OpenVPN
I am trying to get Network Manager to open up a OpenVPN connection from my Fedora development laptop to my FC4 gateway at home. The OpenVPN connection starts up and is working (as evidenced by the correct routes being installed in the kernel and traffic flowing properly). However, Network Manager doesn't seem to think that the connection was started properly. My laptop is running NetworkManager 0.6.2 (Fedora development rpm) and a CVS checkout of the OpenVPN plugin from yesterday. Here's the log from my laptop: Apr 26 08:17:24 lt16585 NetworkManager: information Will activate VPN connection 'Home', service 'org.freedesktop.NetworkManager.openvpn', user_name 'jcollie', vpn_data 'connection-type / x509 / dev / tun / remote / gw1.ocjtech.us / proto / udp / ca / /home/jcollie/vpn/ca.crt / cert / /home/jcollie/vpn/lt16585.campus.dmacc.edu.crt / key / /home/jcollie/vpn/lt16585.campus.dmacc.edu.key / comp-lzo / no / shared-key / / local-ip / / remote-ip / / username / ', route '172.16.0.0/24 / 172.16.1.0/24'. Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) scheduled... Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) ran VPN service daemon org.freedesktop.NetworkManager.openvpn (PID 9934) Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) complete. Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) scheduled... Apr 26 08:17:24 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 1 - 6. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) waiting... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) complete. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) scheduled... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) sending connect request. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) request sent, waiting for reply... Apr 26 08:17:25 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 6 - 3. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) reply received. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 4 of 4 (IP Config Get) timeout scheduled... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) complete, waiting for IP configuration... Apr 26 08:17:25 lt16585 nm-openvpn[9936]: OpenVPN 2.1_beta14 i386-redhat-linux-gnu [SSL] [LZO1] [EPOLL] built on Apr 14 2006 Apr 26 08:17:25 lt16585 nm-openvpn[9936]: UDPv4 link local: [undef] Apr 26 08:17:25 lt16585 nm-openvpn[9936]: UDPv4 link remote: 63.175.164.239:1194 Apr 26 08:17:27 lt16585 nm-openvpn[9936]: [gw1.ocjtech.us] Peer Connection Initiated with 63.175.164.239:1194 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: TUN/TAP device tun0 opened Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /sbin/ip link set dev tun0 up mtu 1500 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /sbin/ip addr add dev tun0 local 172.16.1.6 peer 172.16.1.5 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /usr/bin/nm-openvpn-service-openvpn-helper tun0 1500 1541 172.16.1.6 172.16.1.5 init Apr 26 08:17:28 lt16585 NetworkManager: information VPN Activation (Home) Stage 4 of 4 (IP Config Get) reply received. Apr 26 08:17:28 lt16585 NetworkManager: WARNINGget_dbus_string_helper (): Error: couldn't get DNS Domain from VPN IP Config message. Apr 26 08:17:28 lt16585 NetworkManager: WARNING nm_vpn_service_stage4_ip_config_get (): (VPN Service org.freedesktop.NetworkManager.openvpn): did not receive valid IP config information. Apr 26 08:17:28 lt16585 NetworkManager: information VPN Activation (Home) failed. Apr 26 08:17:28 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 3 - 4. Apr 26 08:17:28 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 4 - 5. Apr 26 08:17:28 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 5 - 6. Apr 26 08:17:28 lt16585 nm-openvpn[9936]: Initialization Sequence Completed signature.asc Description: This is a digitally signed message part ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: NetworkManager OpenVPN plugin
Sebastian Willert wrote: Hi, Hi Sebastian. I am trying to extend the NetworkManager OpenVPN plugin to support misconfigured VPNs (e.g. without proper nsCert types) and VPNs that can be accessed from Intra- as well as the Internet (those tend to change the source of their packages from external to internal, thus requiring the --float option). Things seem to work quite well, so I thought it might be worthwhile proposing the changes. Sounds reasonable. If you send me the patch I will have a look. The name of the current Ubuntu source package from the http://kubuntu.no-ip.org/kubuntu repository suggests that there is an svn out there (that I wasn't able to find). I think it would be best if I could produce diffs from there. Do you mean the CVS that NetworkManager is kept in? You can find it at cvs.gnome.org. There are instructions how to check out code. Furthermore I'd really like to discuss my changes (not sure I they align well with gnome philosophy for instance) and, provided you consider accepting those, sensible changes to the properties dialog. Send a patch so that we have a basis for a decision. Tim -- Tim Niemueller [EMAIL PROTECTED] www.niemueller.de = Imagination is more important than knowledge. (Albert Einstein) ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: NM and broadcom stuff with ndiswrapper
On Thursday 20 April 2006 12:37, Gene Heskett wrote: 6 days ago, and no reply? I was recommended to take my questions here, but I'm wondering if I'm in the right store here folks. Greetings; Is there a snowballs chance of making this (NM) work? HP dv532us lappy, amd64 turion, i386 version of FC5 currently installed. Configured by hand, with fixed addresses all around my local home network, using the drivers from the XP install also on that disk, seems to work just fine. I've since reconfigured the home network to use dhcp, and it works just fine if I do a service network start. Do a stop, and start NM, and there is no connection. Doing an iwconfig when NM is running discloses that the only thing different between a working link and non-working link is that when NM is running there is not a WEP key shown in the iwconfig output. Is this enough info to trigger a response? But I have to haul it 900 miles to a job-site live in a wifi equipt motel for a couple of months. It would be nice to just start NM and have it find and configure it to work there. -- Cheers, Gene People having trouble with vz bouncing email to me should add the word 'online' between the 'verizon', and the dot which bypasses vz's stupid bounce rules. I do use spamassassin too. :-) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: NM and broadcom stuff with ndiswrapper
Unfortunately your first email was a little vague so nobody probably knew what to say... I will take a stab at answering but it is likely that I am misdiagnosing your problem completely but here goes anyway! :-) I think the problem you are having is an issue with the version of NDISWrapper you have not fully supporting the latest WEXT. From what I understand this was fixed and the NDISWrapper has full WEXT support in CVS. Because the NM devs did not want to support 15+ different cards they focused on supporting the Wireless Extensions (WEXT) standard and hoped to push developers to make their cards compliant. IF (Notice I said IF ;) ) this is your problem you have three options: 1) Use the open-source driver from: http://bcm43xx.berlios.de/ According to this page that driver works: http://live.gnome.org/NetworkManagerHardware *Note* Some members of the Ubuntuforums have reported that these drivers are somewhat slow. 2) Update to the latest version of NDISWrapper 3) Build Network Manager yourself but apply the patch that Robert Love posted back in march that adds specific support for NDISWrapper and MADWIFI drivers. http://mail.gnome.org/archives/networkmanager-list/2006-March/msg00068.html I hope this helps! On 4/26/06, Gene Heskett [EMAIL PROTECTED] wrote: On Thursday 20 April 2006 12:37, Gene Heskett wrote: 6 days ago, and no reply? I was recommended to take my questions here, but I'm wondering if I'm in the right store here folks. Greetings; Is there a snowballs chance of making this (NM) work? HP dv532us lappy, amd64 turion, i386 version of FC5 currently installed. Configured by hand, with fixed addresses all around my local home network, using the drivers from the XP install also on that disk, seems to work just fine. I've since reconfigured the home network to use dhcp, and it works just fine if I do a service network start. Do a stop, and start NM, and there is no connection. Doing an iwconfig when NM is running discloses that the only thing different between a working link and non-working link is that when NM is running there is not a WEP key shown in the iwconfig output. Is this enough info to trigger a response? But I have to haul it 900 miles to a job-site live in a wifi equipt motel for a couple of months. It would be nice to just start NM and have it find and configure it to work there. -- Cheers, Gene People having trouble with vz bouncing email to me should add the word 'online' between the 'verizon', and the dot which bypasses vz's stupid bounce rules. I do use spamassassin too. :-) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: OpenVPN
I've dug into the code a bit and come up with the attached patch, but it still doesn't seem to be working. Watching the system bus with dbus-monitor shows the following DBus message being sent: signal sender=:1.54 - dest=(null destination) interface=org.freedesktop.NetworkManager.openvpn; member=IP4Config uint32 4020547391 string tun0 uint32 100733100 uint32 83955884 uint32 16777215 [uint32 33558700 ][uint32 0 ]uint32 0 string string This shows that the additional parameters I added to the DBus message are there. This is my first attempt at hacking DBus/NetworkManager so I'm sure I've done something completely boneheaded here... On Wed, 2006-04-26 at 08:42 -0500, Jeffrey C. Ollie wrote: I am trying to get Network Manager to open up a OpenVPN connection from my Fedora development laptop to my FC4 gateway at home. The OpenVPN connection starts up and is working (as evidenced by the correct routes being installed in the kernel and traffic flowing properly). However, Network Manager doesn't seem to think that the connection was started properly. My laptop is running NetworkManager 0.6.2 (Fedora development rpm) and a CVS checkout of the OpenVPN plugin from yesterday. Here's the log from my laptop: Apr 26 08:17:24 lt16585 NetworkManager: information Will activate VPN connection 'Home', service 'org.freedesktop.NetworkManager.openvpn', user_name 'jcollie', vpn_data 'connection-type / x509 / dev / tun / remote / gw1.ocjtech.us / proto / udp / ca / /home/jcollie/vpn/ca.crt / cert / /home/jcollie/vpn/lt16585.campus.dmacc.edu.crt / key / /home/jcollie/vpn/lt16585.campus.dmacc.edu.key / comp-lzo / no / shared-key / / local-ip / / remote-ip / / username / ', route '172.16.0.0/24 / 172.16.1.0/24'. Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) scheduled... Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) ran VPN service daemon org.freedesktop.NetworkManager.openvpn (PID 9934) Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 1 of 4 (Connection Prepare) complete. Apr 26 08:17:24 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) scheduled... Apr 26 08:17:24 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 1 - 6. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) waiting... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 2 of 4 (Connection Prepare Wait) complete. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) scheduled... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) sending connect request. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) request sent, waiting for reply... Apr 26 08:17:25 lt16585 NetworkManager: information VPN service 'org.freedesktop.NetworkManager.openvpn' signaled state change 6 - 3. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) reply received. Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 4 of 4 (IP Config Get) timeout scheduled... Apr 26 08:17:25 lt16585 NetworkManager: information VPN Activation (Home) Stage 3 of 4 (Connect) complete, waiting for IP configuration... Apr 26 08:17:25 lt16585 nm-openvpn[9936]: OpenVPN 2.1_beta14 i386-redhat-linux-gnu [SSL] [LZO1] [EPOLL] built on Apr 14 2006 Apr 26 08:17:25 lt16585 nm-openvpn[9936]: UDPv4 link local: [undef] Apr 26 08:17:25 lt16585 nm-openvpn[9936]: UDPv4 link remote: 63.175.164.239:1194 Apr 26 08:17:27 lt16585 nm-openvpn[9936]: [gw1.ocjtech.us] Peer Connection Initiated with 63.175.164.239:1194 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: TUN/TAP device tun0 opened Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /sbin/ip link set dev tun0 up mtu 1500 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /sbin/ip addr add dev tun0 local 172.16.1.6 peer 172.16.1.5 Apr 26 08:17:28 lt16585 nm-openvpn[9936]: /usr/bin/nm-openvpn-service-openvpn-helper tun0 1500 1541 172.16.1.6 172.16.1.5 init Apr 26 08:17:28 lt16585 NetworkManager: information VPN Activation (Home) Stage 4 of 4 (IP Config Get) reply received. Apr 26 08:17:28 lt16585 NetworkManager: WARNING get_dbus_string_helper (): Error: couldn't get DNS Domain from VPN IP Config message. Apr 26 08:17:28 lt16585 NetworkManager: WARNING nm_vpn_service_stage4_ip_config_get (): (VPN Service org.freedesktop.NetworkManager.openvpn): did not receive valid IP config information. Apr 26 08:17:28 lt16585 NetworkManager: information VPN Activation (Home) failed. Apr 26 08:17:28 lt16585
