Staff 9973 Posted ... you have right... the port is 9150 but then Tor tell me:[Warning] socks5: command 3 not recognized. Rejecting.[Warning] Fetching socks handshake failed. Closing.and openvpn's log tell me the same previous thing...Hello!Can you please make sure that you select a TCP port for the OpenVPN connection? Also, are you running some wrapper/GUI or OpenVPN directly?Kind regards Quote Share this post Link to post
huiliqwr 0 Posted ... Sorry if i'm not explaining very well... however i'm using native openvpn... and udp, so i think it's that the problem. how can i change the protocol? i've to change only the "proto udp" with "proto tcp" line in the config of openvpn? Quote Share this post Link to post
Staff 9973 Posted ... Sorry if i'm not explaining very well... however i'm using native openvpn... and udp, so i think it's that the problem. how can i change the protocol? i've to change only the "proto udp" with "proto tcp" line in the config of openvpn?Hello!Exactly!Kind regards Quote Share this post Link to post
tonywalker 0 Posted ... Hello, I'm trying to using AirVPN with TOR as described here: https://airvpn.org/tor/ I'm on a Mac and using Tunnelblick, but it seems it can't connect to the VPN, the log gives this error: TCP: connect to 127.0.0.1:9050 failed, will try again in 5 seconds: Connection refused Tor Browser Bundle is running. Do I have to change settings at the Tor Browser? Thanks for your help Quote Share this post Link to post
Staff 9973 Posted ... Hello,I'm trying to using AirVPN with TOR as described here: https://airvpn.org/tor/I'm on a Mac and using Tunnelblick, but it seems it can't connect to the VPN, the log gives this error: TCP: connect to 127.0.0.1:9050 failed, will try again in 5 seconds: Connection refusedTor Browser Bundle is running. Do I have to change settings at the Tor Browser?Thanks for your helpHello!It seems that the proxy is not listening to port 9050 (or it is not running). Maybe is it listening to some other port?In Vidalia, open "Settings"->"Advanced" and uncheck the box that says 'Configure ControlPort automatically'. Your SOCKS port will then be 9050. Kind regards Quote Share this post Link to post
tonywalker 0 Posted ... Thanks, that worked. I can connect now to the VPN, but there are other problems now: 1. When connected to the VPN I can't open any website, no connection possible. I tried this in the TOR browser and in other browsers. 2. The Tunnelblick VPN connection last only for about one minute. Then it disconnects for no obvious reason. Any help on this? Quote Share this post Link to post
premiiier 0 Posted ... Hi folks..I seem to be having the same problem. Call me dumb, but how do you access vidalia settings? Thank you Quote Share this post Link to post
Staff 9973 Posted ... Thanks, that worked. I can connect now to the VPN, but there are other problems now: 1. When connected to the VPN I can't open any website, no connection possible. I tried this in the TOR browser and in other browsers.2. The Tunnelblick VPN connection last only for about one minute. Then it disconnects for no obvious reason.Any help on this?Hello!Are you trying the connection to a TCP or an UDP port?Kind regards Quote Share this post Link to post
tonywalker 0 Posted ... I guess I'm trying to connect to a TCP port. Unfortunately, I'm not really a tech guy. But I'll try to explain again what I need: basically what I want is use AirVPN with TOR so I can access a certain website that otherwise refuses Tor connection. So I installed Torbrowser bundle and Tunnelblick. In Vidalia, I unchecked "Configure Control Port automatically" and I now have these settings: ControlPort 9051, SocksPort 9050 I then created a VPN configuration file at https://airvpn.org/direct_access/ with these settings: Protocol: TCP Port: 443 Proxy: Socks, 127.0.0.1, 9050 Now I can connect to the VPN with Tunnelblick, but the connection breaks after around 1 minute. Also, once the VPN connection is up I can't connect to any website using any of my browsers – maybe this is an DNS issue? Quote Share this post Link to post
bubbba 3 Posted ... I am having the same issue but on Windows XP using AdvOR. I am using only TCP ports on both TOR and the VPN. It connects just fine but when I open Chrome and try and go to ANY website the VPN connection drops. Any ideas why this might happen would be greatly appreciated. FYI, I am connecting to TOR first, then the VPN using the OpenVPN GUI. Also, I created the AirVPN connection to use the Proxy as well. I have Zero problems if I simply connect to AirVPN without TOR. Everything works great. Regards, Bubbba Quote Share this post Link to post
Staff 9973 Posted ... I guess I'm trying to connect to a TCP port. Unfortunately, I'm not really a tech guy. But I'll try to explain again what I need: basically what I want is use AirVPN with TOR so I can access a certain website that otherwise refuses Tor connection. So I installed Torbrowser bundle and Tunnelblick. In Vidalia, I unchecked "Configure Control Port automatically" and I now have these settings: ControlPort 9051, SocksPort 9050I then created a VPN configuration file at https://airvpn.org/direct_access/ with these settings: Protocol: TCPPort: 443Proxy: Socks, 127.0.0.1, 9050Now I can connect to the VPN with Tunnelblick, but the connection breaks after around 1 minute. Also, once the VPN connection is up I can't connect to any website using any of my browsers – maybe this is an DNS issue?Hello!Just after the unexpected disconnection, can you please send us the complete Tunnelblick logs?In order to determine if it's a DNS issue (at least during the 1 min connection...), please send us the output of the following commands (issued from a command shell):ping 10.4.0.1ping airvpn.orgFinally, if you don't connect over a proxy, does Tunnelblick connect fine?Kind regards Quote Share this post Link to post
tonywalker 0 Posted ... When not connecting over a proxy, Tunnelblick is working fine. Here's the ping results (during the time connected to the VPN over Proxy): ping 10.4.0.1 Request timeout for icmp_seq 0 Request timeout for icmp_seq 1 Request timeout for icmp_seq 2 Request timeout for icmp_seq 3 ping airvpn.org This command gives no output at all Here's the log output after losing the connection: 2013-03-09 19:07:48 Connection reset, restarting [0] 2013-03-09 19:07:48 TCP/UDP: Closing socket Quote Share this post Link to post
Staff 9973 Posted ... When not connecting over a proxy, Tunnelblick is working fine.Here's the ping results (during the time connected to the VPN over Proxy):ping 10.4.0.1Request timeout for icmp_seq 0Request timeout for icmp_seq 1Request timeout for icmp_seq 2Request timeout for icmp_seq 3ping airvpn.orgThis command gives no output at allHere's the log output after losing the connection:2013-03-09 19:07:48 Connection reset, restarting [0]2013-03-09 19:07:48 TCP/UDP: Closing socketHello!It's not a DNS issue... apparently you have no connectivity at all when trying to connect over a proxy.Can you please try Viscosity for testing purposes? It's not open source and it's a commercial product, but Sparklabs offer 1 month free evaluation:http://www.sparklabs.com/viscosityKind regards Quote Share this post Link to post
tonywalker 0 Posted ... Just tested with Viscosity – getting the same results. VPN connection drops after about one minute and unable to ping any website. Quote Share this post Link to post
tonywalker 0 Posted ... Maybe it's an DNS issue indeed. After connecting to the VPN, this address show up as my DNS Server: 10.7.0.1 I can't ping this address, meaning I don't have access to an DNS server. Strange. Quote Share this post Link to post
Staff 9973 Posted ... Maybe it's an DNS issue indeed. After connecting to the VPN, this address show up as my DNS Server: 10.7.0.1I can't ping this address, meaning I don't have access to an DNS server. Strange.Hello!Probably not, 10.7.0.1 is the DNS address DHCP-pushed by our servers when you connect to 80 TCP.Since Viscosity fails as well, probably it's worth checking something else in your system. Do you have any program which might interfere, such as LittleSnitch? Check also your firewall rules, please. Can you establish successfully connections over TOR alone? Can you please try a connection (OpenVPN over TOR again) to port 53 TCP?Kind regards Quote Share this post Link to post
tarnawka 0 Posted ... Hello I have problem with conection Vpn over TOR.I'm working on Ubuntu 12.4. So first I'm lauching to TOR by TOR browser, My settings in Vidalia are TCP 127.0.0.1 9051 and next I configure VPN by Network Conections, import etc. My VPN settings are TCP 80 port by socks 127.0.0.1 9051.And I try to launch the VPN conection by system show my comunicate "failed because conection attempted timed out" Could you tell me what I'm doing wrong. Thanks for help Quote Share this post Link to post
pj 72 Posted ... HelloI have problem with conection Vpn over TOR.I'm working on Ubuntu 12.4. So first I'm lauching to TOR by TOR browser,My settings in Vidalia areTCP 127.0.0.1 9051 and next I configure VPN by Network Conections, import etc.My VPN settings are TCP 80 port by socks 127.0.0.1 9051.And I try to launch the VPN conection by system show my comunicate "failed because conection attempted timed out"Could you tell me what I'm doing wrong.Thanks for helpHello!Please make sure that the Socks Port is correct. Usually 9051 is the Control Port, not the Socks Port (OpenVPN must connect to the Socks Port).Kind regards Quote Share this post Link to post
airbreathe 0 Posted ... I am having troubles with connecting to AirVPN over Tor Log part: Mar 20 01:16:12 localhost openvpn[5214]: Attempting to establish TCP connection with 127.0.0.1:9150 [nonblock] Mar 20 01:16:12 localhost openvpn[5214]: TCP connection established with 127.0.0.1:9150 Mar 20 01:16:13 localhost openvpn[5214]: TCPv4_CLIENT link local: [undef] Mar 20 01:16:13 localhost openvpn[5214]: TCPv4_CLIENT link remote: 127.0.0.1:9150 Mar 20 01:16:14 localhost openvpn[5214]: TLS: Initial packet from 127.0.0.1:9150, sid=54131c08 9e5e4a03 Mar 20 01:16:20 localhost openvpn[5214]: VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org Mar 20 01:16:20 localhost openvpn[5214]: VERIFY OK: nsCertType=SERVER Mar 20 01:16:20 localhost openvpn[5214]: VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org Mar 20 01:16:35 localhost openvpn[5214]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mar 20 01:16:35 localhost openvpn[5214]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 20 01:16:35 localhost openvpn[5214]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mar 20 01:16:35 localhost openvpn[5214]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 20 01:16:35 localhost openvpn[5214]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA Mar 20 01:16:35 localhost openvpn[5214]: [server] Peer Connection Initiated with 127.0.0.1:9150 Mar 20 01:16:37 localhost openvpn[5214]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1) Mar 20 01:16:38 localhost openvpn[5214]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.5.0.1,comp-lzo no,route 10.5.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.5.2.146 10.5.2.145' Mar 20 01:16:38 localhost openvpn[5214]: OPTIONS IMPORT: timers and/or timeouts modified Mar 20 01:16:38 localhost openvpn[5214]: OPTIONS IMPORT: LZO parms modified Mar 20 01:16:38 localhost openvpn[5214]: OPTIONS IMPORT: --ifconfig/up options modified Mar 20 01:16:38 localhost openvpn[5214]: OPTIONS IMPORT: route options modified Mar 20 01:16:38 localhost openvpn[5214]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Mar 20 01:16:38 localhost openvpn[5214]: ROUTE default_gateway=10.1.1.1 Mar 20 01:16:38 localhost openvpn[5214]: TUN/TAP device tun0 opened Mar 20 01:16:38 localhost openvpn[5214]: TUN/TAP TX queue length set to 100 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip link set dev tun0 up mtu 1500 Mar 20 01:16:38 localhost kernel: tun0: Disabled Privacy Extensions Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip addr add dev tun0 local 10.5.2.146 peer 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 127.0.0.1/32 via 10.1.1.1 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 0.0.0.0/1 via 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 128.0.0.0/1 via 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 10.5.0.1/32 via 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: Initialization Sequence Completed Mar 20 01:17:38 localhost openvpn[5214]: [server] Inactivity timeout (--ping-restart), restarting Mar 20 01:17:38 localhost openvpn[5214]: TCP/UDP: Closing socket Mar 20 01:17:38 localhost openvpn[5214]: /sbin/ip route del 10.5.0.1/32 Mar 20 01:17:38 localhost openvpn[5214]: /sbin/ip route del 127.0.0.1/32 Mar 20 01:17:38 localhost openvpn[5214]: /sbin/ip route del 0.0.0.0/1 Mar 20 01:17:38 localhost openvpn[5214]: /sbin/ip route del 128.0.0.0/1 Mar 20 01:17:38 localhost openvpn[5214]: Closing TUN/TAP interface Mar 20 01:17:38 localhost openvpn[5214]: /sbin/ip addr del dev tun0 local 10.5.2.146 peer 10.5.2.145 Mar 20 01:17:38 localhost kernel: libfcoe_device_notification: NETDEV_UNREGISTER tun0 Mar 20 01:17:38 localhost openvpn[5214]: SIGUSR1[soft,ping-restart] received, process restarting Mar 20 01:17:38 localhost openvpn[5214]: Restart pause, 5 second(s) Mar 20 01:17:43 localhost openvpn[5214]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mar 20 01:17:43 localhost openvpn[5214]: LZO compression initialized Mar 20 01:17:43 localhost openvpn[5214]: Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ] Mar 20 01:17:43 localhost openvpn[5214]: Socket Buffers: R=[87380->131072] S=[16384->131072] Mar 20 01:17:43 localhost openvpn[5214]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ] Mar 20 01:17:43 localhost openvpn[5214]: Local Options hash (VER=V4): '958c5492' Mar 20 01:17:43 localhost openvpn[5214]: Expected Remote Options hash (VER=V4): '79ef4284' Mar 20 01:17:43 localhost openvpn[5214]: Attempting to establish TCP connection with 127.0.0.1:9150 [nonblock] Mar 20 01:17:43 localhost openvpn[5214]: TCP connection established with 127.0.0.1:9150 Mar 20 01:17:48 localhost openvpn[5214]: recv_socks_reply: TCP port read timeout expired: Operation now in progress (errno=115) Mar 20 01:17:48 localhost openvpn[5214]: TCP/UDP: Closing socket Mar 20 01:17:48 localhost openvpn[5214]: SIGTERM[soft,init_instance] received, process exiting seems like ping 10 is not performed successfully and ping-restart 60 occurs. However, ping-restart fails due to "recv_socks_reply: TCP port read timeout expired: Operation now in progress (errno=115)" This sequence makes me think that the trouble is somewhere n here: 1. why ping 10 fails? 2. why ping-restart fails? 3. what is "recv_socks_reply: TCP port read timeout expired: Operation now in progress (errno=115)"? Any ideas? Tor by itself works without any troubles. Also I am not specialist in routing, so can anyone explain in details this little magic about new routes: Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 127.0.0.1/32 via 10.1.1.1 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 0.0.0.0/1 via 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 128.0.0.0/1 via 10.5.2.145 Mar 20 01:16:38 localhost openvpn[5214]: /sbin/ip route add 10.5.0.1/32 via 10.5.2.145 especially this one: route add 127.0.0.1/32 via 10.1.1.1 why 127.0.0.1 should be accessed via 10.1.1.1? May here be a trouble with routing? Quote Share this post Link to post
Staff 9973 Posted ... @airbreathe Hello! It might be an OpenVPN 2.2.x bug: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657964 See also these messages: http://readlist.com/lists/lists.sourceforge.net/openvpn-users/2/12784.html http://readlist.com/lists/lists.sourceforge.net/openvpn-users/2/12785.html However, we are currently unable to reproduce the behavior with OpenVPN 2.2.1 on Debian 6 and Debian 7 64 bit. Which OpenVPN version are you running? Kind regards Quote Share this post Link to post
airbreathe 0 Posted ... I am using CentOS release 6.2 (Final) openvpn.x86_64 2.2.2-1.el6.rf Quote Share this post Link to post
Staff 9973 Posted ... I am usingCentOS release 6.2 (Final)openvpn.x86_64 2.2.2-1.el6.rfHello!Any chance that you can try OpenVPN 2.3.0?Kind regards Quote Share this post Link to post
airbreathe 0 Posted ... Looks like there is no RPM for 2.3.0 available so far - need to build it from source. Need some time to get this running. Meanwhile, can you please explain second part of my question - regarding routing. I am still confused with oute add 127.0.0.1/32 via 10.1.1.1 - is it right? Quote Share this post Link to post
airbreathe 0 Posted ... Just tested with OpenVPN 2.3.0 RPM found here http://repos.openvpn.net/repos/yum/conf/repos.openvpn.net-CentOS6-snapshots.txt Result is absolutely the same: Mar 20 02:23:30 localhost openvpn[14269]: OpenVPN 2.3.0 x86_64-unknown-linux-gnu [sSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [iPv6] built on Jan 8 2013 Mar 20 02:23:30 localhost openvpn[14269]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mar 20 02:23:30 localhost openvpn[14269]: Socket Buffers: R=[87380->131072] S=[16384->131072] Mar 20 02:23:30 localhost openvpn[14270]: Attempting to establish TCP connection with [AF_INET]127.0.0.1:9150 [nonblock] Mar 20 02:23:30 localhost openvpn[14270]: TCP connection established with [AF_INET]127.0.0.1:9150 Mar 20 02:23:32 localhost openvpn[14270]: TCPv4_CLIENT link local: [undef] Mar 20 02:23:32 localhost openvpn[14270]: TCPv4_CLIENT link remote: [AF_INET]127.0.0.1:9150 Mar 20 02:23:32 localhost openvpn[14270]: TLS: Initial packet from [AF_INET]127.0.0.1:9150, sid=bc42eabd 7ff7c17b Mar 20 02:23:37 localhost openvpn[14270]: VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org Mar 20 02:23:37 localhost openvpn[14270]: VERIFY OK: nsCertType=SERVER Mar 20 02:23:37 localhost openvpn[14270]: VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=server, emailAddress=info@airvpn.org Mar 20 02:23:49 localhost openvpn[14270]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mar 20 02:23:49 localhost openvpn[14270]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 20 02:23:49 localhost openvpn[14270]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mar 20 02:23:49 localhost openvpn[14270]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mar 20 02:23:49 localhost openvpn[14270]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA Mar 20 02:23:49 localhost openvpn[14270]: [server] Peer Connection Initiated with [AF_INET]127.0.0.1:9150 Mar 20 02:23:51 localhost openvpn[14270]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1) Mar 20 02:23:52 localhost openvpn[14270]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.5.0.1,comp-lzo no,route 10.5.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.5.2.230 10.5.2.229' Mar 20 02:23:52 localhost openvpn[14270]: OPTIONS IMPORT: timers and/or timeouts modified Mar 20 02:23:52 localhost openvpn[14270]: OPTIONS IMPORT: LZO parms modified Mar 20 02:23:52 localhost openvpn[14270]: OPTIONS IMPORT: --ifconfig/up options modified Mar 20 02:23:52 localhost openvpn[14270]: OPTIONS IMPORT: route options modified Mar 20 02:23:52 localhost openvpn[14270]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Mar 20 02:23:52 localhost openvpn[14270]: ROUTE_GATEWAY 10.1.1.1 Mar 20 02:23:52 localhost openvpn[14270]: TUN/TAP device tun0 opened Mar 20 02:23:52 localhost openvpn[14270]: TUN/TAP TX queue length set to 100 Mar 20 02:23:52 localhost openvpn[14270]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip link set dev tun0 up mtu 1500 Mar 20 02:23:52 localhost kernel: tun0: Disabled Privacy Extensions Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip addr add dev tun0 local 10.5.2.230 peer 10.5.2.229 Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip route add 127.0.0.1/32 via 10.1.1.1 Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip route add 0.0.0.0/1 via 10.5.2.229 Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip route add 128.0.0.0/1 via 10.5.2.229 Mar 20 02:23:52 localhost openvpn[14270]: /sbin/ip route add 10.5.0.1/32 via 10.5.2.229 Mar 20 02:23:52 localhost openvpn[14270]: Initialization Sequence Completed Mar 20 02:24:52 localhost openvpn[14270]: [server] Inactivity timeout (--ping-restart), restarting Mar 20 02:24:52 localhost openvpn[14270]: /sbin/ip route del 10.5.0.1/32 Mar 20 02:24:52 localhost openvpn[14270]: /sbin/ip route del 127.0.0.1/32 Mar 20 02:24:52 localhost openvpn[14270]: /sbin/ip route del 0.0.0.0/1 Mar 20 02:24:52 localhost openvpn[14270]: /sbin/ip route del 128.0.0.0/1 Mar 20 02:24:52 localhost openvpn[14270]: Closing TUN/TAP interface Mar 20 02:24:52 localhost openvpn[14270]: /sbin/ip addr del dev tun0 local 10.5.2.230 peer 10.5.2.229 Mar 20 02:24:52 localhost kernel: libfcoe_device_notification: NETDEV_UNREGISTER tun0 Mar 20 02:24:52 localhost openvpn[14270]: SIGUSR1[soft,ping-restart] received, process restarting Mar 20 02:24:52 localhost openvpn[14270]: Restart pause, 5 second(s) Mar 20 02:24:57 localhost openvpn[14270]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mar 20 02:24:57 localhost openvpn[14270]: Socket Buffers: R=[87380->131072] S=[16384->131072] Mar 20 02:24:57 localhost openvpn[14270]: Attempting to establish TCP connection with [AF_INET]127.0.0.1:9150 [nonblock] Mar 20 02:24:57 localhost openvpn[14270]: TCP connection established with [AF_INET]127.0.0.1:9150 Mar 20 02:25:02 localhost openvpn[14270]: recv_socks_reply: TCP port read timeout expired: Operation now in progress (errno=115) Mar 20 02:25:02 localhost openvpn[14270]: SIGTERM[soft,init_instance] received, process exiting Got [server] Inactivity timeout (--ping-restart), restarting which makes me think that ping 10 failed and ping-restart failed as well due to TCP port read timeout May be I am mistaken, but still, may be this is routing issue? routing looks like this during that 60 seconds before ping-restart occurs: Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 10.1.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 10.5.6.37 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 10.5.0.1 10.5.6.37 255.255.255.255 UGH 0 0 0 tun0 127.0.0.1 10.1.1.1 255.255.255.255 UGH 0 0 0 ppp0 0.0.0.0 10.5.6.37 128.0.0.0 UG 0 0 0 tun0 128.0.0.0 10.5.6.37 128.0.0.0 UG 0 0 0 tun0 0.0.0.0 10.1.1.1 0.0.0.0 UG 0 0 0 ppp0 Any help would be appreciated. Thanks. Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 10.1.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 10.5.6.37 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 10.5.0.1 10.5.6.37 255.255.255.255 UGH 0 0 0 tun0 127.0.0.1 10.1.1.1 255.255.255.255 UGH 0 0 0 ppp0 0.0.0.0 10.5.6.37 128.0.0.0 UG 0 0 0 tun0 128.0.0.0 10.5.6.37 128.0.0.0 UG 0 0 0 tun0 0.0.0.0 10.1.1.1 0.0.0.0 UG 0 0 0 ppp0 Quote Share this post Link to post
Staff 9973 Posted ... @airbreathe Hello! Apparently you edited the OpenVPN configuration file with the directive "remote 127.0.0.1". However, in order to allow OpenVPN to connect over a socks proxy, you must specify it through the "socks-proxy" directive. The "remote" directive must always point to the entry-IP of the VPN server you wish to connect to (over the proxy) otherwise OpenVPN has no way to set the correct routing table. Compare your configuration file with the configuration files generated by our configuration generator with the proxy option enabled. If you did so, is there any particular reason for which you needed this solution? If it is mandatory for you to keep this setup, probably adding a route manually could solve. Otherwise you should revert to the "canonical" OpenVPN setup to connect over a proxy. We're looking forward to hearing from you. Kind regards Quote Share this post Link to post