Thank you Hector, I think you may be right. I retried connecting to the web servers I thought I couldn't access yesterday and I was able to, so it does sound like it may be ssh. Note that the key I'm using wasn't generated on 26.04, so maybe that's related. Here's the ssh -v output:
debug1: OpenSSH_10.2p1 Ubuntu-2ubuntu3.2, OpenSSL 3.5.5 27 Jan 2026 debug1: Reading configuration data /home/cma/.ssh/config debug1: Reading configuration data /etc/ssh/ssh_config debug1: Reading configuration data /etc/ssh/ssh_config.d/20-systemd-ssh-proxy.conf debug1: /etc/ssh/ssh_config line 21: Applying options for * debug1: Connecting to 192.168.3.210 [192.168.3.210] port 22. debug1: Connection established. debug1: loaded pubkey from /home/cma/.ssh/id_rsa: RSA SHA256:D3a/rHYKlsNxLVRhRUdCtS5ByNlaUkBWYzRwqvBJM/4 debug1: identity file /home/cma/.ssh/id_rsa type 0 debug1: no identity pubkey loaded from /home/cma/.ssh/id_rsa debug1: no pubkey loaded from /home/cma/.ssh/id_ecdsa debug1: identity file /home/cma/.ssh/id_ecdsa type -1 debug1: no identity pubkey loaded from /home/cma/.ssh/id_ecdsa debug1: no pubkey loaded from /home/cma/.ssh/id_ecdsa_sk debug1: identity file /home/cma/.ssh/id_ecdsa_sk type -1 debug1: no identity pubkey loaded from /home/cma/.ssh/id_ecdsa_sk debug1: no pubkey loaded from /home/cma/.ssh/id_ed25519 debug1: identity file /home/cma/.ssh/id_ed25519 type -1 debug1: no identity pubkey loaded from /home/cma/.ssh/id_ed25519 debug1: no pubkey loaded from /home/cma/.ssh/id_ed25519_sk debug1: identity file /home/cma/.ssh/id_ed25519_sk type -1 debug1: no identity pubkey loaded from /home/cma/.ssh/id_ed25519_sk debug1: Local version string SSH-2.0-OpenSSH_10.2p1 Ubuntu-2ubuntu3.2 debug1: Remote protocol version 2.0, remote software version OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 debug1: compat_banner: match: OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 pat OpenSSH* compat 0x04000000 debug1: Authenticating to 192.168.3.210:22 as 'cma' debug1: load_hostkeys: fopen /home/cma/.ssh/known_hosts2: No such file or directory debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: algorithm: [email protected] debug1: kex: host key algorithm: ssh-ed25519 debug1: kex: server->client cipher: [email protected] MAC: <implicit> compression: none debug1: kex: client->server cipher: [email protected] MAC: <implicit> compression: none debug1: expecting SSH2_MSG_KEX_ECDH_REPLY debug1: SSH2_MSG_KEX_ECDH_REPLY received debug1: Server host key: ssh-ed25519 SHA256:jPFbrSTx2pcMn5CaNH1xQ4IZ/IE/BZWG162lxl1S7DU debug1: load_hostkeys: fopen /home/cma/.ssh/known_hosts2: No such file or directory debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory debug1: Host '192.168.3.210' is known and matches the ED25519 host key. debug1: Found key in /home/cma/.ssh/known_hosts:181 debug1: ssh_packet_send2_wrapped: resetting send seqnr 3 debug1: rekey out after 134217728 blocks debug1: SSH2_MSG_NEWKEYS sent debug1: Sending SSH2_MSG_EXT_INFO debug1: expecting SSH2_MSG_NEWKEYS debug1: ssh_packet_read_poll2: resetting read seqnr 3 debug1: SSH2_MSG_NEWKEYS received debug1: rekey in after 134217728 blocks debug1: SSH2_MSG_EXT_INFO received debug1: kex_ext_info_client_parse: server-sig-algs=<ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,[email protected],[email protected],rsa-sha2-512,rsa-sha2-256> debug1: kex_ext_info_check_ver: [email protected]=<0> debug1: kex_ext_info_check_ver: [email protected]=<0> debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: SSH2_MSG_EXT_INFO received debug1: kex_ext_info_client_parse: server-sig-algs=<ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,[email protected],[email protected],rsa-sha2-512,rsa-sha2-256> debug1: Authentications that can continue: publickey,password debug1: Next authentication method: publickey debug1: get_agent_identities: bound agent to hostkey debug1: get_agent_identities: agent returned 2 keys debug1: Will attempt key: /home/cma/.ssh/id_rsa RSA SHA256:D3a/rHYKlsNxLVRhRUdCtS5ByNlaUkBWYzRwqvBJM/4 agent debug1: Will attempt key: cma@remotehex ED25519 SHA256:mzl9gRIAQkwmwZ7zXZoZSebCUFeBc99e6O5vn/uXDI4 agent debug1: Will attempt key: /home/cma/.ssh/id_ecdsa debug1: Will attempt key: /home/cma/.ssh/id_ecdsa_sk debug1: Will attempt key: /home/cma/.ssh/id_ed25519 debug1: Will attempt key: /home/cma/.ssh/id_ed25519_sk debug1: Offering public key: /home/cma/.ssh/id_rsa RSA SHA256:D3a/rHYKlsNxLVRhRUdCtS5ByNlaUkBWYzRwqvBJM/4 agent debug1: Server accepts key: /home/cma/.ssh/id_rsa RSA SHA256:D3a/rHYKlsNxLVRhRUdCtS5ByNlaUkBWYzRwqvBJM/4 agent I notice that on a successful connection from 24.04 there is additional output after the above "Server accepts key" line: Authenticated to 192.168.3.210 ([192.168.3.210]:22) using "publickey". debug1: channel 0: new session [client-session] (inactive timeout: 0) debug1: Requesting [email protected] debug1: Entering interactive session. debug1: pledge: filesystem debug1: client_input_global_request: rtype [email protected] want_reply 0 debug1: client_input_hostkeys: searching /home/cma/.ssh/known_hosts for 192.168.3.210 / (none) debug1: client_input_hostkeys: searching /home/cma/.ssh/known_hosts2 for 192.168.3.210 / (none) debug1: client_input_hostkeys: hostkeys file /home/cma/.ssh/known_hosts2 does not exist debug1: client_input_hostkeys: no new or deprecated keys from server debug1: Remote: /home/cma/.ssh/authorized_keys:1: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding debug1: Remote: /home/cma/.ssh/authorized_keys:1: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding debug1: Sending environment. debug1: channel 0: setting env LANG = "en_US.UTF-8" debug1: pledge: fork -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2151751 Title: Connections over OpenVPN connection only accessible via sudo/root To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openvpn/+bug/2151751/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
