chandraonline.net Comments http://chandraonline.net/blog chandra's personal and professional weblog Tue, 07 Sep 2010 20:51:58 +0000 http://wordpress.org/?v=1.5.1.3 by: Kodaxy http://chandraonline.net/blog/?p=22#comment-82416 Sun, 29 Aug 2010 10:45:29 +0000 http://chandraonline.net/blog/?p=22#comment-82416 Hi! I have the same problem as Chandra and Diabi with DNS resolution. I tried to install bind on the iPhone and did some tests connected in VPN such as ping or nslookup, both didn't work. Then I make my own /etc/resolv.conf with OpenDNS servers, disabled update-resolv-conf on iPhone and commented push "dhcp-option DNS on the server side. I'm now able to use nslookup correctly all domains in VPN but the ping didn't work again... Marcs-iPhone:/var/mobile/Library/OpenVpn root# nslookup apple.com Server: 208.67.222.222 Address: 208.67.222.222#53 Non-authoritative answer: Name: apple.com Address: 17.251.200.70 Name: apple.com Address: 17.112.152.57 Name: apple.com Address: 17.149.160.49 Marcs-iPhone:/var/mobile/Library/OpenVpn root# ping apple.com ping: unknown host It's a stange problem, with nslookup I can communicate with OpenDNS servers et take infos but with ping or in Safari I can't resolve names... I hope this test can help us to fix it. Hi!
I have the same problem as Chandra and Diabi with DNS resolution.
I tried to install bind on the iPhone and did some tests connected in VPN such as ping or nslookup, both didn’t work.
Then I make my own /etc/resolv.conf with OpenDNS servers, disabled update-resolv-conf on iPhone and commented push “dhcp-option DNS on the server side.
I’m now able to use nslookup correctly all domains in VPN but the ping didn’t work again…

Marcs-iPhone:/var/mobile/Library/OpenVpn root# nslookup apple.com
Server: 208.67.222.222
Address: 208.67.222.222#53

Non-authoritative answer:
Name: apple.com
Address: 17.251.200.70
Name: apple.com
Address: 17.112.152.57
Name: apple.com
Address: 17.149.160.49

Marcs-iPhone:/var/mobile/Library/OpenVpn root# ping apple.com
ping: unknown host

It’s a stange problem, with nslookup I can communicate with OpenDNS servers et take infos but with ping or in Safari I can’t resolve names…

I hope this test can help us to fix it.

]]> by: svengout http://chandraonline.net/blog/?p=22#comment-82406 Fri, 27 Aug 2010 10:12:58 +0000 http://chandraonline.net/blog/?p=22#comment-82406 get get the update-resolv-conf.sh file to work. dowloaded or copy past it from the ftp and than saved it as update-resolv-conf.sh am i doing something wrong= login as: root root@192.168.1.103's password: iPhone-van-sven:~ root# cd /var/mobile/Library iPhone-van-sven:/var/mobile/Library root# chown -R mobile.mobile OpenVpn iPhone-van-sven:/var/mobile/Library root# cd OpenVpn iPhone-van-sven:/var/mobile/Library/OpenVpn root# chmod +x update-resolv-conf chmod: cannot access `update-resolv-conf': No such file or directory iPhone-van-sven:/var/mobile/Library/OpenVpn root# get get the update-resolv-conf.sh file to work.

dowloaded or copy past it from the ftp and than saved it as update-resolv-conf.sh

am i doing something wrong=

login as: root
root@192.168.1.103’s password:
iPhone-van-sven:~ root# cd /var/mobile/Library
iPhone-van-sven:/var/mobile/Library root# chown -R mobile.mobile OpenVpn
iPhone-van-sven:/var/mobile/Library root# cd OpenVpn
iPhone-van-sven:/var/mobile/Library/OpenVpn root# chmod +x update-resolv-conf
chmod: cannot access `update-resolv-conf’: No such file or directory
iPhone-van-sven:/var/mobile/Library/OpenVpn root#

]]> by: Guizmo http://chandraonline.net/blog/?p=22#comment-82397 Wed, 25 Aug 2010 14:02:52 +0000 http://chandraonline.net/blog/?p=22#comment-82397 Chandra : Can you send me your log (there is a button in the log page) Chandra : Can you send me your log (there is a button in the log page)

]]> by: Chandra http://chandraonline.net/blog/?p=22#comment-82389 Mon, 23 Aug 2010 16:46:35 +0000 http://chandraonline.net/blog/?p=22#comment-82389 Dabi: I have a similar problem in 4.0.1, I am unable to get DNS resolution working correctly. But I can connect to those servers using their IP address. Guizmo: I gave guizmovpn a shot as well, it has similar problems. I can't get DNS resolution eventhough I see dhcp-option being received and the DNS being set. I am running out of the trial license , so I am not sure if I can troubleshoot more. Have you tested it in 4.0.1? Dabi: I have a similar problem in 4.0.1, I am unable to get DNS resolution working correctly. But I can connect to those servers using their IP address.

Guizmo: I gave guizmovpn a shot as well, it has similar problems. I can’t get DNS resolution eventhough I see dhcp-option being received and the DNS being set. I am running out of the trial license , so I am not sure if I can troubleshoot more. Have you tested it in 4.0.1?

]]> by: Dabi http://chandraonline.net/blog/?p=22#comment-82371 Wed, 18 Aug 2010 21:29:03 +0000 http://chandraonline.net/blog/?p=22#comment-82371 I install iOS 4.0.1 and I had to install network-cmds to have ifconfig, one the vpn is up I can ssh in my vpn servers, but I cant use safary, (safary doesnt find the machine no dns resolution) and of course the machine is ok, because I can ssh via shell. Any ideas? Thanks I install iOS 4.0.1 and I had to install network-cmds to have ifconfig, one the vpn is up I can ssh in my vpn servers, but I cant use safary, (safary doesnt find the machine no dns resolution) and of course the machine is ok, because I can ssh via shell. Any ideas?

Thanks

]]> by: Steve http://chandraonline.net/blog/?p=22#comment-82364 Tue, 17 Aug 2010 14:24:43 +0000 http://chandraonline.net/blog/?p=22#comment-82364 Hi Chandra I made the toogle working perfect on iOS 3.1.3. Now I also installed it on iOS 4.0.1 and it's working like a charm. Only one thing I mentioned which appeared on 3.1.3 same as now on 4.0.1: After I used the toggle and reboot the phone, the toggle is deactivated. F.e. like this: > switch toggle on > browse the web > switch toggle off > reboot phone --> toggle is deactivated. I have to re-activate it first. Do you have any idea what's the problem in here? Hi Chandra

I made the toogle working perfect on iOS 3.1.3. Now I also installed it on iOS 4.0.1 and it’s working like a charm.

Only one thing I mentioned which appeared on 3.1.3 same as now on 4.0.1:
After I used the toggle and reboot the phone, the toggle is deactivated.

F.e. like this:
> switch toggle on
> browse the web
> switch toggle off
> reboot phone
–> toggle is deactivated. I have to re-activate it first. Do you have any idea what’s the problem in here?

]]> by: Guizmo http://chandraonline.net/blog/?p=22#comment-82352 Fri, 13 Aug 2010 05:21:27 +0000 http://chandraonline.net/blog/?p=22#comment-82352 A Cydia packet (network-cmds) seems to be missing. If you want to have an easy to install/configure/use solution, please look at www.guizmovpn.com :) Guizmo A Cydia packet (network-cmds) seems to be missing.
If you want to have an easy to install/configure/use solution, please look at www.guizmovpn.com :)

Guizmo

]]> by: seen_xu http://chandraonline.net/blog/?p=22#comment-82350 Thu, 12 Aug 2010 21:49:01 +0000 http://chandraonline.net/blog/?p=22#comment-82350 thx for the detailed instruction, it's really helpful, and I had tried it on my new iPad(3.2.1), the openvpn connection always ends up with the following error. Thu Aug 12 23:23:40 2010 TUN/TAP device tunemu:/ppp0 opened Thu Aug 12 23:23:40 2010 /sbin/ifconfig ppp0 delete Thu Aug 12 23:23:40 2010 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure Thu Aug 12 23:23:40 2010 /sbin/ifconfig ppp0 192.168.5.22 192.168.5.21 mtu 1500 netmask 255.255.255.255 up Thu Aug 12 23:23:40 2010 Mac OS X ifconfig failed: could not execute external program Thu Aug 12 23:23:40 2010 Exiting I think the problem is not from my server or client config, because all these things work perfectly for my other computers, mac, linux and even windows. any other ideas? thx for the detailed instruction, it’s really helpful, and I had tried it on my new iPad(3.2.1), the openvpn connection always ends up with the following error.

Thu Aug 12 23:23:40 2010 TUN/TAP device tunemu:/ppp0 opened
Thu Aug 12 23:23:40 2010 /sbin/ifconfig ppp0 delete
Thu Aug 12 23:23:40 2010 NOTE: Tried to delete pre-existing tun/tap instance — No Problem if failure
Thu Aug 12 23:23:40 2010 /sbin/ifconfig ppp0 192.168.5.22 192.168.5.21 mtu 1500 netmask 255.255.255.255 up
Thu Aug 12 23:23:40 2010 Mac OS X ifconfig failed: could not execute external program
Thu Aug 12 23:23:40 2010 Exiting

I think the problem is not from my server or client config, because all these things work perfectly for my other computers, mac, linux and even windows. any other ideas?

]]> by: Guizmo http://chandraonline.net/blog/?p=22#comment-82333 Thu, 05 Aug 2010 23:13:42 +0000 http://chandraonline.net/blog/?p=22#comment-82333 Hi, If it doesn't go further than "Thu Jul 22 17:44:41 2010 UDPv4 link remote: 80.179.114.160:1194", that mean you have a problem with your server or your firewall. Another strange thing, the execution of your "update-resolv-conf" should only happen when the tunnel is active, in your case it happen before. Try to remove it. Guizmo Hi,
If it doesn’t go further than “Thu Jul 22 17:44:41 2010 UDPv4 link remote: 80.179.114.160:1194″, that mean you have a problem with your server or your firewall.
Another strange thing, the execution of your “update-resolv-conf” should only happen when the tunnel is active, in your case it happen before. Try to remove it.

Guizmo

]]> by: damiankitai http://chandraonline.net/blog/?p=22#comment-82317 Thu, 22 Jul 2010 15:04:52 +0000 http://chandraonline.net/blog/?p=22#comment-82317 Amazing! I almost managed to get it working by my own. I use Terminal in OSX to ssh to the Ipod, and after all the procedures I get this: Thu Jul 22 17:44:40 2010 OpenVPN 2.1_rc19_jfx arm-apple-darwin9 [SSL] [LZO2] built on Sep 3 2009 Thu Jul 22 17:44:40 2010 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Thu Jul 22 17:44:40 2010 LZO compression initialized Thu Jul 22 17:44:40 2010 TUN/TAP device tunemu:/ppp0 opened Thu Jul 22 17:44:40 2010 /var/mobile/Library/OpenVpn/update-resolv-conf ppp0 1500 1545 init dns [] [] [] dom [] [] [] About to set DNS and Domain add net 80.179.114.160: gateway 172.19.254.254 Thu Jul 22 17:44:41 2010 UDPv4 link local (bound): [undef]:1194 Thu Jul 22 17:44:41 2010 UDPv4 link remote: 80.179.114.160:1194 Everything seems ok, except that I don't actually connect to my network, I can't connect to my local resources behind the nat, and the server has no clue someone is connected. How do I troubleshoot it? Installed "top" as you recommend but I don't find it anywhere in the Ipod. If I keep the terminal window open and I open sbsettings in the Ipod, when I disconnect from the openvpn, I get: Thu Jul 22 17:45:04 2010 event_wait : Interrupted system call (code=4) delete net 80.179.114.160: gateway 172.19.254.254 Thu Jul 22 17:45:04 2010 /var/mobile/Library/OpenVpn/update-resolv-conf ppp0 1500 1545 init Thu Jul 22 17:45:05 2010 SIGTERM[hard,] received, process exiting that means the sbsetting toggle is indeed working right? Or Maybe it's a server related problem? I usually use TAP to connect to my VPN, but I saw there is no support for TAP in the IOS, so I configured a second VpnServer in the router with TUN settings. Both run simultaneously right now but both use the same static key (I was to lazy to create a new one) :-) Maybe that's the problem? Thanks. Amazing tutorial. Amazing!
I almost managed to get it working by my own.
I use Terminal in OSX to ssh to the Ipod, and after all the procedures I get this:

Thu Jul 22 17:44:40 2010 OpenVPN 2.1_rc19_jfx arm-apple-darwin9 [SSL] [LZO2] built on Sep 3 2009
Thu Jul 22 17:44:40 2010 NOTE: the current –script-security setting may allow this configuration to call user-defined scripts
Thu Jul 22 17:44:40 2010 LZO compression initialized
Thu Jul 22 17:44:40 2010 TUN/TAP device tunemu:/ppp0 opened
Thu Jul 22 17:44:40 2010 /var/mobile/Library/OpenVpn/update-resolv-conf ppp0 1500 1545 init
dns [] [] []
dom [] [] []
About to set DNS and Domain
add net 80.179.114.160: gateway 172.19.254.254
Thu Jul 22 17:44:41 2010 UDPv4 link local (bound): [undef]:1194
Thu Jul 22 17:44:41 2010 UDPv4 link remote: 80.179.114.160:1194

Everything seems ok, except that I don’t actually connect to my network, I can’t connect to my local resources behind the nat, and the server has no clue someone is connected.

How do I troubleshoot it? Installed “top” as you recommend but I don’t find it anywhere in the Ipod.

If I keep the terminal window open and I open sbsettings in the Ipod, when I disconnect from the openvpn, I get:

Thu Jul 22 17:45:04 2010 event_wait : Interrupted system call (code=4)
delete net 80.179.114.160: gateway 172.19.254.254
Thu Jul 22 17:45:04 2010 /var/mobile/Library/OpenVpn/update-resolv-conf ppp0 1500 1545 init
Thu Jul 22 17:45:05 2010 SIGTERM[hard,] received, process exiting

that means the sbsetting toggle is indeed working right?

Or Maybe it’s a server related problem? I usually use TAP to connect to my VPN, but I saw there is no support for TAP in the IOS, so I configured a second VpnServer in the router with TUN settings. Both run simultaneously right now but both use the same static key (I was to lazy to create a new one) :-)

Maybe that’s the problem?

Thanks. Amazing tutorial.

]]>