Chris Laprise: > On 4/9/20 3:34 AM, taran1s wrote: >> >> >> Chris Laprise: >>> On 4/8/20 6:25 AM, taran1s wrote: >>>> I try to set the VPN in my laest qubes with your guide on >>>> https://github.com/tasket/Qubes-vpn-support. I use the version >>>> 1.4.3. and followed the guide. >>>> >>>> My setting from mullvad is UDP (default) for Linux. No IPs. >>>> >>>> When asked, I entered correct login. The link but doesn't go up, >>>> no popup notification LINK IS UP when restarting the proxy VM. >>>> >>>> I also added vpn-handler-openvpn to the proxy VM services as required. >>>> >>>> Executing systemctl status returns this: >>>> >>>> [user@ovpn ~]$ systemctl status qubes-vpn-handler >>>> ● qubes-vpn-handler.service - VPN Client for Qubes proxyVM >>>> Loaded: loaded (/usr/lib/systemd/system/qubes-vpn-handler.service; >>>> enabled; vendor preset: disabled) >>>> Drop-In: /usr/lib/systemd/system/qubes-vpn-handler.service.d >>>> └─00_example.conf >>>> Active: activating (auto-restart) (Result: exit-code) since Tue >>>> 2020-04-07 15:30:15 CEST; 4s ago >>>> Process: 3098 ExecStartPre=/usr/lib/qubes/qubes-vpn-setup >>>> --check-firewall (code=exited, status=0/SUCCESS) >>>> Process: 3105 ExecStartPre=/usr/lib/qubes/qubes-vpn-setup >>>> --pre-start (code=exited, status=0/SUCCESS) >>>> Process: 3110 ExecStart=/usr/lib/qubes/qubes-vpn-setup --start-exec >>>> (code=exited, status=1/FAILURE) >>>> Process: 3111 ExecStartPost=/usr/lib/qubes/qubes-vpn-setup >>>> --post-start (code=exited, status=0/SUCCESS) >>>> Process: 3117 ExecStopPost=/usr/lib/qubes/qubes-vpn-setup >>>> --post-stop (code=exited, status=0/SUCCESS) >>>> Main PID: 3110 (code=exited, status=1/FAILURE) >>>> >>>> Any idea how to set this up properly? >>>> >>> >>> The one exception I can think of for setting up with a Mullvad account >>> is that they use a single-character "m" password for everyone. So if you >>> typed something into the password prompt other than "m" or left it >>> blank, then it won't connect. >>> >>> To see a more detailed log you should use 'journalctl -u >>> qubes-vpn-handler'. >>> >> >> Yes Chris, mullvad uses the "m" for password and I put this in when >> asked. I checked this in the pass file from mullvad. >> >> I did the following. I downloaded the default UDP settings for "All >> countries" from mullvad as adviced, without ticking the IPs. Than I took >> one of the countries from the downloaded list and copied this particular >> country to the vpn-client.conf with sudo cp whatver-country.ovpn >> vpn-client.conf. But it doesn't connect. > > Did you do the link testing suggested in Step 2? > >> >> Is this setup ok for me-tor-vpn situation? > > These network representations can easily get reversed in people's heads. > Best thing to do is look at your 'Networking' setting for your VPN VM. > If its set to 'sys-whonix' then UDP won't work. > >> >> I executed the command in the proxyVM (fedora-30 based) with following >> results: >> >> [user@ovpn ~]$ journalctl -u qubes-vpn-handler >> Hint: You are currently not seeing messages from other users and the >> system. >> Users in groups 'adm', 'systemd-journal', 'wheel' can see all >> messages. >> Pass -q to turn off this notice. >> -- Logs begin at Tue 2020-02-18 14:58:55 CET, end at Thu 2020-04-09 >> 09:21:21 CE> >> -- No entries -- >> lines 1-2/2 (END) >> >> I tried also the micahflee guide and it connects so the settings should >> be ok. >> > > Sorry, you need to put 'sudo' in front of the 'journalctl' command. >
In the point 3 of https://github.com/tasket/Qubes-vpn-support/ guide there is the cd Qubes-vpn-support command as the first one. This assumes that the file is unzipped already, right? So I unzip it in the /home/user folder, than cd to the unzipped Qubes-vpn-support-1.4.3 and execute sudo bash ./install. Than proceed to the restart. Is this how it was meant? This is the output from the sudo journalctl -u qubes-vpn-handler in teh openvpn VM. [user@ovpn ~]$ sudo journalctl -u qubes-vpn-handler -- Logs begin at Tue 2020-02-18 14:58:45 CET, end at Wed 2020-04-15 12:22:55 CE> Apr 15 12:22:12 ovpn systemd[1]: Starting VPN Client for Qubes proxyVM... Apr 15 12:22:12 ovpn qubes-vpn-setup[789]: STARTED network forwarding! Apr 15 12:22:12 ovpn qubes-vpn-setup[788]: EXEC /usr/sbin/openvpn --cd /rw/conf> Apr 15 12:22:12 ovpn systemd[1]: Started VPN Client for Qubes proxyVM. Apr 15 12:22:12 ovpn qubes-vpn-setup[788]: Wed Apr 15 12:22:12 2020 Note: optio> Apr 15 12:22:12 ovpn qubes-vpn-setup[788]: Options error: --ca fails with 'mull> Apr 15 12:22:12 ovpn qubes-vpn-setup[788]: Options error: Please correct these > Apr 15 12:22:12 ovpn qubes-vpn-setup[788]: Use --help for more information. Apr 15 12:22:12 ovpn systemd[1]: qubes-vpn-handler.service: Main process exited> Apr 15 12:22:12 ovpn qubes-vpn-setup[801]: STOPPED network forwarding! Apr 15 12:22:12 ovpn systemd[1]: qubes-vpn-handler.service: Failed with result > Apr 15 12:22:23 ovpn systemd[1]: qubes-vpn-handler.service: Scheduled restart j> Apr 15 12:22:23 ovpn systemd[1]: Stopped VPN Client for Qubes proxyVM. Apr 15 12:22:23 ovpn systemd[1]: Starting VPN Client for Qubes proxyVM... Apr 15 12:22:23 ovpn qubes-vpn-setup[996]: EXEC /usr/sbin/openvpn --cd /rw/conf> Apr 15 12:22:23 ovpn qubes-vpn-setup[997]: STARTED network forwarding! Apr 15 12:22:23 ovpn systemd[1]: Started VPN Client for Qubes proxyVM. Apr 15 12:22:23 ovpn qubes-vpn-setup[996]: Wed Apr 15 12:22:23 2020 Note: optio> Apr 15 12:22:23 ovpn qubes-vpn-setup[996]: Options error: --ca fails with 'mull> Apr 15 12:22:23 ovpn qubes-vpn-setup[996]: Options error: Please correct these > Apr 15 12:22:23 ovpn qubes-vpn-setup[996]: Use --help for more information. Apr 15 12:22:23 ovpn systemd[1]: qubes-vpn-handler.service: Main process exited> lines 1-23 -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/9009b57f-ede7-d936-2d0f-429a345234cc%40mailbox.org.
0xA664B90BD3BE59B3.asc
Description: application/pgp-keys
