999null

UPDATE on this. 

I Change my "Device" key ( i used a different wireguard private public key on my nuc )  and IT WORKED !! wth?

Hi, 

I have installed ubuntu server 20.04 on a new Intel Nuc.

My issue is that with Wireguard connected on my nuc, I cannot get to install from pipx command (and potentially others, I don't know how to check)

nuc@usss:~$ pipx install --force pycowsay
Installing to existing directory '/home/nuc/.local/pipx/venvs/pycowsay'
WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None, status=None)) after connection broken by 'ReadTimeoutError("HTTPSConnectionPool(host='pypi.org', port=443): Read timed out. (read timeout=15)")': /simple/pip/
^CERROR: Operation cancelled by user

It works with wireguard off  (  sudo wg-quick down vpn  and then pipx install pycowsay )

Another thing to note, is the with wireguard on, I can install from pipx command on another laptop with same vpn exit point. (but different keys). 

Any advice how to find out the root of this issue? I am not sure where to start.


sysctl.conf  as follows on new NUC (some rtorrent tuning and bbr mode)
 

net.ipv6.conf.all.disable_ipv6=1
net.ipv6.conf.default.disable_ipv6=1
net.ipv6.conf.lo.disable_ipv6=1

## net.ipv4.ip_forward = 1
## disabled now, coz using nuc is a client


#### some new valus ###
# Maximum Socket Receive Buffer. 16MB per socket - which sounds like a lot, but will virtually never consume that much. Default: 212992
net.core.rmem_max = 16777216
# Maximum Socket Send Buffer. 16MB per socket - which sounds like a lot, but will virtually never consume that much. Default: 212992
net.core.wmem_max = 16777216
# Increase the write-buffer-space allocatable: min 4KB, def 12MB, max 16MB. Default: 4096 16384 4194304
net.ipv4.tcp_wmem = 4096 12582912 16777216
# Increase the read-buffer-space allocatable: min 4KB, def 12MB, max 16MB. Default: 4096 16384 4194304
net.ipv4.tcp_rmem = 4096 12582912 16777216

# Tells the system whether it should start at the default window size only for new TCP connections or also for existing TCP connections that have been idle for too long. Default: 1
net.ipv4.tcp_slow_start_after_idle = 0
# Allow reuse of sockets in TIME_WAIT state for new connections only when it is safe from the network stack’s perspective. Default: 0
net.ipv4.tcp_tw_reuse = 1

##Setting BBR as the default is simple. Open up a terminal window and issue the command sudo nano /etc/sysctl.conf. At the bottom of this file, add the following two lines:
net.core.default_qdisc=fq
net.ipv4.tcp_congestion_control=bbr

routing works fine - 
https://i.ibb.co/270nTnx/image.png
 

https://ibb.co/XWHS8NH

Turns out there is a setting on my router for "some" devices. I turned it on, and my connections seem to stay stabilize my connection. 

"Always Broadcast DHCP Server"

I also added my laptops LAN addresses in QoS setting, to give it a higher priority.
 

13 hours ago, OpenSourcerer said:

You didn't post any logs, so not sure what's triggering the disconnect

How to view these logs? where are they located? (ubuntu 20.04)

HI,

I am experiencing Frequent disconnection and reconnection, after my isp installed a new router. 

I suspect it's because of my ISP dns. (I have not changed it to cloudflare or quad9 yet which I had before). Could this be issue?

It's on both of my ubuntu servers (2 old Laptops one connected via ethernet, another is via wifi ). They worked perfectly, and were connected for weeks. 

Is there any way to drill down where the disconnection occurs? Is it on my server end? my router? or airvpn end?

I also have ipv6 disabled and  some other settings -- 

# Some network settings
net.ipv4.tcp_fin_timeout = 20
net.ipv4.tcp_slow_start_after_idle = 0
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_fastopen=3
net.ipv4.tcp_congestion_control=bbr
#####
net.core.rmem_max = 16777216
# Maximum Socket Send Buffer. 16MB per socket - which sounds like a lot, but will virtually never consume that much. Default: 212992
net.core.wmem_max = 16777216
# Increase the write-buffer-space allocatable: min 4KB, def 12MB, max 16MB. Default: 4096 16384 4194304
net.ipv4.tcp_wmem = 4096 12582912 16777216
# Increase the read-buffer-space allocatable: min 4KB, def 12MB, max 16MB. Default: 4096 16384 4194304
net.ipv4.tcp_rmem = 4096 12582912 16777216

# Tells the system whether it should start at the default window size only for new TCP connections or also for existing TCP connections that have been idle for too long. Default: 1
##net.ipv4.tcp_slow_start_after_idle = 0
# Allow reuse of sockets in TIME_WAIT state for new connections only when it is safe from the network stack’s perspective. Default: 0
##net.ipv4.tcp_tw_reuse = 1
# Do not last the complete time_wait cycle. Default: 0
# only works from Linux 2.4 to 4.11
net.ipv4.tcp_tw_recycle = 1
# Minimum time a socket will stay in TIME_WAIT state (unusable after being used once). Default: 60
net.ipv4.tcp_fin_timeout = 30
net.ipv6.conf.all.disable_ipv6=1
net.ipv6.conf.default.disable_ipv6=1
net.ipv6.conf.lo.disable_ipv6=1

 

Quote

(connected via wireguard with persist alive set to 15)

 

[Interface]
Address = xxxxx/10
PrivateKey = xxx=
DNS = 10.128.0.1

[Peer]
PublicKey = x+xxxx=
PresharedKey = xx/xx/xx=
Endpoint = xxxxx:1637
AllowedIPs = 0.0.0.0/0
PersistentKeepalive = 15

IS  there away I can allow to a connection between 2 devices (they are on same LAN) and both connected to same exit IP? 

What about a third one, not on same LAN...? 

Any advice on this? 

It worked before and today itself

I did ssh from one device to another device via LAN ip  itself (  ``` ssh username@10.xx.xx.xx.xx ```)
 
 

Hi,   This problem is confusing, I Dont know how to diagnose this. 

I have a https://domain.com:2222 and https://domain.com:3333  forwarded to internal SSL port ( 2222 and 3333 ) with A name on one of the Latvia Exit IP address.
Same with ssh ports access ( domain.com:2223 )  ( domain.com:3334 )

I Cannot connect to these with my Latvia exit IP. ( Another netherland exit point also does not work ). SSH access also does not work. 

I CAN Connect without my VPN .  And I used to connect before today with my vpn on

This issue is going for  few hours. 

PLEASE advice

Devices show connected under my client sessions, and fail2ban-client shows nothing banned

Edit  I got to work, if I use another IP exit point.  But why not same IP address?
 

Doesnt work with Netherlands servers. 

It works on some (or one) Singapore server. IDR which one.   

Azire is good, but no open port, so I came here. 

All Round it's a good VPN.  

I did not use any media services, (netflix, prime etc)
so I have no comment on that

https://i.ibb.co/2vyhhb4/image.png

hello, 

Can someone advice me how to show a domain here, instead of airvpn ip.  

I have a domain.com on cloudflare. Any advice appreciated.

(rutorrent window)

Thank you for your reply.

Although I am not sure this is correct, as this will delete all my previous rules. Please correct me if I am wrong.
 

iptables --flush


 

Hello everyone, 

Can someone advice me the iptable or PreUP postdown rules to set up for Wireguard, if the airvpn server goes down (for maintenance or error).  on ubuntu 20. 

Currently it's just this

[Interface]
Address = 10xxxxxxxxxxxxxxxxxxxxxxxxx6852/48
PrivateKey = oKdZxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx3ES1s=
DNS = 10.128.0.1, fd7d:76ee:e68f:a993::1

[Peer]
PublicKey = PyLCxxxxxxxxxxxxxxxxxxxxxxxxxxxxxuig+hk=
PresharedKey = q0xxxxxxxxxxxxxxxxxxxxxxxx9BacQ=
Endpoint = 134.19.179.146:1637
AllowedIPs = 0.0.0.0/0, ::/0
PersistentKeepalive = 15