LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   IPSEC seems to stop working on every server I try causing to restart the service (https://www.linuxquestions.org/questions/linux-software-2/ipsec-seems-to-stop-working-on-every-server-i-try-causing-to-restart-the-service-4175622021/)

guntanemo 01-20-2018 02:25 AM
IPSEC seems to stop working on every server I try causing to restart the service
 
IPSEC seems to stop working on every server I try from Nord VPN causing to restart the service via terminal "sudo ipsec restart, etc" . Opera browser will suddenly stop working on any site, youtube, google, etc, and I will get a page saying "there is no internet connection" which is when I will send the reset commands and it will almost always come back up but a few times I had to switch servers. I have had this happen on a few dozen of these servers now which makes me think its on my side considering I have never had this problem before.





NORDVPN snipped (although I added their DNS servers, apparently the DNS servers would constantly change to DNS servers I have never seen before. Updated DNS servers as per Nord VPN's instructions on their site, this was right before and so far the DNS problem has not happened again):
adding DNS server failed
adding DNS server failed
handling INTERNAL_IP4_DNS attribute failed
adding DNS server failed
handling INTERNAL_IP4_DNS attribute failed
handling INTERNAL_IP4_NETMASK attribute failed
installing new virtual IP 10.6.6.8
CHILD_SA Nord{1} established with SPIs c77d5926_i c57fd60e_o and TS 10.6.6.8/32 === 0.0.0.0/0
connection 'Nord' established successfully

(The DNS problem seems to have been solved yet the problem continues)

Full Log included below:


16:11:20 dbus-daemon: Successfully activated service 'org.gnome.Logs'
16:11:11 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC=01:00:5e:00:00:01:e4:18:6b:e8:c0:0d:08:00 SRC=192.168.0.1 DST=224.0.0.1 LEN=36 TOS=0x00 PREC=0x00 TTL=1 ID=0 DF PROTO=2
16:10:23 opera: [0118/161023.084932:ERROR:service_manager.cc(157)] Connection InterfaceProviderSpec prevented service: content_renderer from binding interface: blink::mojom::ReportingServiceProxy exposed by: content_browser
16:10:17 sudo: pam_unix(sudo:session): session closed for user root
16:09:10 kernel: audit: type=1400 audit(1516316950.827:81): apparmor="DENIED" operation="open" profile="/usr/lib/ipsec/charon" name="/run/systemd/resolve/stub-resolv.conf" pid=12970 comm="charon" requested_mask="wc" denied_mask="wc" fsuid=0 ouid=102
16:09:10 kernel: pam_unix(sudo:session): session closed for user root
16:09:10 charon: 09[IKE] peer supports MOBIKE
16:09:10 avahi-daemon: Registering new address record for 10.6.6.168 on enp4s0f1.IPv4.
16:09:10 charon: 09[IKE] installing new virtual IP 10.6.6.168
16:09:06 whoopsie: [16:09:06] online
16:09:05 nm-dispatcher: req:4 'connectivity-change': start running ordered scripts...
16:09:04 opera: [0118/160904.887508:ERROR:service_manager.cc(157)] Connection InterfaceProviderSpec prevented service: content_renderer from binding interface: blink::mojom::ReportingServiceProxy exposed by: content_browser
16:09:04 nm-dispatcher: postconf: fatal: open /etc/postfix/main.cf: No such file or directory
16:09:03 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC=01:00:5e:00:00:01:e4:18:6b:e8:c0:0d:08:00 SRC=192.168.0.1 DST=224.0.0.1 LEN=36 TOS=0x00 PREC=0x00 TTL=1 ID=0 DF PROTO=2
16:09:03 whoopsie: [16:09:03] Cannot reach: https://daisy.ubuntu.com
16:09:03 systemd-resolve: Using degraded feature set (TCP) for DNS server 205.171.3.25.
16:09:01 charon: 10[NET] sending packet: from 192.168.0.2[500] to 176.53.23.254[500] (1504 bytes)
16:09:01 systemd-resolve: Using degraded feature set (UDP) for DNS server 192.168.0.1.
16:08:57 charon: 07[NET] sending packet: from 192.168.0.2[500] to 176.53.23.254[500] (1504 bytes)
16:08:57 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
16:08:57 systemd-resolve: Using degraded feature set (TCP) for DNS server 192.168.0.1.
16:08:55 nm-dispatcher: req:4 'connectivity-change': new request (1 scripts)
16:08:55 systemd-resolve: Using degraded feature set (UDP) for DNS server 205.171.3.25.
16:08:54 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=192.168.0.2 DST=224.0.0.252 LEN=51 TOS=0x00 PREC=0x00 TTL=255 ID=41354 PROTO=UDP SPT=5355 DPT=5355 LEN=31
16:08:53 nm-dispatcher: postconf: fatal: open /etc/postfix/main.cf: No such file or directory
16:08:52 systemd-resolve: Using degraded feature set (TCP) for DNS server 205.171.3.25.
16:08:49 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=192.168.0.2 DST=224.0.0.252 LEN=51 TOS=0x00 PREC=0x00 TTL=255 ID=40020 PROTO=UDP SPT=5355 DPT=5355 LEN=31
16:08:49 systemd-resolve: Using degraded feature set (TCP) for DNS server 192.168.0.1.
16:08:48 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=192.168.0.2 DST=224.0.0.252 LEN=51 TOS=0x00 PREC=0x00 TTL=255 ID=39983 PROTO=UDP SPT=5355 DPT=5355 LEN=31
16:08:47 systemd-resolve: Using degraded feature set (UDP) for DNS server 205.171.3.25.
16:08:44 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=fe80:0000:0000:0000:82fa:5bff:fe1a:f873 DST=ff02:0000:0000:0000:0000:0000:0001:0003 LEN=71 TC=0 HOPLIMIT=255 FLOWLBL=518280 PROTO=UDP SPT=5355 DPT=5355 LEN=31
16:08:43 whoopsie: [16:08:43] Found usable connection: /org/freedesktop/NetworkManager/ActiveConnection/3
16:08:43 gsd-sharing: Failed to StopUnit service: GDBus.Error:org.freedesktop.systemd1.NoSuchUnit: Unit vino-server.service not loaded.
16:08:43 nm-dispatcher: req:3 'up' [enp4s0f1]: start running ordered scripts...
16:08:43 NetworkManager: <info> [1516316923.4003] device (enp4s0f1): Activation: successful, device activated.
16:08:43 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=192.168.0.2 DST=224.0.0.252 LEN=50 TOS=0x00 PREC=0x00 TTL=255 ID=39197 PROTO=UDP SPT=5355 DPT=5355 LEN=30
16:08:43 dhclient: bound to 192.168.0.2 -- renewal in 38180 seconds.
16:08:43 whoopsie: [16:08:43] Cannot reach: https://daisy.ubuntu.com
16:08:43 NetworkManager: <info> [1516316923.2800] manager: NetworkManager state is now CONNECTED_LOCAL
16:08:43 avahi-daemon: Registering new address record for 192.168.0.2 on enp4s0f1.IPv4.
16:08:43 NetworkManager: <info> [1516316923.2761] dhcp4 (enp4s0f1): state changed unknown -> bound
16:08:43 avahi-daemon: Joining mDNS multicast group on interface enp4s0f1.IPv4 with address 192.168.0.2.
16:08:43 NetworkManager: <info> [1516316923.2761] dhcp4 (enp4s0f1): domain name 'Home'
16:08:43 charon: 01[KNL] 192.168.0.2 appeared on enp4s0f1
16:08:43 NetworkManager: <info> [1516316923.2761] dhcp4 (enp4s0f1): nameserver '192.168.0.1'
16:08:43 dhclient: DHCPACK of 192.168.0.2 from 192.168.0.1
16:08:41 kernel: [UFW BLOCK] IN=enp4s0f1 OUT= MAC= SRC=fe80:0000:0000:0000:82fa:5bff:fe1a:f873 DST=ff02:0000:0000:0000:0000:0000:0001:0003 LEN=70 TC=0 HOPLIMIT=255 FLOWLBL=518280 PROTO=UDP SPT=5355 DPT=5355 LEN=30
16:08:41 avahi-daemon: Registering new address record for fe80::82fa:5bff:fe1a:f873 on enp4s0f1.*.
16:08:41 charon: 06[KNL] fe80::82fa:5bff:fe1a:f873 appeared on enp4s0f1
16:08:41 avahi-daemon: Joining mDNS multicast group on interface enp4s0f1.IPv6 with address fe80::82fa:5bff:fe1a:f873.
16:08:40 dhclient: DHCPREQUEST of 192.168.0.2 on enp4s0f1 to 255.255.255.255 port 67 (xid=0x2071d22c)

sidzen 01-21-2018 09:53 AM
Feds are shut down -- maybe their "gatekeepers" don't work well without pay!
LOL

guntanemo 01-22-2018 08:57 PM
Quote:
Originally Posted by sidzen (Post 5809356)
Feds are shut down -- maybe their "gatekeepers" don't work well without pay!
LOL
What?


All times are GMT -5. The time now is 06:38 AM.