Migration client ubuntu 20.10 vers 21.04 connexion impossible à openvpn OVH
BMPCreated with Sketch.BMPZIPCreated with Sketch.ZIPXLSCreated with Sketch.XLSTXTCreated with Sketch.TXTPPTCreated with Sketch.PPTPNGCreated with Sketch.PNGPDFCreated with Sketch.PDFJPGCreated with Sketch.JPGGIFCreated with Sketch.GIFDOCCreated with Sketch.DOC Error Created with Sketch.
Question

Migration client ubuntu 20.10 vers 21.04 connexion impossible à openvpn OVH

H
by
HerveT2
Created on 2021-07-29 16:46:32 (edited on 2024-09-04 10:56:59) in Serveurs Privés Virtuels (VPS)

Bonjour,
j'ai une installation openvpn sur VPS 2016 SSD 1 debian 8. Aucun problème avec client ubuntu jusqu'à version 20.10 avec noyau linux amd64 sur un PC mais aussi arm64 sur un raspberry pi. Dans les deux cas j'utilise l'application openvpn.manager pour la connexion. A noter aussi que je peux me connecter avec mon smartphone android .
Ce matin je lance, suite à l'invitation, une migration vers 21.04 (fin des maj sur 20.10) et je me retrouve à la fin incapable de me connecter au VPN qui me redemande perpétuellement le mot de passe. J'obtiens le même problème avec la migration 20.10 vers 21.04 sur e raspberry pi.
Jz ne trouve aucune solution sur le web à part 2 problèmes de connexion suite à migration ver 21.04 mais sans solution donnée.
Une demande d'aide sur le forum ubuntu.fr ne m'a encore rien apporté.
Upvotes (0)
1039 Views
4 Replies ( Latest reply on 2021-07-30 13:20:23 by
HerveT2
)
J

Bonjour,


debian 8

a mon avis il faudrait commencer par mettre a jour vu que c'est EOL et utilise des anciens protocole de sécurité.

Cordialement, janus57
Helpful (0)
H

Bonjour,
Ce serait sans doute très utile mais j'aimerais être sûr que le problème vient bien de là et non d'une insuffisance de configuration du client sous ubuntu 21.04 après la migration.
J'ai refait la migration sur mon rapsberry pi ubuntu (arm-') 20.10 ->21.04, la connexion au vpn ovh établie pendant la migration. En fait la connexion est interropue au moment de l'installation des paquets de networkmanager et les tentatives de reconnexion automatique échoue .
Je ne vais pas insérer ici l'extrait du syslog pendant la migration qui est un peu long d'autant qu e je ne connais pas assez les possibilités offertes ici pour insérer les balises [code] [/code]
Par contre après reboot du client voici un extrait de la réinitialisation openvpn suivi d'une tentative de connexion au vpn : (à savoir que je ne suis pas assez pointu pour interprèter ce qui est rapporté)
[code]Jul 30 07:21:22 moi-desktop NetworkManager[73298]: [1627622482.6674] audit: op="connection-activate" uuid="cd4cf80f-a748-423a-99f6-6385295c4229" name="ovh" pid=1210 uid=1000 result="success"
Jul 30 07:21:22 moi-desktop NetworkManager[73298]: [1627622482.6861] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: Started the VPN service, PID 131035
Jul 30 07:21:22 moi-desktop NetworkManager[73298]: [1627622482.7193] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: Saw the service appear; activating connection
Jul 30 07:21:22 moi-desktop NetworkManager[73298]: [1627622482.8944] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: VPN plugin: state changed: starting (3)
Jul 30 07:21:22 moi-desktop NetworkManager[73298]: [1627622482.8947] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: VPN connection: (ConnectInteractive) reply received
Jul 30 07:21:22 moi-desktop NetworkManager[131041]: 2021-07-30 07:21:22 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
Jul 30 07:21:22 moi-desktop nm-openvpn[131041]: --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
Jul 30 07:21:22 moi-desktop nm-openvpn[131041]: WARNING: file '/home/moi/clientovpn/client.ovpn.key' is group or others accessible
Jul 30 07:21:22 moi-desktop nm-openvpn[131041]: OpenVPN 2.5.1 aarch64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 27 2021
Jul 30 07:21:22 moi-desktop nm-openvpn[131041]: library versions: OpenSSL 1.1.1j 16 Feb 2021, LZO 2.10
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: TCP/UDP: Preserving recently used remote address: [AF_INET]37.59.122.236:1194
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: UDP link local: (not bound)
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: UDP link remote: [AF_INET]37.59.122.236:1194
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: NOTE: chroot will be delayed because of --client, --pull, or --up-delay
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Jul 30 07:21:23 moi-desktop nm-openvpn[131041]: [OpenVPN Server] Peer Connection Initiated with [AF_INET]37.59.122.236:1194
Jul 30 07:21:24 moi-desktop nm-openvpn[131041]: AUTH: Received control message: AUTH_FAILED
Jul 30 07:21:24 moi-desktop nm-openvpn[131041]: SIGUSR1[soft,auth-failure] received, process restarting
Jul 30 07:21:29 moi-desktop NetworkManager[73298]: [1627622489.3878] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: VPN plugin: requested secrets; state connect (4)
Jul 30 07:21:44 moi-desktop nm-openvpn[131041]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jul 30 07:21:44 moi-desktop nm-openvpn[131041]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 30 07:21:44 moi-desktop nm-openvpn[131041]: TCP/UDP: Preserving recently used remote address: [AF_INET]37.59.122.236:1194
Jul 30 07:21:44 moi-desktop nm-openvpn[131041]: UDP link local: (not bound)
Jul 30 07:21:44 moi-desktop nm-openvpn[131041]: UDP link remote: [AF_INET]37.59.122.236:1194
Jul 30 07:21:45 moi-desktop nm-openvpn[131041]: [OpenVPN Server] Peer Connection Initiated with [AF_INET]37.59.122.236:1194
Jul 30 07:21:46 moi-desktop nm-openvpn[131041]: AUTH: Received control message: AUTH_FAILED
Jul 30 07:21:46 moi-desktop nm-openvpn[131041]: SIGUSR1[soft,auth-failure] received, process restarting
Jul 30 07:21:46 moi-desktop gnome-shell[1210]: Failed to import DBusMenu, quicklists are not avaialble: Error: Requiring Dbusmenu, version none: Typelib file for namespace 'Dbusmenu' (any version) not found
Jul 30 07:21:46 moi-desktop gnome-shell[1210]: Some code accessed the property 'discreteGpuAvailable' on the module 'appDisplay'. That property was defined with 'let' or 'const' inside the module. This was previously supported, but is not correct according to the ES6 standard. Any symbols to be exported from a module must be defined with 'var'. The property access will work as previously for the time being, but please fix your code anyway.
Jul 30 07:21:48 moi-desktop dbus-daemon[903]: [session uid=1000 pid=903] Activating service name='org.gnome.Nautilus' requested by ':1.38' (uid=1000 pid=1210 comm="/usr/bin/gnome-shell " label="unconfined")
Jul 30 07:21:48 moi-desktop dbus-daemon[903]: [session uid=1000 pid=903] Successfully activated service 'org.gnome.Nautilus'
Jul 30 07:21:49 moi-desktop dbus-daemon[657]: [system] Activating via systemd: service name='org.freedesktop.hostname1' unit='1org.freedesktop.hostname1.service'org.freedesktop.hostname1.service' requested by ':1.209' (uid=1000 pid=131111 comm="/usr/bin/nautilus --gapplication-service " label="unconfined")
Jul 30 07:21:49 moi-desktop systemd[1]: Starting Hostname Service...
Jul 30 07:21:50 moi-desktop dbus-daemon[657]: [system] Successfully activated service 'org.freedesktop.hostname1'
Jul 30 07:21:50 moi-desktop systemd[1]: Started Hostname Service.
Jul 30 07:21:50 moi-desktop nautilus[131111]: Called "net usershare info" but it failed: L’exécution du processus fils « net » a échoué (No such file or directory)
Jul 30 07:21:51 moi-desktop NetworkManager[73298]: [1627622511.0552] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: VPN plugin: requested secrets; state connect (4)
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: TCP/UDP: Preserving recently used remote address: [AF_INET]37.59.122.236:1194
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: UDP link local: (not bound)
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: UDP link remote: [AF_INET]37.59.122.236:1194
Jul 30 07:21:58 moi-desktop nm-openvpn[131041]: [OpenVPN Server] Peer Connection Initiated with [AF_INET]37.59.122.236:1194
Jul 30 07:21:59 moi-desktop nm-openvpn[131041]: AUTH: Received control message: AUTH_FAILED
Jul 30 07:21:59 moi-desktop nm-openvpn[131041]: SIGUSR1[soft,auth-failure] received, process restarting
Jul 30 07:22:04 moi-desktop NetworkManager[73298]: [1627622524.9669] vpn-connection[0xaaaad3e5a310,cd4cf80f-a748-423a-99f6-6385295c4229,"ovh",0]: VPN plugin: requested secrets; state connect (4)
[/code]
Helpful (0)
J

Bonjour,

Le log indique un problème de login/mdp

Cordialement, janus57
Helpful (0)
H

Je voulais tenter une réinstallation de mon serveur openvpn avec ubuntu 20.04 mais la seule solution automatisée est un openvpn sous CentOS et pas sûr de ne pas se retrouver à devoir payer plus cher même avec un engagement d'un an.
Conclusion : résiliation et je vais chercher ailleurs.
Helpful (0)

Related questions

Join discussion