Forums

Resolved
0 votes
Hola!

If you are outside the United States, you know the frustration of getting locked out from content providers like Hulu, Netflix, Pandora and others. With ClearOS and the new ibVPN app, you can now invisibly and securely access these services.

Using the ClearOS Marketplace, install the ibVPN app on your ClearOS gateway and start routing devices on your local network via your favorite country: US, Canada, UK, and many more. For example, an Apple TV system can be routed through the US while leaving other systems on the network as is. Here's how it works.

- Install the app from the ClearOS Marketplace
- Sign up for an account from ibVPN (link includes an affiliate ID... beer money)
- Configure your ibVPN settings in the ClearOS app
- Select the country VPN server (US, UK, Canada, etc)
- Specify the devices on your network that should go through ibVPN

Enjoy!
Wednesday, April 17 2013, 10:33 PM
Share this post:
Responses (38)
  • Accepted Answer

    Tuesday, August 15 2017, 09:21 PM - #Permalink
    Resolved
    0 votes
    Is it possible to let this work for the transmission server in COS, when COS acts as firewall/router with public adress on it? And eventually, is it possible to not let it influence with other services like mail server/flexshare/owncloud? Or is this only possible to acheive with an physical internal client computer?
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 28 2016, 06:51 PM - #Permalink
    Resolved
    0 votes
    Darryl Sokoloski wrote:
    Regardless, if you have ClearOS forward your DNS queries via Dnsmasq, you'll never have to fiddle with these settings, VPN or not.

    Clear as mud? ;)
    i.e. either configure your PC's to use your ClearOS LAN IP manually as its DNS server, or change your DHCP server to hand out your ClearOS LAN IP as the DNS server then have the ClearOS WAN configured to use your ISP's servers (or any public DNS server).
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 28 2016, 05:22 PM - #Permalink
    Resolved
    0 votes
    Michael wrote:
    This one occurs every 5 minutes, maybe since dinosaurs ruled the earth
    Apr 28 11:45:01 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.


    Yes, that was fixed (along with clearsyncd and suvad I believe) earlier this month (April 12th). The latest release is in contribs-testing, you can update to it via:
    # yum --enablerepo=clearos-contribs-testing update app-ibvpn

    Michael wrote:
    But second issue now : I can't access any website when the VPN is connected, it looks like a DNS or route problem ?
    Tip : what should be the good implementation to avoid playing with the DNS each time I need to use ibVPN ?

    As Nick mentioned, this is likely due to your ISP (...the vast majority actually) not allowing public access to their DNS servers.

    The way I get around this... and it's not even a workaround really -- just default ClearOS behaviour. All hosts on my network receive DHCP leases from ClearOS via Dnsmasq. The DNS server my desktop receives is a local address (the address of my ClearOS box). All local routes are always accessible regardless if you're using a VPN or not. So, my DNS queries go to the ClearOS gateway and then out to the ISP (or in my case, I have my own DNS server in New Jersey via Linode).

    Regardless, if you have ClearOS forward your DNS queries via Dnsmasq, you'll never have to fiddle with these settings, VPN or not.

    Clear as mud? ;)
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 28 2016, 04:37 PM - #Permalink
    Resolved
    0 votes
    The DNS issue is exactly as you suspect. Many ISP's only let you access their DNS servers from their own network. If you use ibVPN your DNS lookups go through the tunnel and emerge at your VPN endpoint. If you are then trying to ise a private DNS server you will be rejected as your lookups appear to them as coming from outside their network. This is also an issue if you have MultiWAN from two different ISP's.

    If ibVPN's DNS servers are also private, it would not be a good idea to use them either as your DNS lookups will fail when the VPN is down, and may even prevent you from connecting to ibVPN. I would guess, for that reason, they'd have to be public or switchable when the VPN connects - I don't use ibVPN so don't know the app.

    There used to be advantages in registering with OpenDNS. Without a registration it used to redirect failed DNS queries to its own search engine. If you registered, you could stop that. I have a feeling they no longer do that but there are other configurable options as well if you register.
    The reply is currently minimized Show
  • Accepted Answer

    Michael
    Michael
    Offline
    Thursday, April 28 2016, 01:10 PM - #Permalink
    Resolved
    0 votes
    Thanks for the tips, Nick.
    Indeed this would be easy to correct the executable error, but I mentionned it so that Darryl can add it to his ToDo-list for the next version :p

    Regarding the DNS, in fact I never searched for other DNS than the ones provided by my internet provider. I just heard a few years ago that Google was providing some DNS too, but you know ... the big-brother-is-watching-you syndrom;)
    So I'll have a look to OpenDNS or other solutions (even ibVPN's DNS) but I don't really get the need to update and so on. What is needed here is to access to DNS records in order to access to internet, not to be registered to be accessed from internet. But I see that OpenDNS provides both services.

    Last issue for Darryl : when I updated the servers list, the list is still incomplete : for example, Brazil and Argentina are not present in the list
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 28 2016, 11:25 AM - #Permalink
    Resolved
    0 votes
    It would be trivial to correct the /usr/lib/systemd/system/ibvpn.service error. Use something like WinSCP and change the permission of the file. I can't say what to set it to as I don't use the app so don't know what the current permissions are, but WinSCP has check-boxes so you can just uncheck the "X" box(es).

    There is no harm permanently using GoogleDNS or another DNS service such as OpenDNS. I use OpenDNS permanently and have a registered account there. Then, because I have a dynamic IP, I use ddclient to update OpenDNS (via DNS-O-Matic) with my IP address, but there is no need even to have a registered account.
    The reply is currently minimized Show
  • Accepted Answer

    Michael
    Michael
    Offline
    Thursday, April 28 2016, 10:03 AM - #Permalink
    Resolved
    0 votes
    Darryl Sokoloski wrote:

    Michael wrote:
    *edit* the module crash with MOST OF the servers, but not with some (US-dallas for example).
    In all cases, when I test my online IP, it is not the one of the vpn server, so I'm not routed through the VPN.


    Michael,

    Can you post the log output from:
    # grep ibvpn /var/log/messages

    The error(s) should be obvious in there.

    Hello Daryl,

    Here is the log when I'm trying to connect to Paris FR 3 :

    This one occurs every 5 minutes, maybe since dinosaurs ruled the earth
    Apr 28 11:45:01 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.



    When I start the ibVPN module :
    Apr 28 11:48:49 fw webconfig: Redirecting to /bin/systemctl start  ibvpn.service
    Apr 28 11:48:49 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:48:49 fw ibvpn[27915]: OpenVPN 2.3.10 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jan 4 2016
    Apr 28 11:48:49 fw ibvpn[27915]: library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.06
    Apr 28 11:48:49 fw systemd: PID file /var/run/ibvpn/ibvpn.pid not readable (yet?) after start.
    Apr 28 11:48:49 fw ibvpn[27916]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Apr 28 11:48:49 fw ibvpn[27916]: Socket Buffers: R=[229376->229376] S=[229376->229376]
    Apr 28 11:48:49 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:48:49 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:48:49 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:48:49 fw ibvpn[27916]: UDPv4 link local (bound): [AF_INET]192.168.1.2:1190
    Apr 28 11:48:49 fw ibvpn[27916]: UDPv4 link remote: [AF_INET]89.40.114.127:1194
    Apr 28 11:48:49 fw ibvpn[27916]: TLS: Initial packet from [AF_INET]89.40.114.127:1194, sid=4bb9a787 55942e99
    Apr 28 11:48:49 fw ibvpn[27916]: VERIFY OK: depth=1, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, CN=Fort-Funston CA, emailAddress=me@myhost.mydomain
    Apr 28 11:48:49 fw ibvpn[27916]: VERIFY OK: nsCertType=SERVER
    Apr 28 11:48:49 fw ibvpn[27916]: VERIFY OK: depth=0, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, CN=server, emailAddress=me@myhost.mydomain
    Apr 28 11:48:49 fw ibvpn[27916]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Apr 28 11:48:49 fw ibvpn[27916]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Apr 28 11:48:49 fw ibvpn[27916]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Apr 28 11:48:49 fw ibvpn[27916]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Apr 28 11:48:49 fw ibvpn[27916]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
    Apr 28 11:48:49 fw ibvpn[27916]: [server] Peer Connection Initiated with [AF_INET]89.40.114.127:1194
    Apr 28 11:48:51 fw ibvpn[27916]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    Apr 28 11:48:51 fw ibvpn[27916]: AUTH: Received control message: AUTH_FAILED
    Apr 28 11:48:51 fw ibvpn[27916]: SIGTERM received, sending exit notification to peer
    Apr 28 11:48:54 fw ibvpn[27916]: SIGTERM[soft,exit-with-notification] received, process exiting


    Damn, am I stupid ?
    OK, authentication problem corrected, the VPN is connected.

    But second issue now : I can't access any website when the VPN is connected, it looks like a DNS or route problem ?
    log :

    Apr 28 11:57:34 fw webconfig: Redirecting to /bin/systemctl start ibvpn.service
    Apr 28 11:57:34 fw ibvpn[30735]: OpenVPN 2.3.10 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jan 4 2016
    Apr 28 11:57:34 fw ibvpn[30735]: library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.06
    Apr 28 11:57:34 fw ibvpn[30737]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Apr 28 11:57:34 fw ibvpn[30737]: Socket Buffers: R=[229376->229376] S=[229376->229376]
    Apr 28 11:57:34 fw ibvpn[30737]: UDPv4 link local (bound): [AF_INET]192.168.1.2:1190
    Apr 28 11:57:34 fw ibvpn[30737]: UDPv4 link remote: [AF_INET]89.40.114.127:1194
    Apr 28 11:57:34 fw ibvpn[30737]: TLS: Initial packet from [AF_INET]89.40.114.127:1194, sid=d8678a78 0fc24071
    Apr 28 11:57:34 fw ibvpn[30737]: VERIFY OK: depth=1, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, CN=Fort-Funston CA, emailAddress=me@myhost.mydomain
    Apr 28 11:57:34 fw ibvpn[30737]: VERIFY OK: nsCertType=SERVER
    Apr 28 11:57:34 fw ibvpn[30737]: VERIFY OK: depth=0, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, CN=server, emailAddress=me@myhost.mydomain
    Apr 28 11:57:34 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:57:34 fw systemd: Configuration file /usr/lib/systemd/system/ibvpn.service is marked executable. Please remove executable permission bits. Proceeding anyway.
    Apr 28 11:57:34 fw ibvpn[30737]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Apr 28 11:57:34 fw ibvpn[30737]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Apr 28 11:57:34 fw ibvpn[30737]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Apr 28 11:57:34 fw ibvpn[30737]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Apr 28 11:57:34 fw ibvpn[30737]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
    Apr 28 11:57:34 fw ibvpn[30737]: [server] Peer Connection Initiated with [AF_INET]89.40.114.127:1194
    Apr 28 11:57:36 fw ibvpn[30737]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    Apr 28 11:57:36 fw ibvpn[30737]: PUSH: Received control message: 'PUSH_REPLY,show-net-up,route-gateway 10.10.10.1,ping 10,ping-restart 60,redirect-gateway def1,dhcp-option DNS 1.2.3.4,ifconfig 10.10.10.3 255.255.255.0'
    Apr 28 11:57:36 fw ibvpn[30737]: Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:1: show-net-up (2.3.10)
    Apr 28 11:57:36 fw ibvpn[30737]: OPTIONS IMPORT: timers and/or timeouts modified
    Apr 28 11:57:36 fw ibvpn[30737]: OPTIONS IMPORT: --ifconfig/up options modified
    Apr 28 11:57:36 fw ibvpn[30737]: OPTIONS IMPORT: route options modified
    Apr 28 11:57:36 fw ibvpn[30737]: OPTIONS IMPORT: route-related options modified
    Apr 28 11:57:36 fw ibvpn[30737]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
    Apr 28 11:57:36 fw ibvpn[30737]: ROUTE_GATEWAY 192.168.1.1/255.255.255.0 IFACE=enp5s5 HWADDR=b0:48:7a:81:00:b9
    Apr 28 11:57:36 fw ibvpn[30737]: TUN/TAP device ibvpn opened
    Apr 28 11:57:36 fw ibvpn[30737]: TUN/TAP TX queue length set to 100
    Apr 28 11:57:36 fw ibvpn[30737]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
    Apr 28 11:57:36 fw ibvpn[30737]: /usr/sbin/ip link set dev ibvpn up mtu 1500
    Apr 28 11:57:36 fw ibvpn[30737]: /usr/sbin/ip addr add dev ibvpn 10.10.10.3/24 broadcast 10.10.10.255
    Apr 28 11:57:38 fw ibvpn[30737]: Initialization Sequence Completed


    And from my PC that is behind my ClearOS box :
    C:\Users\SFD>tracert www.google.fr
    Impossible de résoudre le nom du système cible www.google.fr.

    my DNS
    Serveurs DNS. . .  . . . . . . . . . . : fdce:e78f:84bf::1
    80.10.246.136
    81.253.149.6

    which are my everyday DNS from my internet provider (I guess they are blocking me since I do not come from their IP plan when I'm connected through the VPN ?)

    Auto-answer :
    As soon as I replace my DNS with google DNS for example, everything is OK.

    Thank you Darryl ! :) :) :) :)

    Tip : what should be the good implementation to avoid playing with the DNS each time I need to use ibVPN ?
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 28 2016, 06:45 AM - #Permalink
    Resolved
    0 votes
    Michael wrote:

    ...It seems that the module is not working anymore. At least for me.
    When i start the module, it starts, but it then stops itself after a few seconds...


    Do you perhaps have the other VPN Server running at the same time? I noticed i cant run PPTP Server and ibVPN simultaneously. But with PPTP disabled (and only turned on when i need it) this one works fine for my Amazon Stick as you can see in the screenshot.
    Attachments:
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, April 27 2016, 05:01 PM - #Permalink
    Resolved
    0 votes
    Michael wrote:
    *edit* the module crash with MOST OF the servers, but not with some (US-dallas for example).
    In all cases, when I test my online IP, it is not the one of the vpn server, so I'm not routed through the VPN.


    Michael,

    Can you post the log output from:
    # grep ibvpn /var/log/messages

    The error(s) should be obvious in there.
    The reply is currently minimized Show
  • Accepted Answer

    Michael
    Michael
    Offline
    Wednesday, April 27 2016, 11:44 AM - #Permalink
    Resolved
    0 votes
    Hello,

    It seems that the module is not working anymore. At least for me.
    When i start the module, it starts, but it then stops itself after a few seconds.
    Even if I check online my IP address before it stops, it is still my own IP address.

    This would be great to fix this little module as I subscribed to ibVPN just because of this module !

    *edit* the module crash with MOST OF the servers, but not with some (US-dallas for example).
    In all cases, when I test my online IP, it is not the one of the vpn server, so I'm not routed through the VPN.
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, December 10 2015, 07:28 PM - #Permalink
    Resolved
    0 votes
    Thank you for your response.:)

    I guess now I only need to find out if opendns is logging my dns-requests or not, since my IP-setings point to opendns.

    ;)
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, December 10 2015, 06:58 PM - #Permalink
    Resolved
    0 votes
    Hi Victor,

    Victor van den Hoven wrote:
    Am I correct that the tunnel is not being used when you happened have transparent webproxy running?


    The ibVPN tunnel is always used - proxy or no proxy. ibVPN automatically creates bypass rules for any device that is configured to flow through the VPN.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, December 09 2015, 01:49 PM - #Permalink
    Resolved
    0 votes
    Hi,

    I would like to use ibvpn to download "anonymously" some files.

    It looks like it is working if not using the transparent proxy.

    Am I correct that the tunnel is not being used when you happened have transparent webproxy running?

    Maybe some kind of warning-event-notification would help to make that clear?


    Is there a way to modify the dns-addresses of the devices that are using the tunnel, just to be anonymous here as well?

    I think that it now uses the dns-addresses of the dhcp, which might be the dnsservers of your ISP that logs all your dns-request (<> anonymous).


    Regards,

    Victor
    The reply is currently minimized Show
  • Accepted Answer

    Michael
    Michael
    Offline
    Saturday, May 10 2014, 12:17 PM - #Permalink
    Resolved
    0 votes
    Darryl, maybe you can look at his when you have some time ?
    http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,61533/

    Bye
    Orvis
    The reply is currently minimized Show
  • Accepted Answer

    Sunday, March 23 2014, 12:35 PM - #Permalink
    Resolved
    0 votes
    Chaps - sorry to resurrect this, but there is a problem with Multi WAN support, when number of external interface > 2.

    Daryll - I have three external WAN interfaces; when all are activated and working well in MultiWAN, then ibVPN doesnt work - just eventual web page timed out (no noticeable log messages generated).

    If I disable one of the interfaces, everything works, so Im guessing it may be a simple case of extending support for more than two connections?

    BTW, I do get another message at service startup, which is most likely unrelated, as it comes up with two connections:

    Mar 23 12:28:43 ClearOS ibvpn[52792]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    Mar 23 12:28:43 ClearOS ibvpn[52792]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,show-net-up,route-gateway 10.10.10.1,ping 2,ping-restart 120,ifconfig 10.10.10.17 255.255.255.128'
    Mar 23 12:28:43 ClearOS ibvpn[52792]: Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:4: show-net-up (2.3.2)

    Thanks for good tool anyway.
    Andy
    The reply is currently minimized Show
  • Accepted Answer

    Friday, May 03 2013, 02:11 PM - #Permalink
    Resolved
    0 votes
    Daryll,

    Yes, entirely cosmetic. Looks kind of funny though. :laugh:

    Something to discuss at next week's Monday morning meeting or whatever you guys have, I suppose. By the by, I am running the 64 bit version of COS if that matters in any way.

    Peter
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Friday, May 03 2013, 01:35 PM - #Permalink
    Resolved
    0 votes
    Hi Darryl,

    thanks for you answer...Does this mean right now, that I have to login in my ClearOS System and start the ibVPN service manually?

    Or is there not a way to detect the stopped service and start it again?

    Kind regards
    crazym
    The reply is currently minimized Show
  • Accepted Answer

    Friday, May 03 2013, 01:05 PM - #Permalink
    Resolved
    0 votes
    Peter,

    Wow! That I have not personally experienced. I'm assuming this is not really the case, by that I mean the correct addresses would be associated with the proper interfaces when you check from the command-line with ifconfig or ip addr ls?
    The reply is currently minimized Show
  • Accepted Answer

    Friday, May 03 2013, 01:02 PM - #Permalink
    Resolved
    0 votes
    crazym,

    Yes I have seen that. It starts with inactivity (as you can see above):

    [server] Inactivity timeout (--ping-restart), restarting

    ... and upon reconnect, the ibVPN servers will always return with an authentication failure.

    I will check with the ibVPN support staff to find out what their policy is. I am thinking that they may not want to keep idle connection alive and this is how they purge them. I'll get back to you as soon as I hear back from them.
    The reply is currently minimized Show
  • Accepted Answer

    Friday, May 03 2013, 10:57 AM - #Permalink
    Resolved
    0 votes
    Darryl,

    Lovely app. After updating to 1.0.2-1 last night I can confirm ibVPN no longer seems to die for whatever reason. However, IP settings autoupdated later that night and now reports:
    Interface  Role     Type     IP Address   Link
    eth0 LAN Static A.B.C.D Yes - labelig and lan address are correct.
    ibvpn E.F.G.H Yes - shows PPPOE address.
    ppp0 External PPPoE I.J.K.L Yes - shows ibVPN address.


    Peter
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Friday, May 03 2013, 06:26 AM - #Permalink
    Resolved
    0 votes
    Good morning Darryl,

    I did realize yesterday night and this morning, that the ibVPN Service stops working after a while...I see in the message log the following information:

    May 3 08:02:42 clearos ibvpn[20910]: [server] Inactivity timeout (--ping-restart), restarting
    May 3 08:02:42 clearos ibvpn[20910]: TCP/UDP: Closing socket
    May 3 08:02:42 clearos ibvpn[20910]: SIGUSR1[soft,ping-restart] received, process restarting
    May 3 08:02:42 clearos ibvpn[20910]: Restart pause, 2 second(s)
    May 3 08:02:44 clearos ibvpn[20910]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    May 3 08:02:44 clearos ibvpn[20910]: NOTE: --script-security method='system' is deprecated due to the fact that passed parameters will be subject to shell expansion
    May 3 08:02:44 clearos ibvpn[20910]: Re-using SSL/TLS context
    May 3 08:02:44 clearos ibvpn[20910]: LZO compression initialized
    May 3 08:02:44 clearos ibvpn[20910]: Control Channel MTU parms [ L:1578 D:138 EF:38 EB:0 ET:0 EL:0 ]
    May 3 08:02:44 clearos ibvpn[20910]: Socket Buffers: R=[229376->131072] S=[229376->131072]
    May 3 08:02:44 clearos ibvpn[20910]: Data Channel MTU parms [ L:1578 D:1450 EF:46 EB:135 ET:32 EL:0 AF:3/1 ]
    May 3 08:02:44 clearos ibvpn[20910]: Fragmentation MTU parms [ L:1578 D:1300 EF:45 EB:135 ET:33 EL:0 AF:3/1 ]
    May 3 08:02:44 clearos ibvpn[20910]: Local Options hash (VER=V4): '9a22532e'
    May 3 08:02:44 clearos ibvpn[20910]: Expected Remote Options hash (VER=V4): 'e2a912d8'
    May 3 08:02:44 clearos ibvpn[20910]: UDPv4 link local: [undef]
    May 3 08:02:44 clearos ibvpn[20910]: UDPv4 link remote: 23.19.225.146:1194
    May 3 08:02:44 clearos ibvpn[20910]: TLS: Initial packet from 23.19.225.146:1194, sid=86a490e7 a609810d
    May 3 08:02:44 clearos ibvpn[20910]: ERROR: could not read Auth username from stdin
    May 3 08:02:44 clearos ibvpn[20910]: Exiting
    May 3 08:02:44 clearos ibvpn[20910]: Closing TUN/TAP interface
    May 3 08:02:44 clearos ibvpn[20910]: /sbin/ip addr del dev ibvpn 108.62.211.138/25
    May 3 08:02:44 clearos ibvpn[20910]: /etc/clearos/ibvpn.d/route-down.sh ibvpn 1500 1578 108.62.211.138 255.255.255.128 init


    It looks like I get after a while an timeout and the ibVPN service is not able to reconnect automatically again.

    Kind regards
    crazym
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Thursday, May 02 2013, 06:16 PM - #Permalink
    Resolved
    0 votes
    Hi Darryl,

    It seems to be work now :-). Thank you very much...There was not any additional need of configuration. Also the manual added IP adress are working just fine.

    The only think I had to do was to reselect the ibVPN Server...

    again, thanks for your effort.

    thanks crazym
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Thursday, May 02 2013, 04:55 AM - #Permalink
    Resolved
    0 votes
    Good day Darryl,

    Thanks for your work. I did see that the version is already 1.0.2-1 and will try this evening.

    - Are there additional steps needed to get the new version running, like additional configuration in IP -Settings?
    - Must the internal device an dhcp client from clearos or is manually added device in the ibVPN configuration also working?

    A system reboot is already done to start tests this evening.

    I will come back to you for feedback.

    bye crazym
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, May 01 2013, 07:38 PM - #Permalink
    Resolved
    0 votes
    Chris,

    I admit that I have yet to use ibVPN for torrent P2P. I will try from home and read ibVPN's FAQ to see if I can get my app to support it.

    More to come...
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, May 01 2013, 07:36 PM - #Permalink
    Resolved
    0 votes
    Ken and crazym:

    I have updated the ibVPN app and tested it with multiWAN -- it works! I've just pushed the update to the build system, and I will ensure it's available in the Marketplace later today.

    The new version will be 1.0.1-1.

    Please let me know if you have any further issues with ibVPN and multiWAN.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, May 01 2013, 12:00 AM - #Permalink
    Resolved
    0 votes
    Hi, I love this app. I was doing this the "hard way" prior to ibVPN via openvpn and a VPS in NL, the ibVPN app makes it all so much easier and more manageable. I have noticed that when torrenting I can download but I can not upload/seed. From what I have read the ibVPN servers use upnp to handle return traffic when you use a standalone client on a pc but when done using the the ClearOS app it doesn't appear to be able to handle port forwarding. Is there a manual way to take care of this? I have tried the standard port forwarding but that seems to only direct wan traffic and does not affect the ibVPN traffic.


    Thanks for this great app!!

    Chris
    The reply is currently minimized Show
  • Accepted Answer

    Friday, April 26 2013, 08:51 PM - #Permalink
    Resolved
    0 votes
    Darryl Sokoloski wrote:
    Oops! Yea it won't work as-is in multiwan environments because both apps make use of ip rule marking.

    I will have to think about how to get them both to play together nicely. I'll get back to you shortly with a few commands to test.


    Great app Darryl! Just what I was looking for!

    I signed up for an account at ibVPN however I have Multiple WAN interfaces in my setup at home. What are the chances that my compliment above and the referral fee might motivate you to find the time to make the app play nice with multi-WAN?

    Thanks in advance.
    Ken
    The reply is currently minimized Show
  • Accepted Answer

    Linze
    Linze
    Offline
    Sunday, April 21 2013, 12:44 PM - #Permalink
    Resolved
    0 votes
    I tryed ibvpn for 6 hours now and for me it works perfectly.More friendly than managing several clients and It uses only a little more cpu power.
    Perhaps its good to mention that ibvpn app,is an openvpn client. (port 1194)

    Linze
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Sunday, April 21 2013, 06:01 AM - #Permalink
    Resolved
    0 votes
    Hi Darryl,

    Thanks for your quick answer and looking forward to get ibVPN also with Multiwan working.

    bye crazym
    The reply is currently minimized Show
  • Accepted Answer

    Saturday, April 20 2013, 06:12 PM - #Permalink
    Resolved
    0 votes
    Oops! Yea it won't work as-is in multiwan environments because both apps make use of ip rule marking.

    I will have to think about how to get them both to play together nicely. I'll get back to you shortly with a few commands to test.
    The reply is currently minimized Show
  • Accepted Answer

    crazym
    crazym
    Offline
    Saturday, April 20 2013, 06:03 PM - #Permalink
    Resolved
    0 votes
    Hello Darryl,

    Do I have to configure also something under Network-Settings-IP Settings. I see there the ibvpn Network Interface with an linked IP-address, but no role and type.

    I am using Multi-WAN and it does not work as expected. My computer goes still with my official public address out to internet.

    thanks crazym
    The reply is currently minimized Show
  • Accepted Answer

    Friday, April 19 2013, 02:55 PM - #Permalink
    Resolved
    0 votes
    Thank you Darryl! Interesting app.
    The reply is currently minimized Show
  • Accepted Answer

    Linze
    Linze
    Offline
    Thursday, April 18 2013, 07:59 PM - #Permalink
    Resolved
    0 votes
    Thanks Tim for the reply.
    After enablerepo, i was able to install ibvpn.

    Linze
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 18 2013, 07:42 PM - #Permalink
    Resolved
    0 votes
    It's in the contribs repo which is disabled by default unless you install via the Marketplace (which should enable it?)
    yum --enablerepo=clearos-contribs install app-ibvpn
    The reply is currently minimized Show
  • Accepted Answer

    Linze
    Linze
    Offline
    Thursday, April 18 2013, 07:18 PM - #Permalink
    Resolved
    0 votes
    When I use the commandline i get the message:No pacckage app-ibvpn available.Error nothing to do.

    Linze
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 18 2013, 06:56 PM - #Permalink
    Resolved
    0 votes
    Linze,

    Hrm... that's odd. I'm assuming you're installing this from the marketplace and not from the command-line?

    Can you login to ClearOS from the command-line and try installing the app manually using the following command?

    yum install app-ibvpn
    The reply is currently minimized Show
  • Accepted Answer

    Linze
    Linze
    Offline
    Thursday, April 18 2013, 06:52 PM - #Permalink
    Resolved
    0 votes
    Iam interested in the program,but get error "file not found",when try to install.Iam the only one?
    Iam using version 6.4
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, April 18 2013, 12:31 PM - #Permalink
    Resolved
    0 votes
    Great! thanks Darryl :)
    The reply is currently minimized Show
Your Reply