GNOME Bugzilla – Bug 788514
networkmanager-openvpn 1.8.1dev+9+gf9e2fd5-1 breaks routing to my company VPN
Last modified: 2017-10-05 09:03:44 UTC
Archlinux has updated to master for networkmanager-openvpn that has broken routing for me, i.e. the VPN connects fine but any attempt to connect to hosts on the other VPN side ends up with "No route to host." or similar errors. Any other thing i can do to help pin point the error?
See https://wiki.gnome.org/Projects/NetworkManager/Debugging
https://wiki.gnome.org/Projects/NetworkManager/Debugging#Debugging_NetworkManager-openvpn didn't give me any useful lots [root@yoga tsdgeos]# /usr/lib/NetworkManager/nm-openvpn-service --debug nm-openvpn[27765] <debug> nm-openvpn-service (version 1.8.1) starting... is all i got
if you expect the routes are set wrong, then show the output of `ip route` and explain why you think that is wrong. Also, attach level=TRACE logfile, and note the comment at https://cgit.freedesktop.org/NetworkManager/NetworkManager/tree/contrib/fedora/rpm/NetworkManager.conf for how to gather logfile, and about private data.
For what is worth i can confirm that is https://git.gnome.org/browse/network-manager-openvpn/commit/?id=da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 what breaks it for me (i.e. that one fails and https://git.gnome.org/browse/network-manager-openvpn/commit/?id=da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 which is the previous one works)
(In reply to Albert Astals Cid from comment #4) > For what is worth i can confirm that is > https://git.gnome.org/browse/network-manager-openvpn/commit/ > ?id=da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 what breaks it for me (i.e. > that one fails and > https://git.gnome.org/browse/network-manager-openvpn/commit/ > ?id=da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 which is the previous one works) you mean, 792fcfdf89a75cb805c4c7c67fb0691f2b8cfd4e works? That is helpful information. Do you notice the failure with IPv4 routes?
My previous comment is broken in the sense that i added the same git link in both work and does not work, sorry about that revision that works: https://git.gnome.org/browse/network-manager-openvpn/commit/?id=792fcfdf89a75cb805c4c7c67fb0691f2b8cfd4e revision that does not work: https://git.gnome.org/browse/network-manager-openvpn/commit/?id=da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 I'm attaching the ip route with 792fcfdf89a75cb805c4c7c67fb0691f2b8cfd4e as "works" and with da99ab02cb3d0d0c8a55c338cd0c5c1392ece850 as "does_not_work" honestly i don't enough networking to claim one is wrong and the other is not, just that one seems to work and the other not.
Created attachment 360915 [details] ip route that works
Created attachment 360916 [details] ip route that does not work
> Do you notice the failure with IPv4 routes? Not sure what that means exactly, but i guess, yes, if i try to ping let's say 192.168.150.71 i get errors about host not found
Created attachment 360917 [details] [review] [PATCH] helper: fix ipv4 route gateway evaluation Can you please try this patch?
Yes, this works
Applied to master: https://git.gnome.org/browse/network-manager-openvpn/commit/?id=e4d8cda14483b3195dbf2a9d61c565f426108ea3