Hi, I recently had a VPN server restart ( kernel upgrades happen ) and now noticed that none of my VPN clients are automatically reconnecting. The -logfile- says it's connecting: Aug 12 17:22:46 example nm-openvpn[683]: Connection reset, restarting [0] Aug 12 17:22:46 example nm-openvpn[683]: SIGUSR1[soft,connection-reset] received, process restarting Aug 12 17:22:51 example nm-openvpn[683]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Aug 12 17:22:51 example nm-openvpn[683]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Aug 12 17:22:51 example nm-openvpn[683]: Attempting to establish TCP connection with [AF_INET]85.24.215.86:1194 [nonblock] Aug 12 17:22:52 example nm-openvpn[683]: TCP connection established with [AF_INET]85.24.215.86:1194 Aug 12 17:22:52 example nm-openvpn[683]: TCPv4_CLIENT link local: [undef] Aug 12 17:22:52 example nm-openvpn[683]: TCPv4_CLIENT link remote: [AF_INET]85.24.215.86:1194 Aug 12 17:22:53 example nm-openvpn[683]: [vpnserver.explicit] Peer Connection Initiated with [AF_INET]85.24.215.86:1194 Aug 12 17:22:55 example nm-openvpn[683]: Preserving previous TUN/TAP instance: tun0 Aug 12 17:22:55 example nm-openvpn[683]: /usr/lib/NetworkManager/nm-openvpn-service-openvpn-helper --tun -- tun0 1500 1543 192.168.218.15 192.168.218.1 restart Aug 12 17:22:55 example NetworkManager[502]: <info> VPN connection 'example' (IP Config Get) reply received. Aug 12 17:22:55 example NetworkManager[502]: <info> VPN connection 'example' (IP4 Config Get) reply received. Aug 12 17:22:55 example nm-openvpn[683]: NOTE: Pulled options changed on restart, will need to close and reopen TUN/TAP device. Aug 12 17:22:55 example NetworkManager[502]: <info> (tun0): device state change: activated -> unmanaged (reason 'removed') [100 10 36] Aug 12 17:22:55 example NetworkManager[502]: <info> (tun0): deactivating device (reason 'removed') [36] Aug 12 17:22:56 example nm-openvpn[683]: TUN/TAP device tun0 opened Aug 12 17:22:56 example nm-openvpn[683]: /usr/lib/NetworkManager/nm-openvpn-service-openvpn-helper --tun -- tun0 1500 1543 192.168.218.4 192.168.218.1 init Aug 12 17:22:56 example NetworkManager[502]: <info> (tun0): carrier is OFF Aug 12 17:22:56 example NetworkManager[502]: <info> (tun0): new Tun device (driver: 'unknown' ifindex: 4) Aug 12 17:22:56 example NetworkManager[502]: <info> (tun0): exported as /org/freedesktop/NetworkManager/Devices/3 Aug 12 17:22:56 example NetworkManager[502]: <info> VPN connection 'example' (IP Config Get) reply received. Aug 12 17:22:56 example NetworkManager[502]: <info> VPN connection 'example' (IP4 Config Get) reply received. Aug 12 17:22:56 example nm-openvpn[683]: Initialization Sequence Completed And the connection status says it's so: # nmcli c show NAME UUID TYPE DEVICE tun0 31a636b6-03a4-41ab-bf08-79e61b83a573 generic -- Wired connection 1 f0feb605-d175-4742-85fd-b6ccef05e974 802-3-ethernet eth0 example a25ea741-b360-4f3c-8244-78a15360cd77 vpn eth0 "ip addr" however shows the truth: 4: tun0: <POINTOPOINT,MULTICAST,NOARP> mtu 1500 qdisc noop state DOWN group default qlen 100 link/none For those machines that I can reach, I can do "nmcli c down example; nmcli c up example" .. For the rest that I can't physically reach, I have no idea what to do with.. Any suggestions here? -- 8362 CB14 98AD 11EF CEB6 FA81 FCC3 7674 449E 3CFC
Attachment:
signature.asc
Description: OpenPGP digital signature