nordsecurity / libtelio Goto Github PK
View Code? Open in Web Editor NEWA library providing networking utilities for NordVPN VPN and meshnet functionality
Home Page: https://meshnet.nordvpn.com
License: GNU General Public License v3.0
A library providing networking utilities for NordVPN VPN and meshnet functionality
Home Page: https://meshnet.nordvpn.com
License: GNU General Public License v3.0
nordvpnd[500]: 2023/03/16 17:12:32 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
I have set up an OpenSSH server on my home PC (Ubuntu 22.04 LTS) and am trying to connect to it using ssh and sshfs from my Laptop (Ubuntu 20.04 LTS).
The server seems to be running smoothly and I can easily access it, while in the same network.
As I can't configure a port forwarding (the router I got from my ISP doesn't allow it), I am trying to use NordVPN's Meshnet to establish a connection.
Using the NordVPN hostname or IP, I can connect as well, while in the same network.
The problem arises, when trying to connect from a different network:
iptables -F
and sudo systemctl restart NetworkManager
service ssh status
on the PC it shows "fatal: Timeout before authentication for port 47176" (this port changes each time)Things I have tried so far:
sudo ufw allow ssh
on both devicessshd: <Client meshnet IP>
to "/etc/hosts.allow" on the hostnordvpn whitelist add port 22
on both devicesThe last few were recommended by the NordVPN support (which gave up).
I'm not ready to let this idea go yet, as it would allow me to leave my external drives at home and access them remotely, instead of taking them everywhere and wearing them down.
Moved this over from askubuntu.com at the request of one of your engineers
Edit (2023-04-05): I also tried using meshnet to connect to another PC, which runs an ssh server I used frequently and confirmed, that I had the same connectivity issues over meshnet, while connecting through the regular address worked perfectly, therefore I doubt that the problem lies in my installation of openssh-server on the original PC I am trying to connect to.
In addition to set up the ip address as mentioned in README, I also have to add a new route with the following command to make t1 and t2 connect to each other:
ip route add 100.64.0.0/10 via <IP_ADDRESS> dev <NAME>
Using two different Archlinux PCs on two separate ISPs, persistent Nordlynx libtelio errors disappeared and are now replaced with Nordlynx unable to see an active network interface. Nordvpn using openvpn technology is unaffected by these errors.
Ongoing discussion/troubleshooting in Arch forum here:
https://bbs.archlinux.org/viewtopic.php?id=285071
On a Raspberry Pi, I'm having issues enabling meshnet with NordVPN. I have a fresh install, of which I can only use openvpn as the underlying technology to connect. When I try and run nordvpn set meshnet on
I get the following error in syslog:
Apr 19 19:14:49 raspberrypi nordvpnd[642]: 2023/04/19 19:14:49 quic transport needs reconnect, err: Application error 0x100 (remote)
Apr 19 19:14:50 raspberrypi connmand[415]: nordlynx {update} flags 16 <DOWN>
Apr 19 19:14:50 raspberrypi connmand[415]: nordlynx {newlink} index 4 address 00:00:00:00:00:00 mtu 1420
Apr 19 19:14:50 raspberrypi connmand[415]: nordlynx {newlink} index 4 operstate 2 <DOWN>
Apr 19 19:14:50 raspberrypi connmand[415]: (null) {del} address 100.88.173.42/32 label nordlynx
Apr 19 19:14:50 raspberrypi connmand[415]: nordlynx {dellink} index 4 operstate 2 <DOWN>
Apr 19 19:14:50 raspberrypi connmand[415]: (null) {remove} index 4
Apr 19 19:14:50 raspberrypi nordvpnd[642]: 2023/04/19 19:14:50 [Error] TELIO: telio_start_named: Err(AlreadyStarted)
Apr 19 19:14:50 raspberrypi nordvpnd[642]: 2023/04/19 19:14:50 [Error] TELIO: telio_start_named: Err(AlreadyStarted)
Apr 19 19:14:50 raspberrypi nordvpnd[642]: 2023/04/19 19:14:50 [Error] enabling libtelio: opening the tunnel: starting libtelio on retry with boring-tun: 6
Apr 19 19:14:51 raspberrypi nordvpnd[642]: 2023/04/19 19:14:51 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:52 raspberrypi nordvpnd[642]: 2023/04/19 19:14:52 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:53 raspberrypi nordvpnd[642]: 2023/04/19 19:14:53 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:54 raspberrypi nordvpnd[642]: 2023/04/19 19:14:54 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:55 raspberrypi nordvpnd[642]: 2023/04/19 19:14:55 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:56 raspberrypi nordvpnd[642]: 2023/04/19 19:14:56 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:57 raspberrypi nordvpnd[642]: 2023/04/19 19:14:57 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:58 raspberrypi nordvpnd[642]: 2023/04/19 19:14:58 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:14:59 raspberrypi nordvpnd[642]: 2023/04/19 19:14:59 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:15:00 raspberrypi nordvpnd[642]: 2023/04/19 19:15:00 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
Apr 19 19:15:01 raspberrypi nordvpnd[642]: 2023/04/19 19:15:01 [Error] TELIO: libtelio-build/libtelio/crates/telio-wg/src/adapter/linux_native_wg.rs:102 LinuxNativeWg: [GET01] Unable to get interface from WireGuard. Make sure it exists and you have permissions to access it.
I'm not sure if it's relevant to this project, but I get the following error from nordvpn:
Whoops! Connection failed. Please try again. If the problem persists, contact our customer support.
The interfaces I can see from running ip a
are as follows:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
link/ether dc:a6:32:4b:45:7c brd ff:ff:ff:ff:ff:ff
inet 172.16.37.97/16 brd 172.16.255.255 scope global dynamic eth0
valid_lft 85274sec preferred_lft 74474sec
inet6 2a00:23c6:f80:3801:25d9:8721:258c:16a4/64 scope global dynamic mngtmpaddr noprefixroute
valid_lft 274sec preferred_lft 94sec
inet6 fe80::bbc:5875:ced1:f249/64 scope link
valid_lft forever preferred_lft forever
3: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether dc:a6:32:4b:45:7d brd ff:ff:ff:ff:ff:ff
inet 172.16.37.98/16 brd 172.16.255.255 scope global dynamic noprefixroute wlan0
valid_lft 85282sec preferred_lft 74482sec
inet6 2a00:23c6:f80:3801:fd48:3253:6a12:2a31/64 scope global dynamic mngtmpaddr noprefixroute
valid_lft 274sec preferred_lft 94sec
inet6 fe80::64ca:67e0:d42:3391/64 scope link
valid_lft forever preferred_lft forever
I saw issue #2 which had a comment suggesting to install wireguard directly, which I have, however that didn't seem to make any difference.
The output of uname -a
is as follows:
Linux raspberrypi 6.1.24-v8+ #1645 SMP PREEMPT Tue Apr 18 11:58:14 BST 2023 aarch64 GNU/Linux
Appreciate any help on this. I'm not sure what else to provide, but if you need more information, just let me know and I'll pass it along.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.