Issues getting Connection between VPS / Router

[vinc32]

Expected Behavior

Router should connect to VPS getting config via API.

Current Behavior

5G Connection -> Green - showing Public IP VPS -> Not able to connect to Server (Admin Script, no result) -> LOG: "OMR-VPS: Can't get vps token, try later (can ping server vps on %IP%, server API answer on %IP%

Trying to activate VPN Option for 5G Connection -> Gateway Down, No Server ping response.

Log w/o VPN

Tue Feb 27 11:33:42 2024 daemon.err glorytun[18843]: %IP%.65001: connected Tue Feb 27 11:35:01 2024 user.notice OMR-VPS: Can't get vps token, try later (can ping server vpse Feb 27 11:33:52 2024 daemon.info glorytun[18843]: STOPPED tun0 Tue Feb 27 11:34:46 2024 user.notice OMR-VPS: Setting server config error, try again Tue Feb 27 11:35:01 2024 user.notice OMR-VPS: Can't get vps token, try later (can ping server vps on %IP%, no server API answer on %IP%) Tue Feb 27 11:35:01 2024 daemon.info glorytun: starting glorytun vpn instance vpn Tue Feb 27 11:35:01 2024 user.notice omr-bypass: Starting OMR-ByPass... Tue Feb 27 11:35:02 2024 user.notice omr-bypass: OMR-ByPass is running Tue Feb 27 11:35:02 2024 user.notice omr-tracker: Launching... Tue Feb 27 11:35:07 2024 user.notice omr-tracker: Launched Tue Feb 27 11:35:16 2024 user.notice OMR-VPS: Can't get vps token, try later (can ping server vps on %IP%, no server API answer on %IP%)

Log with VPN

ue Feb 27 11:38:51 2024 user.notice omr-bypass: OMR-ByPass is running Tue Feb 27 sp:7fff1cab0860aemon.err glorytun[29713]: getpeername204.65001:ifup of omrvpn11iled Tue Feb 27 11:38:58 2024 daemon.info glorytun[29713]: STOPPED tun0 Tue Feb 27 sp:7fff1cab0860 error:0 in libc.so[7f2dd9787000+49000] Tue Feb 27 11:38:51 2024 user.notice omr-bypass: OMR-ByPass is running Tue Feb 27 11:38:5vps... Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcpng server vpsvpn9:05 2024 user.notigetpeername: Socket not connected Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcponfig due to ifup of omrvpn2024 user.notice SQM-autorate: Launch on lan Tue Feb 27 11:39:06 2024 daemon.info glorytun: starting glorytun vpn instance vpn Tue Feb 27 11:39:06 2024 user.notice omr-bypass: Starting OMR-ByPass... Tue Feb 27 1mptcp: Reloading mptcp config due to ifup of omrvpnrunning Tue Feb 27 11:39:10 2024 user.notice OMR-VPS: Can't get vps token, try later (can ping server vps on 82.165.112.204, server API answer on 82.165.112.204) Tue Feb 27 11:39:11 2024 user.notice OMR-VPS: Get config from server vps... Tue Feb 27 11:39:11 2024 user.notice OMR-VPS: V2ray restart... Tue Feb 27 11:39:11 2024 user.notice OMR-VPS: Glorytun restart... Tue Feb 27 11:39:11 2024 daemon.err glorytun[29713]: getpeername: Socket not connected Tue Feb 27 11:39:11 2024 daemon.notice netifd: Network device 'tun0' link is down Tue Feb 27 11:39:11 2024 daemon.notice netifd: Interface 'omrvpn' has link connectivity loss Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcp config duewgwan1 (wgwan1), restart interface Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcp config due to ifup of omrvpnglorytun: starting glorytun vpn instance vpn Tue Feb 27 11:39:11 2024 user.notice post-tracking-post-tracking: No answer from wgwan1 (wgwan1), restart interface Tue Feb 27 11:39:11 2024 user.notice post-tracking-post-tracking: Set wgwan1 down Tue Feb 27 11:39:11 2024 user.notice OMR-VPS: Glorytun UDP restart... Tsysfs path read for nmptcp config due to ifup of omrvpn12ice 'wgwan1' link is down Tue Feb 27 11:39:11 2024 user.notice OMR-VPS: OpenVPN restart... Tue Feb 27 11:39:11 2024 daemon.notice netifd: Interface 'wgwan1' is now down Tue Feb 27 11:39:11 2024 daemon.notice netifd: Interface 'omrvpn' is enabled Tue FebomrvpnTue Feb 27 11:39:11omrvpnglorytun: starting glorytun vpn instance vpnsetting up now Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcp config due to ifup of omrvpn11 2024 daemon.notice netifd: Interface 'omrvpn' is setting up now Tue Feb 27 11:39:11 2024 daemon.info glorytun[10052]: INITIALIZED tun0 Tue Feb 27 11:39:11 2024 daemon.notice netifd: Interface 'omrvpn' is now up Tue Feb 27 11:39:12 2024 daemon.warn [7433]: [SQM_IFB_74532] invalid sysfs path read for nmptcp config due to ifup of omrvpn12 2024 user.notice mptcp]: [base-manager] couldn't handle kernel event: device net/SQM_IFB_74532 not found Tue Feb 27 11:39:12 2024 daemon.warn [7433]: [SQM_IFB_ad945] invalid sysfs path read for net/SQM_IFB_ad945 Tue Feb 27 11:39:12 2024 daemon.warn [7433]: [base-manager] couldn't handle kernel event: device net/SQM_IFB_ad945 not found Tue Feb 27 11:39:12 2024 user.notice firewall: Reloading firewall due to ifup of omrvpn (tun0) Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcp config due to ifup of omrvpnrt firewall reloading Tue Feb 27 11:39:12 2024 user.notice mptcp: Reloading mptcp config due to ifup of omrvpn (tun0)

Specifications

• OpenMPTCProuter version: 0.59.1-5.4
• OpenMPTCProuter VPS version: 0.1028 5.4.207-mptcp
• OpenMPTCProuter VPS provider: ionos
• OpenMPTCProuter platform: esxi image x86_64

[Ysurac]

Did you reboot VPS after install ? Why do you set a VPN ?

[vinc32]

reboot done - same issue.

I've thought that the ISP (Telekom 5G Germany) may blocks MPTCP Connections - as workaround it said to activate it ;)

[Ysurac]

Even we MPTCP blocked, it should be able to contact VPS API. What is the result when you go with a browser to https://:65500/ ? and using curl -k https://<vpsip>:65500/ from the router via SSH ? and curl -k https://127.0.0.1:65500/ from the VPS ? If no results, what is the result of journalctl -u omr-admin from the VPS ?

[vinc32]

browser to https://:65500/

• Nothing - not able to open a connection - not to localhost or ip of router / vps

curl -k https://127.0.0.1:65500/ from VPS

(curl: (7) Failed to connect to 127.0.0.1 port 65500 after 0 ms: Couldn't connect to server

curl -k https://:65500/ from Router

"Welcome to OpenMPTCProuter Server part"root@OpenMPTCProuter:~#

journalctl -u omr-admin

root@localhost:~# journalctl -u omr-admin -- Journal begins at Wed 2021-09-15 09:02:55 UTC, ends at Tue 2024-02-27 16:22:10 UTC. -- Feb 12 08:25:41 localhost systemd[1]: Started OMR-Admin. Feb 25 20:03:03 localhost omr-admin.py[1856564]: /bin/sh: 1: dig: not found Feb 25 20:50:01 localhost systemd[1]: Stopping OMR-Admin... Feb 25 20:50:04 localhost systemd[1]: omr-admin.service: Succeeded. Feb 25 20:50:04 localhost systemd[1]: Stopped OMR-Admin. Feb 25 20:50:04 localhost systemd[1]: omr-admin.service: Consumed 27min 50.544s CPU time. -- Boot 96d3d98e991349f6b2b88102759e5bb7 -- Feb 25 20:50:31 localhost systemd[1]: Started OMR-Admin.

[Ysurac]

Can you run apt-get install dnsutils && systemctl omr-admin on the VPS ? At least this fix the dig error. You are using an IPv4 server IP ? You remove the VPN on 5G interface ?

[vinc32]

systemctl omr-admin -> wasn't found -> not sure how to fix it "E: Unable to locate package omr-admin"

Using IPv4 Server IP Removed VPN on 5G Interface

Just went through install routine and noticed something - VPS running Debian 11 with IONOS Image - used
"wget -O - https://www.openmptcprouter.com/server/debian-x86_64.sh | sh"

To install VPS. Maybe that's the issue?

[Ysurac]

Sorry it's systemctl restart omr-admin I have some IONOS VPS and it's working.

[vinc32]

Tried - but nothing except OMR-Admin changed.

-- Journal begins at Wed 2021-09-15 09:02:55 UTC, ends at Wed 2024-02-28 16:23:10 UTC. -- Feb 12 08:25:41 localhost systemd[1]: Started OMR-Admin. Feb 25 20:03:03 localhost omr-admin.py[1856564]: /bin/sh: 1: dig: not found Feb 25 20:50:01 localhost systemd[1]: Stopping OMR-Admin... Feb 25 20:50:04 localhost systemd[1]: omr-admin.service: Succeeded. Feb 25 20:50:04 localhost systemd[1]: Stopped OMR-Admin. Feb 25 20:50:04 localhost systemd[1]: omr-admin.service: Consumed 27min 50.544s CPU time. -- Boot 96d3d98e991349f6b2b88102759e5bb7 -- Feb 25 20:50:31 localhost systemd[1]: Started OMR-Admin. Feb 28 09:55:12 localhost systemd[1]: Stopping OMR-Admin... Feb 28 09:55:44 localhost systemd[1]: omr-admin.service: Succeeded. Feb 28 09:55:44 localhost systemd[1]: Stopped OMR-Admin. Feb 28 09:55:44 localhost systemd[1]: omr-admin.service: Consumed 8min 49.436s CPU time. Feb 28 09:55:44 localhost systemd[1]: Started OMR-Admin.

[Ysurac]

What do you have now in "Status->System log" ? Range 65000-65535 in TCP and UDP, and ICMP are correctly open in Ionos interface ?

[vinc32]

Added Ports according Wiki, will try to open everything between 65000-65535

[vinc32]

Wed Feb 28 17:02:05 2024 daemon.er glorytun[23137]: %IP%:65001: key exchange failed Wed Feb 28 17:02:05 2024 daemon.info glorytun|23137): STOPPED tunO Wed Feb 28 17:02:14 2024 user.notice post-tracking-post-tracking: ompn down because gateway down Wed Feb 28 17:02:14 2024 user.notice post-tracking-post-tracking: Glorytun VPN down, restart it Wed Feb 28 17:02:14 2024 daemon.err glorytun[23137]: getpeername: Socket not connected Wed Feb 28 17:02:14 2024 daemon.notice netifd: Network device 'tun®" link is down Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'ompn' has link connectivity loss Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'omrpn' is now down Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'ompn' is disabled Wed Feb 28 17:02:14 2024 daemon.info glorytun: starting glorytun von instance vpn Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'omon' is enabled Wed Feb 28 17:02:14 2024 daemon.notice netifd: Network device 'tunO" link is up Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'ompn' has link connectivity Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'ompn' is setting up now Wed Feb 28 17:02:14 2024 daemon.info glorytun[1397]: INITIALIZED tunO Wed Feb 28 17:02:14 2024 daemon.notice netifd: Interface 'omvpn' is now up Wed Feb 28 17:02:14 2024 daemon.warn [7433]: [SQM_IFB_869a4] invalid systs path read for net/SQM_IFB_869a4 Wed Feb 28 17:02:14 2024 daemon.war [7433]: [base-manager] couldn't handle kernel event: device net/SQM_IFB_869a4 not found Wed Feb 28 17:02:14 2024 daemon.warn [7433]: [SQM_IFB_9dc2c] invalid sysfs path read for net/SQM_IFB_9dc2c Wed Feb 28 17:02:14 2024 daemon.warn [7433]: [base-manager] couldn't handle kernel event: device net/SQM_IFB_9dc2c not found Wed Feb 28 17:02:14 2024 user notice firewall: Reloading firewall due to ifup of omrvon (tunO) Wed Feb 28 17:02:15 2024 user.notice firewall.omr-server: Firewall reload, set server part firewall reloading Wed Feb 28 17:02:15 2024 user notice mptcp: Reloading mptcp config due to ifup of omrvon Wed Feb 28 17:03:54 2024 daemon.err glorytun|13971: %IP%.65001: connected Wed Feb 28 17:04:04 2024 daemon.err glorytun[13971: %IP%.65001: key exchange failed Wed Feb 28 17:04:04 2024 daemon.info glorytun[1397]: STOPPED tuno Wed Feb 28 17:04:04 2024 daemon.err glorytun[1397]: %IP%.65001: connected Wed Feb 28 17:04:06 2024 user.notice SQM-autorate: Launch on wan1 Wed Feb 28 17:04:08 2024 user.notice SQM-autorate: Launch on wan2 Wed Feb 28 17:04:08 2024 user.notice SQM-autorate: Launch on omrvon| Wed Feb 28 17:04:08 2024 user.notice SQM-autorate: Launch on lan Wed Feb 28 17:04:14 2024 daemon.err glorytun|13971: %IP%.65001: key exchange failed Wed Feb 28 17:04:14 2024 daemon.info glorytun[13971: STOPPED tunO

[Ysurac]

There is a problem in this log: interface name omrvon, ompn,... ? tunO, tuno ? You modified it manually ?

[vinc32]

not onsite - so copied out of VMware console - so it copied out of a "picture"

[vinc32]

Solution found -

5G Router has been the issue - it’s a ZTE MC801A and it’s making the trouble. Changing the APN manually worked.

solution found because I’ve WiFi calling issues inbound behind another one of the same model. Searched for issue and got the hint on sophos forum.

[Ysurac]

Thanks for the feedback

[vinc32]

Thanks for the feedback

Thank you very much for your help! ;) edited closure text