Ich benutze schon seit längerem den Networkmanager um zusätzlich zur Bestehenden LAN oder WLAN Verbindung mich bei Bedarf auf Arbeit einzuloggen. Seit dem Upgrade auf 17.10 passiert jedoch Folgendes:
Ich kann mich nur einmal einwählen und nach dem Trennen der Verbindung ist eine Wiedereinwahl nicht möglich.
Hier die Ausgabe beim ersten Verbindungsversuchs plus Trennung:
06.11.17 15:11 NetworkManager <info> [1509977496.0036] audit: op="connection-activate" uuid="5cc2f24d-9816-4168-a284-fb9be7621bca" name="Charite" pid=1388 uid=1000 result="success" 06.11.17 15:11 NetworkManager <info> [1509977496.0123] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: Started the VPN service, PID 2151 06.11.17 15:11 NetworkManager <info> [1509977496.0228] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: Saw the service appear; activating connection 06.11.17 15:11 NetworkManager <info> [1509977496.0854] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: VPN plugin: state changed: starting (3) 06.11.17 15:11 nm-openvpn WARNING: file '/home/user/.local/share/networkmanagement/certificates/company-username/private.key' is group or others accessible 06.11.17 15:11 nm-openvpn WARNING: file '/home/user/.local/share/networkmanagement/certificates/company-username/tls_auth.key' is group or others accessible 06.11.17 15:11 nm-openvpn OpenVPN 2.4.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 3 2017 06.11.17 15:11 nm-openvpn library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08 06.11.17 15:11 nm-openvpn NOTE: the current --script-security setting may allow this configuration to call user-defined scripts 06.11.17 15:11 nm-openvpn TCP/UDP: Preserving recently used remote address: [AF_INET]193.175.73.200:1194 06.11.17 15:11 nm-openvpn UDP link local: (not bound) 06.11.17 15:11 nm-openvpn UDP link remote: [AF_INET]193.175.73.200:1194 06.11.17 15:11 nm-openvpn NOTE: chroot will be delayed because of --client, --pull, or --up-delay 06.11.17 15:11 nm-openvpn NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay 06.11.17 15:11 nm-openvpn [openvpn.company.de] Peer Connection Initiated with [AF_INET]193.175.73.200:1194 06.11.17 15:11 nm-openvpn Options error: Unrecognized option or missing or extra parameter(s) in [PUSH-OPTIONS]:3: register-dns (2.4.3) 06.11.17 15:11 nm-openvpn Options error: Unrecognized option or missing or extra parameter(s) in [PUSH-OPTIONS]:4: block-outside-dns (2.4.3) 06.11.17 15:11 nm-openvpn TUN/TAP device tun0 opened 06.11.17 15:11 nm-openvpn /usr/lib/NetworkManager/nm-openvpn-service-openvpn-helper --debug 0 2151 --bus-name org.freedesktop.NetworkManager.openvpn.Connection_2 --tun -- tun0 1500 1553 172.29.6.120 255.255.192.0 init 06.11.17 15:11 systemd-udevd link_config: autonegotiation is unset or enabled, the speed and duplex are not writable. 06.11.17 15:11 NetworkManager <info> [1509977497.8151] manager: (tun0): new Tun device (/org/freedesktop/NetworkManager/Devices/4) 06.11.17 15:11 NetworkManager <info> [1509977497.8286] devices added (path: /sys/devices/virtual/net/tun0, iface: tun0) 06.11.17 15:11 NetworkManager <info> [1509977497.8291] device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found. 06.11.17 15:11 NetworkManager <info> [1509977497.8316] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: VPN connection: (IP Config Get) reply received. 06.11.17 15:11 NetworkManager <info> [1509977497.8328] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: VPN connection: (IP4 Config Get) reply received 06.11.17 15:11 NetworkManager <info> [1509977497.8337] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: VPN Gateway: 193.175.73.200 06.11.17 15:11 NetworkManager <info> [1509977497.8337] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Tunnel Device: "tun0" 06.11.17 15:11 nm-openvpn chroot to '/var/lib/openvpn/chroot' and cd to '/' succeeded 06.11.17 15:11 NetworkManager <info> [1509977497.8337] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: IPv4 configuration: 06.11.17 15:11 nm-openvpn GID set to nm-openvpn 06.11.17 15:11 NetworkManager <info> [1509977497.8337] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Internal Gateway: 172.29.0.1 06.11.17 15:11 nm-openvpn UID set to nm-openvpn 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Internal Address: 172.29.6.120 06.11.17 15:11 nm-openvpn Initialization Sequence Completed 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Internal Prefix: 18 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Internal Point-to-Point Address: 172.29.6.120 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Maximum Segment Size (MSS): 0 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Forbid Default Route: no 06.11.17 15:11 NetworkManager <info> [1509977497.8338] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: Internal DNS: 141.42.1.1 06.11.17 15:11 NetworkManager <info> [1509977497.8339] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: DNS Domain: 'company.de' 06.11.17 15:11 NetworkManager <info> [1509977497.8339] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: Data: No IPv6 configuration 06.11.17 15:11 NetworkManager <info> [1509977497.8339] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: VPN plugin: state changed: started (4) 06.11.17 15:11 NetworkManager <info> [1509977497.8405] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",4:(tun0)]: VPN connection: (IP Config Get) complete 06.11.17 15:11 NetworkManager <info> [1509977497.8412] device (tun0): state change: unmanaged -> unavailable (reason 'connection-assumed', internal state 'external') 06.11.17 15:11 dbus [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' 06.11.17 15:11 NetworkManager <info> [1509977497.8505] keyfile: add connection in-memory (35f332ad-c7c3-4705-9775-3482c669a475,"tun0") 06.11.17 15:11 NetworkManager <info> [1509977497.8516] device (tun0): state change: unavailable -> disconnected (reason 'connection-assumed', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8530] device (tun0): Activation: starting connection 'tun0' (35f332ad-c7c3-4705-9775-3482c669a475) 06.11.17 15:11 NetworkManager <info> [1509977497.8541] device (tun0): state change: disconnected -> prepare (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8547] device (tun0): state change: prepare -> config (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8549] device (tun0): state change: config -> ip-config (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8557] device (tun0): state change: ip-config -> ip-check (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8562] device (tun0): state change: ip-check -> secondaries (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8566] device (tun0): state change: secondaries -> activated (reason 'none', internal state 'external') 06.11.17 15:11 NetworkManager <info> [1509977497.8585] policy: set 'tun0' (tun0) as default for IPv4 routing and DNS 06.11.17 15:11 NetworkManager <info> [1509977497.8586] device (tun0): Activation: successful, device activated. 06.11.17 15:11 systemd Starting Network Manager Script Dispatcher Service... 06.11.17 15:11 systemd Starting systemd-resolved-update-resolvconf.service... 06.11.17 15:11 dbus [system] Successfully activated service 'org.freedesktop.nm_dispatcher' 06.11.17 15:11 systemd Started Network Manager Script Dispatcher Service. 06.11.17 15:11 nm-dispatcher req:1 'vpn-up' [tun0]: new request (2 scripts) 06.11.17 15:11 nm-dispatcher req:1 'vpn-up' [tun0]: start running ordered scripts... 06.11.17 15:11 nm-dispatcher req:2 'up' [tun0]: new request (2 scripts) 06.11.17 15:11 systemd Started systemd-resolved-update-resolvconf.service. 06.11.17 15:11 nm-dispatcher ProxyType=0 06.11.17 15:11 nm-dispatcher req:2 'up' [tun0]: start running ordered scripts... 06.11.17 15:11 ntpdate no server suitable for synchronization found 06.11.17 15:12 NetworkManager <info> [1509977521.9518] audit: op="connection-deactivate" uuid="5cc2f24d-9816-4168-a284-fb9be7621bca" name="Charite" pid=1388 uid=1000 result="success" 06.11.17 15:12 nm-dispatcher req:3 'vpn-down' [tun0]: new request (2 scripts) 06.11.17 15:12 NetworkManager <info> [1509977521.9595] policy: set 'Kabelgebundene Verbindung 2' (eth1) as default for IPv4 routing and DNS 06.11.17 15:12 NetworkManager <info> [1509977521.9611] device (tun0): state change: activated -> unmanaged (reason 'unmanaged', internal state 'removed') 06.11.17 15:12 systemd Starting systemd-resolved-update-resolvconf.service... 06.11.17 15:12 NetworkManager <info> [1509977521.9692] devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0) 06.11.17 15:12 NetworkManager <info> [1509977521.9693] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: VPN plugin: state changed: stopping (5) 06.11.17 15:12 NetworkManager <info> [1509977521.9732] vpn-connection[0x55f5098440f0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: VPN plugin: state changed: stopped (6) 06.11.17 15:12 systemd Started systemd-resolved-update-resolvconf.service. 06.11.17 15:12 nm-openvpn SIGTERM[hard,] received, process exiting 06.11.17 15:12 nm-dispatcher req:4 'down' [tun0]: new request (2 scripts) 06.11.17 15:12 ntpdate adjust time server 91.189.89.198 offset -0.024124 sec 06.11.17 15:12 nm-dispatcher req:3 'vpn-down' [tun0]: start running ordered scripts... 06.11.17 15:12 ntpdate adjust time server 91.189.89.198 offset -0.022711 sec 06.11.17 15:12 nm-dispatcher ProxyType=3 06.11.17 15:12 nm-dispatcher req:4 'down' [tun0]: start running ordered scripts...
Hier die Ausgabe beim zweiten Verbindungsversuch:
06.11.17 15:12 NetworkManager <info> [1509977562.1672] audit: op="connection-activate" uuid="5cc2f24d-9816-4168-a284-fb9be7621bca" name="Charite" pid=1388 uid=1000 result="success" 06.11.17 15:12 NetworkManager <info> [1509977562.1771] vpn-connection[0x55f5098442e0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: Started the VPN service, PID 2616 06.11.17 15:12 NetworkManager <info> [1509977562.1881] vpn-connection[0x55f5098442e0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: Saw the service appear; activating connection 06.11.17 15:12 nm-openvpn WARNING: file '/home/user/.local/share/networkmanagement/certificates/company-username/private.key' is group or others accessible 06.11.17 15:12 nm-openvpn WARNING: file '/home/user/.local/share/networkmanagement/certificates/company-username/tls_auth.key' is group or others accessible 06.11.17 15:12 nm-openvpn OpenVPN 2.4.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 3 2017 06.11.17 15:12 nm-openvpn library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08 06.11.17 15:12 NetworkManager <info> [1509977562.2470] vpn-connection[0x55f5098442e0,5cc2f24d-9816-4168-a284-fb9be7621bca,"Charite",0]: VPN plugin: state changed: starting (3) 06.11.17 15:12 nm-openvpn NOTE: the current --script-security setting may allow this configuration to call user-defined scripts 06.11.17 15:12 nm-openvpn RESOLVE: Cannot resolve host address: openvpn.company.de:1194 (Name or service not known) 06.11.17 15:12 nm-openvpn RESOLVE: Cannot resolve host address: openvpn.company.de:1194 (Name or service not known) 06.11.17 15:12 nm-openvpn Could not determine IPv4/IPv6 protocol 06.11.17 15:12 nm-openvpn NOTE: chroot will be delayed because of --client, --pull, or --up-delay 06.11.17 15:12 nm-openvpn NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay 06.11.17 15:12 nm-openvpn SIGUSR1[soft,init_instance] received, process restarting 06.11.17 15:12 nm-openvpn NOTE: the current --script-security setting may allow this configuration to call user-defined scripts 06.11.17 15:12 nm-openvpn RESOLVE: Cannot resolve host address: openvpn.company.de:1194 (Name or service not known) 06.11.17 15:12 nm-openvpn RESOLVE: Cannot resolve host address: openvpn.company.de:1194 (Name or service not known)
Ich habe das Gefühl, dass der Nameserver von Arbeit nicht richtig ein und anschließend wieder ausgetragen wird.
In /etc/NetworkManager/dispatcher.d/ liegt noch eine weitere Datei, die Einstellungen für den Proxy bei VPN setzt:
1 2 3 4 5 6 7 8 | ll /etc/NetworkManager/dispatcher.d/ drwxr-xr-x 5 root root 4096 Okt 28 11:36 ./ drwxr-xr-x 8 root root 4096 Okt 28 11:36 ../ -rwxr-xr-x 1 root root 2293 Sep 22 19:56 01-ifupdown* -rwxr-xr-x 1 root root 918 Mai 15 22:05 02vpn* drwxr-xr-x 2 root root 4096 Apr 15 2016 no-wait.d/ drwxr-xr-x 2 root root 4096 Apr 17 2015 pre-down.d/ drwxr-xr-x 2 root root 4096 Apr 17 2015 pre-up.d/ |