나는 달리고 있다갈륨 운영체제기본적으로 Chromebook에서 실행되고 마음에 들지만 문제가 있습니다. 항상 노트북을 절전 모드에서 깨우거나 WiFi 네트워크를 변경할 때 인터넷 연결이 끊어집니다. 다음 명령을 실행할 때까지 라우팅 테이블은 비어 있습니다.
sudo systemctl restart openvpn
나는 달리고 있다우프보그리고오픈VPN, 그러나 ufw를 완전히 비활성화해도 문제가 해결되지 않는 것으로 나타났습니다. openvpn을 비활성화하고 중지해야만 문제가 해결되는 것 같습니다. ufw, openvpn 및 NetworkManager와 관련된 syslog 항목을 포함하여 제가 시도한 내용에 대한 메모를 아래에 포함했습니다. 또한 openvpn client.conf 파일에서 ping, ping-restart 및 keepalive 옵션을 변경해 보았습니다. 별 효과는 없는 것 같아요! !
내 메모:
11:47 다시 시작하고 iPhone 핫스팟에 연결하세요.
연결이 좋습니다.
라우팅 테이블:
Destination Gateway Genmask Flags Metric Ref Use Iface
default 10.7.7.1 128.0.0.0 UG 0 0 0 tun0
default 172.20.10.1 0.0.0.0 UG 600 0 0 wlp2s0
10.7.7.0 * 255.255.255.0 U 0 0 0 tun0
128.0.0.0 10.7.7.1 128.0.0.0 UG 0 0 0 tun0
228-12-88-167.r 172.20.10.1 255.255.255.255 UGH 0 0 0 wlp2s0
link-local * 255.255.0.0 U 1000 0 0 wlp2s0
172.20.10.0 * 255.255.255.240 U 600 0 0 wlp2s0
UFW 상태:
To Action From
-- ------ ----
[my VPN IP] ALLOW OUT Anywhere
Anywhere ALLOW OUT Anywhere on tun0
22 ALLOW OUT Anywhere
[my VPN DNS server1] ALLOW OUT Anywhere
[my VPN DNS server2] ALLOW OUT Anywhere
Anywhere (v6) ALLOW OUT Anywhere (v6) on tun0
22 (v6) ALLOW OUT Anywhere (v6)
OpenVPN 서비스 상태
mike@mikecb:/var/log$ sudo systemctl status openvpn
● openvpn.service - OpenVPN service
Loaded: loaded (/lib/systemd/system/openvpn.service; enabled; vendor preset: enabled)
Active: active (exited) since Mon 2019-02-04 11:47:06 CST; 4min 12s ago
Process: 898 ExecStart=/bin/true (code=exited, status=0/SUCCESS)
Main PID: 898 (code=exited, status=0/SUCCESS)
CGroup: /system.slice/openvpn.service
Feb 04 11:47:06 mikecb systemd[1]: Starting OpenVPN service...
Feb 04 11:47:06 mikecb systemd[1]: Started OpenVPN service.
UFW가 나가는 요청을 차단하고 있음을 나타내는 많은 항목이 시스템 로그에 표시됩니다. 그러나 UFW를 완전히 비활성화해도 제가 겪고 있는 주요 문제가 해결되지 않으므로 관련이 없는 것으로 생각됩니다.
시작 후 syslog.1에 항목이 없습니다. 시작 후 boot.log에 항목이 없습니다.
NetworkManager와 관련된 syslog의 흥미로운 항목:
Feb 4 11:47:15 mikecb NetworkManager[794]: /etc/resolvconf/update.d/libc: Warning: /etc/resolv.conf is not a symbolic link to /run/resolvconf/resolv.conf
Feb 4 11:47:59 mikecb NetworkManager[794]: <warn> [1549302479.5826] dhcp6 (wlp2s0): request timed out
Feb 4 11:47:59 mikecb NetworkManager[794]: <info> [1549302479.5827] dhcp6 (wlp2s0): state changed unknown -> timeout
Feb 4 11:47:59 mikecb NetworkManager[794]: <info> [1549302479.5848] dhcp6 (wlp2s0): canceled DHCP transaction, DHCP client pid 1194
Feb 4 11:47:59 mikecb NetworkManager[794]: <info> [1549302479.5849] dhcp6 (wlp2s0): state changed timeout -> done
syslog에서 openvpn과 관련된 문제가 발견되지 않았습니다.
오후 12시 3분에 핫스팟 연결이 끊어졌습니다.
openvpn과 관련된 시스템 로그에 새로운 항목이 없습니다.
NetworkManager 시스템 로그의 새 항목:
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5421] device (wlp2s0): state change: activated -> deactivating (reason 'user-requested') [100 110 39]
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5425] manager: NetworkManager state is now CONNECTED_LOCAL
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5628] audit: op="device-disconnect" interface="wlp2s0" ifindex=2 pid=1111 uid=1000 result="success"
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5645] device (wlp2s0): state change: deactivating -> disconnected (reason 'user-requested') [110 30 39]
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5962] dhcp4 (wlp2s0): canceled DHCP transaction, DHCP client pid 1087
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.5963] dhcp4 (wlp2s0): state changed bound -> done
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.6379] dns-mgr: Writing DNS information to /sbin/resolvconf
Feb 4 12:03:54 mikecb NetworkManager[794]: /etc/resolvconf/update.d/libc: Warning: /etc/resolv.conf is not a symbolic link to /run/resolvconf/resolv.conf
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.7019] dns-mgr: Removing DNS information from /sbin/resolvconf
Feb 4 12:03:54 mikecb NetworkManager[794]: /etc/resolvconf/update.d/libc: Warning: /etc/resolv.conf is not a symbolic link to /run/resolvconf/resolv.conf
Feb 4 12:03:54 mikecb NetworkManager[794]: <warn> [1549303434.7436] sup-iface[0x29790c0,wlp2s0]: connection disconnected (reason -3)
Feb 4 12:03:54 mikecb NetworkManager[794]: <info> [1549303434.7439] device (wlp2s0): supplicant interface state: completed -> disconnected
예상한 대로 라우팅 테이블은 비어 있고 연결이 없습니다.
오후 12:07 핫스팟에 다시 연결되었습니다.
라우팅 테이블은 여전히 비어 있습니다.
인터넷에 연결할 수 없습니다.
openvpn의 syslog에 있는 흥미로운 항목:
Feb 4 12:06:53 mikecb ovpn-client[746]: [us2838.nordvpn.com] Inactivity timeout (--ping-restart), restarting
Feb 4 12:06:53 mikecb ovpn-client[746]: SIGUSR1[soft,ping-restart] received, process restarting
Feb 4 12:06:53 mikecb ovpn-client[746]: Restart pause, 5 second(s)
Feb 4 12:06:58 mikecb ovpn-client[746]: NOTE: --fast-io is disabled since we are not using UDP
Feb 4 12:06:58 mikecb ovpn-client[746]: Socket Buffers: R=[87380->425984] S=[16384->425984]
Feb 4 12:06:58 mikecb ovpn-client[746]: Attempting to establish TCP connection with [AF_INET][MY VPN IP]:443 [nonblock]
Feb 4 12:07:08 mikecb ovpn-client[746]: TCP: connect to [AF_INET][MY VPN IP]:443 failed, will try again in 5 seconds: Connection timed out
Feb 4 12:07:23 mikecb ovpn-client[746]: TCP: connect to [AF_INET][MY VPN IP]:443 failed, will try again in 5 seconds: Connection timed out
Feb 4 12:07:38 mikecb ovpn-client[746]: TCP: connect to [AF_INET][MY VPN IP]:443 failed, will try again in 5 seconds: Connection timed out
Feb 4 12:07:53 mikecb ovpn-client[746]: TCP: connect to [AF_INET][MY VPN IP]:443 failed, will try again in 5 seconds: Connection timed out
Feb 4 12:08:08 mikecb ovpn-client[746]: TCP: connect to [AF_INET][MY VPN IP]:443 failed, will try again in 5 seconds: Connection timed out
시스템 로그의 NetworkManager 항목:
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0757] device (wlp2s0): Activation: starting connection 'MICHAEL’s iPhone' (0daa18c3-2521-4029-8808-eeca7c222c67)
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0761] audit: op="connection-activate" uuid="0daa18c3-2521-4029-8808-eeca7c222c67" name="MICHAEL’s iPhone" pid=1111 uid=1000 result="success"
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0766] device (wlp2s0): state change: disconnected -> prepare (reason 'none') [30 40 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0772] manager: NetworkManager state is now CONNECTING
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0784] device (wlp2s0): state change: prepare -> config (reason 'none') [40 50 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0789] device (wlp2s0): Activation: (wifi) access point 'MICHAEL’s iPhone' has security, but secrets are required.
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.0790] device (wlp2s0): state change: config -> need-auth (reason 'none') [50 60 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1031] device (wlp2s0): state change: need-auth -> prepare (reason 'none') [60 40 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1044] device (wlp2s0): state change: prepare -> config (reason 'none') [40 50 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1050] device (wlp2s0): Activation: (wifi) connection 'MICHAEL’s iPhone' has security, and secrets exist. No new secrets needed.
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1052] Config: added 'ssid' value 'MICHAEL’s iPhone'
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1052] Config: added 'scan_ssid' value '1'
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1053] Config: added 'key_mgmt' value 'WPA-PSK'
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1053] Config: added 'auth_alg' value 'OPEN'
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1053] Config: added 'psk' value '<omitted>'
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1142] sup-iface[0x29790c0,wlp2s0]: config: set interface ap_scan to 1
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1530] device (wlp2s0): supplicant interface state: disconnected -> authenticating
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1736] device (wlp2s0): supplicant interface state: authenticating -> associating
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.1963] device (wlp2s0): supplicant interface state: associating -> 4-way handshake
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.2374] device (wlp2s0): supplicant interface state: 4-way handshake -> completed
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.2375] device (wlp2s0): Activation: (wifi) Stage 2 of 5 (Device Configure) successful. Connected to wireless network 'MICHAEL’s iPhone'.
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.2377] device (wlp2s0): state change: config -> ip-config (reason 'none') [50 70 0]
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.2384] dhcp4 (wlp2s0): activation: beginning transaction (timeout in 45 seconds)
Feb 4 12:07:15 mikecb NetworkManager[794]: <info> [1549303635.2487] dhcp4 (wlp2s0): dhclient started with pid 3937
Feb 4 12:07:17 mikecb NetworkManager[794]: <info> [1549303637.2311] dhcp6 (wlp2s0): activation: beginning transaction (timeout in 45 seconds)
Feb 4 12:07:17 mikecb NetworkManager[794]: <info> [1549303637.2407] dhcp6 (wlp2s0): dhclient started with pid 3942
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4130] address 172.20.10.8
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4131] plen 28 (255.255.255.240)
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4131] gateway 172.20.10.1
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4131] server identifier 172.20.10.1
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4132] lease time 85536
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4132] nameserver '172.20.10.1'
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4132] dhcp4 (wlp2s0): state changed unknown -> bound
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4172] device (wlp2s0): state change: ip-config -> ip-check (reason 'none') [70 80 0]
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4198] device (wlp2s0): state change: ip-check -> secondaries (reason 'none') [80 90 0]
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4205] device (wlp2s0): state change: secondaries -> activated (reason 'none') [90 100 0]
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4207] manager: NetworkManager state is now CONNECTED_LOCAL
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4402] manager: NetworkManager state is now CONNECTED_GLOBAL
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4417] policy: set 'MICHAEL’s iPhone' (wlp2s0) as default for IPv4 routing and DNS
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4419] policy: set 'MICHAEL’s iPhone' (wlp2s0) as default for IPv6 routing and DNS
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.4420] dns-mgr: Writing DNS information to /sbin/resolvconf
Feb 4 12:07:18 mikecb NetworkManager[794]: /etc/resolvconf/update.d/libc: Warning: /etc/resolv.conf is not a symbolic link to /run/resolvconf/resolv.conf
Feb 4 12:07:18 mikecb NetworkManager[794]: <info> [1549303638.5022] device (wlp2s0): Activation: successful, device activated.
Feb 4 12:08:02 mikecb NetworkManager[794]: <warn> [1549303682.0797] dhcp6 (wlp2s0): request timed out
Feb 4 12:08:02 mikecb NetworkManager[794]: <info> [1549303682.0798] dhcp6 (wlp2s0): state changed unknown -> timeout
Feb 4 12:08:02 mikecb NetworkManager[794]: <info> [1549303682.0827] dhcp6 (wlp2s0): canceled DHCP transaction, DHCP client pid 3942
Feb 4 12:08:02 mikecb NetworkManager[794]: <info> [1549303682.0828] dhcp6 (wlp2s0): state changed timeout -> done
오후 12시 12분에 openvpn 서비스를 다시 시작했습니다(sudo systemctl restart openvpn). 인터넷에 성공적으로 연결되었습니다.
라우팅 테이블:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 10.7.7.1 128.0.0.0 UG 0 0 0 tun0
default 172.20.10.1 0.0.0.0 UG 600 0 0 wlp2s0
10.7.7.0 * 255.255.255.0 U 0 0 0 tun0
128.0.0.0 10.7.7.1 128.0.0.0 UG 0 0 0 tun0
228-12-88-167.r 172.20.10.1 255.255.255.255 UGH 0 0 0 wlp2s0
link-local * 255.255.0.0 U 1000 0 0 wlp2s0
172.20.10.0 * 255.255.255.240 U 600 0 0 wlp2s0
서비스 재시작이 시작된 직후에 가져온 시스템 로그의 openvpn과 관련된 흥미로운 항목은 다음과 같습니다.
Feb 4 12:12:38 mikecb ovpn-client[746]: message repeated 18 times: [ TCP: connect to [AF_INET][my VPN IP]:443 failed, will try again in 5 seconds: Connection timed out]
Feb 4 12:12:47 mikecb ovpn-client[746]: /sbin/ip route del [MY VPN IP]/32
Feb 4 12:12:47 mikecb ovpn-client[746]: ERROR: Linux route delete command failed: external program exited with error status: 2
Feb 4 12:12:47 mikecb ovpn-client[746]: /sbin/ip route del 0.0.0.0/1
Feb 4 12:12:47 mikecb ovpn-client[746]: /sbin/ip route del 128.0.0.0/1
Feb 4 12:12:47 mikecb ovpn-client[746]: Closing TUN/TAP interface
오후 12시 18분: 다음 명령을 실행하여 NetworkManager syslog 항목에 표시된 경고를 해결해 보세요. 이것이 변화를 가져오는지 확인하세요.
sudo ln -nsf ../run/resolvconf/resolv.conf /etc/resolv.conf
이 이후에는 인터넷에 연결할 수 없습니다. DNS 서비스가 없습니다.
이는 여기에 설명된 대로 넣은 /etc/resolv.conf 파일을 대체합니다.
rm -r /etc/resolv.conf
nano /etc/resolv.conf
File contents:
nameserver [my VPN DNS server1 IP]
nameserver [my VPN DNS server2 IP]
chattr +i /etc/resolv.conf
reboot now
인터넷에 연결할 수 있도록 /etc/resolv.conf에서 파일을 복원합니다. 좀 더 인터넷 검색을 해보니 문제가 이 syslog 항목과 관련이 없는 것 같습니다.