You are not logged in.
Hello,
I'm trying to set up the PIA VPN on my Arch laptop; the OpenVPN log says it connects successfully, however I'm unable to ping or access any external ip / domain.
I've tried using NetworkManager + openVPN + private-internet-access-vpn AUR package to automate the process but that doesn't work either. I'm currently just using the OpenVPN cli to simply things:
sudo openvpn UK\ Southampton.ovpn
Tue Nov 28 11:57:41 2017 OpenVPN 2.4.4 x86_64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 26 2017
Tue Nov 28 11:57:41 2017 library versions: OpenSSL 1.1.0g 2 Nov 2017, LZO 2.10
Enter Auth Username: ...
Enter Auth Password: ...
Tue Nov 28 11:58:04 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]31.24.231.199:1198
Tue Nov 28 11:58:04 2017 UDP link local: (not bound)
Tue Nov 28 11:58:04 2017 UDP link remote: [AF_INET]31.24.231.199:1198
Tue Nov 28 11:58:04 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Nov 28 11:58:05 2017 [e89438976d713f78ec334eb8497c9bbc] Peer Connection Initiated with [AF_INET]31.24.231.199:1198
Tue Nov 28 11:58:06 2017 TUN/TAP device tun0 opened
Tue Nov 28 11:58:06 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Tue Nov 28 11:58:06 2017 /usr/bin/ip link set dev tun0 up mtu 1500
Tue Nov 28 11:58:06 2017 /usr/bin/ip addr add dev tun0 local 10.18.10.10 peer 10.18.10.9
Tue Nov 28 11:58:06 2017 Initialization Sequence Completed
The openvpn config file is stock from the PIA website:
client
dev tun
proto udp
remote uk-southampton.privateinternetaccess.com 1198
resolv-retry infinite
nobind
persist-key
persist-tun
cipher aes-128-cbc
auth sha1
tls-client
remote-cert-tls server
auth-user-pass
comp-lzo
verb 1
reneg-sec 0
crl-verify crl.rsa.2048.pem
ca ca.rsa.2048.crt
disable-occ
It sounds like there is some routing issue, but i'm not too sure how to go about debugging it
ip route without VPN:
default via 192.168.1.254 dev wlp3s0 src 192.168.1.151 metric 303
192.168.1.0/24 dev wlp3s0 proto kernel scope link src 192.168.1.151 metric 303
ip route with VPN:
0.0.0.0/1 via 10.25.10.5 dev tun0
default via 192.168.1.254 dev wlp3s0 src 192.168.1.151 metric 303
10.25.10.1 via 10.25.10.5 dev tun0
10.25.10.5 dev tun0 proto kernel scope link src 10.25.10.6
10.25.10.5 dev tun0 proto kernel scope link src 10.25.10.6 metric 450
31.24.226.244 via 192.168.1.254 dev wlp3s0
128.0.0.0/1 via 10.25.10.5 dev tun0
192.168.1.0/24 dev wlp3s0 proto kernel scope link src 192.168.1.151 metric 303
I don't quite understand too much about what I'm looking at here so the issue may be obvious.
It should be noted that I'm able to the use Free ProtonVPN ovpn config just fine - this connects successfully and my internet works just fine. Additionally, PIA works correctly on my android device on the same network so I can't see this being an issue with my local network / home router.
Thanks for looking!
Offline
Hi.
Can you please post your routes with protonvpn up? I think i have the same problem.
I can add that when vpn is up i cannot ping anything but vpn provider gateway (and my local tun ip of course).
Offline
Hi.
Can you please post your routes with protonvpn up? I think i have the same problem.
I can add that when vpn is up i cannot ping anything but vpn provider gateway (and my local tun ip of course).
0.0.0.0/1 via 10.8.0.1 dev tun0
default via 192.168.1.254 dev wlp3s0 src 192.168.1.156 metric 303
10.8.0.0/16 dev tun0 proto kernel scope link src 10.8.0.6
10.8.0.0/16 dev tun0 proto kernel scope link src 10.8.0.6 metric 450
89.39.107.193 via 192.168.1.254 dev wlp3s0
128.0.0.0/1 via 10.8.0.1 dev tun0
192.168.1.0/24 dev wlp3s0 proto kernel scope link src 192.168.1.156 metric 303
192.168.1.0/24 dev wlp3s0 proto kernel scope link src 192.168.1.155 metric 600
192.168.1.0/24 dev wlp3s0 proto kernel scope link src 192.168.1.156 metric 600
Offline
What i've done:
1. installed linux-lts
2. disabled ipv6 in my wired connection in nm
3. reboot using old linux-zen (not newly installed linux-lts)
4. internet is working (through openvpn)
wtf?!
All routes are the same (from first post, mine when it's not working, mine when it's working).
Last edited by yaaa (2017-11-29 17:52:07)
Offline
Hello
The Same problem here - https://bbs.archlinux.org/viewtopic.php?id=232290 , probably latest linux-lts commit.
Offline