Proxy VM VPN Gateway Route Issues
39 views
Skip to first unread message
John Marrett
Jun 7, 2016, 1:45:49 PM6/7/16
to qubes-users
I have set up two ProxyVMs to connect to both personal and work VPNs.
The VPN connections are managed by NetworkManager.
I'm not able to connect to the VPN under certain circumstances, the
reason problem is that a route needs to be added for the VPN peer
address. This route is normally added by NetworkManager, however when
it attempts to add the route for the peer (replaced with 1.1.1.1.) I
get the following error message:
Jun 7 09:24:35 localhost NetworkManager[810]: <error>
[1465305875.787495] [platform/nm-linux-platform.c:1714] add_object():
Netlink error adding 1.1.1.1/32 via 10.137.2.1 dev eth0 metric 1 mss 0
src user: Unspecific failure
I see the same error message with both openconnect and openvpn:
Jun 7 13:39:39 localhost NetworkManager[803]: <error> [1465321179.084410] [plat
form/nm-linux-platform.c:1714] add_object(): Netlink error adding 1.1.1.2/
32 via 10.137.2.1 dev eth0 metric 1 mss 0 src user: Unspecific failure
Does anyone know why this route addition fails and how I can correct it?
In specific network topologies this route not being present will cause
the VPN to fail completely (internal VPN, VPN gateway in subnet for
VPN, once the route is added for the subnet the OS tries to reach the
VPN gateway through the VPN connection itself. Manually adding the
route addresses the problem.
Thanks in advance for your help,
-JohnF
The VPN connections are managed by NetworkManager.
I'm not able to connect to the VPN under certain circumstances, the
reason problem is that a route needs to be added for the VPN peer
address. This route is normally added by NetworkManager, however when
it attempts to add the route for the peer (replaced with 1.1.1.1.) I
get the following error message:
Jun 7 09:24:35 localhost NetworkManager[810]: <error>
[1465305875.787495] [platform/nm-linux-platform.c:1714] add_object():
Netlink error adding 1.1.1.1/32 via 10.137.2.1 dev eth0 metric 1 mss 0
src user: Unspecific failure
I see the same error message with both openconnect and openvpn:
Jun 7 13:39:39 localhost NetworkManager[803]: <error> [1465321179.084410] [plat
form/nm-linux-platform.c:1714] add_object(): Netlink error adding 1.1.1.2/
32 via 10.137.2.1 dev eth0 metric 1 mss 0 src user: Unspecific failure
Does anyone know why this route addition fails and how I can correct it?
In specific network topologies this route not being present will cause
the VPN to fail completely (internal VPN, VPN gateway in subnet for
VPN, once the route is added for the subnet the OS tries to reach the
VPN gateway through the VPN connection itself. Manually adding the
route addresses the problem.
Thanks in advance for your help,
-JohnF
Unman
Jun 7, 2016, 5:45:26 PM6/7/16
to John Marrett, qubes-users
I'm pretty sure that this is a known bug in Network Manager. Check your
version and see if update is available.
John Marrett
Jun 7, 2016, 7:35:01 PM6/7/16
to Unman, qubes-users
Unman,
I'm using the most recent packaged version on debian 8, 0.9.10.0-1
(sorry, should have mentioned the distro),
I found this bug report [1] that does indeed speak about this type of
behaviour, it seems to be related to the "Use this connection only for
resources on its network" setting.
[1] https://bugzilla.gnome.org/show_bug.cgi?id=733296
I'm going to try to build an updated package to address the issue,
I'll only report back to the list if I encounter further issues.
Thanks very much for your help,
-JohnF
I'm using the most recent packaged version on debian 8, 0.9.10.0-1
(sorry, should have mentioned the distro),
I found this bug report [1] that does indeed speak about this type of
behaviour, it seems to be related to the "Use this connection only for
resources on its network" setting.
[1] https://bugzilla.gnome.org/show_bug.cgi?id=733296
I'm going to try to build an updated package to address the issue,
I'll only report back to the list if I encounter further issues.
Thanks very much for your help,
-JohnF
Reply all
Reply to author
Forward
0 new messages