing system DNS 127.0.0.1 to pass through the network filter
2021-04-26 16:34:58 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:34:58 Network filter and lock successfully activated
2021-04-26 16:35:08 DNS pre-resolve error on gb3.ipv6.vpn.airdns.org: Host not found (authoritative)
2021-04-26 16:35:08 ERROR: RESOLVE_ERROR
2021-04-26 16:35:08 EVENT: RESOLVE
2021-04-26 16:35:08 Local IPv4 address 192.168.0.6
2021-04-26 16:35:08 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
2021-04-26 16:35:08 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
2021-04-26 16:35:08 Local IPv6 address fe80::154d:4265:bdaf:3d0
2021-04-26 16:35:08 Local interface enp3s0
2021-04-26 16:35:08 Setting up network filter and lock
2021-04-26 16:35:08 Allowing system DNS 127.0.0.1 to pass through the network filter
2021-04-26 16:35:18 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:35:18 Network filter and lock successfully activated
2021-04-26 16:35:18 Server poll timeout, trying next remote entry...
2021-04-26 16:35:18 EVENT: RECONNECTING
2021-04-26 16:35:18 ERROR: N_RECONNECT
2021-04-26 16:35:18 EVENT: RESOLVE
2021-04-26 16:35:28 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:35:28 Network filter and lock successfully activated
2021-04-26 16:35:28 Server poll timeout, trying next remote entry...
2021-04-26 16:35:28 EVENT: RECONNECTING
2021-04-26 16:35:28 ERROR: N_RECONNECT
2021-04-26 16:35:28 EVENT: RESOLVE
2021-04-26 16:35:38 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:35:38 Network filter and lock successfully activated
2021-04-26 16:35:38 Server poll timeout, trying next remote entry...
2021-04-26 16:35:38 EVENT: RECONNECTING
2021-04-26 16:35:38 ERROR: N_RECONNECT
2021-04-26 16:35:38 EVENT: RESOLVE
2021-04-26 16:35:47 ----------------------
2021-04-26 16:35:47 Connected to OpenVPN server 
2021-04-26 16:35:47 Connection time: 00:01:01
2021-04-26 16:35:47 Transferred data: In 0 bytes, Out 0 bytes
2021-04-26 16:35:47 Current rate: In 0 bit/s, Out 0 bit/s
2021-04-26 16:35:47 Maximum rate: In 0 bit/s, Out 0 bit/s
2021-04-26 16:35:48 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:35:48 Network filter and lock successfully activated
2021-04-26 16:35:48 Server poll timeout, trying next remote entry...
2021-04-26 16:35:48 EVENT: RECONNECTING
2021-04-26 16:35:48 ERROR: N_RECONNECT
2021-04-26 16:35:48 EVENT: RESOLVE
2021-04-26 16:35:58 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:35:58 Network filter and lock successfully activated
2021-04-26 16:35:58 Server poll timeout, trying next remote entry...
2021-04-26 16:35:58 EVENT: RECONNECTING
2021-04-26 16:35:58 ERROR: N_RECONNECT
2021-04-26 16:35:58 EVENT: RESOLVE
2021-04-26 16:36:08 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:36:08 Network filter and lock successfully activated
2021-04-26 16:36:08 Server poll timeout, trying next remote entry...
2021-04-26 16:36:08 EVENT: RECONNECTING
2021-04-26 16:36:08 ERROR: N_RECONNECT
2021-04-26 16:36:08 EVENT: RESOLVE
2021-04-26 16:36:18 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
2021-04-26 16:36:18 Network filter and lock successfully activated
2021-04-26 16:36:18 Server poll timeout, trying next remote entry...
2021-04-26 16:36:18 EVENT: RECONNECTING
2021-04-26 16:36:18 ERROR: N_RECONNECT
2021-04-26 16:36:18 EVENT: RESOLVE
^C2021-04-26 16:36:27 Caught SIGTERM signal. Terminating.
2021-04-26 16:36:27 Bluetit is connected to VPN
2021-04-26 16:36:27 Requesting VPN connection termination to Bluetit
2021-04-26 16:36:28 Network filter and lock successfully activated
2021-04-26 16:36:28 EVENT: DISCONNECTED
2021-04-26 16:36:28 Network filter successfully restored
2021-04-26 16:36:28 Bluetit session terminated



AFTER  SYSTEMCTL RESTART


peter@desktop:~/Desktop/VPN$ systemctl stop bluetit.service 
peter@desktop:~/Desktop/VPN$ systemctl start bluetit.service 
peter@desktop:~/Desktop/VPN$ systemctl status bluetit.service 
peter@desktop:~/Desktop/VPN$ goldcrest --air-connect --air-country GB
2021-04-26 16:37:56 Reading run control directives from file /home/peter/.config/goldcrest.rc
Goldcrest 1.1.0 RC3 - 16 April 2021

2021-04-26 16:37:56 Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
2021-04-26 16:37:56 OpenVPN core 3.7 AirVPN linux x86_64 64-bit
2021-04-26 16:37:56 Bluetit is ready
2021-04-26 16:37:56 Bluetit options successfully reset
2021-04-26 16:37:56 Bluetit successfully set to command line options
2021-04-26 16:37:56 Requesting AirVPN connection to Bluetit
2021-04-26 16:37:57 Network filter and lock are using nftables
2021-04-26 16:37:57 Successfully loaded kernel module nf_tables
2021-04-26 16:37:57 Network filter successfully initialized
2021-04-26 16:37:57 Session network filter and lock successfully enabled
2021-04-26 16:37:57 AirVPN bootstrap servers are now allowed to pass through the network filter
2021-04-26 16:37:57 Logging in AirVPN user pjnsmb
2021-04-26 16:37:57 AirVPN user pjnsmb successfully logged in
2021-04-26 16:37:57 Selected user key: DESKTOP
2021-04-26 16:37:57 Starting connection to currently best AirVPN server in United Kingdom
2021-04-26 16:37:57 Starting VPN Connection
2021-04-26 16:37:57 TUN persistence is enabled.
2021-04-26 16:37:57 CIPHER OVERRIDE: CHACHA20-POLY1305
2021-04-26 16:37:57 Network lock set to 'nftables' by Bluetit policy
2021-04-26 16:37:57 Ignore DNS push is enabled by Bluetit policy
2021-04-26 16:37:57 OpenVPN core 3.7 AirVPN linux x86_64 64-bit
2021-04-26 16:37:57 Frame=512/2048/512 mssfix-ctrl=1250
2021-04-26 16:37:57 UNUSED OPTIONS
6 [resolv-retry] [infinite]
7 [nobind]
8 [persist-key]
9 [persist-tun]
10 [auth-nocache]
11 [verb] [3]
12 [explicit-exit-notify] [5]
2021-04-26 16:37:57 EVENT: RESOLVE
2021-04-26 16:37:57 Local IPv4 address 192.168.0.6
2021-04-26 16:37:57 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
2021-04-26 16:37:57 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
2021-04-26 16:37:57 Local IPv6 address fe80::154d:4265:bdaf:3d0
2021-04-26 16:37:57 Local interface enp3s0
2021-04-26 16:37:57 Setting up network filter and lock
2021-04-26 16:37:57 Allowing system DNS 127.0.0.1 to pass through the network filter
2021-04-26 16:37:57 Resolved server gb3.ipv6.vpn.airdns.org into IPv6 2a01:a500:320:c874:a667:c458:c21d:ccd4
2021-04-26 16:37:57 Adding IPv6 server 2a01:a500:320:c874:a667:c458:c21d:ccd4 to network filter
2021-04-26 16:37:57 Network filter and lock successfully activated
2021-04-26 16:37:57 Contacting [2a01:a500:320:c874:a667:c458:c21d:ccd4]:443 via UDP
2021-04-26 16:37:57 EVENT: WAIT
2021-04-26 16:37:57 net_route_best_gw query IPv6: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128
2021-04-26 16:37:57 sitnl_route_best_gw result: via fe80::3e89:94ff:fef6:ead1 dev enp3s0
2021-04-26 16:37:57 net_route_add: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0
2021-04-26 16:37:57 Connecting to [gb3.ipv6.vpn.airdns.org]:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via UDPv6
2021-04-26 16:37:57 EVENT: CONNECTING
2021-04-26 16:37:57 Tunnel Options:V4,dev-type tun,link-mtu 1522,tun-mtu 1500,proto UDPv4,comp-lzo,cipher CHACHA20-POLY1305,auth [null-digest],keysize 256,key-method 2,tls-client
2021-04-26 16:37:57 Peer Info:
IV_VER=3.7 AirVPN
IV_PLAT=linux
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=CHACHA20-POLY1305
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_COMP_STUBv2=1
IV_IPv6=1
UV_IPV6=yes
IV_GUI_VER=Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3
IV_SSL=OpenSSL 1.1.0l  10 Sep 2019

2021-04-26 16:37:57 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1
2021-04-26 16:37:57 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Betelgeuse/emailAddress=info@airvpn.org, signature: RSA-SHA512
2021-04-26 16:37:57 SSL Handshake: peer certificate: CN=Betelgeuse, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD

2021-04-26 16:37:57 Session is ACTIVE
2021-04-26 16:37:57 EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future
2021-04-26 16:37:57 EVENT: GET_CONFIG
2021-04-26 16:37:57 Sending PUSH_REQUEST to server...
2021-04-26 16:37:57 OPTIONS:
0 [comp-lzo] [no]
1 [redirect-gateway] [ipv6] [def1] [bypass-dhcp]
2 [dhcp-option] [DNS] [10.11.206.1]
3 [dhcp-option] [DNS6] [fde6:7a:7d20:7ce::1]
4 [tun-ipv6]
5 [route-gateway] [10.11.206.1]
6 [topology] [subnet]
7 [ping] [10]
8 [ping-restart] [60]
9 [ifconfig-ipv6] [fde6:7a:7d20:7ce::10a2/64] [fde6:7a:7d20:7ce::1]
10 [ifconfig] [10.11.206.164] [255.255.255.0]
11 [peer-id] [4]
12 [cipher] [CHACHA20-POLY1305]

2021-04-26 16:37:57 PROTOCOL OPTIONS:
  cipher: CHACHA20-POLY1305
  digest: NONE
  ncp enabled: no
  key-derivation: OpenVPN PRF
  compress: LZO_STUB
  peer ID: 4
  control channel: tls-crypt enabled
2021-04-26 16:37:57 EVENT: ASSIGN_IP
2021-04-26 16:37:57 WARNING: ignoring server DNS push request for address 10.11.206.1
2021-04-26 16:37:57 WARNING: ignoring server DNS push request for address fde6:7a:7d20:7ce::1
2021-04-26 16:37:57 net_iface_mtu_set: mtu 1500 for tun0
2021-04-26 16:37:57 net_iface_up: set tun0 up
2021-04-26 16:37:57 net_addr_add: 10.11.206.164/24 brd 10.11.206.255 dev tun0
2021-04-26 16:37:57 net_addr_add: fde6:7a:7d20:7ce::10a2/64 dev tun0
2021-04-26 16:37:57 net_route_add: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
2021-04-26 16:37:57 net_route_add: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
2021-04-26 16:37:57 net_route_add: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
2021-04-26 16:37:57 net_route_add: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
2021-04-26 16:37:57 TunPersist: saving tun context:
Session Name: gb3.ipv6.vpn.airdns.org
Layer: OSI_LAYER_3
Remote Address: 2a01:a500:320:c874:a667:c458:c21d:ccd4 [IPv6]
Tunnel Addresses:
  10.11.206.164/24 -> 10.11.206.1
  fde6:7a:7d20:7ce::10a2/64 -> fde6:7a:7d20:7ce::1 [IPv6]
Reroute Gateway: IPv4=1 IPv6=1 flags=[ ENABLE REROUTE_GW DEF1 BYPASS_DHCP IPv4 IPv6 ]
Block IPv6: no
Add Routes:
Exclude Routes:
DNS Servers:
  10.11.206.1
  fde6:7a:7d20:7ce::1 [IPv6]
Search Domains:

2021-04-26 16:37:57 Connected via tun
2021-04-26 16:37:57 LZO-ASYM init swap=0 asym=1
2021-04-26 16:37:57 Comp-stub init swap=0
2021-04-26 16:37:57 EVENT: CONNECTED gb3.ipv6.vpn.airdns.org:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via /UDPv6 on tun/10.11.206.164/fde6:7a:7d20:7ce::10a2 gw=[10.11.206.1/fde6:7a:7d20:7ce::1]
2021-04-26 16:37:57 Connected to currently best AirVPN server in United Kingdom
2021-04-26 16:38:56 ----------------------
2021-04-26 16:38:56 Connected to AirVPN server Betelgeuse (Maidenhead, United Kingdom)
2021-04-26 16:38:56 Users 71 - Load 13% - Bandwidth 135.70 Mbit/s - Max 1 Gbit/s
2021-04-26 16:38:56 Connection time: 00:01:01
2021-04-26 16:38:56 Transferred data: In 24.02 MB, Out 1.37 MB
2021-04-26 16:38:56 Current rate: In 124.38 Kbit/s, Out 42.67 Kbit/s
2021-04-26 16:38:56 Maximum rate: In 4.76 Mbit/s, Out 222.14 Kbit/s


JOURNALCTL LOG


peter@desktop:~/Desktop/VPN$ journalctl | grep bluetit
Apr 26 16:27:47 desktop bluetit[3142]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 26 16:27:47 desktop bluetit[3142]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 26 16:27:47 desktop bluetit[3142]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 26 16:27:47 desktop bluetit[3175]: Bluetit daemon started with PID 3175
Apr 26 16:27:47 desktop bluetit[3175]: External network is reachable via gateway 192.168.0.1 through interface enp3s0
Apr 26 16:27:47 desktop bluetit[3175]: Successfully connected to D-Bus
Apr 26 16:27:47 desktop bluetit[3175]: Reading run control directives from file /etc/airvpn/bluetit.rc
Apr 26 16:27:47 desktop bluetit[3175]: IPv6 is available in this system
Apr 26 16:27:47 desktop bluetit[3175]: System country set to GB by Bluetit policy.
Apr 26 16:27:47 desktop bluetit[3175]: Bluetit successfully initialized and ready
Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest updater thread started
Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest update interval is 15 minutes
Apr 26 16:27:47 desktop bluetit[3175]: Updating AirVPN Manifest
Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest successfully retrieved from server
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "version"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "openvpn_info"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "bluetit_status -> Bluetit is ready"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "reset_bluetit_options -> Bluetit options successfully reset"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-ipv6 (V) -> on"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-6to4 (B) -> on"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-key (F) -> DESKTOP"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: cipher (C) -> CHACHA20-POLY1305"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: proto (p) -> udp"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: network-lock (N) -> nftables"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: ignore-dns-push (i)"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: ipv6 (6) -> yes"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-user (U) -> pjnsmb"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-password (P) -> ************"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-connect (O)"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-country (Z) -> GB"
Apr 26 16:34:47 desktop bluetit[3175]: Requested method "airvpn_start_connection"
Apr 26 16:34:47 desktop bluetit[3175]: OpenVPN3 connection successfully started
Apr 26 16:34:48 desktop bluetit[3175]: Network filter and lock are using nftables
Apr 26 16:34:48 desktop bluetit[3175]: Successfully loaded kernel module nf_tables
Apr 26 16:34:48 desktop bluetit[3175]: Network filter successfully initialized
Apr 26 16:34:48 desktop bluetit[3175]: Session network filter and lock successfully enabled
Apr 26 16:34:48 desktop bluetit[3175]: AirVPN bootstrap servers are now allowed to pass through the network filter
Apr 26 16:34:48 desktop bluetit[3175]: Logging in AirVPN user pjnsmb
Apr 26 16:34:48 desktop bluetit[3175]: AirVPN user pjnsmb successfully logged in
Apr 26 16:34:48 desktop bluetit[3175]: Selected user key: DESKTOP
Apr 26 16:34:48 desktop bluetit[3175]: Starting connection to currently best AirVPN server in United Kingdom
Apr 26 16:34:48 desktop bluetit[3175]: Starting VPN Connection
Apr 26 16:34:48 desktop bluetit[3175]: OpenVPN3 client successfully created and initialized.
Apr 26 16:34:48 desktop bluetit[3175]: TUN persistence is enabled.
Apr 26 16:34:48 desktop bluetit[3175]: CIPHER OVERRIDE: CHACHA20-POLY1305
Apr 26 16:34:48 desktop bluetit[3175]: Successfully set OpenVPN3 client configuration
Apr 26 16:34:48 desktop bluetit[3175]: Network lock set to 'nftables' by Bluetit policy
Apr 26 16:34:48 desktop bluetit[3175]: Ignore DNS push is enabled by Bluetit policy
Apr 26 16:34:48 desktop bluetit[3175]: Starting OpenVPN3 connection thread
Apr 26 16:34:48 desktop bluetit[3175]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 26 16:34:48 desktop bluetit[3175]: Connection statistics updater thread started
Apr 26 16:34:48 desktop bluetit[3175]: Frame=512/2048/512 mssfix-ctrl=1250
Apr 26 16:34:48 desktop bluetit[3175]: UNUSED OPTIONS
Apr 26 16:34:48 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:34:48 desktop bluetit[3175]: Local IPv4 address 192.168.0.6
Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address fe80::154d:4265:bdaf:3d0
Apr 26 16:34:48 desktop bluetit[3175]: Local interface enp3s0
Apr 26 16:34:48 desktop bluetit[3175]: Setting up network filter and lock
Apr 26 16:34:48 desktop bluetit[3175]: Allowing system DNS 127.0.0.1 to pass through the network filter
Apr 26 16:34:58 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:34:58 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:08 desktop bluetit[3175]: DNS pre-resolve error on gb3.ipv6.vpn.airdns.org: Host not found (authoritative)
Apr 26 16:35:08 desktop bluetit[3175]: ERROR: RESOLVE_ERROR
Apr 26 16:35:08 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:35:08 desktop bluetit[3175]: Local IPv4 address 192.168.0.6
Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address fe80::154d:4265:bdaf:3d0
Apr 26 16:35:08 desktop bluetit[3175]: Local interface enp3s0
Apr 26 16:35:08 desktop bluetit[3175]: Setting up network filter and lock
Apr 26 16:35:08 desktop bluetit[3175]: Allowing system DNS 127.0.0.1 to pass through the network filter
Apr 26 16:35:18 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:35:18 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:18 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:35:18 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:35:18 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:35:18 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:35:28 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:35:28 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:28 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:35:28 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:35:28 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:35:28 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:35:38 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:35:38 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:38 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:35:38 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:35:38 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:35:38 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:35:48 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:35:48 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:48 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:35:48 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:35:48 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:35:48 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:35:58 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:35:58 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:35:58 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:35:58 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:35:58 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:35:58 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:36:08 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:36:08 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:36:08 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:36:08 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:36:08 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:36:08 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:36:18 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:36:18 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:36:18 desktop bluetit[3175]: Server poll timeout, trying next remote entry...
Apr 26 16:36:18 desktop bluetit[3175]: EVENT: RECONNECTING
Apr 26 16:36:18 desktop bluetit[3175]: ERROR: N_RECONNECT
Apr 26 16:36:18 desktop bluetit[3175]: EVENT: RESOLVE
Apr 26 16:36:27 desktop bluetit[3175]: Requested method "bluetit_status -> Bluetit is connected to VPN"
Apr 26 16:36:27 desktop bluetit[3175]: Requested method "stop_connection"
Apr 26 16:36:27 desktop bluetit[3175]: Stopping OpenVPN3 connection thread
Apr 26 16:36:27 desktop bluetit[3175]: Connection statistics updater thread finished
Apr 26 16:36:28 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known)
Apr 26 16:36:28 desktop bluetit[3175]: Network filter and lock successfully activated
Apr 26 16:36:28 desktop bluetit[3175]: EVENT: DISCONNECTED
Apr 26 16:36:28 desktop bluetit[3175]: Network filter successfully restored
Apr 26 16:36:28 desktop bluetit[3175]: OpenVPN3 connection thread finished
Apr 26 16:36:28 desktop bluetit[3175]: Logging out AirVPN user pjnsmb
Apr 26 16:36:28 desktop bluetit[3175]: OpenVPN3 connection thread successfully terminated
Apr 26 16:36:28 desktop dbus-daemon[559]: [system] Rejected send message, 3 matched rules; type="error", sender=":1.72" (uid=1000 pid=30520 comm="goldcrest --air-connect --air-country GB ") interface="(unset)" member="(unset)" error name="org.freedesktop.DBus.Error.UnknownMethod" requested_reply="0" destination=":1.66" (uid=0 pid=3175 comm="/sbin/bluetit ")
Apr 26 16:36:51 desktop polkitd(authority=local)[645]: Operator of unix-session:1 successfully authenticated as unix-user:peter to gain TEMPORARY authorization for action org.freedesktop.systemd1.manage-units for system-bus-name::1.74 [systemctl stop bluetit.service] (owned by unix-user:peter)
Apr 26 16:36:51 desktop bluetit[3175]: Received SIGTERM signal. Terminating Bluetit.
Apr 26 16:36:51 desktop bluetit[3175]: AirVPN Manifest updater thread finished
Apr 26 16:36:51 desktop systemd[1]: bluetit.service: Succeeded.
Apr 26 16:37:02 desktop polkitd(authority=local)[645]: Operator of unix-session:1 successfully authenticated as unix-user:peter to gain TEMPORARY authorization for action org.freedesktop.systemd1.manage-units for system-bus-name::1.77 [systemctl start bluetit.service] (owned by unix-user:peter)
Apr 26 16:37:02 desktop bluetit[39641]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021
Apr 26 16:37:02 desktop bluetit[39641]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 26 16:37:02 desktop bluetit[39641]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved.
Apr 26 16:37:02 desktop bluetit[39643]: Bluetit daemon started with PID 39643
Apr 26 16:37:02 desktop bluetit[39643]: External network is reachable via gateway 192.168.0.1 through interface enp3s0
Apr 26 16:37:02 desktop bluetit[39643]: Successfully connected to D-Bus
Apr 26 16:37:02 desktop bluetit[39643]: Reading run control directives from file /etc/airvpn/bluetit.rc
Apr 26 16:37:02 desktop bluetit[39643]: IPv6 is available in this system
Apr 26 16:37:02 desktop bluetit[39643]: System country set to GB by Bluetit policy.
Apr 26 16:37:02 desktop bluetit[39643]: Bluetit successfully initialized and ready
Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest updater thread started
Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest update interval is 15 minutes
Apr 26 16:37:02 desktop bluetit[39643]: Updating AirVPN Manifest
Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest successfully retrieved from server
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "version"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "openvpn_info"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "bluetit_status -> Bluetit is ready"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "reset_bluetit_options -> Bluetit options successfully reset"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-ipv6 (V) -> on"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-6to4 (B) -> on"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-key (F) -> DESKTOP"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: cipher (C) -> CHACHA20-POLY1305"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: proto (p) -> udp"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: network-lock (N) -> nftables"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: ignore-dns-push (i)"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: ipv6 (6) -> yes"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-user (U) -> pjnsmb"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-password (P) -> ************"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-connect (O)"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-country (Z) -> GB"
Apr 26 16:37:56 desktop bluetit[39643]: Requested method "airvpn_start_connection"
Apr 26 16:37:56 desktop bluetit[39643]: OpenVPN3 connection successfully started
Apr 26 16:37:56 desktop bluetit[39643]: Network filter and lock are using nftables
Apr 26 16:37:56 desktop bluetit[39643]: Successfully loaded kernel module nf_tables
Apr 26 16:37:56 desktop bluetit[39643]: Network filter successfully initialized
Apr 26 16:37:56 desktop bluetit[39643]: Session network filter and lock successfully enabled
Apr 26 16:37:56 desktop bluetit[39643]: AirVPN bootstrap servers are now allowed to pass through the network filter
Apr 26 16:37:56 desktop bluetit[39643]: Logging in AirVPN user pjnsmb
Apr 26 16:37:57 desktop bluetit[39643]: AirVPN user pjnsmb successfully logged in
Apr 26 16:37:57 desktop bluetit[39643]: Selected user key: DESKTOP
Apr 26 16:37:57 desktop bluetit[39643]: Starting connection to currently best AirVPN server in United Kingdom
Apr 26 16:37:57 desktop bluetit[39643]: Starting VPN Connection
Apr 26 16:37:57 desktop bluetit[39643]: OpenVPN3 client successfully created and initialized.
Apr 26 16:37:57 desktop bluetit[39643]: TUN persistence is enabled.
Apr 26 16:37:57 desktop bluetit[39643]: CIPHER OVERRIDE: CHACHA20-POLY1305
Apr 26 16:37:57 desktop bluetit[39643]: Successfully set OpenVPN3 client configuration
Apr 26 16:37:57 desktop bluetit[39643]: Network lock set to 'nftables' by Bluetit policy
Apr 26 16:37:57 desktop bluetit[39643]: Ignore DNS push is enabled by Bluetit policy
Apr 26 16:37:57 desktop bluetit[39643]: Starting OpenVPN3 connection thread
Apr 26 16:37:57 desktop bluetit[39643]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit
Apr 26 16:37:57 desktop bluetit[39643]: Connection statistics updater thread started
Apr 26 16:37:57 desktop bluetit[39643]: Frame=512/2048/512 mssfix-ctrl=1250
Apr 26 16:37:57 desktop bluetit[39643]: UNUSED OPTIONS
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: RESOLVE
Apr 26 16:37:57 desktop bluetit[39643]: Local IPv4 address 192.168.0.6
Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120
Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c
Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address fe80::154d:4265:bdaf:3d0
Apr 26 16:37:57 desktop bluetit[39643]: Local interface enp3s0
Apr 26 16:37:57 desktop bluetit[39643]: Setting up network filter and lock
Apr 26 16:37:57 desktop bluetit[39643]: Allowing system DNS 127.0.0.1 to pass through the network filter
Apr 26 16:37:57 desktop bluetit[39643]: Resolved server gb3.ipv6.vpn.airdns.org into IPv6 2a01:a500:320:c874:a667:c458:c21d:ccd4
Apr 26 16:37:57 desktop bluetit[39643]: Adding IPv6 server 2a01:a500:320:c874:a667:c458:c21d:ccd4 to network filter
Apr 26 16:37:57 desktop bluetit[39643]: Network filter and lock successfully activated
Apr 26 16:37:57 desktop bluetit[39643]: Contacting [2a01:a500:320:c874:a667:c458:c21d:ccd4]:443 via UDP
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: WAIT
Apr 26 16:37:57 desktop bluetit[39643]: net_route_best_gw query IPv6: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128
Apr 26 16:37:57 desktop bluetit[39643]: sitnl_route_best_gw result: via fe80::3e89:94ff:fef6:ead1 dev enp3s0
Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0
Apr 26 16:37:57 desktop bluetit[39643]: Connecting to [gb3.ipv6.vpn.airdns.org]:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via UDPv6
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: CONNECTING
Apr 26 16:37:57 desktop bluetit[39643]: Tunnel Options:V4,dev-type tun,link-mtu 1522,tun-mtu 1500,proto UDPv4,comp-lzo,cipher CHACHA20-POLY1305,auth [null-digest],keysize 256,key-method 2,tls-client
Apr 26 16:37:57 desktop bluetit[39643]: Peer Info:
Apr 26 16:37:57 desktop bluetit[39643]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1
Apr 26 16:37:57 desktop bluetit[39643]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Betelgeuse/emailAddress=info@airvpn.org, signature: RSA-SHA512
Apr 26 16:37:57 desktop bluetit[39643]: SSL Handshake: peer certificate: CN=Betelgeuse, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any      Au=any  Enc=CHACHA20/POLY1305(256) Mac=AEAD
Apr 26 16:37:57 desktop bluetit[39643]: Session is ACTIVE
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: GET_CONFIG
Apr 26 16:37:57 desktop bluetit[39643]: Sending PUSH_REQUEST to server...
Apr 26 16:37:57 desktop bluetit[39643]: OPTIONS:
Apr 26 16:37:57 desktop bluetit[39643]: PROTOCOL OPTIONS:
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: ASSIGN_IP
Apr 26 16:37:57 desktop bluetit[39643]: WARNING: ignoring server DNS push request for address 10.11.206.1
Apr 26 16:37:57 desktop bluetit[39643]: WARNING: ignoring server DNS push request for address fde6:7a:7d20:7ce::1
Apr 26 16:37:57 desktop bluetit[39643]: net_iface_mtu_set: mtu 1500 for tun0
Apr 26 16:37:57 desktop bluetit[39643]: net_iface_up: set tun0 up
Apr 26 16:37:57 desktop bluetit[39643]: net_addr_add: 10.11.206.164/24 brd 10.11.206.255 dev tun0
Apr 26 16:37:57 desktop bluetit[39643]: net_addr_add: fde6:7a:7d20:7ce::10a2/64 dev tun0
Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
Apr 26 16:37:57 desktop bluetit[39643]: TunPersist: saving tun context:
Apr 26 16:37:57 desktop bluetit[39643]: Connected via tun
Apr 26 16:37:57 desktop bluetit[39643]: LZO-ASYM init swap=0 asym=1
Apr 26 16:37:57 desktop bluetit[39643]: Comp-stub init swap=0
Apr 26 16:37:57 desktop bluetit[39643]: EVENT: CONNECTED gb3.ipv6.vpn.airdns.org:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via /UDPv6 on tun/10.11.206.164/fde6:7a:7d20:7ce::10a2 gw=[10.11.206.1/fde6:7a:7d20:7ce::1]
Apr 26 16:37:57 desktop bluetit[39643]: Connected to currently best AirVPN server in United Kingdom
Apr 26 16:46:46 desktop bluetit[39643]: Requested method "bluetit_status -> Bluetit is connected to VPN"
Apr 26 16:46:46 desktop bluetit[39643]: Requested method "stop_connection"
Apr 26 16:46:46 desktop bluetit[39643]: Stopping OpenVPN3 connection thread
Apr 26 16:46:46 desktop bluetit[39643]: Connection statistics updater thread finished
Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0
Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0
Apr 26 16:46:46 desktop bluetit[39643]: net_addr_del: fde6:7a:7d20:7ce::10a2/64 dev tun0
Apr 26 16:46:46 desktop bluetit[39643]: net_addr_del: 10.11.206.164/24 dev tun0
Apr 26 16:46:46 desktop bluetit[39643]: net_iface_mtu_set: mtu 1500 for tun0
Apr 26 16:46:46 desktop bluetit[39643]: net_iface_up: set tun0 down
Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0
Apr 26 16:46:46 desktop bluetit[39643]: EVENT: DISCONNECTED
Apr 26 16:46:46 desktop bluetit[39643]: Network filter successfully restored
Apr 26 16:46:46 desktop bluetit[39643]: OpenVPN3 connection thread finished
Apr 26 16:46:46 desktop bluetit[39643]: Logging out AirVPN user pjnsmb
Apr 26 16:46:46 desktop bluetit[39643]: OpenVPN3 connection thread successfully terminated
Apr 26 16:46:46 desktop dbus-daemon[559]: [system] Rejected send message, 3 matched rules; type="error", sender=":1.81" (uid=1000 pid=42227 comm="goldcrest --air-connect --air-country GB ") interface="(unset)" member="(unset)" error name="org.freedesktop.DBus.Error.UnknownMethod" requested_reply="0" destination=":1.79" (uid=0 pid=39643 comm="/sbin/bluetit ")
peter@desktop:~/Desktop/VPN$ 



COPY OF BLUETIT.RC

#
# bluetit runcontrol file
#

# AirVPN bootstrap servers

bootserver                  http://63.33.78.166
bootserver                  http://52.48.66.85
bootserver                  http://54.93.175.114
bootserver                  http://63.33.116.50

# RSA Parameters

rsaexponent                 AQAB
rsamodulus                  wuQXz7eZeEBwaaRsVK8iEHpueXoKyQzW8sr8qMUkZIcKtKv5iseXMrTbcGYGpRXdiqXp7FqrSjPSMDuRGaHfjWgjbnW4PwecmgJSfhkWt4xY8OnIwKkuI2Eo0MAa9lduPOQRKSfa9I1PBogIyEUrf7kSjcoJQgeY66D429m1BDWY3f65c+8HrCQ8qPg1GY+pSxuwp6+2dV7fd1tiKLQEoJg9NeWGW0he/DDkNSe4c8gFfHj3ANYwDhTQijb+VaVZqPmxVJIzLoE1JOom0/P8fKsvpx3cFOtDS4apiI+N7MyVAMcx5Jjk2AQ/tyDiybwwZ32fOqYJVGxs13guOlgI6h77QxqNIq2bGEjzSRZ4tem1uN7F8AoVKPls6yAUQK1cWM5AVu4apoNIFG+svS/2kmn0Nx8DRVDvKD+nOByXgqg01Y6r0Se8Tz9EEBTiEopdlKjmO1wlrmW3iWKeFIwZnHt2PMceJMqziV8rRGh9gUMLLJC9qdXCAS4vf5VVnZ+Pq3SK9pP87hOislIu4/Kcn06cotQChpVnALA83hFW5LXJvc85iloWJkuLGAV3CcAwoSA5CG1Uo2S76MM+GLLkVIqUk1PiJMTTlSw1SlMEflU4bZiZP8di5e2OJI6vOHjdM2oonpPi/Ul5KKmfp+jci+kGMs9+zOyjKFLVIKDE+Vc=

# bootserver                http://52.48.66.85
# rsaexponent                <value>
# rsamodulus                <value>
 #airconnectatboot            country
# networklockpersist        <on|iptables|nftables|pf|off>
 airusername                pjnsmb
 airpassword        XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXxxx
 airkey                    DESKTOP
# airserver                    <airvpn_server_name>
 #aircountry                united kingdom
# airproto                    <udp|tcp>
# airport                    <port>
# aircipher                    <cipher_name>
# manifestupdateinterval    <minutes>
# airwhiteserverlist        <server list>
# airblackserverlist        <server list>
# airwhitecountrylist        <server list>
# airblackcountrylist        <server list>
 country                    GB
 # remote                    <ip|url list>
# proto                        <udp|tcp>
# port                        <port>
# tunpersist                <yes|no>
# cipher                    <cipher_names>
# maxconnretries            <number>
# tcpqueuelimit                <value>
# ncpdisable                <yes|no>
 networklock            nftables
 ignorednspush                yes
# timeout                    <seconds>
# compress                    <yes|no|asym>
# tlsversionmin                <disabled|default|tls_1_x>
# proxyhost                    <ip|url>
# proxyport                    <port>
# proxyusername                <username>
# proxypassword                <password>
# proxybasic                <yes|no>


cheers
pjnsmb



 

 

Share this post


Link to post
Guest
This topic is now closed to further replies.

×
×
  • Create New...