PinkD
commented
11 months ago the-company-vpn.net (192.144.235.73) 这个 ip 不是局域网 ip
192.144.235.73 [北京市 腾讯云] 经过查询是北京市腾讯云的
所以这里解析的 ip 看起来是没问题的。需要检查一下你的网络环境当时有没有问题,也就是, ping 其它网站是否能正常 ping 通 也不排除是有什么东西残留了
Closed LionheartLann closed 10 months ago
PinkD
commented
11 months ago the-company-vpn.net (192.144.235.73) 这个 ip 不是局域网 ip
192.144.235.73 [北京市 腾讯云] 经过查询是北京市腾讯云的
所以这里解析的 ip 看起来是没问题的。需要检查一下你的网络环境当时有没有问题,也就是, ping 其它网站是否能正常 ping 通 也不排除是有什么东西残留了
LionheartLann
commented
11 months ago 不是每天休眠都会复现,今天复现了:ping其他网站能够ping通,ping 192.144.235.73 无法ping通导致corplink-rs超时,报错信息同上
其他网站:
(base) ✔ lannisters-MacBook-Pro ~ :) ping douban.com
PING douban.com (81.70.124.99): 56 data bytes
64 bytes from 81.70.124.99: icmp_seq=0 ttl=52 time=59.039 ms
64 bytes from 81.70.124.99: icmp_seq=1 ttl=52 time=44.393 ms
64 bytes from 81.70.124.99: icmp_seq=2 ttl=52 time=46.689 ms
^C
--- douban.com ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 44.393/50.040/59.039/6.432 ms
(base) ✔ lannisters-MacBook-Pro ~ :) ping github.com
PING github.com (20.205.243.166): 56 data bytes
64 bytes from 20.205.243.166: icmp_seq=0 ttl=112 time=107.653 ms
64 bytes from 20.205.243.166: icmp_seq=1 ttl=112 time=108.637 ms
64 bytes from 20.205.243.166: icmp_seq=2 ttl=112 time=113.622 ms
^C
--- github.com ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 107.653/109.971/113.622/2.613 ms
(base) ✔ lannisters-MacBook-Pro ~ :) ping zhihu.com
PING zhihu.com (103.41.167.234): 56 data bytes
64 bytes from 103.41.167.234: icmp_seq=0 ttl=48 time=59.618 ms
64 bytes from 103.41.167.234: icmp_seq=1 ttl=48 time=54.985 ms
64 bytes from 103.41.167.234: icmp_seq=2 ttl=48 time=61.575 ms
^C
--- zhihu.com ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 54.985/58.726/61.575/2.763 ms超时:
ping 192.144.235.73 (local)corplink-rs
PING 192.144.235.73 (192.144.235.73): 56 data bytes
Request timeout for icmp_seq 0
Request timeout for icmp_seq 1
Request timeout for icmp_seq 2
^C
--- 192.144.235.73 ping statistics ---
4 packets transmitted, 0 packets received, 100.0% packet lossping 依然ping不通
ping 192.144.235.73 (local)corplink-rs
PING 192.144.235.73 (192.144.235.73): 56 data bytes
Request timeout for icmp_seq 0
Request timeout for icmp_seq 1
Request timeout for icmp_seq 2
^C
--- 192.144.235.73 ping statistics ---
4 packets transmitted, 0 packets received, 100.0% packet loss但重新运行corplink-rs能够成功:
corplink-rs config/config.json (local)corplink-rs
running corplink-rs@0.3.5
Password:
running corplink-rs@0.3.5
cookie file is: config/utun5_cookies.json
try to connect
found set-cookie in header, saving cookie
found 4 vpn(s), details: ["GZ-01", "SH-01", "BJ-02", "BJ-01"]
check if udp vpn 1.14.XXX.XXX:443 is available
available
try to get wg conf from remote
2fa code generated: 026930, 7 seconds left
start wg-corplink for utun5
launch wg-corplink with env: {"CORPLINK_PROTOCOL_VERSION": "v2"}
socket file /var/run/wireguard/utun5.sock not ready, sleep 1s
try to connect unix sock: /var/run/wireguard/utun5.sock
send config to uapi
keep alive
keep alive试了下,这个服务器是禁 ping 的,得用 curl 或者 mtr 才能看出来
mtr -n -T -P 443 192.144.235.73
curl -v -k https://192.144.235.73如果是用 mtr ,为了不暴露源 ip ,截图的时候请注意隐藏前几跳的公网 ip
还有就是,使用 netstat -rn 查看有没有非内网和广播地址的奇怪的路由跟这个 ip 有关的
PinkD
commented
11 months ago 另外,也可以检查下 corplink-rs 退出后 wg 的进程和 utun 接口是否还在,也就是确认一下到底是不是完全退出了
LionheartLann
commented
11 months ago 另外,也可以检查下 corplink-rs 退出后 wg 的进程和 utun 接口是否还在,也就是确认一下到底是不是完全退出了
如果是手动ctrl+C退出,ifconfig中没有utun5接口,ps aux | grep wg 也没有wg进程;重新运行corplink-rs能够连接成功;
如果是timeout的异常情况:
utun5: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1400
inet 192.168.119.157 --> 0.0.0.0 netmask 0xffffff00ps aux | grep wg也存在wg进程:
ps aux | grep wg (main)jupyterlab
lannister 15668 0.0 0.0 408636112 1456 s003 S+ 2:01PM 0:00.00 grep wg
root 13051 0.0 0.0 409214880 7936 s000 S 12:13PM 0:00.65 wg-corplink -f utun5kill 之后 corplink-rs可成功连接,原因应该是wg未完全退出
重启电脑 corplink-rs 连接成功后,能够ping通:
ping 192.144.235.73
PING 192.144.235.73 (192.144.235.73): 56 data bytes
64 bytes from 192.144.235.73: icmp_seq=0 ttl=54 time=87.425 ms
64 bytes from 192.144.235.73: icmp_seq=1 ttl=54 time=86.039 ms
64 bytes from 192.144.235.73: icmp_seq=2 ttl=54 time=83.120 ms
^C
--- 192.144.235.73 ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 83.120/85.528/87.425/1.794 mscorplink-rs连接成功状态下的输出:mtr -n -T -P 443 192.144.235.73
mtr -n -T -P 443 192.144.235.73
mtr-packet: Failure to open IPv4 sockets
mtr-packet: Failure to open IPv6 sockets
mtr: Failure to start mtr-packet: Invalid argumentcurl -v -k https://192.144.235.73
curl -v -k https://192.144.235.73
* Trying 192.144.235.73:443...
* Connected to 192.144.235.73 (192.144.235.73) port 443 (#0)
* ALPN: offers h2
* ALPN: offers http/1.1
* [CONN-0-0][CF-SSL] TLSv1.3 (OUT), TLS handshake, Client hello (1):
* OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to 192.144.235.73:443
* Closing connection 0
curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to 192.144.235.73:443netstat -rn
netstat -rn
Routing tables
Internet:
Destination Gateway Flags Netif Expire
default 10.150.20.1 UGScg en0
default link#22 UCSIg bridge100 !
default link#24 UCSIg bridge101 !
default link#26 UCSIg bridge102 !
default link#28 UCSIg bridge103 !
10.150.20/23 link#15 UCS en0 !
10.150.20.1/32 link#15 UCS en0 !
10.150.20.1 9c:7d:a3:7e:c3:2f UHLWIir en0 1174
10.150.21.191 8c:45:0:d7:c9:1a UHLWI en0 657
10.150.21.201 8:f8:bc:78:76:9d UHLWI en0 975
10.150.21.208 bc:d0:74:af:73:c5 UHLWI en0 986
10.150.21.209 5c:e9:1e:ac:95:1b UHLWI en0 652
10.150.21.210 da:f7:e7:ed:5c:5a UHLWIi en0 993
10.150.21.214 7e:7a:2:cc:42:67 UHLWI en0 690
10.150.21.215 a4:83:e7:94:e1:b8 UHLWI en0 652
10.150.21.216 5c:e9:1e:bb:13:32 UHLWI en0 653
10.150.21.219 aa:c2:c5:b4:af:a7 UHLWI en0 1128
10.150.21.224 a2:2e:55:ad:9a:7b UHLWI en0 1155
10.150.21.228 5c:e9:1e:b0:0:18 UHLWI en0 652
10.150.21.233 5c:e9:1e:b8:eb:9d UHLWI en0 652
10.150.21.240 4a:cf:d1:4d:49:9f UHLWI en0 654
10.150.21.241 14:7d:da:d2:22:c8 UHLWI en0 654
10.150.21.252/32 link#15 UCS en0 !
10.150.21.254 8e:72:e0:83:63:41 UHLWI en0 780
43.128.47.109/32 192.168.119.249 UGSc utun5
43.135.44.149/32 192.168.119.249 UGSc utun5
43.138.63.238/32 192.168.119.249 UGSc utun5
49.232.13.242/32 192.168.119.249 UGSc utun5
49.232.128.197/32 192.168.119.249 UGSc utun5
49.232.176.26/32 192.168.119.249 UGSc utun5
49.232.200.211/32 192.168.119.249 UGSc utun5
49.233.12.67/32 192.168.119.249 UGSc utun5
49.233.47.170/32 192.168.119.249 UGSc utun5
49.233.102.53/32 192.168.119.249 UGSc utun5
52.131.76.168/32 192.168.119.249 UGSc utun5
52.131.85.227/32 192.168.119.249 UGSc utun5
60.247.60.180/32 192.168.119.249 UGSc utun5
62.234.91.232/32 192.168.119.249 UGSc utun5
81.70.197.100/32 192.168.119.249 UGSc utun5
82.157.43.190/32 192.168.119.249 UGSc utun5
82.157.158.58/32 192.168.119.249 UGSc utun5
82.157.166.84/32 192.168.119.249 UGSc utun5
82.157.179.37/32 192.168.119.249 UGSc utun5
101.32.204.23/32 192.168.119.249 UGSc utun5
104.218.165.56/32 192.168.119.249 UGSc utun5
106.75.8.214/32 192.168.119.249 UGSc utun5
106.75.10.185/32 192.168.119.249 UGSc utun5
106.75.12.50/32 192.168.119.249 UGSc utun5
106.75.15.178/32 192.168.119.249 UGSc utun5
106.75.15.229/32 192.168.119.249 UGSc utun5
106.75.20.14/32 192.168.119.249 UGSc utun5
106.75.22.253/32 192.168.119.249 UGSc utun5
106.75.24.30/32 192.168.119.249 UGSc utun5
106.75.24.68/32 192.168.119.249 UGSc utun5
106.75.24.103/32 192.168.119.249 UGSc utun5
106.75.26.100/32 192.168.119.249 UGSc utun5
106.75.32.150/32 192.168.119.249 UGSc utun5
106.75.32.174/32 192.168.119.249 UGSc utun5
106.75.33.240/32 192.168.119.249 UGSc utun5
106.75.35.209/32 192.168.119.249 UGSc utun5
106.75.47.91/32 192.168.119.249 UGSc utun5
106.75.61.183/32 192.168.119.249 UGSc utun5
106.75.62.57/32 192.168.119.249 UGSc utun5
106.75.63.165/32 192.168.119.249 UGSc utun5
106.75.70.82/32 192.168.119.249 UGSc utun5
106.75.74.16/32 192.168.119.249 UGSc utun5
106.75.74.75/32 192.168.119.249 UGSc utun5
106.75.74.159/32 192.168.119.249 UGSc utun5
106.75.74.251/32 192.168.119.249 UGSc utun5
106.75.75.205/32 192.168.119.249 UGSc utun5
106.75.79.223/32 192.168.119.249 UGSc utun5
106.75.80.45/32 192.168.119.249 UGSc utun5
106.75.84.45/32 192.168.119.249 UGSc utun5
106.75.91.63/32 192.168.119.249 UGSc utun5
106.75.91.85/32 192.168.119.249 UGSc utun5
106.75.95.207/32 192.168.119.249 UGSc utun5
106.75.103.194/32 192.168.119.249 UGSc utun5
106.75.107.38/32 192.168.119.249 UGSc utun5
106.75.120.60/32 192.168.119.249 UGSc utun5
107.150.100.108/32 192.168.119.249 UGSc utun5
107.150.127.56/32 192.168.119.249 UGSc utun5
112.126.99.187/32 192.168.119.249 UGSc utun5
117.50.14.131/32 192.168.119.249 UGSc utun5
117.50.19.221/32 192.168.119.249 UGSc utun5
117.50.23.35/32 192.168.119.249 UGSc utun5
117.50.64.232/32 192.168.119.249 UGSc utun5
117.50.92.254/32 192.168.119.249 UGSc utun5
117.50.106.44/32 192.168.119.249 UGSc utun5
119.3.190.184/32 192.168.119.249 UGSc utun5
119.29.29.29/32 192.168.119.249 UGSc utun5
120.53.9.99/32 192.168.119.249 UGSc utun5
120.132.70.128/32 192.168.119.249 UGSc utun5
121.36.64.243/32 192.168.119.249 UGSc utun5
122.9.47.227/32 192.168.119.249 UGSc utun5
123.59.42.158/32 192.168.119.249 UGSc utun5
123.59.43.228/32 192.168.119.249 UGSc utun5
123.59.44.67/32 192.168.119.249 UGSc utun5
124.70.14.15/32 192.168.119.249 UGSc utun5
127 127.0.0.1 UCS lo0
127.0.0.1 127.0.0.1 UH lo0
128.1.37.104/32 192.168.119.249 UGSc utun5
128.1.40.141/32 192.168.119.249 UGSc utun5
128.14.227.192/32 192.168.119.249 UGSc utun5
139.9.137.75/32 192.168.119.249 UGSc utun5
139.217.99.146/32 192.168.119.249 UGSc utun5
140.143.151.16/32 192.168.119.249 UGSc utun5
140.143.180.40/32 192.168.119.249 UGSc utun5
152.32.144.25/32 192.168.119.249 UGSc utun5
152.32.148.16/32 192.168.119.249 UGSc utun5
152.136.114.90/32 192.168.119.249 UGSc utun5
154.8.176.116/32 192.168.119.249 UGSc utun5
154.8.225.23/32 192.168.119.249 UGSc utun5
169.254 link#15 UCS en0 !
169.254.169.254 link#15 UHLSW en0 !
180.150.179.230/32 192.168.119.249 UGSc utun5
192.144.171.86/32 192.168.119.249 UGSc utun5
192.144.235.73/32 192.168.119.249 UGSc utun5
192.168.215 link#24 UC bridge101 !
192.168.228 link#28 UC bridge103 !
192.168.247 link#26 UC bridge102 !
198.19.249 link#22 UC bridge100 !
223.5.5.5/32 192.168.119.249 UGSc utun5
224.0.0/4 link#15 UmCS en0 !
224.0.0.251 1:0:5e:0:0:fb UHmLWI en0
224.6.7.8 1:0:5e:6:7:8 UHmLWI en0
239.255.255.250 1:0:5e:7f:ff:fa UHmLWI en0
239.255.255.250 1:0:5e:7f:ff:fa UHmLWIg bridge100
239.255.255.250 1:0:5e:7f:ff:fa UHmLWIg bridge101
239.255.255.250 1:0:5e:7f:ff:fa UHmLWIg bridge102
239.255.255.250 1:0:5e:7f:ff:fa UHmLWIg bridge103
255.255.255.255/32 link#15 UCS en0 !
Internet6:
Destination Gateway Flags Netif Expire
default fe80::%utun0 UGcIg utun0
default fe80::%utun1 UGcIg utun1
default fe80::%utun2 UGcIg utun2
::1 ::1 UHL lo0
fd07:b51a:cc66::/64 link#22 UC bridge100
fd07:b51a:cc66:: link#22 UHLWI bridge100
fd07:b51a:cc66::3 5e.e9.1e.ca.5d.64 UHL lo0
fe80::%lo0/64 fe80::1%lo0 UcI lo0
fe80::1%lo0 link#1 UHLI lo0
fe80::%anpi2/64 link#4 UCI anpi2
fe80::a07a:77ff:fea3:9def%anpi2 a2:7a:77:a3:9d:ef UHLI lo0
fe80::%anpi1/64 link#5 UCI anpi1
fe80::a07a:77ff:fea3:9dee%anpi1 a2:7a:77:a3:9d:ee UHLI lo0
fe80::%anpi0/64 link#6 UCI anpi0
fe80::a07a:77ff:fea3:9ded%anpi0 a2:7a:77:a3:9d:ed UHLI lo0
fe80::%en0/64 link#15 UCI en0
fe80::1051:bc5c:4fa3:b31f%en0 5c:e9:1e:ac:d4:10 UHLI lo0
fe80::9039:71ff:fe06:24c8%awdl0 92:39:71:6:24:c8 UHLI lo0
fe80::9039:71ff:fe06:24c8%llw0 92:39:71:6:24:c8 UHLI lo0
fe80::%utun0/64 fe80::65cd:c275:4a31:2483%utun0 UcI utun0
fe80::65cd:c275:4a31:2483%utun0 link#18 UHLI lo0
fe80::%utun1/64 fe80::6865:2903:2d1b:9b7f%utun1 UcI utun1
fe80::6865:2903:2d1b:9b7f%utun1 link#19 UHLI lo0
fe80::%utun2/64 fe80::ce81:b1c:bd2c:69e%utun2 UcI utun2
fe80::ce81:b1c:bd2c:69e%utun2 link#20 UHLI lo0
fe80::%bridge100/64 link#22 UCI bridge100
fe80::5ce9:1eff:feca:5d64%bridge100 5e.e9.1e.ca.5d.64 UHLI lo0
fe80::%bridge101/64 link#24 UCI bridge101
fe80::5ce9:1eff:feca:5d65%bridge101 5e.e9.1e.ca.5d.65 UHLI lo0
fe80::%bridge102/64 link#26 UCI bridge102
fe80::5ce9:1eff:feca:5d66%bridge102 5e.e9.1e.ca.5d.66 UHLI lo0
fe80::%bridge103/64 link#28 UCI bridge103
fe80::5ce9:1eff:feca:5d67%bridge103 5e.e9.1e.ca.5d.67 UHLI lo0
ff00::/8 ::1 UmCI lo0
ff00::/8 link#4 UmCI anpi2
ff00::/8 link#5 UmCI anpi1
ff00::/8 link#6 UmCI anpi0
ff00::/8 link#15 UmCI en0
ff00::/8 link#16 UmCI awdl0
ff00::/8 link#17 UmCI llw0
ff00::/8 fe80::65cd:c275:4a31:2483%utun0 UmCI utun0
ff00::/8 fe80::6865:2903:2d1b:9b7f%utun1 UmCI utun1
ff00::/8 fe80::ce81:b1c:bd2c:69e%utun2 UmCI utun2
ff00::/8 link#22 UmCI bridge100
ff00::/8 link#24 UmCI bridge101
ff00::/8 link#26 UmCI bridge102
ff00::/8 link#28 UmCI bridge103
ff01::%lo0/32 ::1 UmCI lo0
ff01::%anpi2/32 link#4 UmCI anpi2
ff01::%anpi1/32 link#5 UmCI anpi1
ff01::%anpi0/32 link#6 UmCI anpi0
ff01::%en0/32 link#15 UmCI en0
ff01::%utun0/32 fe80::65cd:c275:4a31:2483%utun0 UmCI utun0
ff01::%utun1/32 fe80::6865:2903:2d1b:9b7f%utun1 UmCI utun1
ff01::%utun2/32 fe80::ce81:b1c:bd2c:69e%utun2 UmCI utun2
ff01::%bridge100/32 link#22 UmCI bridge100
ff01::%bridge101/32 link#24 UmCI bridge101
ff01::%bridge102/32 link#26 UmCI bridge102
ff01::%bridge103/32 link#28 UmCI bridge103
ff02::%lo0/32 ::1 UmCI lo0
ff02::%anpi2/32 link#4 UmCI anpi2
ff02::%anpi1/32 link#5 UmCI anpi1
ff02::%anpi0/32 link#6 UmCI anpi0
ff02::%en0/32 link#15 UmCI en0
ff02::%utun0/32 fe80::65cd:c275:4a31:2483%utun0 UmCI utun0
ff02::%utun1/32 fe80::6865:2903:2d1b:9b7f%utun1 UmCI utun1
ff02::%utun2/32 fe80::ce81:b1c:bd2c:69e%utun2 UmCI utun2
ff02::%bridge100/32 link#22 UmCI bridge100
ff02::%bridge101/32 link#24 UmCI bridge101
ff02::%bridge102/32 link#26 UmCI bridge102
ff02::%bridge103/32 link#28 UmCI bridge103192.144.235.73/32 192.168.119.249 UGSc utun5 ,从这条路由来看,连不上确实是你们公司把飞连的 api 的 ip 加到了代理里,这操作确实有点迷corplink-rs 的时候尝试杀掉旧的 wg ,我有空改一下吧PinkD
commented
10 months ago closed by #15
复现流程
MacOS 锁屏/休眠 一段时间后,corplink-rs断开连接
但尝试重新启动
corplink-rs config.json时 timeout预期现象
重新启动
corplink-rs config.json能够正常运行实际现象
corplink-rs config.json无法启动。尝试删除cookie文件、重置config.json无效,必须重启电脑后才能重新启动。~原因应该是请求timeout的网址DNS解析到一个本地局域网IP~,本地PING不通,不知道咋回事
环境信息