One hint, if you have tried to do VPN-Start and it seems not to have worked, always a good idea to click VPN-Stop before trying VPN-Start again. Otherwise open a terminal and enter killall openvpn to kill any openvpn process which is running but not completed initialisation. [/quote/
Killed everything
Make sure you have the correct username and password in /etc/vpn-onoff/vpnpass
It should be the long, randomly generated ones from your Proton dashboard, not the ones you use to log in to Proton.
The long username goes on the first line, replacing the word "vpnbook"
The long password goes on the second line, replacing the word "password"
Verified
Verified
Verified
In your .ovpn config file, make sure that the line which was originally auth-user-pass now has the path to /etc/vpn-onoff/vpnpass added after a space. It should now read
auth-user-pass /etc/vpn-onoff/vpnpass
Verified
In your .ovpn config file, make sure that the line which was originally auth-user-pass now has the path to /etc/vpn-onoff/vpnpass added after a space. It should now read
auth-user-pass /etc/vpn-onoff/vpnpass
Verified
To run a diagnostic, open a terminal and enter openvpn --config /etc/vpn-onoff/vpnconfig
This will not open any browsers or tray icons, but might help show what is wrong.
Running this had an interesting effect, it changed my radio icon in the tray to something I didn't recognize and killed all access to the web. I ran the VPMstop to recover my access. The diagnotic output is below but I do not know what it is telling me. I do not know if this means anything but when I run VPNstart I do get the pink popup letting me know that openvpn is already running, but I do not get the blue orb with the gold lock in the tray nore do I get the "What is my IP?" browser popup. I do get the "What is my IP?" browser popup when I run VPNstop...this seems backwards.
root# openvpn --config /etc/vpn-onoff/vpnconfig
Wed Feb 13 02:44:07 2019 OpenVPN 2.4.6 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Feb 10 2019
Wed Feb 13 02:44:07 2019 library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08
Wed Feb 13 02:44:07 2019 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Wed Feb 13 02:44:07 2019 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Wed Feb 13 02:44:07 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]89.39.107.199:443
Wed Feb 13 02:44:07 2019 Socket Buffers: R=[212992->212992] S=[212992->212992]
Wed Feb 13 02:44:07 2019 UDP link local: (not bound)
Wed Feb 13 02:44:07 2019 UDP link remote: [AF_INET]89.39.107.199:443
Wed Feb 13 02:44:07 2019 TLS: Initial packet from [AF_INET]89.39.107.199:443, sid=874ca90c 7b32ffcc
Wed Feb 13 02:44:07 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Feb 13 02:44:07 2019 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA
Wed Feb 13 02:44:07 2019 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1
Wed Feb 13 02:44:07 2019 VERIFY KU OK
Wed Feb 13 02:44:07 2019 Validating certificate extended key usage
Wed Feb 13 02:44:07 2019 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Wed Feb 13 02:44:07 2019 VERIFY EKU OK
Wed Feb 13 02:44:07 2019 VERIFY OK: depth=0, CN=nl-110.protonvpn.com
Wed Feb 13 02:44:08 2019 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
Wed Feb 13 02:44:08 2019 [nl-110.protonvpn.com] Peer Connection Initiated with [AF_INET]89.39.107.199:443
Wed Feb 13 02:44:09 2019 SENT CONTROL [nl-110.protonvpn.com]: 'PUSH_REQUEST' (status=1)
Wed Feb 13 02:44:09 2019 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.8.8.1,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,comp-lzo no,route-gateway 10.8.1.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.8.1.5 255.255.255.0,peer-id 3,cipher AES-256-GCM'
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: timers and/or timeouts modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: explicit notify parm(s) modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: compression parms modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
Wed Feb 13 02:44:09 2019 Socket Buffers: R=[212992->425984] S=[212992->425984]
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: --ifconfig/up options modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: route options modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: route-related options modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: peer-id set
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: adjusting link_mtu to 1657
Wed Feb 13 02:44:09 2019 OPTIONS IMPORT: data channel crypto options modified
Wed Feb 13 02:44:09 2019 Data Channel: using negotiated cipher 'AES-256-GCM'
Wed Feb 13 02:44:09 2019 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Wed Feb 13 02:44:09 2019 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Wed Feb 13 02:44:09 2019 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=wlan0 HWADDR=00:14:a5:b5:0d:f5
Wed Feb 13 02:44:09 2019 TUN/TAP device tun0 opened
Wed Feb 13 02:44:09 2019 TUN/TAP TX queue length set to 100
Wed Feb 13 02:44:09 2019 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Wed Feb 13 02:44:09 2019 /sbin/ifconfig tun0 10.8.1.5 netmask 255.255.255.0 mtu 1500 broadcast 10.8.1.255
Wed Feb 13 02:44:09 2019 /sbin/route add -net 89.39.107.199 netmask 255.255.255.255 gw 192.168.0.1
Wed Feb 13 02:44:09 2019 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.8.1.1
Wed Feb 13 02:44:09 2019 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.8.1.1
Wed Feb 13 02:44:09 2019 Initialization Sequence Completed
Wed Feb 13 02:55:23 2019 event_wait : Interrupted system call (code=4)
Wed Feb 13 02:55:23 2019 SIGTERM received, sending exit notification to peer
Wed Feb 13 02:55:24 2019 /sbin/route del -net 89.39.107.199 netmask 255.255.255.255
route: SIOCDELRT: No such process
Wed Feb 13 02:55:24 2019 ERROR: Linux route delete command failed: external program exited with error status: 1
Wed Feb 13 02:55:24 2019 /sbin/route del -net 0.0.0.0 netmask 128.0.0.0
Wed Feb 13 02:55:24 2019 /sbin/route del -net 128.0.0.0 netmask 128.0.0.0
Wed Feb 13 02:55:24 2019 Closing TUN/TAP interface
Wed Feb 13 02:55:24 2019 /sbin/ifconfig tun0 0.0.0.0
Wed Feb 13 02:55:24 2019 SIGTERM[soft,exit-with-notification] received, process exiting