Closed alexAubin closed 1 month ago
Does the issue occur with my last PR (#118) ? Because there were quite a lot of changes, so maybe this is already solved ?
I'm closing as I think it was solved with the last PRs. We can open the issue again if the issue is still there.
Issue discussed with a VPN user today ... The setup is working pretty well, but for some reason sometimes the VPN spontaneously goes down, hence the server being seemingly "down" because it's unreachable
Studying the log, I'm seeing this, with the issue precisely starting at 10:38
In particular:
WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
and
RESOLVE: Cannot resolve host address: vpn.SomeISP.net
Which is reminiscent of the good old issue where the resolv conf points to some DNS server, but somehow the ip table rules forbid talking to it maybe ? I'm not sure exactly what's responsible for this, but it feels like we should add another failsafe, maybe in
ynh-vpnclient-checker
, that does check that dns resolution is working and attempt to fix it if it's not ... maybe using 8.8.8.8 as a desperate measure idk x_x