Bug #1766135 “open vpn does not connect” : Bugs : OpenVPN

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#1

Download full text (6.1 KiB)

Here is syslog
I am still unable to connect
Works perfectly on 16.04

gw@gw:~$ grep VPN /var/log/syslog
Apr 30 08:26:23 gw systemd[1]: Stopped OpenVPN service.
Apr 30 11:32:11 gw systemd[1]: Starting OpenVPN service...
Apr 30 11:32:11 gw systemd[1]: Started OpenVPN service.
Apr 30 12:32:04 gw NetworkManager[1081]: <info> [1525055524.3127] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: Started the VPN service, PID 3201
Apr 30 12:32:04 gw NetworkManager[1081]: <info> [1525055524.4304] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: starting (3)
Apr 30 12:32:04 gw NetworkManager[1081]: <info> [1525055524.4306] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: (ConnectInteractive) reply received
Apr 30 12:32:04 gw nm-openvpn[3210]: OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 10 2018
Apr 30 12:32:19 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, <email address hidden>
Apr 30 12:32:24 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, <email address hidden>
Apr 30 12:32:29 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, <email address hidden>
Apr 30 12:32:34 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, <email address hidden>
Apr 30 12:33:04 gw NetworkManager[1081]: <warn> [1525055584.4375] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: connect timeout exceeded.
Apr 30 12:33:04 gw NetworkManager[1081]: <warn> [1525055584.4396] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: failed: connect-failed (1)
Apr 30 12:33:04 gw NetworkManager[1081]: <info> [1525055584.4401] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopping (5)
Apr 30 12:33:04 gw NetworkManager[1081]: <info> [1525055584.4402] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopped (6)
Apr 30 12:35:25 gw NetworkManager[1081]: <info> [1525055725.3298] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: Started the VPN service, PID 3606
Apr 30 12:35:25 gw NetworkManager[1081]: <info> [1525055725.4482] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN plugin: state changed: starting (3)
Apr 30 12:35:25 gw NetworkManager[1081]: <info> [1525055725.4483] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be...

Here is syslog
I am still unable to connect
Works perfectly on 16.04

gw@gw:~$ grep VPN /var/log/syslog
Apr 30 08:26:23 gw systemd[1]: Stopped OpenVPN service.
Apr 30 11:32:11 gw systemd[1]: Starting OpenVPN service...
Apr 30 11:32:11 gw systemd[1]: Started OpenVPN service.
Apr 30 12:32:04 gw NetworkManager[1081]: <info>  [1525055524.3127] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: Started the VPN service, PID 3201
Apr 30 12:32:04 gw NetworkManager[1081]: <info>  [1525055524.4304] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: starting (3)
Apr 30 12:32:04 gw NetworkManager[1081]: <info>  [1525055524.4306] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: (ConnectInteractive) reply received
Apr 30 12:32:04 gw nm-openvpn[3210]: OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 10 2018
Apr 30 12:32:19 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Apr 30 12:32:24 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Apr 30 12:32:29 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Apr 30 12:32:34 gw nm-openvpn[3210]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Apr 30 12:33:04 gw NetworkManager[1081]: <warn>  [1525055584.4375] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: connect timeout exceeded.
Apr 30 12:33:04 gw NetworkManager[1081]: <warn>  [1525055584.4396] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: failed: connect-failed (1)
Apr 30 12:33:04 gw NetworkManager[1081]: <info>  [1525055584.4401] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopping (5)
Apr 30 12:33:04 gw NetworkManager[1081]: <info>  [1525055584.4402] vpn-connection[0x55b06808e200,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopped (6)
Apr 30 12:35:25 gw NetworkManager[1081]: <info>  [1525055725.3298] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: Started the VPN service, PID 3606
Apr 30 12:35:25 gw NetworkManager[1081]: <info>  [1525055725.4482] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN plugin: state changed: starting (3)
Apr 30 12:35:25 gw NetworkManager[1081]: <info>  [1525055725.4483] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN connection: (ConnectInteractive) reply received
Apr 30 12:35:25 gw nm-openvpn[3614]: OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 10 2018
Apr 30 12:35:25 gw nm-openvpn[3614]: VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=HK, ST=HK, L=HongKong, O=PureVPN, OU=IT, CN=PureVPN, name=PureVPN, emailAddress=mail@host.domain
Apr 30 12:36:25 gw NetworkManager[1081]: <warn>  [1525055785.4772] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN connection: connect timeout exceeded.
Apr 30 12:36:25 gw NetworkManager[1081]: <warn>  [1525055785.4795] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN plugin: failed: connect-failed (1)
Apr 30 12:36:25 gw NetworkManager[1081]: <info>  [1525055785.4796] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN plugin: state changed: stopping (5)
Apr 30 12:36:25 gw NetworkManager[1081]: <info>  [1525055785.4796] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN plugin: state changed: stopped (6)
Apr 30 12:36:25 gw NetworkManager[1081]: <info>  [1525055785.4811] vpn-connection[0x55b06808e400,dfaab145-15e5-4a2e-ac39-26c2c5be186a,"Australia,Sydney3-udp",0]: VPN service disappeared
Apr 30 12:39:05 gw NetworkManager[1081]: <info>  [1525055945.5929] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: Started the VPN service, PID 3777
Apr 30 12:39:05 gw NetworkManager[1081]: <info>  [1525055945.6961] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: starting (3)
Apr 30 12:39:05 gw NetworkManager[1081]: <info>  [1525055945.6962] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: (ConnectInteractive) reply received
Apr 30 12:39:05 gw nm-openvpn[3785]: OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 10 2018
Apr 30 12:40:06 gw NetworkManager[1081]: <warn>  [1525056006.4459] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN connection: connect timeout exceeded.
Apr 30 12:40:06 gw NetworkManager[1081]: <warn>  [1525056006.4480] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: failed: connect-failed (1)
Apr 30 12:40:06 gw NetworkManager[1081]: <info>  [1525056006.4485] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopping (5)
Apr 30 12:40:06 gw NetworkManager[1081]: <info>  [1525056006.4487] vpn-connection[0x55b06808e600,eb16b7fa-3167-426b-aa1a-0fa1e344b409,"Australia,Sydney2-udp",0]: VPN plugin: state changed: stopped (6)

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#2

ca.crt Edit (1.6 KiB, application/x-x509-ca-cert)

ca.crt file

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#3

Wdc.key Edit (657 bytes, application/pgp-keys)

Wdc.key

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#4

So far I have found that I have to put ca.crt and Wdc.key or it fails instantly
I have found that it affect other users that use Ubuntu 18.04 proper :https://askubuntu.com/questions/1026991/ubuntu-18-04-cant-turn-on-vpn and closing their question without at least attempting to help them is not helping anyone.
I am really disappointed that issue like this has come to LTS after everyone saying that 18.04 is not allowed to fail.

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#5

Step by step instructions that I have for many years used to connect to VPN and always worked until Ubuntu 18.04

https://support.purevpn.com/pptp-configuration-guide-for-ubuntu

Revision history for this message

nadrimajstor (ipejic) wrote on 2018-04-30:

#6

Judging by the "CA signature digest algorithm too weak" you should contact PureVPN's support desk and ask for new certificate.

Revision history for this message

Ratko (arheopterics) wrote on 2018-04-30:

#7

ca2.crt.txt Edit (1.7 KiB, text/plain)

I have contacted them, and they give to me updated Ca.crt.. I will test it once I get home.
Thanks for help.

Etienne Papegnies (etienne-papegnies) on 2018-05-03

no longer affects:

ubuntu-mate

Revision history for this message

Ratko (arheopterics) wrote on 2018-05-03:

#8

I have tested, and I am still unable to connect to openvpn , even with new certificate .
I have sent at least 10 emails to support, even was about install teamviewer for their technician to remote in , but did not go through with it.
I guess since connection works on 16.04 I will go back to 16.04 and wait it until eider PureVpn or Ubuntu fix this issue.

Revision history for this message

Nick (nick-p-doyle) wrote on 2018-08-21:

#9

For anyone else coming across this
I hit up purevpn support and the guy sent a zip containing new .crt and .key, as well as .ovpn's for all their edge locations.
In which I see the server names have a "2" prepended to the first segment i.e.
usla-ovpn-udp.pointtoserver.com
->
usla2-ovpn-udp.pointtoserver.com

So if you already have the new cert and key, try adding the "2"

Revision history for this message

Nick (nick-p-doyle) wrote on 2018-08-21:

#10

openvpn-purevpn.zip Edit (150.7 KiB, application/zip)

here's the zip

OpenVPN

open vpn does not connect

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches