Package: openconnect Version: 7.06-2+b1 Severity: important Tags: newcomer Dear Maintainer,
I connect to Juniper VPN with "sudo openconnect --juniper vpn-url/linux" After link is established, I will not be able to reach any address within the tunnel. Meaning, established connection will not work. Workaround: However, if I disconnect from VPN and connect to it again, link will be successfuly established. After this, I will be able to communicate to addresses within the tunnel just fine. Also please note that until I reboot, any connection to VPN will be succesfully established. Couple of observations: 1: After (first/initial) connection to the VPN is established. Network manager will misbehave, as WiFi connection icon will disappear. Although, during this time I will still be able to reach the internet. 2: This also might be a network-manager related issue. As with network-manager 0.9.10.0-7 and open-network-manager-openconnect 0.9.10.0-1 versions from Jessie. Everything will work as expected. Upon initially established connection, VPN addresses will be reachable, and there won't be need to reconnect. Below is syslog which displays establishing initial connection, and then reconnecting it to get connection to the VPN working. ------------- Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): new Tun device (carrier: OFF, driver: 'tun', ifindex: 4) Sep 6 13:51:31 labs kernel: [ 9732.046428] tun: Universal TUN/TAP device driver, 1.6 Sep 6 13:51:31 labs kernel: [ 9732.046432] tun: (C) 1999-2004 Max Krasnyansky <m...@qualcomm.com> Sep 6 13:51:31 labs NetworkManager[824]: <info> devices added (path: /sys/devices/virtual/net/tun0, iface: tun0) Sep 6 13:51:31 labs NetworkManager[824]: <info> device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found. Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): link connected Sep 6 13:51:31 labs NetworkManager[824]: <info> keyfile: add connection in- memory (f9ac4637-a1b3-408c-a5c6-ab2eb0ab6943,"tun0") Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: unmanaged -> unavailable (reason 'connection-assumed') [10 20 41] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: unavailable -> disconnected (reason 'connection-assumed') [20 30 41] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): Activation: starting connection 'tun0' (f9ac4637-a1b3-408c-a5c6-ab2eb0ab6943) Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: disconnected -> prepare (reason 'none') [30 40 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: prepare -> config (reason 'none') [40 50 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: config -> ip-config (reason 'none') [50 70 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: ip-config -> ip-check (reason 'none') [70 80 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: ip-check -> secondaries (reason 'none') [80 90 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): device state change: secondaries -> activated (reason 'none') [90 100 0] Sep 6 13:51:31 labs NetworkManager[824]: <info> NetworkManager state is now CONNECTED_LOCAL Sep 6 13:51:31 labs NetworkManager[824]: <info> NetworkManager state is now CONNECTED_GLOBAL Sep 6 13:51:31 labs NetworkManager[824]: <info> Policy set 'tun0' (tun0) as default for IPv4 routing and DNS. Sep 6 13:51:31 labs NetworkManager[824]: <info> (tun0): Activation: successful, device activated. Sep 6 13:51:31 labs dbus[875]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm- dispatcher.service' Sep 6 13:51:31 labs systemd[1]: Starting Network Manager Script Dispatcher Service... Sep 6 13:51:31 labs dbus[875]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher' Sep 6 13:51:31 labs systemd[1]: Started Network Manager Script Dispatcher Service. Sep 6 13:51:31 labs nm-dispatcher: Dispatching action 'up' for tun0 Sep 6 13:51:31 labs gnome-session[1470]: (gnome-settings-daemon:1545): GLib- CRITICAL **: Source ID 4908 was not found when attempting to remove it Sep 6 13:51:33 labs systemd[1]: Reloading OpenBSD Secure Shell server. Sep 6 13:51:33 labs systemd[1]: Reloaded OpenBSD Secure Shell server. Sep 6 13:51:33 labs org.gnome.OnlineAccounts[1523]: (goa-daemon:1596): GoaBackend-WARNING **: secret_password_lookup_sync() returned NULL Sep 6 13:51:33 labs chromium.desktop[2468]: [2468:2497:0906/135133:ERROR:connection_factory_impl.cc(366)] Failed to connect to MCS endpoint with error -102 Sep 6 13:52:10 labs org.gnome.Contacts.SearchProvider[1523]: /usr/lib/gnome- contacts/gnome-contacts-search-provider: symbol lookup error: /usr/lib /libebook-contacts-1.2.so.0: undefined symbol: _ZNK4i18n12phonenumbers15PhoneNumberUtil23GetCountryCodeForRegionERKSs Sep 6 13:52:10 labs org.gnome.Nautilus[1523]: Initializing nautilus-dropbox 1.6.2 Sep 6 13:52:10 labs org.gnome.Contacts.SearchProvider[1523]: /usr/lib/gnome- contacts/gnome-contacts-search-provider: symbol lookup error: /usr/lib /libebook-contacts-1.2.so.0: undefined symbol: _ZNK4i18n12phonenumbers15PhoneNumberUtil23GetCountryCodeForRegionERKSs Sep 6 13:52:10 labs gnome-session[1470]: Gjs-Message: JS LOG: Received error from DBus search provider org.gnome.Contacts.desktop: Gio.DBusError: GDBus.Error:org.freedesktop.DBus.Error.Spawn.ChildExited: Process org.gnome.Contacts.SearchProvider exited with status 127 Sep 6 13:52:10 labs org.gnome.OnlineMiners.MediaServer[1523]: Gom-Message: Setting scheduler policy to SCHED_IDLE Sep 6 13:52:10 labs dleyna-server-service[15097]: dLeyna core version 0.4.0 Sep 6 13:52:10 labs dleyna-server-service[15097]: dleyna-server-service version 0.4.0 Sep 6 13:52:10 labs dleyna-server-service[15097]: Type[0] Level[0x13] Mask[0x4C] Flags[0x4F] Sep 6 13:52:10 labs dleyna-server-service[15097]: Load file [/home/ahodzic/.config/dleyna-server-service.conf] Sep 6 13:52:10 labs dleyna-server-service[15097]: [General settings] Sep 6 13:52:10 labs dleyna-server-service[15097]: Never Quit: F Sep 6 13:52:10 labs dleyna-server-service[15097]: Connector Name: dbus Sep 6 13:52:10 labs dleyna-server-service[15097]: [Logging settings] Sep 6 13:52:10 labs dleyna-server-service[15097]: Log Type : 0 Sep 6 13:52:10 labs dleyna-server-service[15097]: Log Level: 0x13 Sep 6 13:52:10 labs dleyna-server-service[15097]: [Network filtering settings] Sep 6 13:52:10 labs dleyna-server-service[15097]: Enabled : F Sep 6 13:52:10 labs dleyna-server-service[15097]: Entries: (null) Sep 6 13:52:10 labs org.gnome.OnlineMiners.GData[1523]: Gom-Message: Setting scheduler policy to SCHED_IDLE Sep 6 13:52:11 labs org.gnome.OnlineMiners.Flickr[1523]: Gom-Message: Setting scheduler policy to SCHED_IDLE Sep 6 13:52:11 labs org.gnome.Documents[1523]: *** Error in `/usr/bin/gjs- console': free(): invalid next size (fast): 0x00007f7614029120 *** Sep 6 13:52:11 labs gnome-session[1470]: Gjs-Message: JS LOG: Received error from DBus search provider org.gnome.Documents.desktop: Gio.DBusError: GDBus.Error:org.freedesktop.DBus.Error.NoReply: Message did not receive a reply (timeout by message bus) Sep 6 13:52:11 labs org.gnome.OnlineMiners.Facebook[1523]: Gom-Message: Setting scheduler policy to SCHED_IDLE Sep 6 13:52:11 labs dleyna-renderer-service[15116]: dLeyna core version 0.4.0 Sep 6 13:52:11 labs dleyna-renderer-service[15116]: dleyna-renderer-service version 0.4.0 Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Type[0] Level[0x13] Mask[0x4C] Flags[0x4F] Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Load file [/home/ahodzic/.config/dleyna-renderer-service.conf] Sep 6 13:52:11 labs dleyna-renderer-service[15116]: [General settings] Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Never Quit: F Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Connector Name: dbus Sep 6 13:52:11 labs dleyna-renderer-service[15116]: [Logging settings] Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Log Type : 0 Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Log Level: 0x13 Sep 6 13:52:11 labs dleyna-renderer-service[15116]: [Network filtering settings] Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Enabled : F Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Entries: (null) Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Calling GetRenderers method Sep 6 13:52:11 labs org.gnome.OnlineMiners.MediaServer[1523]: (gom-media- server-miner:15080): GLib-GIO-WARNING **: Received property ChildCount with type i does not match expected type u in the expected interface Sep 6 13:52:11 labs dleyna-renderer-service[15116]: Client :1.3517 lost Sep 6 13:52:12 labs org.gnome.Bijiben.SearchProvider[1523]: (bijiben-shell- search-provider:15004): GLib-GObject-CRITICAL **: g_object_unref: assertion 'G_IS_OBJECT (object)' failed Sep 6 13:52:13 labs org.gnome.Bijiben.SearchProvider[1523]: (bijiben-shell- search-provider:15004): GLib-GObject-CRITICAL **: g_object_unref: assertion 'G_IS_OBJECT (object)' failed Sep 6 13:52:13 labs dleyna-renderer-service[15116]: dLeyna: Exit Sep 6 13:52:16 labs NetworkManager[824]: <info> NetworkManager state is now CONNECTED_LOCAL Sep 6 13:52:16 labs NetworkManager[824]: <info> NetworkManager state is now CONNECTED_GLOBAL Sep 6 13:52:16 labs NetworkManager[824]: <info> Policy set 'FoolControl' (wlan0) as default for IPv4 routing and DNS. Sep 6 13:52:16 labs avahi-daemon[858]: Withdrawing workstation service for tun0. Sep 6 13:52:16 labs NetworkManager[824]: <info> (tun0): device state change: activated -> unmanaged (reason 'removed') [100 10 36] Sep 6 13:52:16 labs NetworkManager[824]: <warn> (tun0): failed to disable userspace IPv6LL address handling Sep 6 13:52:16 labs dbus[875]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm- dispatcher.service' Sep 6 13:52:16 labs NetworkManager[824]: <info> devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0) Sep 6 13:52:16 labs systemd[1]: Starting Network Manager Script Dispatcher Service... Sep 6 13:52:16 labs dbus[875]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher' Sep 6 13:52:16 labs systemd[1]: Started Network Manager Script Dispatcher Service. Sep 6 13:52:16 labs nm-dispatcher: Dispatching action 'down' for tun0 Sep 6 13:52:16 labs gnome-session[1470]: Gjs-Message: JS LOG: Removing a network device that was not added Sep 6 13:52:16 labs gnome-session[1470]: (gnome-settings-daemon:1545): GLib- CRITICAL **: Source ID 6113 was not found when attempting to remove it Sep 6 13:52:19 labs org.gnome.OnlineAccounts[1523]: (goa-daemon:1596): GoaBackend-WARNING **: secret_password_lookup_sync() returned NULL Sep 6 13:52:22 labs dleyna-server-service[15097]: dLeyna: Exit Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): new Tun device (carrier: OFF, driver: 'tun', ifindex: 5) Sep 6 13:52:30 labs NetworkManager[824]: <info> devices added (path: /sys/devices/virtual/net/tun0, iface: tun0) Sep 6 13:52:30 labs NetworkManager[824]: <info> device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found. Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): link connected Sep 6 13:52:30 labs NetworkManager[824]: <info> keyfile: add connection in- memory (c9e14fb0-3f7b-4276-b42f-fd8b5dbf26c8,"tun0") Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: unmanaged -> unavailable (reason 'connection-assumed') [10 20 41] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: unavailable -> disconnected (reason 'connection-assumed') [20 30 41] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): Activation: starting connection 'tun0' (c9e14fb0-3f7b-4276-b42f-fd8b5dbf26c8) Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: disconnected -> prepare (reason 'none') [30 40 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: prepare -> config (reason 'none') [40 50 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: config -> ip-config (reason 'none') [50 70 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: ip-config -> ip-check (reason 'none') [70 80 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: ip-check -> secondaries (reason 'none') [80 90 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): device state change: secondaries -> activated (reason 'none') [90 100 0] Sep 6 13:52:30 labs NetworkManager[824]: <info> (tun0): Activation: successful, device activated. Sep 6 13:52:30 labs dbus[875]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm- dispatcher.service' Sep 6 13:52:30 labs systemd[1]: Starting Network Manager Script Dispatcher Service... Sep 6 13:52:30 labs dbus[875]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher' Sep 6 13:52:30 labs systemd[1]: Started Network Manager Script Dispatcher Service. Sep 6 13:52:30 labs nm-dispatcher: Dispatching action 'up' for tun0 Sep 6 13:52:30 labs avahi-daemon[858]: Got SIGTERM, quitting. Sep 6 13:52:30 labs systemd[1]: Stopping Avahi mDNS/DNS-SD Stack... Sep 6 13:52:30 labs avahi-daemon[858]: Leaving mDNS multicast group on interface wlan0.IPv6 with address fe80::8286:f2ff:fedc:bdfb. Sep 6 13:52:30 labs avahi-daemon[858]: Leaving mDNS multicast group on interface wlan0.IPv4 with address 192.168.192.62. Sep 6 13:52:30 labs avahi-daemon[858]: avahi-daemon 0.6.31 exiting. Sep 6 13:52:30 labs org.gnome.seahorse.Application[1523]: (seahorse:15006): seahorse-WARNING **: failure communicating with to avahi: Daemon connection failed Sep 6 13:52:30 labs systemd[1]: Stopped Avahi mDNS/DNS-SD Stack. Sep 6 13:52:30 labs nm-dispatcher[15377]: Warning: Stopping avahi- daemon.service, but it can still be activated by: Sep 6 13:52:30 labs dbus[875]: [system] Activating via systemd: service name='org.freedesktop.Avahi' unit='dbus-org.freedesktop.Avahi.service' Sep 6 13:52:30 labs systemd[1]: Starting Avahi mDNS/DNS-SD Stack... Sep 6 13:52:30 labs nm-dispatcher[15377]: avahi-daemon.socket Sep 6 13:52:30 labs avahi-daemon[15425]: Process 858 died: No such process; trying to remove PID file. (/var/run/avahi-daemon//pid) Sep 6 13:52:30 labs avahi-daemon[15425]: Found user 'avahi' (UID 105) and group 'avahi' (GID 112). Sep 6 13:52:30 labs avahi-daemon[15425]: Successfully dropped root privileges. Sep 6 13:52:30 labs avahi: Avahi detected that your currently configured local DNS server serves Sep 6 13:52:30 labs avahi: a domain .local. This is inherently incompatible with Avahi and thus Sep 6 13:52:30 labs avahi: Avahi disabled itself. If you want to use Avahi in this network, please Sep 6 13:52:30 labs avahi: contact your administrator and convince him to use a different DNS domain, Sep 6 13:52:30 labs avahi: since .local should be used exclusively for Zeroconf technology. Sep 6 13:52:30 labs avahi: For more information, see http://avahi.org/wiki/AvahiAndUnicastDotLocal Sep 6 13:52:30 labs avahi-daemon[15425]: avahi-daemon 0.6.31 starting up. Sep 6 13:52:30 labs dbus[875]: [system] Successfully activated service 'org.freedesktop.Avahi' Sep 6 13:52:30 labs avahi-daemon[15425]: Successfully called chroot(). Sep 6 13:52:30 labs avahi-daemon[15425]: Successfully dropped remaining capabilities. Sep 6 13:52:30 labs avahi-daemon[15425]: No service file found in /etc/avahi/services. Sep 6 13:52:30 labs avahi-daemon[15425]: *** WARNING: Detected another IPv4 mDNS stack running on this host. This makes mDNS unreliable and is thus not recommended. *** Sep 6 13:52:30 labs avahi-daemon[15425]: Joining mDNS multicast group on interface wlan0.IPv6 with address fe80::8286:f2ff:fedc:bdfb. Sep 6 13:52:30 labs avahi-daemon[15425]: New relevant interface wlan0.IPv6 for mDNS. Sep 6 13:52:30 labs avahi-daemon[15425]: Joining mDNS multicast group on interface wlan0.IPv4 with address 192.168.192.62. Sep 6 13:52:30 labs avahi-daemon[15425]: New relevant interface wlan0.IPv4 for mDNS. Sep 6 13:52:30 labs avahi-daemon[15425]: Network interface enumeration completed. Sep 6 13:52:30 labs avahi-daemon[15425]: Registering new address record for fe80::8286:f2ff:fedc:bdfb on wlan0.*. Sep 6 13:52:30 labs avahi-daemon[15425]: Registering new address record for 192.168.192.62 on wlan0.IPv4. Sep 6 13:52:30 labs avahi-daemon[15425]: Registering HINFO record with values 'X86_64'/'LINUX'. Sep 6 13:52:30 labs systemd[1]: Started Avahi mDNS/DNS-SD Stack. Sep 6 13:52:30 labs systemd[1]: Reloading OpenBSD Secure Shell server. Sep 6 13:52:30 labs systemd[1]: Reloaded OpenBSD Secure Shell server. Sep 6 13:52:31 labs org.gnome.OnlineAccounts[1523]: (goa-daemon:1596): GoaBackend-WARNING **: secret_password_lookup_sync() returned NULL Sep 6 13:52:31 labs avahi-daemon[15425]: Server startup complete. Host name is labs.local. Local service cookie is 741267518. Sep 6 13:52:32 labs org.gnome.OnlineAccounts[1523]: (goa-daemon:1596): GoaBackend-WARNING **: secret_password_lookup_sync() returned NULL Sep 6 13:52:32 labs chromium.desktop[2468]: [2468:2497:0906/135232:ERROR:connection_factory_impl.cc(366)] Failed to connect to MCS endpoint with error -102 Sep 6 13:53:35 labs gnome-session[1470]: Window manager warning: Buggy client sent a _NET_ACTIVE_WINDOW message with a timestamp of 0 for 0x36000f9 (*syslog (/)' ------------- Please inform me if you have any additional questions and/or comments. Regards, Adnan -- System Information: Debian Release: 8.2 APT prefers stable APT policy: (600, 'stable'), (500, 'stable-updates'), (300, 'testing'), (200, 'unstable'), (100, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.1.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages openconnect depends on: ii libc6 2.19-18+deb8u1 ii libgnutls-deb0-28 3.3.17-1 ii libopenconnect5 7.06-2+b1 ii libproxy1v5 0.4.11-4.2 ii libxml2 2.9.1+dfsg1-5 ii vpnc-scripts 0.1~git20140806-1 openconnect recommends no packages. openconnect suggests no packages. -- no debconf information
