OpenVPN Client on Azure VM
I'm trying to connect my Azure VM to my OpenVPN server at how, so it will be part of my Home Network, I installed the OpenVPN client and added the ovpn file, but every time I start the connection I get no activity and a fail message
You have to install the downloaded .ovpn file into the
configfolder of OpenVPN. For example,
Right-click the OpenVPN GUI icon on the desktop, and click Run as administrator to connect to VPN.
Also, you can verify the network connectivity between Azure VM and your home router server is working or not. From VM, you can use the command
telnet 188.8.131.52 1194to verify this. (If you set Service-Type TCP; Service-Port 1194, OpenVPN public IP address is 184.108.40.206 in your OpenVPN server side). Change the Public IP and port in your side to telnet.
In addition, you can refer to this link to check the setting on your home router server.
See also questions close to this topic
AWS equivalent for Azure Resourcegroup
Azure Resource group is one thing which ties one complete stack together, so in case you want to know what your complete stack looks like just open up your RG and all resources are there(not talking about very big stacks ). Do we have any service in AWS like this ??
Check if run command is running
I am working in a very restricted environment where certain run commands are set to run as both post installation scripts and on a schedule. Issue is that these break my post installation script. I would like to handle these errors gracefully, ideally
catchand retry them, or check to see if they are running i.e
ps aux | grep blaand wait till its finished executing.
company branding doesn't work for password page in Azure Portal
I've created company branding from the Azure portal for my application.
This is working as expected for the first page i.e, the username page. When I click on next for the password page, the custom branding disappears and default Microsoft background appears.
I want the branding to be continued for the password page also so that there would be consistency.
Error downloading script in Azure VM Extension using ARM
I am using the Azure VM Extension in my ARM template to download a script inside VM.
Few queries I have:
- How and where did I find the downloaded content inside a Virtual machine?
- Is there a way to save the downloaded content with some name? As seen using wget '' give me the scrpt with a different name.
Due to 2nd query(I guess), the deployment is failing in that stage. The ARM template is also available to take a look into.
The same has been tested using a script pointing to github URL and it works without any issue.
Appreciate your help.
Can we connect to Azure VM remotely which is different Virtual Network
I have 2 Azure VMs , say
VM2. I have logged into
VM1through RDP. Now my requirement is to connect to
VM1through powershell and run some commands remotely.
When I run the below command :
$UserName = "<IP>\username" $Password = ConvertTo-SecureString "password@123" -AsPlainText -Force $psCred = New-Object System.Management.Automation.PSCredential($UserName, $Password) $s = New-PSSession -ComputerName <IP> -Credential $psCred
It is giving the following error :
New-PSSession :  Connecting to remote server failed with the following error message : WinRM cannot complete the operation. Verify that the specified computer name is valid, that the computer is accessible over the network, and that a firewall exception for the WinRM service is enabled and allows access from this computer. By default, the WinRM firewall exception for public profiles limits access to remote computers within the same local subnet. For more information, see the about_Remote_Troubleshooting Help topic.
I have tried all the solutions which I found on internet, but none solved my problem.
The VirtualNetwork/Subnet of both the VMs is different and both of them do no have public IP and DNS name(which is a business requirement and cannot be changed) . So I'm using Private IP to login.Location of both the VMs is also different.
Is there a possibility that this might be the reason?
Copy files from one azure Linux VM to another azure Linux VM
I want to copy files from one Azure Linux VM to Another Azure Linux VM, I have tried ,
scp -r /etc/mongod.conf email@example.com:/etc/mongod.conf
but it is showing "Connection timed out or lost connection".
Also tried by installing putty,
pscp -pw password123 /etc/mongod.conf firstname.lastname@example.org:/etc/mongod.conf
Same error message is showing , do you have any solution for this issue?
Is there a way to put a Public LB in front of Application Gateay?
I want to use an Azure Application Gateway with a static IP address. Since Application Gateway doesn't support public IP, I thought I'd try using a private Application Gateway and putting a public LB in front of it. However, I can't seem to find a way to send the traffic from the LB to Application Gateway.
So I was wondering if there is a way to send traffic from an LB to an Application Gateway? If not, is there another way of having a static IP address with Azure Application Gateway?
azure network peering zookeeper timeouts
I'm trying a few things on azure with terraform, but I'm not really used to debug networking and I'm facing an issue.
My network looks like :
On_premise_Network(220.127.116.11/16) <--- VPN IPsec ---> Gateway Subscription-vnet(10.150.33.0/27).
Gateway Subscription-vnet(10.150.33.0/27) <--- Vnet Peering ---> Test Subscritpion-vnet(10.150.33.32/27)
I booted vms on every subscritpion/resourcegroup/subnets to try networking, I can ssh from everywhere to everywhere.
Now I have in my test subscription a zookeeper server. And I add in that subscription a lenses server to monitor zookeeper. It works fine.
My issue is the following : I run lenses from my on_premise_network or gateway subscription and it doesn't work. I see a bunch of timeout connections on lenses :
Client session timed out, have not heard from server in 40000ms for sessionid 0x165b40971940005µ
And on zookeeper server side I see Connection reset by peer :
INFO Accepted socket connection from /192.168.4.49:54776 (org.apache.zookeeper.server.NIOServerCnxnFactory) INFO Client attempting to renew session 0x165b40971940005 at /192.168.4.49:54776 (org.apache.zookeeper.server.ZooKeeperServer) INFO Invalid session 0x165b40971940005 for client /192.168.4.49:54776, probably expired (org.apache.zookeeper.server.ZooKeeperServer) org.apache.zookeeper.ClientCnxnSocketNIO.doTransport(ClientCnxnSocketNIO.java:357) at org.apache.zookeeper.ClientCnxn$SendThread.run(ClientCnxn.java:1214)
What did i do wrong? (my test vnet has access and is accessible from my on_premise_network through the subscription's gateway.)
Is there any limitations with vnet peering?
Isn't it making just a flat network?
Why doest it work from within the same subnet and not from out of it? I need a hand on that, networking isn't clear enough to me.
How to connect with multi region private subnets through single VPN?
I had created 3 VPC's in three regions and I configured VPC peering between this 3 regions and it's working fine I can ping all the servers from any region through private ip's, I had configured openvpn in 'A' region my intension is to connect to all 3 region private networks using single VPN connection from my home network. But through that VPN I can connect only to instances present in VPC 'A' region, how can I connect to all 3 regions private subnets through one VPN connection?
OpenVPN to Tor Bridge?
I have an Ubuntu server running an OpenVPN server which is working fine. I can connect and all traffic is routed over the VPN to local machines, and out onto the internet. What I would like to do now is have all local and OpenVPN traffic routed via the Tor network. I've had a google, but I can't find anyone who is trying to achieve what I would like to do. I have a hunch that I need to use iptables, but I don't know where to start.
So I would like to achieve this:
OpenVPN Client -> tunnel -> Ubuntu Server -> Tor Network
Many thanks for any help you can offer!
IP packet with unknown IP version=15 seen
I have a gentoo router with two openvpn instances (v2.4.6, udp and tcp) and every minute I always see this log messages:
Sep 12 15:42:50 lowpower2 openvpn: IP packet with unknown IP version=15 seen Sep 12 15:42:50 lowpower2 openvpn: IP packet with unknown IP version=15 seen Sep 12 15:43:51 lowpower2 openvpn: IP packet with unknown IP version=15 seen Sep 12 15:43:51 lowpower2 openvpn: IP packet with unknown IP version=15 seen Sep 12 15:44:53 lowpower2 openvpn: IP packet with unknown IP version=15 seen Sep 12 15:44:53 lowpower2 openvpn: IP packet with unknown IP version=15 seen
For example, on tun1 (tcp) server side, when the vpn is not in use, that is no client is connected, with tcpdump I see this:
lowpower2 ~ # tcpdump -n -X -i tun1 dropped privs to tcpdump tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on tun1, link-type RAW (Raw IP), capture size 262144 bytes 15:37:42.981853 unknown ip 15 0x0000: ffff ffff ffff 0000 0000 0000 88a2 1000 ................ 0x0010: ffff ff01 0000 0000 0000 0000 0000 0000 ................ 15:38:44.421849 unknown ip 15 0x0000: ffff ffff ffff 0000 0000 0000 88a2 1000 ................ 0x0010: ffff ff01 0000 0000 0000 0000 0000 0000 ................ 15:39:45.861854 unknown ip 15 0x0000: ffff ffff ffff 0000 0000 0000 88a2 1000 ................ 0x0010: ffff ff01 0000 0000 0000 0000 0000 0000 ................
This is the server configuration for udp
user nobody group nobody port 563 proto udp multihome dev tun0 persist-key persist-tun ca /etc/openvpn/server-multi/ca.crt cert /etc/openvpn/server-multi/lowpower2.crt key /etc/openvpn/server-multi/lowpower2.key dh /etc/openvpn/server-multi/dh2048.pem tls-auth /etc/openvpn/server-multi/ta.key 0 cipher AES-256-CBC auth SHA512 ifconfig-pool-persist /etc/openvpn/server-udp-multi/ipp.txt server 192.168.20.0 255.255.255.0 push "route 192.168.0.0 255.255.255.248" push "route 192.168.11.0 255.255.255.0" push "route 192.168.12.0 255.255.255.0" push "route 192.168.13.0 255.255.255.0" push "route 192.168.14.0 255.255.255.0" keepalive 10 60 verb 3 max-clients 10
This is the server configuration for tcp
user nobody group nobody port 1494 proto tcp-server dev tun1 persist-key persist-tun ca /etc/openvpn/server-multi/ca.crt cert /etc/openvpn/server-multi/lowpower2.crt key /etc/openvpn/server-multi/lowpower2.key dh /etc/openvpn/server-multi/dh2048.pem tls-auth /etc/openvpn/server-multi/ta.key 0 cipher AES-256-CBC auth SHA512 ifconfig-pool-persist /etc/openvpn/server-tcp-multi/ipp.txt server 192.168.21.0 255.255.255.0 push "route 192.168.0.0 255.255.255.248" push "route 192.168.1.0 255.255.255.0" push "route 192.168.11.0 255.255.255.0" push "route 192.168.12.0 255.255.255.0" push "route 192.168.13.0 255.255.255.0" push "route 192.168.14.0 255.255.255.0" keepalive 10 60 verb 3 max-clients 10
This are the use flags:
Installed versions: 2.4.6(08:40:56 PM 09/11/2018)(iproute2 ssl -down-root -examples -inotify -libressl -lz4 -lzo -mbedtls -pam -pkcs11 -plugins -selinux -static -systemd -test KERNEL="linux" USERLAND="-BSD")
This the kernel:
Linux lowpower2 4.14.65-gentoo #3 SMP Thu Sep 6 22:05:43 CEST 2018 x86_64 Intel(R) Atom(TM) CPU D425 @ 1.80GHz GenuineIntel GNU/Linux
What is it due to? Is it possible to eliminate the warning message without decreasing the verbosity level?