Hello lovely HTPCers
I followed the guide split vpn tunnel. https://www.htpcguides.com/force-torrent...ntu-16-04/
Although with 1 or 2 differences - which apparently are more of an issue than I first thought they'd be
1. I'm not running ubuntu i have minibian on raspberry pi 3
2. i am not using PIA - I already have a vpn account with ibvpn
followed through the instructions but the user vpn still doesn't connect via VPN the good news is I think I'm pretty close
i can run:
& get the following output
so i am connected. excellent news! 
next i tested the systemd service was running as expected so i type:
and get the following response:
so it looks like my service is running & the vpn connection is established - feel free to correct me if i'm wrong, that's why i'm here.
when i run:
i get
which is sort of good because it would appear traffic isn't being sent un-encrypted. i speny about 2-3 hours scratching my head & came up blank so, i'm hoping one of you lovely internet people are going to help me out a little.
the only thing that differs from the tutorial is my openvpn.config which is as provided by ibVPN with 1 or 2 mods to suit the tutorial
I added htpc guides up/down scripts in favour of those generated in the htpcguides page (i tried using 2 up / down scripts but got an error return & only 1 used)
i added route-noexec & auth-nocache
i didnt set 'script-security 2' as it is already set to 3 and runs external scripts fine.
i didn't call the login.txt as my vpn already has this
If you can help then i very much appreciate it, if you can't don't feel bad neither can I but thanks for reading this far anyway
Andy
I followed the guide split vpn tunnel. https://www.htpcguides.com/force-torrent...ntu-16-04/
Although with 1 or 2 differences - which apparently are more of an issue than I first thought they'd be
1. I'm not running ubuntu i have minibian on raspberry pi 3
2. i am not using PIA - I already have a vpn account with ibvpn
followed through the instructions but the user vpn still doesn't connect via VPN the good news is I think I'm pretty close
i can run:
Code:
sudo openvpn --config /etc/openvpn/openvpn.conf & get the following output
Code:
Thu Dec 20 17:57:44 2018 OpenVPN 2.3.4 arm-unknown-linux-gnueabihf [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jun 27 2017
Thu Dec 20 17:57:44 2018 library versions: OpenSSL 1.0.1t 3 May 2016, LZO 2.08
Thu Dec 20 17:57:44 2018 WARNING: file 'user_pass.txt' is group or others accessible
Thu Dec 20 17:57:44 2018 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Dec 20 17:57:44 2018 Socket Buffers: R=[163840->131072] S=[163840->131072]
Thu Dec 20 17:57:44 2018 UDPv4 link local: [undef]
Thu Dec 20 17:57:44 2018 UDPv4 link remote: [AF_INET]185.86.150.17:1196next i tested the systemd service was running as expected so i type:
Code:
sudo systemctl status openvpn@openvpn.serviceCode:
● openvpn@openvpn.service - OpenVPN connection to openvpn
Loaded: loaded (/etc/systemd/system/openvpn@openvpn.service; enabled)
Active: active (running) since Thu 2018-12-20 16:17:12 GMT; 1h 43min ago
Docs: man:openvpn(8)
https://community.openvpn.net/openvpn/wiki/Openvpn23ManPage
https://community.openvpn.net/openvpn/wiki/HOWTO
Process: 442 ExecStart=/usr/sbin/openvpn --daemon ovpn-%i --status /run/openvpn/%i.status 10 --cd /etc/openvpn --script-security 2 --config /etc/openvpn/%i.conf --writepid /run/openvpn/%i.pid (code=exited, status=0/SUCCESS)
Main PID: 489 (openvpn)
CGroup: /system.slice/system-openvpn.slice/openvpn@openvpn.service
└─489 /usr/sbin/openvpn --daemon ovpn-openvpn --status /run/openvpn/openvpn.status 10 ...
Dec 20 18:00:19 raspberrypi ovpn-openvpn[489]: NOTE: the current --script-security setting may...pts
Dec 20 18:00:19 raspberrypi ovpn-openvpn[489]: Socket Buffers: R=[163840->131072] S=[163840->131072]
Dec 20 18:00:19 raspberrypi ovpn-openvpn[489]: UDPv4 link local: [undef]
Dec 20 18:00:19 raspberrypi ovpn-openvpn[489]: UDPv4 link remote: [AF_INET]185.86.150.17:1196
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: Server poll timeout, restarting
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: SIGUSR1[soft,server_poll] received, process res...ing
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: NOTE: the current --script-security setting may...pts
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: Socket Buffers: R=[163840->131072] S=[163840->131072]
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: UDPv4 link local: [undef]
Dec 20 18:00:39 raspberrypi ovpn-openvpn[489]: UDPv4 link remote: [AF_INET]185.86.150.17:1196
Hint: Some lines were ellipsized, use -l to show in full.when i run:
Code:
sudo -u vpn -i -- curl ipinfo.ioCode:
curl: (6) Could not resolve host: ipinfo.iothe only thing that differs from the tutorial is my openvpn.config which is as provided by ibVPN with 1 or 2 mods to suit the tutorial
Code:
remote se4.ibvpn.com 1196 udp
remote 185.86.150.17 1196 udp
fragment 1300
explicit-exit-notify 3
auth-user-pass user_pass.txt
#up and down scripts to be executed when VPN starts or stops disabled ibvpn's script in favour of HTPCGUIDES
up /etc/openvpn/iptables.sh
down /etc/openvpn/update-resolv-conf
#up 'update-resolv-conf'
#down 'update-resolv-conf'
auth RSA-SHA512
dev tap
server-poll-timeout 20
client
nobind
resolv-retry infinite
auth-retry nointeract
persist-key
persist-tun
cipher AES-256-CBC
mute-replay-warnings
comp-lzo
verb 3
mute 20
remote-cert-tls server
route-method exe
route-delay 2
script-security 3
reneg-sec 0
route-noexec
auth-nocache
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>I added htpc guides up/down scripts in favour of those generated in the htpcguides page (i tried using 2 up / down scripts but got an error return & only 1 used)
i added route-noexec & auth-nocache
i didnt set 'script-security 2' as it is already set to 3 and runs external scripts fine.
i didn't call the login.txt as my vpn already has this
If you can help then i very much appreciate it, if you can't don't feel bad neither can I but thanks for reading this far anyway
Andy
![[-]](https://forum.htpcguides.com/images/htpc/collapse.gif "[-]")
