Ich nutzte unter Ubuntu 18.4 regelmäßig 2 VPN Tunnel zu 2 verschiedenen Fritzboxen. Leider habe ich beim Upgrade die genaue Konfiguration nicht abgespeichert. Der Tunnel zur Fritzbox 7490 funktioniert nach dem gewohnten Setup. Der Tunnel zur Fritzbox 7340 funktioniert nicht. Ich kann von Ferne via https: auf die Box zugreifen aber nicht per VPN. Das VPN-Setup ist identisch zu dem funktionierenden Tunnel (abgesehen von Namen und Passwörtern natürlich). Hier die Konfiguration von einer der beiden:
[main] Description=Fritz Bienert InterfaceName=tun1 Host=alphanumerisch.myfritz.net AuthType=1 GroupName=Omis_Fritz GroupPwd=Gruppenpasswort_aus_VPN-Einstellungen_der_Box EnableISPConnect=0 ISPConnectType=0 ISPConnect= ISPCommand= Username=Omis_Fritz SaveUserPassword=1 EnableBackup=0 BackupServer= EnableNat=1 CertStore=0 CertName= CertPath= CertSubjectName= CertSerialHash= DHGroup=2 ForceKeepAlives=0 enc_GroupPwd= UserPassword= enc_UserPassword= NTDomain= EnableMSLogon=0 MSLogonType=0 TunnelingMode=0 TcpTunnelingPort=10000 PeerTimeout=0 EnableLocalLAN=1 SendCertChain=0 VerifyCertDN= EnableSplitDNS=1 SingleDES=0 SPPhonebook= UseLegacyIKEPort=0 X-NM-Use-NAT-T=1 X-NM-Force-NAT-T=0 X-NM-SaveGroupPassword=1
syslog meldet folgendes:
Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.6969] audit: op="connection-activate" uuid="b5a53218-2a67-4293-a997-533e5ab1f318" name="Fritz Bienert" pid=2151 uid=1000 result="success" Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.7199] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: Started the VPN service, PID 7293 Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.7414] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: Saw the service appear; activating connection Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.7569] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN plugin: state changed: starting (3) Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.7570] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN connection: (ConnectInteractive) reply received Aug 12 15:52:25 andreas-reise-tux NetworkManager[1091]: <info> [1691848345.7927] manager: (tun1): new Tun device (/org/freedesktop/NetworkManager/Devices/9) Aug 12 15:52:25 andreas-reise-tux systemd-udevd[7302]: ethtool: autonegotiation is unset or enabled, the speed and duplex are not writable. Aug 12 15:52:40 andreas-reise-tux NetworkManager[7293]: /usr/sbin/vpnc: no response from target Aug 12 15:52:40 andreas-reise-tux gnome-shell[2151]: Removing a network device that was not added Aug 12 15:52:40 andreas-reise-tux NetworkManager[1091]: <warn> [1691848360.8466] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN plugin: failed: connect-failed (1) Aug 12 15:52:40 andreas-reise-tux NetworkManager[1091]: <warn> [1691848360.8466] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN plugin: failed: connect-failed (1) Aug 12 15:52:40 andreas-reise-tux NetworkManager[1091]: <info> [1691848360.8469] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN plugin: state changed: stopping (5) Aug 12 15:52:40 andreas-reise-tux NetworkManager[1091]: <info> [1691848360.8469] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN plugin: state changed: stopped (6) Aug 12 15:52:40 andreas-reise-tux NetworkManager[1091]: <info> [1691848360.8518] vpn-connection[0x56252c416730,b5a53218-2a67-4293-a997-533e5ab1f318,"Fritz Bienert",0]: VPN service disappeared
Ich habe diverse Extraoptionen ohne Erfolg durchprobiert. Hier die erfolgreiche Tunnelgrabung zur Fritzbox 7490:
Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5130] audit: op="connection-activate" uuid="50355aec-228a-44dc-aae9-392ace251457" name="Fritz Säger" pid=2151 uid=1000 result="success" Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5327] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",0]: Started the VPN service, PID 7917 Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5554] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",0]: Saw the service appear; activating connection Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5711] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",0]: VPN plugin: state changed: starting (3) Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5712] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",0]: VPN connection: (ConnectInteractive) reply received Aug 12 16:01:44 andreas-reise-tux systemd-udevd[7914]: ethtool: autonegotiation is unset or enabled, the speed and duplex are not writable. Aug 12 16:01:44 andreas-reise-tux NetworkManager[1091]: <info> [1691848904.5986] manager: (tun0): new Tun device (/org/freedesktop/NetworkManager/Devices/13) Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7578] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",0]: VPN connection: (IP4 Config Get) reply received from old-style plugin Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7599] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: VPN Gateway: 87.167.10.58 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7600] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Tunnel Device: "tun0" Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7600] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: IPv4 configuration: Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7601] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Internal Address: 192.168.15.251 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7601] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Internal Prefix: 24 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7602] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Internal Point-to-Point Address: 192.168.15.251 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7602] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Static Route: 0.0.0.0/0 Next Hop: 0.0.0.0 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7603] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Static Route: 192.168.15.0/24 Next Hop: 0.0.0.0 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7604] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: Internal DNS: 192.168.15.200 Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7604] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: DNS Domain: '(none)' Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7605] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: Data: No IPv6 configuration Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7607] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: VPN plugin: state changed: started (4) Aug 12 16:01:45 andreas-reise-tux gajim[2397]: Got new address for device 11 but device is not active Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7790] vpn-connection[0x56252c416100,50355aec-228a-44dc-aae9-392ace251457,"Fritz Säger",11:(tun0)]: VPN connection: (IP Config Get) complete Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7802] device (tun0): state change: unmanaged -> unavailable (reason 'connection-assumed', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux dbus-daemon[1089]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' requested by ':1.12' (uid=0 pid=1091 comm="/usr/sbin/NetworkManager --no-daemon " label="unconfined") Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7838] device (tun0): state change: unavailable -> disconnected (reason 'connection-assumed', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7847] device (tun0): Activation: starting connection 'tun0' (5de3c564-3010-4538-8070-c2de0c2fb289) Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7851] device (tun0): state change: disconnected -> prepare (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7857] device (tun0): state change: prepare -> config (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7862] device (tun0): state change: config -> ip-config (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux systemd[1]: Starting Network Manager Script Dispatcher Service... Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.7956] device (tun0): state change: ip-config -> ip-check (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux dbus-daemon[1089]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher' Aug 12 16:01:45 andreas-reise-tux systemd[1]: Started Network Manager Script Dispatcher Service. Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.8261] policy: set 'Fritz Säger' (tun0) as default for IPv4 routing and DNS Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.8291] device (tun0): state change: ip-check -> secondaries (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.8295] device (tun0): state change: secondaries -> activated (reason 'none', sys-iface-state: 'external') Aug 12 16:01:45 andreas-reise-tux NetworkManager[1091]: <info> [1691848905.8309] device (tun0): Activation: successful, device activated. Aug 12 16:01:56 andreas-reise-tux systemd[1]: NetworkManager-dispatcher.service: Succeeded. Aug 12 16:01:56 andreas-reise-tux systemd-resolved[1003]: Using degraded feature set (UDP) for DNS server 192.168.15.200.