21-Feb-2023 04:22
This issue happens only on the machine I'm using, I treid the same account on multiple other machines, on the same network and other networks. The gist of it is that f5vpn gets stuck in the connecting phase and doesn't modify my routes table or hosts file, as it should.
The server is started successfully and establishes a connection on port 44444, but that's where it stops.
Did anyone face a similar issue? I have the log files (vpn.log, svpn.log, syslog, etc..) if anyone is interested to take a look. I tried creating a support case, but I only had the "NginX" product family displayed. I would really appreciate any help.
22-Feb-2023 11:00
Do you see any obvious errors in the log files?
What do you see in svpn.log when you compare a working system to your not working system? Presumably the logs must be different between the two. The difference should help narrow down what the issue might be.
You might also review Ubuntu's AppArmor settings or temporarily disable it, as these might block networking changes that the f5vpn process is trying to perform:
https://help.ubuntu.com/community/AppArmor
23-Feb-2023 04:26
23-Feb-2023 04:37
As for /var/log/svpn.log
```
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,, =====================================
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,, Location: /opt/f5/vpn/svpn
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,, Version: "7220.2022.0308.1"
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,, Locale: C
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,, =====================================
2023-02-23,13:41:04:158, 160816,160816,svpn, 0,,,,
2023-02-23,13:41:04:158, 160816,160816,svpn, 48,,,, current log level = 63
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 132, ------------------,
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 133, [main], getuid, 1000
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 134, [main], getgid, 1000
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 135, [main], geteuid, 0
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 136, [main], getegid, 1000
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 137, [main], HOME, /home/karim
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 139, [main], version, 7220.2022.0308.1
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 141, ------------------,
2023-02-23,13:41:04:158, 160816,160816,svpn, 1, , 148, [main], Current sigprocmask: 0x14a3dec0
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 46, ReadProperties() Select retruns the pipe data size : , 3915,
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 51, ReadProperties() Pipe Read lopp ,
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 55, ReadProperties() read() , 3915, <VERY LONG LINE>
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 62, ReadProperties() reading pipe : , 3915, <VERY LONG LINE IDENTICAL TO ONE ABOVE>
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 72, ReadProperties() after reading the data from pipe : , 3915, <VERY LONG LINE IDENTICAL TO ONE ABOVE>
2023-02-23,13:41:04:158, 160816,160816,svpn, 48, , 83, ReadProperties() Data send by Edge Client over pipe : , <VERY LONG LINE IDENTICAL TO ONE ABOVE>
2023-02-23,13:41:04:160, 160816,160816,svpn, 48, , 99, ReadProperties(), ,
2023-02-23,13:41:04:160, 160816,160816,svpn, 48, , 99, ReadProperties(), q0, 3C786D6C617474723E3D
...
// many lines filled with what seems like randome nubers after like so:
// I removed them from the log to fit them in a single message, the number
// here is an example
2023-02-23,13:41:04:163, 160816,160816,svpn, 48, , 99, ReadProperties(), q34, 697679696EDA67DA9E6D7796F976D97E697A6F97E6697A6D96A0F
2023-02-23,13:41:04:163, 160816,160816,svpn, 48, , 99, ReadProperties(), q77, 3D
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), <xmlattr>, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), session_id, 5df83964, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_sidhash, 5df83964, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_z, /Common/<VPN_GROUP>, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_name, /Common/<VPN_GROUP>, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), host0, 127.0.0.1, 127
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), port0, 44444, 44444
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_type, VPN, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_connect, auto, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tunnel_protocol0, https, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), idle_session_timeout, 5400, 5400
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), firepassserver0, /Common/<VPN_GROUP>, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ipv4_0, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ipv6_0, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tunnel_dtls, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dns0, 192.168.168.49 1.1.1.1, 192
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dns6_0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), wins0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dnssuffix0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dnsregisterconnection0, 2, 2
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dnsusednssuffixforregistration0, 2, 2
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), splittunneling0, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), lan0, 192.168.2.7/255.255.255.255 192.168.2.12/255.255.255.255 192.168.168.0/255.255.255.0 192.168.80.18/255.255.255.255 192.168.60.31/255.255.255.255 192.168.155.21/255.255.255.255 192.168.2.23/255.255.255.255 192.168.30.20/255.255.255.255 192.168.155.50/255.255.255.255, 192
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), lan6_0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), excludesubnets0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), excludesubnets6_0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dns_split0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), excludedomainnames0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), allowlocalsubnetaccess0, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), allowlocaldnsserversaccess0, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), allowlocaldhcpaccess0, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), add2hosts0, <SUB_DOMAIN>.<COMPANY_NAME>.<TLD>|192.168.2.23|<SUB_DOMAIN>.<COMPANY_NAME>.<TLD>|192.168.2.23|<SUB_DOMAIN>.<COMPANY_NAME>.<TLD>|192.168.30.20|<SUB_DOMAIN>.<COMPANY_NAME>.<TLD>|192.168.80.18, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_donotwarnuser, no, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), clientformicrosoftnetworks0, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), fileandprintersharingformicrosoftnetworks0, 2, 2
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), enforcednsorder0, ON, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_disableclientcerts, no, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), dontreportpolicy0, TRUE, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), processtimeout0, -1, -1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), hdlc_framing, no, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), autoreconnectifdropped0, yes, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tcp_reconnect_timeout0, 900000, 900000
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tcp_reconnect_delay0, 200, 200
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), trafficcontrol0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_powermanagement, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), displayedbandwidth0, 100000000, 100000000
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_connect_msg0, NO, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_networktunnelenabled, yes, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_optimizedappsenabled, no, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), minimize_after_connect0, YES, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_ctrlchannelenabled, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ur_isessionenabled, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_connect_msg_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_connect_fallback_msg_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_routing_changes_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_process_check_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_registry_check_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_config_error_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_os_patch_check_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_ie_patch_check_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), display_pf_check_txt0, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tunnel_host0, <COMPANY_DOMAIN>, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), tunnel_port0, 443, 443
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), browser_pid, 160796, 160796
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), version, 2.9, 2
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), , , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), client_pid, 160796, 160796
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), HOST, <COMPANY_DOMAIN>, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), PORT, 443, 443
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), UseDefaultGateway, OFF, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), AllowLocalSubnetAccess, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), AllowLocalDHCPAccess, 1, 1
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), AllowLocalDNSServersAccess, 0, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), LAN, 192.168.2.7/255.255.255.255 192.168.2.12/255.255.255.255 192.168.168.0/255.255.255.0 192.168.80.18/255.255.255.255 192.168.60.31/255.255.255.255 192.168.155.21/255.255.255.255 192.168.2.23/255.255.255.255 192.168.30.20/255.255.255.255 192.168.155.50/255.255.255.255, 192
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), ExcludeSubnets, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), EnforceRouteTable, , 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 1, , 320, SSLVpn::SetProperties(), txqueuelength, 100, 100
2023-02-23,13:41:04:166, 160816,160817,svpn, 48, , 1369, SSLVpn::svpn(), Open(), setuid, 1000, 0
2023-02-23,13:41:04:166, 160816,160817,svpn, 48, , 662, CString ResolveHostNameGetFirstIp(const CString&), Resolved '<COMPANY_DOMAIN>' to <COMPANY_IP>
2023-02-23,13:41:04:166, 160816,160817,svpn, 48, , 716, void SSLVpn::ConfigureTunnelChannel(), U_TUNNEL_HOST=<COMPANY_DOMAIN>
2023-02-23,13:41:04:166, 160816,160817,svpn, 48, , 11, UTunChannel::UTunChannel(), Initializing...
2023-02-23,13:41:04:166, 160816,160817,svpn, 48, , 42, UTunChannel::CloneDevice(), Opening utun device
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, , 296, UTunChannel::IsDeviceAvailable(), Device is available
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, , 751, SSLVpn::ConfigureTunnelChannel(), Tun device will be used
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, /UChannelChain.cpp, 55, , enter, 0x80f: U_ENABLE_SOCKET_CHANNEL U_ENABLE_SSL_CHANNEL U_ENABLE_PROXY_CHANNEL U_ENABLE_HTTP_CHANNEL U_ENABLE_PPP_EMULATION_CHANNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 48,,,, USSLChannel::USSLChannel:RAND_status(1)
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, /UF5FramePacketizerChannel.cpp, 293, UF5FramePacketizerChannel::setProperties(), fast framing will be used
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, /UHTTPChannel.cpp, 593, UHTTPChannel::setProperties(), m_bFastPPPMode, true
2023-02-23,13:41:04:167, 160816,160817,svpn, 48, /UHTTPChannel.cpp, 597, UHTTPChannel::setProperties(), m_bUseISession, false
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, --------- Initial State --------
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, Address Netif
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 127.0.0.1/8 lo( 1)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 192.168.1.10/24 wlp5s0( 3)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 192.168.122.1/24 virbr0( 4)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.19.0.1/16 br-63dcbff36084( 6)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.20.0.1/16 br-74660eaa12c1( 7)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.18.0.1/16 br-9ebcc5f112e6( 😎
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.22.0.1/16 br-9fdcc1944e6d( 9)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.23.0.1/16 br-3e8ed22008b1(10)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.21.0.1/16 br-4c314f5c6ea9(11)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.25.0.1/16 br-5202490322d8(12)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.17.0.1/16 docker0(13)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, ::1/128 lo( 1)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::ed58:cb1a:4464:9231/64 wlp5s0( 3)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::42:e7ff:fe94:e6/64 br-63dcbff36084( 6)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::42:e2ff:fed4:1fd9/64 br-74660eaa12c1( 7)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::42:95ff:fe06:54cd/64 br-9ebcc5f112e6( 😎
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::5c94:c1ff:feec:be64/64 veth5ae8a4c(15)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::a44a:ffff:fe33:1781/64 veth0d86702(17)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::38c1:2dff:fef1:f19c/64 veth30a69c9(19)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::2c13:38ff:fe1d:1e67/64 vethe81d240(21)
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, Destination Gateway Flags Netif Expire Proto Preferred Source Address
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 0.0.0.0/0 192.168.1.1 UG wlp5s0(3) 0 RTPROT_DHCP
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 169.254.0.0/16 link#4 U virbr0(4) 0 RTPROT_BOOT
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.17.0.0/16 link#13 U docker0(13) 0 RTPROT_KERNEL 172.17.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.18.0.0/16 link#8 U br-9ebcc5f112e6(8) 0 RTPROT_KERNEL 172.18.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.19.0.0/16 link#6 U br-63dcbff36084(6) 0 RTPROT_KERNEL 172.19.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.20.0.0/16 link#7 U br-74660eaa12c1(7) 0 RTPROT_KERNEL 172.20.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.21.0.0/16 link#11 U br-4c314f5c6ea9(11) 0 RTPROT_KERNEL 172.21.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.22.0.0/16 link#9 U br-9fdcc1944e6d(9) 0 RTPROT_KERNEL 172.22.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.23.0.0/16 link#10 U br-3e8ed22008b1(10) 0 RTPROT_KERNEL 172.23.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 172.25.0.0/16 link#12 U br-5202490322d8(12) 0 RTPROT_KERNEL 172.25.0.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 192.168.1.0/24 link#3 U wlp5s0(3) 0 RTPROT_KERNEL 192.168.1.10
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, 192.168.122.0/24 link#4 U virbr0(4) 0 RTPROT_KERNEL 192.168.122.1
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, ::1/128 link#1 U lo(1) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#8 U br-9ebcc5f112e6(8) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#15 U veth5ae8a4c(15) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#17 U veth0d86702(17) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#6 U br-63dcbff36084(6) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#19 U veth30a69c9(19) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#21 U vethe81d240(21) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#7 U br-74660eaa12c1(7) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, fe80::/64 link#3 U wlp5s0(3) 0 RTPROT_KERNEL
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, ::/0 fe80::a5a:11ff:fe42:d3b0 UG wlp5s0(3) 0 RTPROT_RA
2023-02-23,13:41:04:167, 160816,160817,svpn, 0,,,, --------- End --------
23-Feb-2023 04:37
23-Feb-2023 04:41
Here is a pastbin contaning my previously posted replies, since this forum unfortunately does not support txt files.
23-Feb-2023 04:56
Oh, and I forgot to mention, I couldn't track down any obvious errors in the log files. Messages just stop.
23-Feb-2023 05:14
Update: I checked AppArmour out, tried disabling and tried putting the NetworkManager profile in complain mode, but nothing changed. Same exact result as above.
23-Feb-2023 09:01
Hmm. From those logs, it seems like it's actually connected. From the syslog you pasted though, there do seem to be a few errors from QT. The client uses QT to write the messages into the client GUI. Perhaps you could try to reinstall it, and dbus-daemon.
Is this something that you think we could reproduce in a lab on a fresh ubuntu system, or is it something that seems tied to this client PC specifically?
23-Feb-2023 11:49
I can't think of anyway to reproduce it. I probably somehow modified something on my system, because it works on every other device I tried. In fact, it event works inside a docker container running on my system. I just found out this weird thing:
- If I attach the container to host network, f5vpn won't connect
- If I DON'T attach the container to host network, f5vpn WILL connect
So, in the case where it connects from within the container, I again modified the routes table to point the specific ips configured by f5vpn to the container itself, but even though my traffic goes through and I can actually reach those few websites, I still can't receive callbacks from a particular remote server like I can if I connected.
Does f5vpn/Big IP somehow check if the source ip is something it has registered? I don't have any idea what happens on the provider side.
I can't think of any solution short of nuking my ubunut and re-installing it. I haven't tried reinstalling dbus, I'm afraid of breaking something else in my system, since it seems like a sensitive service.
As for Qt, I haven't tried reinstalling it yet, but the few errors it prints are identical to those printed in systems where it worked.
Oh, and apologies, I forgot to mention that I'm running vpn version 7220.2022.0308.1, thought it seems like the most recent version anyway.
Are there any configuration, software versions, firewall rules, etc... you wish to take a look at?
23-Feb-2023 11:53
Oh, and f5vpn brings its own Qt libraries along as it seems. They are stored in /opt/f5/vpn/lib
$ ls /opt/f5/vpn/lib
libcrypto.so.1.0.0 libicui18n.so.55 libQt5Core.so.5 libQt5Gui.so.5 libQt5OpenGL.so.5 libQt5Sql.so.5 libQt5WebKitWidgets.so.5 libQt5XcbQpa.so.5
libicudata.so.55 libicuuc.so.55 libQt5DBus.so.5 libQt5Network.so.5 libQt5PrintSupport.so.5 libQt5WebKit.so.5 libQt5Widgets.so.5 libssl.so.1.0.0
23-Feb-2023 15:33
I wonder if this does have to do with routing, and maybe once the VPN is connected it interrupts the routing table: Can you try to create another VPN resource on the BIG-IP server that is set for split-tunnel but use a different small IP address range, like 10.0.0.0/24 and a lease-pool within that network. Maybe the connection will behave differently on a different routing subnet and/or not a full-routing tunnel.
24-Feb-2023 04:18
Unfortunately the Big IP server is managed by another company, we are only granted access to the vpn to access their resources. f5vpn is started from the browser, and the log in workflow is protected by 2FA.
Just as a reminder, my account works on other similar machines on the same netwroks. I just thought about contacting one of their network adminstrators, do you think their server might be refusing to accept my machine? is there such a thing in Big IP, where a server refuses/drops/ignores attempted client connection because of some configuration client side?
26-May-2023 08:27
My problem disappeared after I installed Ubuntu 22. I don't know whether it went away because I upgraded our because I wiped my device, giving it a fresh start.
26-May-2023 16:44
Nice to know, I might try a fresh instal then.
05-Jun-2023 18:08
Tried multiple "solution" found accross the web with no chance.
Made a fresh install of 23.04 and started working as before.
Unfortunately I have no good guess of what it was, better chance to the next one.