Re: [strongSwan] revisiting problem with linux to VPN using network-manager-strongswan 1.4.5-2.1
I brought up the VPN over a WiFi connection this morning for a few minutes in hopes of confirming it is operating correctly and securing the internet traffic. Here are results in the terminal window: dhdurgee@z560:~/Downloads$ ip rule 0: from all lookup local 220: from all lookup 220 32766: from all lookup main 32767: from all lookup default dhdurgee@z560:~/Downloads$ ip route default via 192.168.1.1 dev wlp5s0 proto dhcp metric 600 169.254.0.0/16 dev wlp5s0 scope link metric 1000 192.168.1.0/24 dev wlp5s0 proto kernel scope link src 192.168.1.114 metric 600 dhdurgee@z560:~/Downloads$ ifconfig enp6s0: flags=4163 mtu 1500 ether b8:70:f4:2c:6b:9f txqueuelen 1000 (Ethernet) RX packets 6620471 bytes 6659611738 (6.6 GB) RX errors 0 dropped 113 overruns 0 frame 0 TX packets 5400612 bytes 627288507 (627.2 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 lo: flags=73 mtu 65536 inet 127.0.0.1 netmask 255.0.0.0 inet6 ::1 prefixlen 128 scopeid 0x10 loop txqueuelen 1000 (Local Loopback) RX packets 607593 bytes 59022846 (59.0 MB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 607593 bytes 59022846 (59.0 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 wlp5s0: flags=4163 mtu 1500 inet 192.168.1.114 netmask 255.255.255.0 broadcast 192.168.1.255 inet6 fe80::562f:7604:6d84:57ca prefixlen 64 scopeid 0x20 ether ac:81:12:a4:5e:43 txqueuelen 1000 (Ethernet) RX packets 6987 bytes 5181997 (5.1 MB) RX errors 0 dropped 0 overruns 0 frame 77207 TX packets 7967 bytes 1225749 (1.2 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 device interrupt 17 dhdurgee@z560:~/Downloads$ route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default _gateway 0.0.0.0 UG 600 0 0 wlp5s0 link-local 0.0.0.0 255.255.0.0 U 1000 0 0 wlp5s0 192.168.1.0 0.0.0.0 255.255.255.0 U 600 0 0 wlp5s0 dhdurgee@z560:~/Downloads$ Here is an extract from my syslog: Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.5967] manager: rfkill: Wi-Fi hardware radio set enabled Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.5985] audit: op="radio-control" arg="wireless-enabled" pid=83 uid=1000 result="success" Jul 6 11:50:46 Z560 charon-nm: 11[KNL] interface wlp5s0 activated Jul 6 11:50:46 Z560 systemd[1]: Starting Load/Save RF Kill Switch Status... Jul 6 11:50:46 Z560 systemd[1]: Started Load/Save RF Kill Switch Status. Jul 6 11:50:46 Z560 wpa_supplicant[818]: dbus: fill_dict_with_properties dbus_interface=fi.w1.wpa_supplicant1.Interface.P2PDevice dbus_property=P2PDeviceConfig getter failed Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6794] sup-iface[0x562fdb83d4e0,wlp5s0]: supports 1 scan SSIDs Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6808] device (wlp5s0): supplicant interface state: starting -> ready Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6813] device (wlp5s0): state change: unavailable -> disconnected (reason 'supplicant-available', sys-iface-state: 'managed') Jul 6 11:50:46 Z560 wpa_supplicant[818]: wlp5s0: CTRL-EVENT-SCAN-FAILED ret=-22 Jul 6 11:50:46 Z560 kernel: [706888.708759] ERROR @wl_cfg80211_scan : Jul 6 11:50:46 Z560 kernel: [706888.708762] WLC_SCAN error (-22) Jul 6 11:50:48 Z560 NetworkManager[758]: [1625586648.4559] manager: rfkill: Wi-Fi now enabled by radio killswitch Jul 6 11:50:49 Z560 systemd[1]: NetworkManager-dispatcher.service: Succeeded. Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2774] policy: auto-activating connection 'Auto Free WiFi by Karma' (3ccc719b-3616-44f7-a914-8c7d0344c87a) Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2819] device (wlp5s0): Activation: starting connection 'Auto Free WiFi by Karma' (3ccc719b-3616-44f7-a914-8c7d0344c87a) Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2834] device (wlp5s0): state change: disconnected -> prepare (reason 'none', sys-iface-state: 'managed') Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2891] manager: NetworkManager state is now CONNECTING Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2955] device (wlp5s0): state change: prepare -> config (reason 'none', sys-iface-state: 'managed') Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2994] device (wlp5s0): Activation: (wifi) connection 'Auto Free WiFi by Karma' requires no security. No secrets needed. Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2997] Config: added 'ssid' value 'Free WiFi by Karma' Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2998] Config: added 'scan_ssid' value '1' Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2999] Config: added 'bgscan' value 'simple:3
Re: [strongSwan] revisiting problem with linux to VPN using network-manager-strongswan 1.4.5-2.1
I am replying to my own post as I just noticed in the extract from syslog that the VPN does NOT appear to be working properly, as I just noticed that the VPN is be deactivated a few seconds after being established for some unknown reason. Is this extract sufficient for someone to tell me how to fix this? If not, what additional information do you need, either from the laptop or the server? I believe I have posted configuration files from both sides in this thread, but let me know if you need more information. Dave David H Durgee wrote: I brought up the VPN over a WiFi connection this morning for a few minutes in hopes of confirming it is operating correctly and securing the internet traffic. Here are results in the terminal window: dhdurgee@z560:~/Downloads$ ip rule 0: from all lookup local 220: from all lookup 220 32766: from all lookup main 32767: from all lookup default dhdurgee@z560:~/Downloads$ ip route default via 192.168.1.1 dev wlp5s0 proto dhcp metric 600 169.254.0.0/16 dev wlp5s0 scope link metric 1000 192.168.1.0/24 dev wlp5s0 proto kernel scope link src 192.168.1.114 metric 600 dhdurgee@z560:~/Downloads$ ifconfig enp6s0: flags=4163 mtu 1500 ether b8:70:f4:2c:6b:9f txqueuelen 1000 (Ethernet) RX packets 6620471 bytes 6659611738 (6.6 GB) RX errors 0 dropped 113 overruns 0 frame 0 TX packets 5400612 bytes 627288507 (627.2 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 lo: flags=73 mtu 65536 inet 127.0.0.1 netmask 255.0.0.0 inet6 ::1 prefixlen 128 scopeid 0x10 loop txqueuelen 1000 (Local Loopback) RX packets 607593 bytes 59022846 (59.0 MB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 607593 bytes 59022846 (59.0 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 wlp5s0: flags=4163 mtu 1500 inet 192.168.1.114 netmask 255.255.255.0 broadcast 192.168.1.255 inet6 fe80::562f:7604:6d84:57ca prefixlen 64 scopeid 0x20 ether ac:81:12:a4:5e:43 txqueuelen 1000 (Ethernet) RX packets 6987 bytes 5181997 (5.1 MB) RX errors 0 dropped 0 overruns 0 frame 77207 TX packets 7967 bytes 1225749 (1.2 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 device interrupt 17 dhdurgee@z560:~/Downloads$ route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default _gateway 0.0.0.0 UG 600 0 0 wlp5s0 link-local 0.0.0.0 255.255.0.0 U 1000 0 0 wlp5s0 192.168.1.0 0.0.0.0 255.255.255.0 U 600 0 0 wlp5s0 dhdurgee@z560:~/Downloads$ Here is an extract from my syslog: Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.5967] manager: rfkill: Wi-Fi hardware radio set enabled Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.5985] audit: op="radio-control" arg="wireless-enabled" pid=83 uid=1000 result="success" Jul 6 11:50:46 Z560 charon-nm: 11[KNL] interface wlp5s0 activated Jul 6 11:50:46 Z560 systemd[1]: Starting Load/Save RF Kill Switch Status... Jul 6 11:50:46 Z560 systemd[1]: Started Load/Save RF Kill Switch Status. Jul 6 11:50:46 Z560 wpa_supplicant[818]: dbus: fill_dict_with_properties dbus_interface=fi.w1.wpa_supplicant1.Interface.P2PDevice dbus_property=P2PDeviceConfig getter failed Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6794] sup-iface[0x562fdb83d4e0,wlp5s0]: supports 1 scan SSIDs Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6808] device (wlp5s0): supplicant interface state: starting -> ready Jul 6 11:50:46 Z560 NetworkManager[758]: [1625586646.6813] device (wlp5s0): state change: unavailable -> disconnected (reason 'supplicant-available', sys-iface-state: 'managed') Jul 6 11:50:46 Z560 wpa_supplicant[818]: wlp5s0: CTRL-EVENT-SCAN-FAILED ret=-22 Jul 6 11:50:46 Z560 kernel: [706888.708759] ERROR @wl_cfg80211_scan : Jul 6 11:50:46 Z560 kernel: [706888.708762] WLC_SCAN error (-22) Jul 6 11:50:48 Z560 NetworkManager[758]: [1625586648.4559] manager: rfkill: Wi-Fi now enabled by radio killswitch Jul 6 11:50:49 Z560 systemd[1]: NetworkManager-dispatcher.service: Succeeded. Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2774] policy: auto-activating connection 'Auto Free WiFi by Karma' (3ccc719b-3616-44f7-a914-8c7d0344c87a) Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2819] device (wlp5s0): Activation: starting connection 'Auto Free WiFi by Karma' (3ccc719b-3616-44f7-a914-8c7d0344c87a) Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2834] device (wlp5s0): state change: disconnected -> prepare (reason 'none', sys-iface-state: 'managed') Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2891] manager: NetworkManager state is now CONNECTING Jul 6 11:50:50 Z560 NetworkManager[758]: [1625586650.2955] device (wlp5s0): sta
[strongSwan] PGP Key used for signing
What PGP key is used for signing of the source files? --- Eric Germann ekgermann {at} semperen {dot} com || ekgermann {at} gmail {dot} com LinkedIn: https://www.linkedin.com/in/ericgermann Twitter: @ekgermann Telegram || Signal || Phone +1 {dash} 419 {dash} 513 {dash} 0712 GPG Fingerprint: 89ED 36B3 515A 211B 6390 60A9 E30D 9B9B 3EBF F1A1