search

Ysurac / openmptcprouter

OpenMPTCProuter is an open source solution to aggregate multiple internet connections using Multipath TCP (MPTCP) on OpenWrt
https://www.openmptcprouter.com/
GNU General Public License v3.0
1.8k stars 258 forks source link

Port forwarding ! #237

Closed Roken120 closed 5 years ago

Roken120 commented 5 years ago

Hello, port forwarding not work. image Please help and i have a error in log

Mon Dec 3 00:03:59 2018 daemon.notice openvpn(omr)[23560]: Exiting due to fatal error Mon Dec 3 00:04:04 2018 daemon.notice openvpn(omr)[23583]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:04 2018 daemon.notice openvpn(omr)[23583]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:04 2018 daemon.warn openvpn(omr)[23583]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:04 2018 daemon.err openvpn(omr)[23583]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:04 2018 daemon.notice openvpn(omr)[23583]: Exiting due to fatal error Mon Dec 3 00:04:09 2018 daemon.notice openvpn(omr)[23662]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:09 2018 daemon.notice openvpn(omr)[23662]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:09 2018 daemon.warn openvpn(omr)[23662]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:09 2018 daemon.err openvpn(omr)[23662]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:09 2018 daemon.notice openvpn(omr)[23662]: Exiting due to fatal error Mon Dec 3 00:04:14 2018 daemon.notice openvpn(omr)[23712]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:14 2018 daemon.notice openvpn(omr)[23712]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:14 2018 daemon.warn openvpn(omr)[23712]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:14 2018 daemon.err openvpn(omr)[23712]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:14 2018 daemon.notice openvpn(omr)[23712]: Exiting due to fatal error Mon Dec 3 00:04:19 2018 daemon.notice openvpn(omr)[23741]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:19 2018 daemon.notice openvpn(omr)[23741]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:19 2018 daemon.warn openvpn(omr)[23741]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:19 2018 daemon.err openvpn(omr)[23741]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:19 2018 daemon.notice openvpn(omr)[23741]: Exiting due to fatal error Mon Dec 3 00:04:24 2018 daemon.notice openvpn(omr)[23802]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:24 2018 daemon.notice openvpn(omr)[23802]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:24 2018 daemon.warn openvpn(omr)[23802]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:24 2018 daemon.err openvpn(omr)[23802]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:24 2018 daemon.notice openvpn(omr)[23802]: Exiting due to fatal error Mon Dec 3 00:04:29 2018 daemon.notice openvpn(omr)[23862]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:29 2018 daemon.notice openvpn(omr)[23862]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:29 2018 daemon.warn openvpn(omr)[23862]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:29 2018 daemon.err openvpn(omr)[23862]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:29 2018 daemon.notice openvpn(omr)[23862]: Exiting due to fatal error Mon Dec 3 00:04:34 2018 daemon.notice openvpn(omr)[23955]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:34 2018 daemon.notice openvpn(omr)[23955]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:34 2018 daemon.warn openvpn(omr)[23955]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:34 2018 daemon.err openvpn(omr)[23955]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:34 2018 daemon.notice openvpn(omr)[23955]: Exiting due to fatal error Mon Dec 3 00:04:39 2018 daemon.notice openvpn(omr)[23996]: OpenVPN 2.4.5 x86_64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] Mon Dec 3 00:04:39 2018 daemon.notice openvpn(omr)[23996]: library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.10 Mon Dec 3 00:04:39 2018 daemon.warn openvpn(omr)[23996]: WARNING : All encryption and authentication features disabled -- All data will be tunnelled as clear text and will not be protected against man-in-the-middle changes. PLEASE DO RECONSIDER THIS CONFIGURATION! Mon Dec 3 00:04:39 2018 daemon.err openvpn(omr)[23996]: ERROR: Cannot ioctl TUNSETIFF tun0: Resource busy (errno=16) Mon Dec 3 00:04:39 2018 daemon.notice openvpn(omr)[23996]: Exiting due to fatal error

Ysurac commented 5 years ago

I need OpenMPTCProuter version and OpenMPTCProuter VPS version.

Roken120 commented 5 years ago

The last version

kamcio2603 commented 5 years ago

Please update issue with info OpenMPTCProuter version: (Last is not a version) OpenMPTCProuter VPS version: (Last is not a version) OpenMPTCProuter platform: (RPI2/RPI3/x86/x86_64)

Ysurac commented 5 years ago

So it should be 0.42.7 and 0.72 for the VPS. You seems to have changed default VPN to OpenVPN but there is no key set for OpenVPN. Why do you want OpenVPN ? It's slower than Glorytun TCP. If you really really want OpenVPN, you have to add the OpenVPN option to VPS install script.

Roken120 commented 5 years ago

x86_64 No i use glorytun I you send more information in two hours

Roken120 commented 5 years ago

The vps is in debian 9

Ysurac commented 5 years ago

If glorytun is used OpenVPN is disabled by default, so you shouldn't have these logs. You should check in OpenMPTCProuter wizard by checking advanced settings checkbox. What is also the status of all in OpenMPTCProuter status page ?

Roken120 commented 5 years ago

[Image]

[Image]

Télécharger Outlook pour Androidhttps://aka.ms/ghei36

From: Ycarus notifications@github.com Sent: Monday, December 3, 2018 10:16:56 AM To: Ysurac/openmptcprouter Cc: Roken120; Author Subject: Re: [Ysurac/openmptcprouter] Port forwarding ! (#237)

If glorytun is used OpenVPN is disabled by default, so you shouldn't have these logs. You should check in OpenMPTCProuter wizard by checking advanced settings checkbox. What is also the status of all in OpenMPTCProuter status page ?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHubhttps://github.com/Ysurac/openmptcprouter/issues/237#issuecomment-443640395, or mute the threadhttps://github.com/notifications/unsubscribe-auth/APelre_XjW_EZRmIt7b-qBEzR7KoxPRiks5u1OwIgaJpZM4Y9rxo.

Roken120 commented 5 years ago

https://s.amsu.ng/mWfVbWFeAFBN

Roken120 commented 5 years ago

The vos is from firstheberg

Ysurac commented 5 years ago

Disable openvpn that seems to be enable: uci set openvpn.omr.enabled=0 Follow https://github.com/Ysurac/openmptcprouter/wiki/Port-forwarding to enable port forwarding and check /etc/shorewall/rules, there was an issue in previous release to comment/uncomment this files in VPS script (you may need to update it to latest version).

Roken120 commented 5 years ago

All work maybe the 4G sfr image

Ysurac commented 5 years ago

This is not a real problem, it's only a check. The SFR connection seems to have a high latency, so test can fail.

Roken120 commented 5 years ago

For ipv6 ? Vps hosted by firstheberg.

Ysurac commented 5 years ago

For IPv6 it's quite strange. You can check on the VPS if /etc/shorewall/params.vpn is correctly set, the omr-service should set this when the VPN is up. And also set omr-6in4 tunnel with the same data.

Roken120 commented 5 years ago

/etc/shorewall/params.vpn VPS_ADDR=10.255.255.1 OMR_ADDR=10.255.255.2 VPS_IFACE=gt-tun0

Roken120 commented 5 years ago

Do you speack french ?

Ysurac commented 5 years ago

Can be good if glorytun tcp is used. What is the result of ip addr show omr-6in4 on the VPS and the omrvpn ipv4 address on OpenMPTCProuter ? Yes I speak french.

Roken120 commented 5 years ago

root@vps-40416:~# ip addr show omr-6in4 6: omr-6in4@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1480 qdisc noqueue state UNKNOWN group default qlen 1000 link/sit 10.255.255.1 peer 10.255.255.2 inet6 fe80::aff:ff01/64 scope link valid_lft forever preferred_lft forever inet6 fe80::a00:1/64 scope link valid_lft forever preferred_lft forever the omrvpn ipv4 address on OpenMPTCProuter ? Tu peut parler francais sa seriez plus simple car mon anglais est pas très bon

Ysurac commented 5 years ago

Oui, j'avais remarqué ;) L'IPv4 de l'interface omrvpn, disponible dans l'interface graphique de la partie routeur.

Roken120 commented 5 years ago

Ip local du routeur : 192.168.10.1 Ip distant du serveur : 188.213.26.3 Si tu veut on peut se parler via discord ou autre plateforme pour que je te fassent un partager d'écran :)

Ysurac commented 5 years ago

Non j'ai pas discord ou autre ;) Dans le menu Réseau->Interfaces tu as normalement une interface nommée OMRVPN. Sinon par SSH sur le routeur ip addr show 6in4-omr6in4

Roken120 commented 5 years ago

ip addr show 6in4-omr6in4 11: 6in4-omr6in4@NONE: <POINTOPOINT,NOARP,UP,LOWER_UP,80000> mtu 1280 qdisc noqueue state UNKNOWN group default qlen 1000 link/sit 10.255.255.28 peer 10.255.255.1

Ysurac commented 5 years ago

ok, j'ai agrandi la plage de DHCP mais pas celle de test du service pour le 6in4... J'ai mis à jour le script pour le VPS ce qui va résoudre ce soucis.

Roken120 commented 5 years ago

Firstheberg je conseille pas vps qui lag trop... Tu as un hebergeur pour moins de 5 voir 6€ par mois qui offrent un bon débit 200mbps mini 500mbps serai parfait pour que j'utilise mes lignes à leur max.

Roken120 commented 5 years ago

Sur 6 ping 1 timeout...

Ysurac commented 5 years ago

J'ai eu des soucis avec Firstheberg dernièrement alors que j'en avais pas précédemment... Actuellement j'utilise Scaleway.

Roken120 commented 5 years ago

C'est du 200mbps upload et download (400mbps ?)

Roken120 commented 5 years ago

Et c'est localiser en france ?

Ysurac commented 5 years ago

C'est Online, groupe Iliad, donc Free. Les Starts permettent une bande passante de 100 à 400Mb/s selon ce qu'on paye (dans les 2 sens donc). Par contre tous les ports pour enovyer des mails par SMTP sont bloqués (25,465,587).

Roken120 commented 5 years ago

Merci beaucoup je vais voir pour resilier mon vos chez firstheberg et en prendre un chez scaleway. Et aussi merci du temps que tu ma consacré pour reglez le soucis ;)