[Solved] NordVPN installed and running however still no internet access?!
Posted: Thu Mar 22, 2018 5:50 pm
I will just start off by saying that I am a bit of an amateur here - so apologies in advance if I've missed something small. Let me explain my setup first:
I have a small Ubuntu 14.04 server connected to a wireless access point (running in bridged mode), which in turn is connected to the main router downstairs - not sure if this has an impact on what I'm doing but thought it was worth mentioning. I have also recently purchased a subscription for NordVPN so this is the provider I'm using.
I have installed the OpenVPN package, downloaded the config files from NordVPN and attempted to connect to a VPN server using the few steps outlined here: https://nordvpn.com/tutorials/linux/openvpn/
After entering my username and password I see the following output:
It seems that I can connect to the VPN server just fine - however after running the following command to check my IP I get nothing back:
Also if I try to ping google.com, I get nothing back - it seems as though I am unable to access the internet while connected to the VPN.
I don't believe I have a firewall setup, here are my FW rules:
And here is the output from ifconfig while connected to the VPN:
Any ideas what I am doing wrong here, I'm stuck?
Thanks in advance and happy to provide further details
I have a small Ubuntu 14.04 server connected to a wireless access point (running in bridged mode), which in turn is connected to the main router downstairs - not sure if this has an impact on what I'm doing but thought it was worth mentioning. I have also recently purchased a subscription for NordVPN so this is the provider I'm using.
I have installed the OpenVPN package, downloaded the config files from NordVPN and attempted to connect to a VPN server using the few steps outlined here: https://nordvpn.com/tutorials/linux/openvpn/
After entering my username and password I see the following output:
Code: Select all
Thu Mar 22 17:28:02 2018 OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Jun 22 2017
Enter Auth Username:XXXXXXXXXXXXXXXX@icloud.com
Enter Auth Password:
Thu Mar 22 17:28:27 2018 WARNING: --ping should normally be used with --ping-restart or --ping-exit
Thu Mar 22 17:28:27 2018 NOTE: --fast-io is disabled since we are not using UDP
Thu Mar 22 17:28:27 2018 Control Channel Authentication: tls-auth using INLINE static key file
Thu Mar 22 17:28:27 2018 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Mar 22 17:28:27 2018 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Mar 22 17:28:27 2018 Socket Buffers: R=[87380->131072] S=[16384->131072]
Thu Mar 22 17:28:27 2018 Attempting to establish TCP connection with [AF_INET]38.132.125.62:443 [nonblock]
Thu Mar 22 17:28:28 2018 TCP connection established with [AF_INET]38.132.125.62:443
Thu Mar 22 17:28:28 2018 TCPv4_CLIENT link local: [undef]
Thu Mar 22 17:28:28 2018 TCPv4_CLIENT link remote: [AF_INET]38.132.125.62:443
Thu Mar 22 17:28:28 2018 TLS: Initial packet from [AF_INET]38.132.125.62:443, sid=26c17747 a5a60ae5
Thu Mar 22 17:28:28 2018 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Thu Mar 22 17:28:28 2018 VERIFY OK: depth=1, C=PA, ST=PA, L=Panama, O=NordVPN, OU=NordVPN, CN=us1247.nordvpn.com, name=NordVPN, emailAddress=cert@nordvpn.com
Thu Mar 22 17:28:28 2018 Validating certificate key usage
Thu Mar 22 17:28:28 2018 ++ Certificate has key usage 00a0, expects 00a0
Thu Mar 22 17:28:28 2018 VERIFY KU OK
Thu Mar 22 17:28:28 2018 Validating certificate extended key usage
Thu Mar 22 17:28:28 2018 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Thu Mar 22 17:28:28 2018 VERIFY EKU OK
Thu Mar 22 17:28:28 2018 VERIFY OK: depth=0, C=PA, ST=PA, L=Panama, O=NordVPN, OU=NordVPN, CN=us1247.nordvpn.com, name=NordVPN, emailAddress=cert@nordvpn.com
Thu Mar 22 17:28:29 2018 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Mar 22 17:28:29 2018 Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Mar 22 17:28:29 2018 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Mar 22 17:28:29 2018 Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Mar 22 17:28:29 2018 Control Channel: TLSv1, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-SHA, 2048 bit RSA
Thu Mar 22 17:28:29 2018 [us1247.nordvpn.com] Peer Connection Initiated with [AF_INET]38.132.125.62:443
Thu Mar 22 17:28:31 2018 SENT CONTROL [us1247.nordvpn.com]: 'PUSH_REQUEST' (status=1)
Thu Mar 22 17:28:31 2018 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,sndbuf 524288,rcvbuf 524288,dhcp-option DNS 103.86.96.100,dhcp-option DNS 103.86.99.100,route-gateway 10.7.7.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.7.7.97 255.255.255.0'
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: timers and/or timeouts modified
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
Thu Mar 22 17:28:31 2018 Socket Buffers: R=[131072->425984] S=[131072->425984]
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: --ifconfig/up options modified
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: route options modified
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: route-related options modified
Thu Mar 22 17:28:31 2018 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Mar 22 17:28:31 2018 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=eth0 HWADDR=00:e0:4c:53:44:58
Thu Mar 22 17:28:31 2018 TUN/TAP device tun0 opened
Thu Mar 22 17:28:31 2018 TUN/TAP TX queue length set to 100
Thu Mar 22 17:28:31 2018 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu Mar 22 17:28:31 2018 /sbin/ip link set dev tun0 up mtu 1500
Thu Mar 22 17:28:31 2018 /sbin/ip addr add dev tun0 10.7.7.97/24 broadcast 10.7.7.255
Thu Mar 22 17:28:31 2018 /sbin/ip route add 38.132.125.62/32 via 192.168.0.1
Thu Mar 22 17:28:31 2018 /sbin/ip route add 0.0.0.0/1 via 10.7.7.1
Thu Mar 22 17:28:31 2018 /sbin/ip route add 128.0.0.0/1 via 10.7.7.1
Thu Mar 22 17:28:31 2018 Initialization Sequence CompletedCode: Select all
curl -s checkip.dyndns.org|sed -e 's/.*Current IP Address: //' -e 's/<.*$//'I don't believe I have a firewall setup, here are my FW rules:
Code: Select all
xxx@xxx:~$ sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destinationCode: Select all
eth0 Link encap:Ethernet HWaddr 00:e0:4c:53:44:58
inet addr:192.168.0.100 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::2e0:4cff:fe53:4458/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:87703 errors:1120 dropped:112 overruns:208 frame:1177
TX packets:121330 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:29643376 (29.6 MB) TX bytes:146509522 (146.5 MB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:12429 errors:0 dropped:0 overruns:0 frame:0
TX packets:12429 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1
RX bytes:3873740 (3.8 MB) TX bytes:3873740 (3.8 MB)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.7.7.97 P-t-P:10.7.7.97 Mask:255.255.255.0
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:64 errors:0 dropped:0 overruns:0 frame:0
TX packets:407 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:8651 (8.6 KB) TX bytes:28558 (28.5 KB)Thanks in advance and happy to provide further details