OpenSourcerer 1435 Posted ... Bluetit can only be used by users in the airvpn group. Try: $ sudo -u airvpn goldcrest -O If you want to be able to run goldcrest with your own user, do this, then relog: $ sudo usermod -aG airvpn "$USER" . Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post
colorman 26 Posted ... @Staff Two error's with start goldcrest? 2021-04-21 07:50:25 ERROR: Cannot allow system DNS to pass through network filter 2021-04-21 07:50:30 Resolved server nl3.vpn.airdns.org into IPv4 213.152.162.156 2021-04-21 07:50:30 Adding IPv4 server 213.152.162.156 to network filter 2021-04-21 07:50:30 ERROR: Cannot activate network filter and lock 2021-04-21 07:50:32 Contacting 213.152.162.156:443 via UDP 2021-04-21 07:50:32 EVENT: WAIT Share this post Link to post
Staff 9973 Posted ... @colorman Hello! Thank you for your tests once again. As usual, can you please send us the complete Bluetit log (output of the command sudo journalctl | grep bluetit) printed after the problem has occurred? Can you also tell us the current system firewall when the problem occurs? Kind regards Share this post Link to post
colorman 26 Posted ... 45 minutes ago, Staff said: @colorman Hello! Thank you for your tests once again. As usual, can you please send us the complete Bluetit log (output of the command sudo journalctl | grep bluetit) printed after the problem has occurred? Can you also tell us the current system firewall when the problem occurs? Kind regards I use opensuse leap 15.2 firewalld0.5.5-lp152.6.3 localhost:~ # journalctl | grep bluetit Apr 21 07:29:57 localhost bluetit[2122]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 21 07:29:57 localhost bluetit[2122]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 21 07:29:57 localhost bluetit[2122]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 21 07:29:57 localhost bluetit[2127]: Bluetit daemon started with PID 2127 Apr 21 07:29:57 localhost bluetit[2127]: External network is reachable via gateway 192.168.178.1 through interface eth0 Apr 21 07:29:57 localhost bluetit[2127]: Successfully connected to D-Bus Apr 21 07:29:57 localhost bluetit[2127]: Reading run control directives from file /etc/airvpn/bluetit.rc Apr 21 07:29:57 localhost bluetit[2127]: IPv6 is available in this system Apr 21 07:29:57 localhost bluetit[2127]: Bluetit successfully initialized and ready Apr 21 07:29:57 localhost bluetit[2127]: Requesting network IP and country to AirVPN ipleak.net via secure connection Apr 21 07:29:57 localhost bluetit[2127]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access r ights?) Apr 21 07:29:57 localhost bluetit[2127]: AirVPN Manifest updater thread started Apr 21 07:29:57 localhost bluetit[2127]: AirVPN Manifest update interval is 15 minutes Apr 21 07:29:57 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 07:29:58 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 07:45:00 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 07:45:00 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 07:50:25 localhost bluetit[2127]: Requested method "version" Apr 21 07:50:25 localhost bluetit[2127]: Requested method "openvpn_info" Apr 21 07:50:25 localhost bluetit[2127]: Requested method "bluetit_status -> Bluetit is ready" Apr 21 07:50:25 localhost bluetit[2127]: Requested method "reset_bluetit_options -> Bluetit options successfully reset" Apr 21 07:50:25 localhost bluetit[2127]: Requested method "set_openvpn_profile -> OK" Apr 21 07:50:25 localhost bluetit[2127]: Requested method "start_connection" Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN3 connection successfully started Apr 21 07:50:25 localhost bluetit[2127]: Network filter and lock are using iptables-legacy Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_filter Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_nat Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_mangle Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_security Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module iptable_raw Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_filter Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_nat Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_mangle Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_security Apr 21 07:50:25 localhost bluetit[2127]: Successfully loaded kernel module ip6table_raw Apr 21 07:50:25 localhost bluetit[2127]: WARNING: firewalld is running on this system and may interfere with network filter and lock Apr 21 07:50:25 localhost bluetit[2127]: Network filter successfully initialized Apr 21 07:50:25 localhost bluetit[2127]: Starting VPN Connection Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN3 client successfully created and initialized. Apr 21 07:50:25 localhost bluetit[2127]: TUN persistence is enabled. Apr 21 07:50:25 localhost bluetit[2127]: Successfully set OpenVPN3 client configuration Apr 21 07:50:25 localhost bluetit[2127]: Starting OpenVPN3 connection thread Apr 21 07:50:25 localhost bluetit[2127]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 21 07:50:25 localhost bluetit[2127]: Connection statistics updater thread started Apr 21 07:50:25 localhost bluetit[2127]: Frame=512/2048/512 mssfix-ctrl=1250 Apr 21 07:50:25 localhost bluetit[2127]: UNUSED OPTIONS Apr 21 07:50:25 localhost bluetit[2127]: EVENT: RESOLVE Apr 21 07:50:25 localhost bluetit[2127]: Local IPv4 address 192.168.178.11 Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address 2001:1c04:509:4000:7d23:1c57:30a4:830 Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address 2001:1c04:509:4000:aaa1:59ff:fe2f:523e Apr 21 07:50:25 localhost bluetit[2127]: Local IPv6 address fe80::aaa1:59ff:fe2f:523e Apr 21 07:50:25 localhost bluetit[2127]: Local interface eth0 Apr 21 07:50:25 localhost bluetit[2127]: Setting up network filter and lock Apr 21 07:50:25 localhost bluetit[2127]: Allowing system DNS 84.116.46.20 to pass through the network filter Apr 21 07:50:25 localhost bluetit[2127]: Allowing system DNS 84.116.46.21 to pass through the network filter Apr 21 07:50:25 localhost bluetit[2127]: ERROR: Cannot allow system DNS to pass through network filter Apr 21 07:50:30 localhost bluetit[2127]: Resolved server nl3.vpn.airdns.org into IPv4 213.152.162.156 Apr 21 07:50:30 localhost bluetit[2127]: Adding IPv4 server 213.152.162.156 to network filter Apr 21 07:50:30 localhost bluetit[2127]: ERROR: Cannot activate network filter and lock Apr 21 07:50:32 localhost bluetit[2127]: Contacting 213.152.162.156:443 via UDP Apr 21 07:50:32 localhost bluetit[2127]: EVENT: WAIT Apr 21 07:50:32 localhost bluetit[2127]: net_route_best_gw query IPv4: 213.152.162.156/32 Apr 21 07:50:32 localhost bluetit[2127]: sitnl_route_best_gw result: via 192.168.178.1 dev eth0 Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 213.152.162.156/32 via 192.168.178.1 dev eth0 table 0 metric 0 Apr 21 07:50:32 localhost bluetit[2127]: Connecting to [nl3.vpn.airdns.org]:443 (213.152.162.156) via UDPv4 Apr 21 07:50:32 localhost bluetit[2127]: EVENT: CONNECTING Apr 21 07:50:32 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC ,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 07:50:32 localhost bluetit[2127]: Peer Info: Apr 21 07:50:32 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn. org, signature: RSA-SHA1 Apr 21 07:50:32 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s ignature: RSA-SHA512 Apr 21 07:50:32 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T LSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 07:50:32 localhost bluetit[2127]: Session is ACTIVE Apr 21 07:50:32 localhost bluetit[2127]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future Apr 21 07:50:32 localhost bluetit[2127]: EVENT: GET_CONFIG Apr 21 07:50:32 localhost bluetit[2127]: Sending PUSH_REQUEST to server... Apr 21 07:50:32 localhost bluetit[2127]: OPTIONS: Apr 21 07:50:32 localhost bluetit[2127]: PROTOCOL OPTIONS: Apr 21 07:50:32 localhost bluetit[2127]: EVENT: ASSIGN_IP Apr 21 07:50:32 localhost bluetit[2127]: VPN Server has pushed IPv4 DNS server 10.24.146.1 Apr 21 07:50:32 localhost bluetit[2127]: Setting pushed IPv4 DNS server 10.24.146.1 in resolv.conf Apr 21 07:50:32 localhost bluetit[2127]: VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1492::1 Apr 21 07:50:32 localhost bluetit[2127]: Setting pushed IPv6 DNS server fde6:7a:7d20:1492::1 in resolv.conf Apr 21 07:50:32 localhost bluetit[2127]: net_iface_mtu_set: mtu 1500 for tun0 Apr 21 07:50:32 localhost bluetit[2127]: net_iface_up: set tun0 up Apr 21 07:50:32 localhost bluetit[2127]: net_addr_add: 10.24.146.221/24 brd 10.24.146.255 dev tun0 Apr 21 07:50:32 localhost bluetit[2127]: net_addr_add: fde6:7a:7d20:1492::10db/64 dev tun0 Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 0.0.0.0/1 via 10.24.146.1 dev tun0 table 0 metric 0 Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 128.0.0.0/1 via 10.24.146.1 dev tun0 table 0 metric 0 Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: ::/1 via fde6:7a:7d20:1492::1 dev tun0 table 0 metric 0 Apr 21 07:50:32 localhost bluetit[2127]: net_route_add: 8000::/1 via fde6:7a:7d20:1492::1 dev tun0 table 0 metric 0 Apr 21 07:50:32 localhost bluetit[2127]: TunPersist: saving tun context: Apr 21 07:50:32 localhost bluetit[2127]: Connected via tun Apr 21 07:50:32 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1 Apr 21 07:50:32 localhost bluetit[2127]: Comp-stub init swap=0 Apr 21 07:50:32 localhost bluetit[2127]: EVENT: CONNECTED nl3.vpn.airdns.org:443 (213.152.162.156) via /UDPv4 on tun/10.24.146.221/fde6:7a :7d20:1492::10db gw=[10.24.146.1/fde6:7a:7d20:1492::1] Apr 21 07:50:32 localhost bluetit[2127]: Server has pushed its own DNS. Removing system DNS from network filter. Apr 21 07:50:32 localhost bluetit[2127]: System DNS 84.116.46.20 is now rejected by the network filter Apr 21 07:50:32 localhost bluetit[2127]: System DNS 84.116.46.21 is now rejected by the network filter Apr 21 08:00:00 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 08:00:00 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 08:15:00 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 08:15:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 08:30:01 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 08:30:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 08:45:01 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 08:45:01 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 08:49:01 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC ,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 08:49:01 localhost bluetit[2127]: Peer Info: Apr 21 08:49:01 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn. org, signature: RSA-SHA1 Apr 21 08:49:01 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s ignature: RSA-SHA512 Apr 21 08:49:01 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T LSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 08:49:01 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1 Apr 21 08:49:01 localhost bluetit[2127]: Comp-stub init swap=0 Apr 21 09:00:01 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 09:00:02 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 09:15:02 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 09:15:02 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 09:30:02 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 09:30:03 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 09:45:03 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 09:45:03 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 09:47:30 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC ,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 09:47:30 localhost bluetit[2127]: Peer Info: Apr 21 09:47:30 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn. org, signature: RSA-SHA1 Apr 21 09:47:30 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s ignature: RSA-SHA512 Apr 21 09:47:30 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T LSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 09:47:30 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1 Apr 21 09:47:30 localhost bluetit[2127]: Comp-stub init swap=0 Apr 21 10:00:03 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 10:00:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 10:15:04 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 10:15:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 10:30:04 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 10:30:04 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 10:45:04 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 10:45:05 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 10:45:59 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC ,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 10:45:59 localhost bluetit[2127]: Peer Info: Apr 21 10:45:59 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn. org, signature: RSA-SHA1 Apr 21 10:45:59 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s ignature: RSA-SHA512 Apr 21 10:45:59 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T LSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 10:45:59 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1 Apr 21 10:45:59 localhost bluetit[2127]: Comp-stub init swap=0 Apr 21 11:00:05 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 11:00:05 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 11:15:05 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 11:15:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 11:30:06 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 11:30:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 11:44:28 localhost bluetit[2127]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC ,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 11:44:28 localhost bluetit[2127]: Peer Info: Apr 21 11:44:28 localhost bluetit[2127]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn. org, signature: RSA-SHA1 Apr 21 11:44:28 localhost bluetit[2127]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muscida/emailAddress=info@airvpn.org, s ignature: RSA-SHA512 Apr 21 11:44:28 localhost bluetit[2127]: SSL Handshake: peer certificate: CN=Muscida, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 T LSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 11:44:28 localhost bluetit[2127]: LZO-ASYM init swap=0 asym=1 Apr 21 11:44:28 localhost bluetit[2127]: Comp-stub init swap=0 Apr 21 11:45:06 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 11:45:06 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 12:00:06 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 12:00:07 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 12:15:07 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 12:15:07 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server Apr 21 12:30:07 localhost bluetit[2127]: Updating AirVPN Manifest Apr 21 12:30:08 localhost bluetit[2127]: AirVPN Manifest successfully retrieved from server localhost:~ # Share this post Link to post
Staff 9973 Posted ... @colorman Hello! Thanks! Can you please print all iptables-legacy rules while the connection is still active? Please enter command (from another shell) iptables-legacy-save, then copy all and paste here, thanks! Is this error occurring all the times, or occasionally? Does the error persist if you stop firewalld? Did you notice this error in some past 1.1.0 beta or RC version? Kind regards Share this post Link to post
colorman 26 Posted ... 30 minutes ago, Staff said: @colorman Hello! Thanks! Can you please print all iptables-legacy rules while the connection is still active? Please enter command (from another shell) iptables-legacy-save, then copy all and paste here, thanks! Is this error occurring all the times, or occasionally?all the times Does the error persist if you stop firewalld?yes Did you notice this error in some past 1.1.0 beta or RC version?don't now Kind regards localhost:~ # iptables-legacy-save # Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021 *nat :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] :OUTPUT_direct - [0:0] :POSTROUTING_ZONES - [0:0] :POSTROUTING_ZONES_SOURCE - [0:0] :POSTROUTING_direct - [0:0] :POST_public - [0:0] :POST_public_allow - [0:0] :POST_public_deny - [0:0] :POST_public_log - [0:0] :PREROUTING_ZONES - [0:0] :PREROUTING_ZONES_SOURCE - [0:0] :PREROUTING_direct - [0:0] :PRE_public - [0:0] :PRE_public_allow - [0:0] :PRE_public_deny - [0:0] :PRE_public_log - [0:0] COMMIT # Completed on Wed Apr 21 13:21:32 2021 # Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021 *mangle :PREROUTING ACCEPT [5903:5050451] :INPUT ACCEPT [5903:5050451] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [5234:1082789] :POSTROUTING ACCEPT [5239:1083400] :FORWARD_direct - [0:0] :INPUT_direct - [0:0] :OUTPUT_direct - [0:0] :POSTROUTING_direct - [0:0] :PREROUTING_ZONES - [0:0] :PREROUTING_ZONES_SOURCE - [0:0] :PREROUTING_direct - [0:0] :PRE_public - [0:0] :PRE_public_allow - [0:0] :PRE_public_deny - [0:0] :PRE_public_log - [0:0] COMMIT # Completed on Wed Apr 21 13:21:32 2021 # Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021 *raw :PREROUTING ACCEPT [5903:5050451] :OUTPUT ACCEPT [5234:1082789] :OUTPUT_direct - [0:0] :PREROUTING_ZONES - [0:0] :PREROUTING_ZONES_SOURCE - [0:0] :PREROUTING_direct - [0:0] :PRE_public - [0:0] :PRE_public_allow - [0:0] :PRE_public_deny - [0:0] :PRE_public_log - [0:0] COMMIT # Completed on Wed Apr 21 13:21:32 2021 # Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021 *security :INPUT ACCEPT [5903:5050451] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [5234:1082789] :FORWARD_direct - [0:0] :INPUT_direct - [0:0] :OUTPUT_direct - [0:0] COMMIT # Completed on Wed Apr 21 13:21:32 2021 # Generated by iptables-save v1.8.3 on Wed Apr 21 13:21:32 2021 *filter :INPUT ACCEPT [5894:5046198] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [5011:1064571] -A OUTPUT -d 10.17.210.1/32 -j ACCEPT COMMIT # Completed on Wed Apr 21 13:21:32 2021 localhost:~ # Share this post Link to post
colorman 26 Posted ... just testing................... with eddie, hummingbird won't work..... without oke.... strange things...... . 2021.04.21 14:12:54 - Eddie version: 2.20.0 / linux_x64, System: Linux, Name: Welcome to \S - Kernel \r (\l)., Version: Linux localhost 5.3.18-lp152.72-preempt #1 SMP PREEMPT Wed Apr 14 10:13:15 UTC 2021 (013936d) x86_64 x86_64 x86_64 GNU/Linux, Mono/.Net: 6.8.0.105 (tarball Tue Jun 9 05:38:43 UTC 2020); Framework: v4.0.30319 . 2021.04.21 14:12:54 - Command line arguments (2): path.resources="/usr/share/eddie-ui" path.exec="/usr/bin/eddie-ui" . 2021.04.21 14:12:54 - Raise system privileges . 2021.04.21 14:13:01 - Profile path: /home/gerrit/.config/eddie/default.profile . 2021.04.21 14:13:02 - Reading options from /home/gerrit/.config/eddie/default.profile . 2021.04.21 14:13:03 - Tun Driver - /dev/net/tun . 2021.04.21 14:13:03 - OpenVPN - Version: 3.3.2 - Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 (/usr/local/bin/hummingbird) . 2021.04.21 14:13:03 - SSH - Version: OpenSSH_8.1p1, OpenSSL 1.1.1d 10 Sep 2019 (/usr/bin/ssh) . 2021.04.21 14:13:03 - SSL - Version: Initializing (/usr/sbin/stunnel) . 2021.04.21 14:13:03 - curl - Version: 7.66.0 (/usr/bin/curl) I 2021.04.21 14:13:03 - Ready . 2021.04.21 14:13:04 - Collect information about AirVPN completed I 2021.04.21 14:14:24 - Session starting. I 2021.04.21 14:14:24 - Checking authorization ... ! 2021.04.21 14:14:25 - Connecting to Muscida (Netherlands, Alblasserdam) . 2021.04.21 14:14:25 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:14:25 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:14:25 - Hummingbird > Starting thread . 2021.04.21 14:14:25 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:14:25 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:14:25 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:14:25 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:14:25 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:14:25 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:14:25 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:14:25 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:14:25 - Hummingbird > 16 [persist-key] . 2021.04.21 14:14:25 - Hummingbird > 17 [nobind] . 2021.04.21 14:14:25 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:14:25 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:14:25 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:14:25 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:14:25 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:14:25 - Disconnecting . 2021.04.21 14:14:25 - Connection terminated. . 2021.04.21 14:14:25 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:14:28 - Checking authorization ... ! 2021.04.21 14:14:28 - Connecting to Garnet (Netherlands, Alblasserdam) . 2021.04.21 14:14:28 - Elevated: Command:hummingbird . 2021.04.21 14:14:29 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:14:29 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:14:29 - Hummingbird > Starting thread . 2021.04.21 14:14:29 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:14:29 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:14:29 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:14:29 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:14:29 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:14:29 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:14:29 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:14:29 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:14:29 - Hummingbird > 16 [persist-key] . 2021.04.21 14:14:29 - Hummingbird > 17 [nobind] . 2021.04.21 14:14:29 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:14:29 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:14:29 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:14:29 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:14:29 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:14:29 - Disconnecting . 2021.04.21 14:14:29 - Connection terminated. . 2021.04.21 14:14:29 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:14:32 - Checking authorization ... ! 2021.04.21 14:14:32 - Connecting to Miram (Netherlands, Alblasserdam) . 2021.04.21 14:14:32 - Elevated: Command:hummingbird . 2021.04.21 14:14:32 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:14:32 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:14:32 - Hummingbird > Starting thread . 2021.04.21 14:14:32 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:14:32 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:14:32 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:14:32 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:14:32 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:14:32 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:14:32 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:14:32 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:14:32 - Hummingbird > 16 [persist-key] . 2021.04.21 14:14:32 - Hummingbird > 17 [nobind] . 2021.04.21 14:14:32 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:14:32 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:14:32 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:14:32 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:14:32 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:14:32 - Disconnecting . 2021.04.21 14:14:32 - Connection terminated. . 2021.04.21 14:14:32 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:14:35 - Cancel requested. ! 2021.04.21 14:14:35 - Session terminated. I 2021.04.21 14:15:53 - Session starting. I 2021.04.21 14:15:53 - Checking authorization ... ! 2021.04.21 14:15:53 - Connecting to Canis (Netherlands, Alblasserdam) . 2021.04.21 14:15:53 - Elevated: Command:hummingbird . 2021.04.21 14:15:53 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:15:53 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:15:53 - Hummingbird > Starting thread . 2021.04.21 14:15:53 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:15:53 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:15:53 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:15:53 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:15:53 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:15:53 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:15:53 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:15:53 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:15:53 - Hummingbird > 16 [persist-key] . 2021.04.21 14:15:53 - Hummingbird > 17 [nobind] . 2021.04.21 14:15:53 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:15:53 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:15:53 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:15:53 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:15:53 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:15:53 - Disconnecting . 2021.04.21 14:15:53 - Connection terminated. . 2021.04.21 14:15:53 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:15:56 - Checking authorization ... ! 2021.04.21 14:15:57 - Connecting to Alphard (Netherlands, Alblasserdam) . 2021.04.21 14:15:57 - Elevated: Command:hummingbird . 2021.04.21 14:15:57 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:15:57 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:15:57 - Hummingbird > Starting thread . 2021.04.21 14:15:57 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:15:57 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:15:57 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:15:57 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:15:57 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:15:57 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:15:57 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:15:57 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:15:57 - Hummingbird > 16 [persist-key] . 2021.04.21 14:15:57 - Hummingbird > 17 [nobind] . 2021.04.21 14:15:57 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:15:57 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:15:57 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:15:57 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:15:57 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:15:57 - Disconnecting . 2021.04.21 14:15:57 - Connection terminated. . 2021.04.21 14:15:57 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:16:00 - Checking authorization ... ! 2021.04.21 14:16:00 - Connecting to Aljanah (Netherlands, Alblasserdam) . 2021.04.21 14:16:00 - Elevated: Command:hummingbird . 2021.04.21 14:16:01 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:16:01 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:16:01 - Hummingbird > Starting thread . 2021.04.21 14:16:01 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:16:01 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:16:01 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:16:01 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:16:01 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:16:01 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:16:01 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:16:01 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:16:01 - Hummingbird > 16 [persist-key] . 2021.04.21 14:16:01 - Hummingbird > 17 [nobind] . 2021.04.21 14:16:01 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:16:01 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:16:01 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:16:01 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:16:01 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:16:01 - Disconnecting . 2021.04.21 14:16:01 - Connection terminated. . 2021.04.21 14:16:01 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:16:03 - Cancel requested. ! 2021.04.21 14:16:03 - Session terminated. I 2021.04.21 14:17:44 - Session starting. I 2021.04.21 14:17:45 - Checking authorization ... ! 2021.04.21 14:17:45 - Connecting to Mirach (Netherlands, Alblasserdam) . 2021.04.21 14:17:45 - Elevated: Command:hummingbird . 2021.04.21 14:17:45 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:17:45 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:17:45 - Hummingbird > Starting thread . 2021.04.21 14:17:45 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:17:45 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:17:45 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:17:45 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:17:45 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:17:45 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:17:45 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:17:45 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:17:45 - Hummingbird > 16 [persist-key] . 2021.04.21 14:17:45 - Hummingbird > 17 [nobind] . 2021.04.21 14:17:45 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:17:45 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:17:45 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:17:45 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:17:45 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:17:45 - Disconnecting . 2021.04.21 14:17:45 - Connection terminated. . 2021.04.21 14:17:45 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:17:48 - Checking authorization ... ! 2021.04.21 14:17:49 - Connecting to Celaeno (Netherlands, Alblasserdam) . 2021.04.21 14:17:49 - Elevated: Command:hummingbird . 2021.04.21 14:17:49 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:17:49 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:17:49 - Hummingbird > Starting thread . 2021.04.21 14:17:49 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:17:49 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:17:49 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:17:49 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:17:49 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:17:49 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:17:49 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:17:49 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:17:49 - Hummingbird > 16 [persist-key] . 2021.04.21 14:17:49 - Hummingbird > 17 [nobind] . 2021.04.21 14:17:49 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:17:49 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:17:49 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:17:49 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:17:49 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:17:49 - Disconnecting . 2021.04.21 14:17:49 - Connection terminated. . 2021.04.21 14:17:49 - Elevated: Command:dns-switch-rename-restore I 2021.04.21 14:17:52 - Checking authorization ... ! 2021.04.21 14:17:52 - Connecting to Melnick (Netherlands, Alblasserdam) . 2021.04.21 14:17:52 - Elevated: Command:hummingbird . 2021.04.21 14:17:53 - Hummingbird > Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 . 2021.04.21 14:17:53 - Hummingbird > System and service manager in use is systemd . 2021.04.21 14:17:53 - Hummingbird > Starting thread . 2021.04.21 14:17:53 - Hummingbird > OpenVPN core 3.7 AirVPN linux x86_64 64-bit . 2021.04.21 14:17:53 - Hummingbird > Frame=512/2048/512 mssfix-ctrl=1250 . 2021.04.21 14:17:53 - Hummingbird > UNUSED OPTIONS . 2021.04.21 14:17:53 - Hummingbird > 9 [route-delay] [5] . 2021.04.21 14:17:53 - Hummingbird > 10 [explicit-exit-notify] [5] . 2021.04.21 14:17:53 - Hummingbird > 13 [connect-retry-max] [1] . 2021.04.21 14:17:53 - Hummingbird > 14 [verb] [3] . 2021.04.21 14:17:53 - Hummingbird > 15 [persist-tun] . 2021.04.21 14:17:53 - Hummingbird > 16 [persist-key] . 2021.04.21 14:17:53 - Hummingbird > 17 [nobind] . 2021.04.21 14:17:53 - Hummingbird > 18 [resolv-retry] [infinite] . 2021.04.21 14:17:53 - Hummingbird > 19 [auth-nocache] . 2021.04.21 14:17:53 - Hummingbird > 21 [ping-exit] [32] . 2021.04.21 14:17:53 - Hummingbird > 22 [data-ciphers-fallback] [AES-256-CBC] . 2021.04.21 14:17:53 - Hummingbird > EVENT: RESOLVE ! 2021.04.21 14:17:53 - Disconnecting . 2021.04.21 14:17:53 - Connection terminated. . 2021.04.21 14:17:53 - Elevated: Command:dns-switch-rename-restore Share this post Link to post
Staff 9973 Posted ... 3 hours ago, colorman said: just testing................... with eddie, hummingbird won't work..... without oke.... strange things...... Hello! The "disconnecting" log entry comes from Eddie and it seems that Eddie does not receive any other log entry from Hummingbird justifying the disconnection. Is such an unexpected behavior experienced by your system even with older Hummingbird 1.1.0? If you run Hummingbird 1.1.0 RC 3 on its own (without Eddie) with the same configuration file generated by Eddie, what do you see? Kind regards Share this post Link to post
Staff 9973 Posted ... @colorman Hello! Can you please also test Bluetit with nftables (which should be the default filtering platform in your openSUSE version)? First, you need to install nft (it's a binary utility run by Bluetit as a frontend to nf_tables packet filter), if it's not already available in your system. Then, just run Goldcrest as you usually do, but with the following, additional option:--network-lock nftables Check whether you still get an error, in Bluetit and Goldcrest logs, about network lock or not. Kind regards Share this post Link to post
colorman 26 Posted ... @Staffdon't understand what you mean with this the same configuration file generated by Eddie with hummingbird on its own, I saw there was a lock in etc / airvpn, removed it. but that was not the solution, there was immediately a new lock. eddie with Hummingbird - AirVPN OpenVPN 3 Client 1.1.1 - January 7, 2020 works fine. thanks for the support. Share this post Link to post
colorman 26 Posted ... 27 minutes ago, Staff said: @colorman Hello! Can you please also test Bluetit with nftables (which should be the default filtering platform in your openSUSE version)? First, you need to install nft (it's a binary utility run by Bluetit as a frontend to nf_tables packet filter), if it's not already available in your system. Then, just run Goldcrest as you usually do, but with the following, additional option:--network-lock nftables Check whether you still get an error, in Bluetit and Goldcrest logs, about network lock or not. Kind regards gerrit@localhost:/usr/local/bin> ./goldcrest AirVPN_Netherlands_UDP-443-Entry3.ovpn --network-lock nftables 2021-04-21 18:32:05 Reading run control directives from file /home/gerrit/.config/goldcrest.rc Goldcrest 1.1.0 RC3 - 16 April 2021 ERROR: profile nftables not found Installed it! Share this post Link to post
Staff 9973 Posted ... 18 minutes ago, colorman said: @Staffdon't understand what you mean with this the same configuration file generated by Eddie Hello! Please generate a configuration file form the Configuration Generator (in your account "Client Area", in our web site) with the same protocol, port, destination server that cause the problem with Eddie+Hummingbird. Then run Hummingbird as Eddie does:sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn where foo.ovpn must be replaced by the full path and name of the ovpn configuration file you previously generated. The options to disable network lock and reject DNS push are included to run Hummingbird in the same way Eddie does. In this way we should be able to see what happens to Hummingbird and maybe have some clue. Kind regards Share this post Link to post
Staff 9973 Posted ... Quote gerrit@localhost:/usr/local/bin> ./goldcrest AirVPN_Netherlands_UDP-443-Entry3.ovpn --network-lock nftables 2021-04-21 18:32:05 Reading run control directives from file /home/gerrit/.config/goldcrest.rc Goldcrest 1.1.0 RC3 - 16 April 2021 ERROR: profile nftables not found @colorman That's expected, Goldcrest parser expects the configuration file at the end of the whole command, so it assumes that "nftables" is the configuration file. Retry with:./goldcrest --network-lock nftables AirVPN_Netherlands_UDP-443-Entry3.ovpn Remember to specify the full path to *.ovpn file if necessary. Kind regards Share this post Link to post
colorman 26 Posted ... 10 minutes ago, Staff said: Hello! Please generate a configuration file form the Configuration Generator (in your account "Client Area", in our web site) with the same protocol, port, destination server that cause the problem with Eddie+Hummingbird. Then run Hummingbird as Eddie does:sudo hummingbird --network-lock off f--ingore-dns-push foo.ovpn where foo.ovpn must be replaced by the full path and name of the ovpn configuration file you previously generated. The options to disable network lock and reject DNS push are included to run Hummingbird in the same way Eddie does. In this way we should be able to see what happens to Hummingbird and maybe have some clue. Kind regards gerrit@localhost:/usr/local/bin> sudo ./hummingbird --network-lock off f--ingore-dns-push AirVPN_NL-Alblasserdam_Alshat_UDP-443.ovpn Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 Wed Apr 21 18:42:44.273 2021 System and service manager in use is systemd ERROR: Share this post Link to post
Staff 9973 Posted ... @colorman Typo (now fixed, please fix it yourself too). Enter:sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn Remember to specify the full path to the *.ovpn file if necessary. Kind regards Share this post Link to post
colorman 26 Posted ... localhost:~ # journalctl | grep bluetit Apr 21 18:31:40 localhost bluetit[1944]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 21 18:31:40 localhost bluetit[1944]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 21 18:31:40 localhost bluetit[1944]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 21 18:31:40 localhost bluetit[1954]: Bluetit daemon started with PID 1954 Apr 21 18:31:40 localhost bluetit[1954]: External network is reachable via gateway 192.168.178.1 through interface eth0 Apr 21 18:31:40 localhost bluetit[1954]: Successfully connected to D-Bus Apr 21 18:31:40 localhost bluetit[1954]: Reading run control directives from file /etc/airvpn/bluetit.rc Apr 21 18:31:40 localhost bluetit[1954]: IPv6 is available in this system Apr 21 18:31:40 localhost bluetit[1954]: Bluetit successfully initialized and ready Apr 21 18:31:40 localhost bluetit[1954]: Requesting network IP and country to AirVPN ipleak.net via secure connection Apr 21 18:31:40 localhost bluetit[1954]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access rights?) Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest updater thread started Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest update interval is 15 minutes Apr 21 18:31:40 localhost bluetit[1954]: Updating AirVPN Manifest Apr 21 18:31:40 localhost bluetit[1954]: AirVPN Manifest successfully retrieved from server Apr 21 18:44:59 localhost bluetit[1954]: Requested method "version" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "openvpn_info" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "bluetit_status -> Bluetit is ready" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "reset_bluetit_options -> Bluetit options successfully reset" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "set_options: network-lock (N) -> nftables" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "set_openvpn_profile -> OK" Apr 21 18:44:59 localhost bluetit[1954]: Requested method "start_connection" Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN3 connection successfully started Apr 21 18:44:59 localhost bluetit[1954]: Network filter and lock are using nftables Apr 21 18:44:59 localhost bluetit[1954]: Successfully loaded kernel module nf_tables Apr 21 18:44:59 localhost bluetit[1954]: WARNING: firewalld is running on this system and may interfere with network filter and lock Apr 21 18:44:59 localhost bluetit[1954]: Network filter successfully initialized Apr 21 18:44:59 localhost bluetit[1954]: Starting VPN Connection Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN3 client successfully created and initialized. Apr 21 18:44:59 localhost bluetit[1954]: TUN persistence is enabled. Apr 21 18:44:59 localhost bluetit[1954]: Successfully set OpenVPN3 client configuration Apr 21 18:44:59 localhost bluetit[1954]: Starting OpenVPN3 connection thread Apr 21 18:44:59 localhost bluetit[1954]: Connection statistics updater thread started Apr 21 18:44:59 localhost bluetit[1954]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 21 18:44:59 localhost bluetit[1954]: Frame=512/2048/512 mssfix-ctrl=1250 Apr 21 18:44:59 localhost bluetit[1954]: UNUSED OPTIONS Apr 21 18:44:59 localhost bluetit[1954]: EVENT: RESOLVE Apr 21 18:44:59 localhost bluetit[1954]: Local IPv4 address 192.168.178.11 Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address 2001:1c04:509:4000:3d24:4faa:fc69:84a7 Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address 2001:1c04:509:4000:aaa1:59ff:fe2f:523e Apr 21 18:44:59 localhost bluetit[1954]: Local IPv6 address fe80::aaa1:59ff:fe2f:523e Apr 21 18:44:59 localhost bluetit[1954]: Local interface eth0 Apr 21 18:44:59 localhost bluetit[1954]: Setting up network filter and lock Apr 21 18:44:59 localhost bluetit[1954]: Allowing system DNS 84.116.46.20 to pass through the network filter Apr 21 18:44:59 localhost bluetit[1954]: Allowing system DNS 84.116.46.21 to pass through the network filter Apr 21 18:44:59 localhost bluetit[1954]: ERROR: Cannot allow system DNS to pass through network filter Apr 21 18:45:01 localhost bluetit[1954]: Resolved server nl3.vpn.airdns.org into IPv4 134.19.179.205 Apr 21 18:45:01 localhost bluetit[1954]: Adding IPv4 server 134.19.179.205 to network filter Apr 21 18:45:01 localhost bluetit[1954]: ERROR: Cannot activate network filter and lock Apr 21 18:45:01 localhost bluetit[1954]: Contacting 134.19.179.205:443 via UDP Apr 21 18:45:01 localhost bluetit[1954]: EVENT: WAIT Apr 21 18:45:01 localhost bluetit[1954]: net_route_best_gw query IPv4: 134.19.179.205/32 Apr 21 18:45:01 localhost bluetit[1954]: sitnl_route_best_gw result: via 192.168.178.1 dev eth0 Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 134.19.179.205/32 via 192.168.178.1 dev eth0 table 0 metric 0 Apr 21 18:45:01 localhost bluetit[1954]: Connecting to [nl3.vpn.airdns.org]:443 (134.19.179.205) via UDPv4 Apr 21 18:45:01 localhost bluetit[1954]: EVENT: CONNECTING Apr 21 18:45:01 localhost bluetit[1954]: Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA512,keysize 256,key-method 2,tls-client Apr 21 18:45:01 localhost bluetit[1954]: Peer Info: Apr 21 18:45:01 localhost bluetit[1954]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1 Apr 21 18:45:01 localhost bluetit[1954]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Muhlifain/emailAddress=info@airvpn.org, signature: RSA-SHA512 Apr 21 18:45:01 localhost bluetit[1954]: SSL Handshake: peer certificate: CN=Muhlifain, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 21 18:45:01 localhost bluetit[1954]: Session is ACTIVE Apr 21 18:45:01 localhost bluetit[1954]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future Apr 21 18:45:01 localhost bluetit[1954]: EVENT: GET_CONFIG Apr 21 18:45:01 localhost bluetit[1954]: Sending PUSH_REQUEST to server... Apr 21 18:45:01 localhost bluetit[1954]: OPTIONS: Apr 21 18:45:01 localhost bluetit[1954]: PROTOCOL OPTIONS: Apr 21 18:45:01 localhost bluetit[1954]: EVENT: ASSIGN_IP Apr 21 18:45:01 localhost bluetit[1954]: VPN Server has pushed IPv4 DNS server 10.34.50.1 Apr 21 18:45:01 localhost bluetit[1954]: Setting pushed IPv4 DNS server 10.34.50.1 in resolv.conf Apr 21 18:45:01 localhost bluetit[1954]: VPN Server has pushed IPv6 DNS server fde6:7a:7d20:1e32::1 Apr 21 18:45:01 localhost bluetit[1954]: Setting pushed IPv6 DNS server fde6:7a:7d20:1e32::1 in resolv.conf Apr 21 18:45:01 localhost bluetit[1954]: net_iface_mtu_set: mtu 1500 for tun0 Apr 21 18:45:01 localhost bluetit[1954]: net_iface_up: set tun0 up Apr 21 18:45:01 localhost bluetit[1954]: net_addr_add: 10.34.50.182/24 brd 10.34.50.255 dev tun0 Apr 21 18:45:01 localhost bluetit[1954]: net_addr_add: fde6:7a:7d20:1e32::10b4/64 dev tun0 Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 0.0.0.0/1 via 10.34.50.1 dev tun0 table 0 metric 0 Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 128.0.0.0/1 via 10.34.50.1 dev tun0 table 0 metric 0 Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: ::/1 via fde6:7a:7d20:1e32::1 dev tun0 table 0 metric 0 Apr 21 18:45:01 localhost bluetit[1954]: net_route_add: 8000::/1 via fde6:7a:7d20:1e32::1 dev tun0 table 0 metric 0 Apr 21 18:45:01 localhost bluetit[1954]: TunPersist: saving tun context: Apr 21 18:45:01 localhost bluetit[1954]: Connected via tun Apr 21 18:45:01 localhost bluetit[1954]: LZO-ASYM init swap=0 asym=1 Apr 21 18:45:01 localhost bluetit[1954]: Comp-stub init swap=0 Apr 21 18:45:01 localhost bluetit[1954]: EVENT: CONNECTED nl3.vpn.airdns.org:443 (134.19.179.205) via /UDPv4 on tun/10.34.50.182/fde6:7a:7d20:1e32::10b4 gw=[10.34.50.1/fde6:7a:7d20:1e32::1] Apr 21 18:45:01 localhost bluetit[1954]: Server has pushed its own DNS. Removing system DNS from network filter. Apr 21 18:45:01 localhost bluetit[1954]: System DNS 84.116.46.20 is now rejected by the network filter Apr 21 18:45:01 localhost bluetit[1954]: System DNS 84.116.46.21 is now rejected by the network filter localhost:~ # Share this post Link to post
colorman 26 Posted ... 5 minutes ago, Staff said: @colorman Typo (now fixed, please fix it yourself too). Enter:sudo hummingbird --network-lock off --ignore-dns-push foo.ovpn Kind regards gerrit@localhost:/usr/local/bin> sudo ./hummingbird --network-lock off --ignore-dns-push AirVPN_NL-Alblasserdam_Alshat_UDP-443.ovpn Hummingbird - AirVPN OpenVPN 3 Client 1.1.2 RC3 - 16 April 2021 Wed Apr 21 18:51:45.069 2021 System and service manager in use is systemd Wed Apr 21 18:51:45.078 2021 Starting thread Wed Apr 21 18:51:45.078 2021 OpenVPN core 3.7 AirVPN linux x86_64 64-bit Wed Apr 21 18:51:45.079 2021 Frame=512/2048/512 mssfix-ctrl=1250 Wed Apr 21 18:51:45.080 2021 UNUSED OPTIONS 3 [resolv-retry] [infinite] 4 [nobind] 5 [persist-key] 6 [persist-tun] 7 [auth-nocache] 8 [verb] [3] 9 [explicit-exit-notify] [5] 10 [rcvbuf] [262144] 11 [sndbuf] [262144] Wed Apr 21 18:51:45.080 2021 EVENT: RESOLVE Segmentatiefout Share this post Link to post
Staff 9973 Posted ... @colormanGood! Now network lock works with Goldcrest/Bluetit, when you force nftables. Momentarily, do not forget to force it, otherwise network lock will fail. We will be investigating on this bad issue. Correction: it does not work with nftables as well. About Hummingbird, thank you: we see that Hummingbird crashes when it is invoked in that way, as Eddie does, so we have now a track to understand what happens. We'll investigate on it as well, of course. Kind regards 1 colorman reacted to this Share this post Link to post
Staff 9973 Posted ... @colorman Hello! Another piece of info please. When you run Hummingbird (and it "explodes"), do you have Bluetit daemon running as well? Kind regards Share this post Link to post
colorman 26 Posted ... 12 hours ago, Staff said: @colorman Hello! Another piece of info please. When you run Hummingbird (and it "explodes"), do you have Bluetit daemon running as well? Kind regards Yes Bluetit deamon starts with boot. But Goldcrest is not running. (update) Found this? localhost:~ # journalctl | grep bluetit Apr 22 07:31:44 localhost bluetit[2107]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 22 07:31:44 localhost bluetit[2107]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 22 07:31:44 localhost bluetit[2107]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Control process exited, code=exited status=1 Apr 22 07:31:44 localhost bluetit[2107]: Hummingbird client is running or it did not exit gracefully. Exiting. Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Unit entered failed state. Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Failed with result 'exit-code'. And this... (update) test with Bluetit - AirVPN OpenVPN 3 Service 1.0.0 - 7 January 2021 all fine! * bluetit.service - AirVPN Bluetit Daemon Loaded: loaded (/etc/systemd/system/bluetit.service; enabled; vendor preset: disabled) Active: failed (Result: exit-code) since Thu 2021-04-22 07:31:44 CEST; 38s ago Process: 2107 ExecStart=/sbin/bluetit (code=exited, status=1/FAILURE) Apr 22 07:31:44 localhost systemd[1]: Starting AirVPN Bluetit Daemon... Apr 22 07:31:44 localhost bluetit[2107]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 22 07:31:44 localhost bluetit[2107]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Control process exited, code=exited status=1 Apr 22 07:31:44 localhost systemd[1]: Failed to start AirVPN Bluetit Daemon. Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Unit entered failed state. Apr 22 07:31:44 localhost systemd[1]: bluetit.service: Failed with result 'exit-code'. 1 Staff reacted to this Share this post Link to post
colorman 26 Posted ... localhost:~ # journalctl | grep bluetit Apr 22 08:08:29 localhost bluetit[1947]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 22 08:08:29 localhost bluetit[1947]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 22 08:08:29 localhost bluetit[1947]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 22 08:08:29 localhost systemd[1]: bluetit.service: PID file /etc/airvpn/bluetit.lock not readable (yet?) after start: No such file or directory Apr 22 08:08:29 localhost bluetit[1956]: Bluetit daemon started with PID 1956 Apr 22 08:08:29 localhost bluetit[1956]: External network is reachable via gateway 192.168.178.1 through interface eth0 Apr 22 08:08:29 localhost bluetit[1956]: Successfully connected to D-Bus Apr 22 08:08:29 localhost bluetit[1956]: Reading run control directives from file /etc/airvpn/bluetit.rc Apr 22 08:08:29 localhost bluetit[1956]: IPv6 is available in this system Apr 22 08:08:29 localhost bluetit[1956]: Bluetit successfully initialized and ready Apr 22 08:08:29 localhost bluetit[1956]: Requesting network IP and country to AirVPN ipleak.net via secure connection Apr 22 08:08:29 localhost bluetit[1956]: ERROR: Cannot detect system location: Unknown error: Problem with the SSL CA cert (path? access rights?) Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest updater thread started Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest update interval is 15 minutes Apr 22 08:08:29 localhost bluetit[1956]: Updating AirVPN Manifest Apr 22 08:08:29 localhost bluetit[1956]: AirVPN Manifest successfully retrieved from server Share this post Link to post
pjnsmb 13 Posted ... On 4/13/2021 at 3:54 PM, Staff said: @pjnsmb Hello! Under your conditions, Bluetit resolves gb3.ipv6.vpn.airdns.org. We might have some issue with records update, at least for AAAA, so the problem is not in Bluetit. We are investigating, thank you, it is a useful head up. Kind regards @Staff Hello Any news or an update on this problem please ? thanks Hide pjnsmb's signature Hide all signatures regardspjnsmb Share this post Link to post
Staff 9973 Posted ... @pjnsmb Hello! It has been sorted out, please try again now (for the readers: anyway not a Bluetit issue). Kind regards Share this post Link to post
pjnsmb 13 Posted ... 2 hours ago, Staff said: @pjnsmb Hello! It has been sorted out, please try again now (for the readers: anyway not a Bluetit issue). Kind regards @Staff Thanks for the reply and for the record it would appear I am now only connecting to Betelgeuse each time I connect ! Can I give you some details to explain my situation - Using systemd bluetit.service runs correctly on bootup on my computer and I can connect to any single U.K server without a problem at all without needing to alter anything. I cannot connect using : goldcrest --air-connect --air-country GB and I get the line : WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Once I have restarted bluetit.service I can connect to GB but each time it is the Betelgeuse server. peter@desktop:~/Desktop/VPN$ goldcrest --air-connect --air-country GB 2021-04-26 16:34:47 Reading run control directives from file /home/peter/.config/goldcrest.rc Goldcrest 1.1.0 RC3 - 16 April 2021 2021-04-26 16:34:47 Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 2021-04-26 16:34:47 OpenVPN core 3.7 AirVPN linux x86_64 64-bit 2021-04-26 16:34:47 Bluetit is ready 2021-04-26 16:34:47 Bluetit options successfully reset 2021-04-26 16:34:47 Bluetit successfully set to command line options 2021-04-26 16:34:47 Requesting AirVPN connection to Bluetit 2021-04-26 16:34:48 Network filter and lock are using nftables 2021-04-26 16:34:48 Successfully loaded kernel module nf_tables 2021-04-26 16:34:48 Network filter successfully initialized 2021-04-26 16:34:48 Session network filter and lock successfully enabled 2021-04-26 16:34:48 AirVPN bootstrap servers are now allowed to pass through the network filter 2021-04-26 16:34:48 Logging in AirVPN user pjnsmb 2021-04-26 16:34:48 AirVPN user pjnsmb successfully logged in 2021-04-26 16:34:48 Selected user key: DESKTOP 2021-04-26 16:34:48 Starting connection to currently best AirVPN server in United Kingdom 2021-04-26 16:34:48 Starting VPN Connection 2021-04-26 16:34:48 TUN persistence is enabled. 2021-04-26 16:34:48 CIPHER OVERRIDE: CHACHA20-POLY1305 2021-04-26 16:34:48 Network lock set to 'nftables' by Bluetit policy 2021-04-26 16:34:48 Ignore DNS push is enabled by Bluetit policy 2021-04-26 16:34:48 OpenVPN core 3.7 AirVPN linux x86_64 64-bit 2021-04-26 16:34:48 Frame=512/2048/512 mssfix-ctrl=1250 2021-04-26 16:34:48 UNUSED OPTIONS 6 [resolv-retry] [infinite] 7 [nobind] 8 [persist-key] 9 [persist-tun] 10 [auth-nocache] 11 [verb] [3] 12 [explicit-exit-notify] [5] 2021-04-26 16:34:48 EVENT: RESOLVE 2021-04-26 16:34:48 Local IPv4 address 192.168.0.6 2021-04-26 16:34:48 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 2021-04-26 16:34:48 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c 2021-04-26 16:34:48 Local IPv6 address fe80::154d:4265:bdaf:3d0 2021-04-26 16:34:48 Local interface enp3s0 2021-04-26 16:34:48 Setting up network filter and lock 2021-04-26 16:34:48 Allowing system DNS 127.0.0.1 to pass through the network filter 2021-04-26 16:34:58 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:34:58 Network filter and lock successfully activated 2021-04-26 16:35:08 DNS pre-resolve error on gb3.ipv6.vpn.airdns.org: Host not found (authoritative) 2021-04-26 16:35:08 ERROR: RESOLVE_ERROR 2021-04-26 16:35:08 EVENT: RESOLVE 2021-04-26 16:35:08 Local IPv4 address 192.168.0.6 2021-04-26 16:35:08 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 2021-04-26 16:35:08 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c 2021-04-26 16:35:08 Local IPv6 address fe80::154d:4265:bdaf:3d0 2021-04-26 16:35:08 Local interface enp3s0 2021-04-26 16:35:08 Setting up network filter and lock 2021-04-26 16:35:08 Allowing system DNS 127.0.0.1 to pass through the network filter 2021-04-26 16:35:18 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:35:18 Network filter and lock successfully activated 2021-04-26 16:35:18 Server poll timeout, trying next remote entry... 2021-04-26 16:35:18 EVENT: RECONNECTING 2021-04-26 16:35:18 ERROR: N_RECONNECT 2021-04-26 16:35:18 EVENT: RESOLVE 2021-04-26 16:35:28 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:35:28 Network filter and lock successfully activated 2021-04-26 16:35:28 Server poll timeout, trying next remote entry... 2021-04-26 16:35:28 EVENT: RECONNECTING 2021-04-26 16:35:28 ERROR: N_RECONNECT 2021-04-26 16:35:28 EVENT: RESOLVE 2021-04-26 16:35:38 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:35:38 Network filter and lock successfully activated 2021-04-26 16:35:38 Server poll timeout, trying next remote entry... 2021-04-26 16:35:38 EVENT: RECONNECTING 2021-04-26 16:35:38 ERROR: N_RECONNECT 2021-04-26 16:35:38 EVENT: RESOLVE 2021-04-26 16:35:47 ---------------------- 2021-04-26 16:35:47 Connected to OpenVPN server 2021-04-26 16:35:47 Connection time: 00:01:01 2021-04-26 16:35:47 Transferred data: In 0 bytes, Out 0 bytes 2021-04-26 16:35:47 Current rate: In 0 bit/s, Out 0 bit/s 2021-04-26 16:35:47 Maximum rate: In 0 bit/s, Out 0 bit/s 2021-04-26 16:35:48 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:35:48 Network filter and lock successfully activated 2021-04-26 16:35:48 Server poll timeout, trying next remote entry... 2021-04-26 16:35:48 EVENT: RECONNECTING 2021-04-26 16:35:48 ERROR: N_RECONNECT 2021-04-26 16:35:48 EVENT: RESOLVE 2021-04-26 16:35:58 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:35:58 Network filter and lock successfully activated 2021-04-26 16:35:58 Server poll timeout, trying next remote entry... 2021-04-26 16:35:58 EVENT: RECONNECTING 2021-04-26 16:35:58 ERROR: N_RECONNECT 2021-04-26 16:35:58 EVENT: RESOLVE 2021-04-26 16:36:08 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:36:08 Network filter and lock successfully activated 2021-04-26 16:36:08 Server poll timeout, trying next remote entry... 2021-04-26 16:36:08 EVENT: RECONNECTING 2021-04-26 16:36:08 ERROR: N_RECONNECT 2021-04-26 16:36:08 EVENT: RESOLVE 2021-04-26 16:36:18 WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) 2021-04-26 16:36:18 Network filter and lock successfully activated 2021-04-26 16:36:18 Server poll timeout, trying next remote entry... 2021-04-26 16:36:18 EVENT: RECONNECTING 2021-04-26 16:36:18 ERROR: N_RECONNECT 2021-04-26 16:36:18 EVENT: RESOLVE ^C2021-04-26 16:36:27 Caught SIGTERM signal. Terminating. 2021-04-26 16:36:27 Bluetit is connected to VPN 2021-04-26 16:36:27 Requesting VPN connection termination to Bluetit 2021-04-26 16:36:28 Network filter and lock successfully activated 2021-04-26 16:36:28 EVENT: DISCONNECTED 2021-04-26 16:36:28 Network filter successfully restored 2021-04-26 16:36:28 Bluetit session terminated AFTER SYSTEMCTL RESTART peter@desktop:~/Desktop/VPN$ systemctl stop bluetit.service peter@desktop:~/Desktop/VPN$ systemctl start bluetit.service peter@desktop:~/Desktop/VPN$ systemctl status bluetit.service peter@desktop:~/Desktop/VPN$ goldcrest --air-connect --air-country GB 2021-04-26 16:37:56 Reading run control directives from file /home/peter/.config/goldcrest.rc Goldcrest 1.1.0 RC3 - 16 April 2021 2021-04-26 16:37:56 Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 2021-04-26 16:37:56 OpenVPN core 3.7 AirVPN linux x86_64 64-bit 2021-04-26 16:37:56 Bluetit is ready 2021-04-26 16:37:56 Bluetit options successfully reset 2021-04-26 16:37:56 Bluetit successfully set to command line options 2021-04-26 16:37:56 Requesting AirVPN connection to Bluetit 2021-04-26 16:37:57 Network filter and lock are using nftables 2021-04-26 16:37:57 Successfully loaded kernel module nf_tables 2021-04-26 16:37:57 Network filter successfully initialized 2021-04-26 16:37:57 Session network filter and lock successfully enabled 2021-04-26 16:37:57 AirVPN bootstrap servers are now allowed to pass through the network filter 2021-04-26 16:37:57 Logging in AirVPN user pjnsmb 2021-04-26 16:37:57 AirVPN user pjnsmb successfully logged in 2021-04-26 16:37:57 Selected user key: DESKTOP 2021-04-26 16:37:57 Starting connection to currently best AirVPN server in United Kingdom 2021-04-26 16:37:57 Starting VPN Connection 2021-04-26 16:37:57 TUN persistence is enabled. 2021-04-26 16:37:57 CIPHER OVERRIDE: CHACHA20-POLY1305 2021-04-26 16:37:57 Network lock set to 'nftables' by Bluetit policy 2021-04-26 16:37:57 Ignore DNS push is enabled by Bluetit policy 2021-04-26 16:37:57 OpenVPN core 3.7 AirVPN linux x86_64 64-bit 2021-04-26 16:37:57 Frame=512/2048/512 mssfix-ctrl=1250 2021-04-26 16:37:57 UNUSED OPTIONS 6 [resolv-retry] [infinite] 7 [nobind] 8 [persist-key] 9 [persist-tun] 10 [auth-nocache] 11 [verb] [3] 12 [explicit-exit-notify] [5] 2021-04-26 16:37:57 EVENT: RESOLVE 2021-04-26 16:37:57 Local IPv4 address 192.168.0.6 2021-04-26 16:37:57 Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 2021-04-26 16:37:57 Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c 2021-04-26 16:37:57 Local IPv6 address fe80::154d:4265:bdaf:3d0 2021-04-26 16:37:57 Local interface enp3s0 2021-04-26 16:37:57 Setting up network filter and lock 2021-04-26 16:37:57 Allowing system DNS 127.0.0.1 to pass through the network filter 2021-04-26 16:37:57 Resolved server gb3.ipv6.vpn.airdns.org into IPv6 2a01:a500:320:c874:a667:c458:c21d:ccd4 2021-04-26 16:37:57 Adding IPv6 server 2a01:a500:320:c874:a667:c458:c21d:ccd4 to network filter 2021-04-26 16:37:57 Network filter and lock successfully activated 2021-04-26 16:37:57 Contacting [2a01:a500:320:c874:a667:c458:c21d:ccd4]:443 via UDP 2021-04-26 16:37:57 EVENT: WAIT 2021-04-26 16:37:57 net_route_best_gw query IPv6: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 2021-04-26 16:37:57 sitnl_route_best_gw result: via fe80::3e89:94ff:fef6:ead1 dev enp3s0 2021-04-26 16:37:57 net_route_add: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0 2021-04-26 16:37:57 Connecting to [gb3.ipv6.vpn.airdns.org]:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via UDPv6 2021-04-26 16:37:57 EVENT: CONNECTING 2021-04-26 16:37:57 Tunnel Options:V4,dev-type tun,link-mtu 1522,tun-mtu 1500,proto UDPv4,comp-lzo,cipher CHACHA20-POLY1305,auth [null-digest],keysize 256,key-method 2,tls-client 2021-04-26 16:37:57 Peer Info: IV_VER=3.7 AirVPN IV_PLAT=linux IV_TCPNL=1 IV_PROTO=30 IV_CIPHERS=CHACHA20-POLY1305 IV_LZO_STUB=1 IV_COMP_STUB=1 IV_COMP_STUBv2=1 IV_IPv6=1 UV_IPV6=yes IV_GUI_VER=Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 IV_SSL=OpenSSL 1.1.0l 10 Sep 2019 2021-04-26 16:37:57 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1 2021-04-26 16:37:57 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Betelgeuse/emailAddress=info@airvpn.org, signature: RSA-SHA512 2021-04-26 16:37:57 SSL Handshake: peer certificate: CN=Betelgeuse, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD 2021-04-26 16:37:57 Session is ACTIVE 2021-04-26 16:37:57 EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future 2021-04-26 16:37:57 EVENT: GET_CONFIG 2021-04-26 16:37:57 Sending PUSH_REQUEST to server... 2021-04-26 16:37:57 OPTIONS: 0 [comp-lzo] [no] 1 [redirect-gateway] [ipv6] [def1] [bypass-dhcp] 2 [dhcp-option] [DNS] [10.11.206.1] 3 [dhcp-option] [DNS6] [fde6:7a:7d20:7ce::1] 4 [tun-ipv6] 5 [route-gateway] [10.11.206.1] 6 [topology] [subnet] 7 [ping] [10] 8 [ping-restart] [60] 9 [ifconfig-ipv6] [fde6:7a:7d20:7ce::10a2/64] [fde6:7a:7d20:7ce::1] 10 [ifconfig] [10.11.206.164] [255.255.255.0] 11 [peer-id] [4] 12 [cipher] [CHACHA20-POLY1305] 2021-04-26 16:37:57 PROTOCOL OPTIONS: cipher: CHACHA20-POLY1305 digest: NONE ncp enabled: no key-derivation: OpenVPN PRF compress: LZO_STUB peer ID: 4 control channel: tls-crypt enabled 2021-04-26 16:37:57 EVENT: ASSIGN_IP 2021-04-26 16:37:57 WARNING: ignoring server DNS push request for address 10.11.206.1 2021-04-26 16:37:57 WARNING: ignoring server DNS push request for address fde6:7a:7d20:7ce::1 2021-04-26 16:37:57 net_iface_mtu_set: mtu 1500 for tun0 2021-04-26 16:37:57 net_iface_up: set tun0 up 2021-04-26 16:37:57 net_addr_add: 10.11.206.164/24 brd 10.11.206.255 dev tun0 2021-04-26 16:37:57 net_addr_add: fde6:7a:7d20:7ce::10a2/64 dev tun0 2021-04-26 16:37:57 net_route_add: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 2021-04-26 16:37:57 net_route_add: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 2021-04-26 16:37:57 net_route_add: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 2021-04-26 16:37:57 net_route_add: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 2021-04-26 16:37:57 TunPersist: saving tun context: Session Name: gb3.ipv6.vpn.airdns.org Layer: OSI_LAYER_3 Remote Address: 2a01:a500:320:c874:a667:c458:c21d:ccd4 [IPv6] Tunnel Addresses: 10.11.206.164/24 -> 10.11.206.1 fde6:7a:7d20:7ce::10a2/64 -> fde6:7a:7d20:7ce::1 [IPv6] Reroute Gateway: IPv4=1 IPv6=1 flags=[ ENABLE REROUTE_GW DEF1 BYPASS_DHCP IPv4 IPv6 ] Block IPv6: no Add Routes: Exclude Routes: DNS Servers: 10.11.206.1 fde6:7a:7d20:7ce::1 [IPv6] Search Domains: 2021-04-26 16:37:57 Connected via tun 2021-04-26 16:37:57 LZO-ASYM init swap=0 asym=1 2021-04-26 16:37:57 Comp-stub init swap=0 2021-04-26 16:37:57 EVENT: CONNECTED gb3.ipv6.vpn.airdns.org:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via /UDPv6 on tun/10.11.206.164/fde6:7a:7d20:7ce::10a2 gw=[10.11.206.1/fde6:7a:7d20:7ce::1] 2021-04-26 16:37:57 Connected to currently best AirVPN server in United Kingdom 2021-04-26 16:38:56 ---------------------- 2021-04-26 16:38:56 Connected to AirVPN server Betelgeuse (Maidenhead, United Kingdom) 2021-04-26 16:38:56 Users 71 - Load 13% - Bandwidth 135.70 Mbit/s - Max 1 Gbit/s 2021-04-26 16:38:56 Connection time: 00:01:01 2021-04-26 16:38:56 Transferred data: In 24.02 MB, Out 1.37 MB 2021-04-26 16:38:56 Current rate: In 124.38 Kbit/s, Out 42.67 Kbit/s 2021-04-26 16:38:56 Maximum rate: In 4.76 Mbit/s, Out 222.14 Kbit/s JOURNALCTL LOG peter@desktop:~/Desktop/VPN$ journalctl | grep bluetit Apr 26 16:27:47 desktop bluetit[3142]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 26 16:27:47 desktop bluetit[3142]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 26 16:27:47 desktop bluetit[3142]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 26 16:27:47 desktop bluetit[3175]: Bluetit daemon started with PID 3175 Apr 26 16:27:47 desktop bluetit[3175]: External network is reachable via gateway 192.168.0.1 through interface enp3s0 Apr 26 16:27:47 desktop bluetit[3175]: Successfully connected to D-Bus Apr 26 16:27:47 desktop bluetit[3175]: Reading run control directives from file /etc/airvpn/bluetit.rc Apr 26 16:27:47 desktop bluetit[3175]: IPv6 is available in this system Apr 26 16:27:47 desktop bluetit[3175]: System country set to GB by Bluetit policy. Apr 26 16:27:47 desktop bluetit[3175]: Bluetit successfully initialized and ready Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest updater thread started Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest update interval is 15 minutes Apr 26 16:27:47 desktop bluetit[3175]: Updating AirVPN Manifest Apr 26 16:27:47 desktop bluetit[3175]: AirVPN Manifest successfully retrieved from server Apr 26 16:34:47 desktop bluetit[3175]: Requested method "version" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "openvpn_info" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "bluetit_status -> Bluetit is ready" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "reset_bluetit_options -> Bluetit options successfully reset" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-ipv6 (V) -> on" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-6to4 (B) -> on" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-key (F) -> DESKTOP" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: cipher (C) -> CHACHA20-POLY1305" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: proto (p) -> udp" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: network-lock (N) -> nftables" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: ignore-dns-push (i)" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: ipv6 (6) -> yes" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-user (U) -> pjnsmb" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-password (P) -> ************" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-connect (O)" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "set_options: air-country (Z) -> GB" Apr 26 16:34:47 desktop bluetit[3175]: Requested method "airvpn_start_connection" Apr 26 16:34:47 desktop bluetit[3175]: OpenVPN3 connection successfully started Apr 26 16:34:48 desktop bluetit[3175]: Network filter and lock are using nftables Apr 26 16:34:48 desktop bluetit[3175]: Successfully loaded kernel module nf_tables Apr 26 16:34:48 desktop bluetit[3175]: Network filter successfully initialized Apr 26 16:34:48 desktop bluetit[3175]: Session network filter and lock successfully enabled Apr 26 16:34:48 desktop bluetit[3175]: AirVPN bootstrap servers are now allowed to pass through the network filter Apr 26 16:34:48 desktop bluetit[3175]: Logging in AirVPN user pjnsmb Apr 26 16:34:48 desktop bluetit[3175]: AirVPN user pjnsmb successfully logged in Apr 26 16:34:48 desktop bluetit[3175]: Selected user key: DESKTOP Apr 26 16:34:48 desktop bluetit[3175]: Starting connection to currently best AirVPN server in United Kingdom Apr 26 16:34:48 desktop bluetit[3175]: Starting VPN Connection Apr 26 16:34:48 desktop bluetit[3175]: OpenVPN3 client successfully created and initialized. Apr 26 16:34:48 desktop bluetit[3175]: TUN persistence is enabled. Apr 26 16:34:48 desktop bluetit[3175]: CIPHER OVERRIDE: CHACHA20-POLY1305 Apr 26 16:34:48 desktop bluetit[3175]: Successfully set OpenVPN3 client configuration Apr 26 16:34:48 desktop bluetit[3175]: Network lock set to 'nftables' by Bluetit policy Apr 26 16:34:48 desktop bluetit[3175]: Ignore DNS push is enabled by Bluetit policy Apr 26 16:34:48 desktop bluetit[3175]: Starting OpenVPN3 connection thread Apr 26 16:34:48 desktop bluetit[3175]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 26 16:34:48 desktop bluetit[3175]: Connection statistics updater thread started Apr 26 16:34:48 desktop bluetit[3175]: Frame=512/2048/512 mssfix-ctrl=1250 Apr 26 16:34:48 desktop bluetit[3175]: UNUSED OPTIONS Apr 26 16:34:48 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:34:48 desktop bluetit[3175]: Local IPv4 address 192.168.0.6 Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c Apr 26 16:34:48 desktop bluetit[3175]: Local IPv6 address fe80::154d:4265:bdaf:3d0 Apr 26 16:34:48 desktop bluetit[3175]: Local interface enp3s0 Apr 26 16:34:48 desktop bluetit[3175]: Setting up network filter and lock Apr 26 16:34:48 desktop bluetit[3175]: Allowing system DNS 127.0.0.1 to pass through the network filter Apr 26 16:34:58 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:34:58 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:08 desktop bluetit[3175]: DNS pre-resolve error on gb3.ipv6.vpn.airdns.org: Host not found (authoritative) Apr 26 16:35:08 desktop bluetit[3175]: ERROR: RESOLVE_ERROR Apr 26 16:35:08 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:35:08 desktop bluetit[3175]: Local IPv4 address 192.168.0.6 Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c Apr 26 16:35:08 desktop bluetit[3175]: Local IPv6 address fe80::154d:4265:bdaf:3d0 Apr 26 16:35:08 desktop bluetit[3175]: Local interface enp3s0 Apr 26 16:35:08 desktop bluetit[3175]: Setting up network filter and lock Apr 26 16:35:08 desktop bluetit[3175]: Allowing system DNS 127.0.0.1 to pass through the network filter Apr 26 16:35:18 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:35:18 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:18 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:35:18 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:35:18 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:35:18 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:35:28 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:35:28 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:28 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:35:28 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:35:28 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:35:28 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:35:38 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:35:38 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:38 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:35:38 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:35:38 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:35:38 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:35:48 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:35:48 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:48 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:35:48 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:35:48 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:35:48 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:35:58 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:35:58 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:35:58 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:35:58 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:35:58 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:35:58 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:36:08 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:36:08 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:36:08 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:36:08 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:36:08 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:36:08 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:36:18 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:36:18 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:36:18 desktop bluetit[3175]: Server poll timeout, trying next remote entry... Apr 26 16:36:18 desktop bluetit[3175]: EVENT: RECONNECTING Apr 26 16:36:18 desktop bluetit[3175]: ERROR: N_RECONNECT Apr 26 16:36:18 desktop bluetit[3175]: EVENT: RESOLVE Apr 26 16:36:27 desktop bluetit[3175]: Requested method "bluetit_status -> Bluetit is connected to VPN" Apr 26 16:36:27 desktop bluetit[3175]: Requested method "stop_connection" Apr 26 16:36:27 desktop bluetit[3175]: Stopping OpenVPN3 connection thread Apr 26 16:36:27 desktop bluetit[3175]: Connection statistics updater thread finished Apr 26 16:36:28 desktop bluetit[3175]: WARNING: Cannot resolve gb3.ipv6.vpn.airdns.org (Name or service not known) Apr 26 16:36:28 desktop bluetit[3175]: Network filter and lock successfully activated Apr 26 16:36:28 desktop bluetit[3175]: EVENT: DISCONNECTED Apr 26 16:36:28 desktop bluetit[3175]: Network filter successfully restored Apr 26 16:36:28 desktop bluetit[3175]: OpenVPN3 connection thread finished Apr 26 16:36:28 desktop bluetit[3175]: Logging out AirVPN user pjnsmb Apr 26 16:36:28 desktop bluetit[3175]: OpenVPN3 connection thread successfully terminated Apr 26 16:36:28 desktop dbus-daemon[559]: [system] Rejected send message, 3 matched rules; type="error", sender=":1.72" (uid=1000 pid=30520 comm="goldcrest --air-connect --air-country GB ") interface="(unset)" member="(unset)" error name="org.freedesktop.DBus.Error.UnknownMethod" requested_reply="0" destination=":1.66" (uid=0 pid=3175 comm="/sbin/bluetit ") Apr 26 16:36:51 desktop polkitd(authority=local)[645]: Operator of unix-session:1 successfully authenticated as unix-user:peter to gain TEMPORARY authorization for action org.freedesktop.systemd1.manage-units for system-bus-name::1.74 [systemctl stop bluetit.service] (owned by unix-user:peter) Apr 26 16:36:51 desktop bluetit[3175]: Received SIGTERM signal. Terminating Bluetit. Apr 26 16:36:51 desktop bluetit[3175]: AirVPN Manifest updater thread finished Apr 26 16:36:51 desktop systemd[1]: bluetit.service: Succeeded. Apr 26 16:37:02 desktop polkitd(authority=local)[645]: Operator of unix-session:1 successfully authenticated as unix-user:peter to gain TEMPORARY authorization for action org.freedesktop.systemd1.manage-units for system-bus-name::1.77 [systemctl start bluetit.service] (owned by unix-user:peter) Apr 26 16:37:02 desktop bluetit[39641]: Starting Bluetit - AirVPN OpenVPN 3 Service 1.1.0 RC3 - 16 April 2021 Apr 26 16:37:02 desktop bluetit[39641]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 26 16:37:02 desktop bluetit[39641]: Copyright (C) 2012-2020 OpenVPN Inc. All rights reserved. Apr 26 16:37:02 desktop bluetit[39643]: Bluetit daemon started with PID 39643 Apr 26 16:37:02 desktop bluetit[39643]: External network is reachable via gateway 192.168.0.1 through interface enp3s0 Apr 26 16:37:02 desktop bluetit[39643]: Successfully connected to D-Bus Apr 26 16:37:02 desktop bluetit[39643]: Reading run control directives from file /etc/airvpn/bluetit.rc Apr 26 16:37:02 desktop bluetit[39643]: IPv6 is available in this system Apr 26 16:37:02 desktop bluetit[39643]: System country set to GB by Bluetit policy. Apr 26 16:37:02 desktop bluetit[39643]: Bluetit successfully initialized and ready Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest updater thread started Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest update interval is 15 minutes Apr 26 16:37:02 desktop bluetit[39643]: Updating AirVPN Manifest Apr 26 16:37:02 desktop bluetit[39643]: AirVPN Manifest successfully retrieved from server Apr 26 16:37:56 desktop bluetit[39643]: Requested method "version" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "openvpn_info" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "bluetit_status -> Bluetit is ready" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "reset_bluetit_options -> Bluetit options successfully reset" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-ipv6 (V) -> on" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-6to4 (B) -> on" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-key (F) -> DESKTOP" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: cipher (C) -> CHACHA20-POLY1305" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: proto (p) -> udp" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: network-lock (N) -> nftables" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: ignore-dns-push (i)" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: ipv6 (6) -> yes" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-user (U) -> pjnsmb" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-password (P) -> ************" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-connect (O)" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "set_options: air-country (Z) -> GB" Apr 26 16:37:56 desktop bluetit[39643]: Requested method "airvpn_start_connection" Apr 26 16:37:56 desktop bluetit[39643]: OpenVPN3 connection successfully started Apr 26 16:37:56 desktop bluetit[39643]: Network filter and lock are using nftables Apr 26 16:37:56 desktop bluetit[39643]: Successfully loaded kernel module nf_tables Apr 26 16:37:56 desktop bluetit[39643]: Network filter successfully initialized Apr 26 16:37:56 desktop bluetit[39643]: Session network filter and lock successfully enabled Apr 26 16:37:56 desktop bluetit[39643]: AirVPN bootstrap servers are now allowed to pass through the network filter Apr 26 16:37:56 desktop bluetit[39643]: Logging in AirVPN user pjnsmb Apr 26 16:37:57 desktop bluetit[39643]: AirVPN user pjnsmb successfully logged in Apr 26 16:37:57 desktop bluetit[39643]: Selected user key: DESKTOP Apr 26 16:37:57 desktop bluetit[39643]: Starting connection to currently best AirVPN server in United Kingdom Apr 26 16:37:57 desktop bluetit[39643]: Starting VPN Connection Apr 26 16:37:57 desktop bluetit[39643]: OpenVPN3 client successfully created and initialized. Apr 26 16:37:57 desktop bluetit[39643]: TUN persistence is enabled. Apr 26 16:37:57 desktop bluetit[39643]: CIPHER OVERRIDE: CHACHA20-POLY1305 Apr 26 16:37:57 desktop bluetit[39643]: Successfully set OpenVPN3 client configuration Apr 26 16:37:57 desktop bluetit[39643]: Network lock set to 'nftables' by Bluetit policy Apr 26 16:37:57 desktop bluetit[39643]: Ignore DNS push is enabled by Bluetit policy Apr 26 16:37:57 desktop bluetit[39643]: Starting OpenVPN3 connection thread Apr 26 16:37:57 desktop bluetit[39643]: OpenVPN core 3.7 AirVPN linux x86_64 64-bit Apr 26 16:37:57 desktop bluetit[39643]: Connection statistics updater thread started Apr 26 16:37:57 desktop bluetit[39643]: Frame=512/2048/512 mssfix-ctrl=1250 Apr 26 16:37:57 desktop bluetit[39643]: UNUSED OPTIONS Apr 26 16:37:57 desktop bluetit[39643]: EVENT: RESOLVE Apr 26 16:37:57 desktop bluetit[39643]: Local IPv4 address 192.168.0.6 Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address 2a02:c7f:cc09:d900:e8e0:78ab:dbaa:b120 Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address fdda:2d87:d69a:0:66c2:963b:c4e3:9f3c Apr 26 16:37:57 desktop bluetit[39643]: Local IPv6 address fe80::154d:4265:bdaf:3d0 Apr 26 16:37:57 desktop bluetit[39643]: Local interface enp3s0 Apr 26 16:37:57 desktop bluetit[39643]: Setting up network filter and lock Apr 26 16:37:57 desktop bluetit[39643]: Allowing system DNS 127.0.0.1 to pass through the network filter Apr 26 16:37:57 desktop bluetit[39643]: Resolved server gb3.ipv6.vpn.airdns.org into IPv6 2a01:a500:320:c874:a667:c458:c21d:ccd4 Apr 26 16:37:57 desktop bluetit[39643]: Adding IPv6 server 2a01:a500:320:c874:a667:c458:c21d:ccd4 to network filter Apr 26 16:37:57 desktop bluetit[39643]: Network filter and lock successfully activated Apr 26 16:37:57 desktop bluetit[39643]: Contacting [2a01:a500:320:c874:a667:c458:c21d:ccd4]:443 via UDP Apr 26 16:37:57 desktop bluetit[39643]: EVENT: WAIT Apr 26 16:37:57 desktop bluetit[39643]: net_route_best_gw query IPv6: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 Apr 26 16:37:57 desktop bluetit[39643]: sitnl_route_best_gw result: via fe80::3e89:94ff:fef6:ead1 dev enp3s0 Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0 Apr 26 16:37:57 desktop bluetit[39643]: Connecting to [gb3.ipv6.vpn.airdns.org]:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via UDPv6 Apr 26 16:37:57 desktop bluetit[39643]: EVENT: CONNECTING Apr 26 16:37:57 desktop bluetit[39643]: Tunnel Options:V4,dev-type tun,link-mtu 1522,tun-mtu 1500,proto UDPv4,comp-lzo,cipher CHACHA20-POLY1305,auth [null-digest],keysize 256,key-method 2,tls-client Apr 26 16:37:57 desktop bluetit[39643]: Peer Info: Apr 26 16:37:57 desktop bluetit[39643]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org CA/emailAddress=info@airvpn.org, signature: RSA-SHA1 Apr 26 16:37:57 desktop bluetit[39643]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=Betelgeuse/emailAddress=info@airvpn.org, signature: RSA-SHA512 Apr 26 16:37:57 desktop bluetit[39643]: SSL Handshake: peer certificate: CN=Betelgeuse, 4096 bit RSA, cipher: TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD Apr 26 16:37:57 desktop bluetit[39643]: Session is ACTIVE Apr 26 16:37:57 desktop bluetit[39643]: EVENT: WARN TLS: received certificate signed with SHA1. Please inform your admin to upgrade to a stronger algorithm. Support for SHA1 signatures will be dropped in the future Apr 26 16:37:57 desktop bluetit[39643]: EVENT: GET_CONFIG Apr 26 16:37:57 desktop bluetit[39643]: Sending PUSH_REQUEST to server... Apr 26 16:37:57 desktop bluetit[39643]: OPTIONS: Apr 26 16:37:57 desktop bluetit[39643]: PROTOCOL OPTIONS: Apr 26 16:37:57 desktop bluetit[39643]: EVENT: ASSIGN_IP Apr 26 16:37:57 desktop bluetit[39643]: WARNING: ignoring server DNS push request for address 10.11.206.1 Apr 26 16:37:57 desktop bluetit[39643]: WARNING: ignoring server DNS push request for address fde6:7a:7d20:7ce::1 Apr 26 16:37:57 desktop bluetit[39643]: net_iface_mtu_set: mtu 1500 for tun0 Apr 26 16:37:57 desktop bluetit[39643]: net_iface_up: set tun0 up Apr 26 16:37:57 desktop bluetit[39643]: net_addr_add: 10.11.206.164/24 brd 10.11.206.255 dev tun0 Apr 26 16:37:57 desktop bluetit[39643]: net_addr_add: fde6:7a:7d20:7ce::10a2/64 dev tun0 Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 Apr 26 16:37:57 desktop bluetit[39643]: net_route_add: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 Apr 26 16:37:57 desktop bluetit[39643]: TunPersist: saving tun context: Apr 26 16:37:57 desktop bluetit[39643]: Connected via tun Apr 26 16:37:57 desktop bluetit[39643]: LZO-ASYM init swap=0 asym=1 Apr 26 16:37:57 desktop bluetit[39643]: Comp-stub init swap=0 Apr 26 16:37:57 desktop bluetit[39643]: EVENT: CONNECTED gb3.ipv6.vpn.airdns.org:443 (2a01:a500:320:c874:a667:c458:c21d:ccd4) via /UDPv6 on tun/10.11.206.164/fde6:7a:7d20:7ce::10a2 gw=[10.11.206.1/fde6:7a:7d20:7ce::1] Apr 26 16:37:57 desktop bluetit[39643]: Connected to currently best AirVPN server in United Kingdom Apr 26 16:46:46 desktop bluetit[39643]: Requested method "bluetit_status -> Bluetit is connected to VPN" Apr 26 16:46:46 desktop bluetit[39643]: Requested method "stop_connection" Apr 26 16:46:46 desktop bluetit[39643]: Stopping OpenVPN3 connection thread Apr 26 16:46:46 desktop bluetit[39643]: Connection statistics updater thread finished Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 8000::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: ::/1 via fde6:7a:7d20:7ce::1 dev tun0 table 0 metric 0 Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 128.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 0.0.0.0/1 via 10.11.206.1 dev tun0 table 0 metric 0 Apr 26 16:46:46 desktop bluetit[39643]: net_addr_del: fde6:7a:7d20:7ce::10a2/64 dev tun0 Apr 26 16:46:46 desktop bluetit[39643]: net_addr_del: 10.11.206.164/24 dev tun0 Apr 26 16:46:46 desktop bluetit[39643]: net_iface_mtu_set: mtu 1500 for tun0 Apr 26 16:46:46 desktop bluetit[39643]: net_iface_up: set tun0 down Apr 26 16:46:46 desktop bluetit[39643]: net_route_del: 2a01:a500:320:c874:a667:c458:c21d:ccd4/128 via fe80::3e89:94ff:fef6:ead1 dev enp3s0 table 0 metric 0 Apr 26 16:46:46 desktop bluetit[39643]: EVENT: DISCONNECTED Apr 26 16:46:46 desktop bluetit[39643]: Network filter successfully restored Apr 26 16:46:46 desktop bluetit[39643]: OpenVPN3 connection thread finished Apr 26 16:46:46 desktop bluetit[39643]: Logging out AirVPN user pjnsmb Apr 26 16:46:46 desktop bluetit[39643]: OpenVPN3 connection thread successfully terminated Apr 26 16:46:46 desktop dbus-daemon[559]: [system] Rejected send message, 3 matched rules; type="error", sender=":1.81" (uid=1000 pid=42227 comm="goldcrest --air-connect --air-country GB ") interface="(unset)" member="(unset)" error name="org.freedesktop.DBus.Error.UnknownMethod" requested_reply="0" destination=":1.79" (uid=0 pid=39643 comm="/sbin/bluetit ") peter@desktop:~/Desktop/VPN$ COPY OF BLUETIT.RC # # bluetit runcontrol file # # AirVPN bootstrap servers bootserver http://63.33.78.166 bootserver http://52.48.66.85 bootserver http://54.93.175.114 bootserver http://63.33.116.50 # RSA Parameters rsaexponent AQAB rsamodulus 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 # bootserver http://52.48.66.85 # rsaexponent <value> # rsamodulus <value> #airconnectatboot country # networklockpersist <on|iptables|nftables|pf|off> airusername pjnsmb airpassword XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXxxx airkey DESKTOP # airserver <airvpn_server_name> #aircountry united kingdom # airproto <udp|tcp> # airport <port> # aircipher <cipher_name> # manifestupdateinterval <minutes> # airwhiteserverlist <server list> # airblackserverlist <server list> # airwhitecountrylist <server list> # airblackcountrylist <server list> country GB # remote <ip|url list> # proto <udp|tcp> # port <port> # tunpersist <yes|no> # cipher <cipher_names> # maxconnretries <number> # tcpqueuelimit <value> # ncpdisable <yes|no> networklock nftables ignorednspush yes # timeout <seconds> # compress <yes|no|asym> # tlsversionmin <disabled|default|tls_1_x> # proxyhost <ip|url> # proxyport <port> # proxyusername <username> # proxypassword <password> # proxybasic <yes|no> cheers pjnsmb Hide pjnsmb's signature Hide all signatures regardspjnsmb Share this post Link to post