NordVPN. Cannot connect using Slackware64 on Desktop.
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: VM Host: Slackware-current, VM Guests: Artix, Venom, antiX, Gentoo, FreeBSD, OpenBSD, OpenIndiana
Posts: 1,018
Rep:
Quote:
Originally Posted by hitest
You're not contributing much to this discussion when you shoot down solutions without providing a working solution for Slackware and NordVPN that you've tested.
There are two aspect of the problem:
1) general rules regarding openvpn
2) nordvpn setup
I don't use nordvpn so I can't help with the specific config. However some general openvpn settings are not configured properly.
There is nothing Slackware specific regarding general openvpn rules. If you never read about VPN configuration, the only thing I can do is to point what is wrong.
If you have open ipv6 connection then make sure that VPN provider will handle it. NordVPN clearly states that ipv6 should be disabled for their setup. So my conclusion is that nobody even bothered to read nordvpn setup page.
If (assuming that I understand post correctly) someone is suggesting to use VPN with public DNS then this is wrong.
If you do not understand the basics of vpn and you have problems with setting up vpn with specific vendor it is difficult to help because it is impossible to predict what error will be made as in the case of ipv6 or DNS config. Seemingly all works but still network is misconfigured.
I suggest to read a bit about vpn understand it and then go back to nordvpn. No need to write vpn howto.
You're not contributing much to this discussion when you shoot down solutions without providing a working solution for Slackware and NordVPN that you've tested.
While Aeterna isn't exactly wrong about avoiding Google's DNS servers, I've had a lack of time to devote anymore to computers. I don't know much about iptables, but theoretically only external traffic via the tunnel is allowed if my iptables script is correct. I would appreciate if someone who knows iptables would confirm or provide suggestions...
Code:
iptables_load() {
# Set IPTables rules to enable protection
echo "Creating IPTables firewall rules..."
# First set the policies to DROP everything
$IPT -P INPUT DROP
$IPT -P FORWARD DROP
$IPT -P OUTPUT DROP
# Allow loopback communication
$IPT -A INPUT -i lo -j ACCEPT
$IPT -A OUTPUT -o lo -j ACCEPT
# Allow local network connections
$IPT -A INPUT -s 192.168.0.0/16 -d 192.168.0.0/16 -j ACCEPT
$IPT -A OUTPUT -s 192.168.0.0/16 -d 192.168.0.0/16 -j ACCEPT
# Allow connections to VPN server
$IPT -A INPUT -i eth0 -s $VPNIP/8 -j ACCEPT
$IPT -A OUTPUT -o eth0 -d $VPNIP/8 -j ACCEPT
# Allow all connections on the vpn tunnel interface
$IPT -A INPUT -i tun0 -j ACCEPT
$IPT -A OUTPUT -o tun0 -j ACCEPT
# Drop anything that was not explicitly allowed above
$IPT -A INPUT -j DROP
$IPT -A OUTPUT -j DROP
$IPT -A FORWARD -j DROP
# Zero our counters
$IPT -Z
return 0
}
Many thanks for your help, it's greatly appreciated. Your IP tables work is way out of my wheelhouse. I'm frustrated with NordVPN on Slackware. I'm moving to Devuan which is a Debian clone without systemd. That distro works well with NordVPN. This is not a criticism of Slackware at all. I love Slackware. I want to be able to use my VPN.
I maintain my wife's T420 Thinkpad which runs Slackware64-15.0.
Last edited by hitest; 04-18-2023 at 07:22 PM.
Reason: grammar
I'm going to give it another try with Slackware and NordVPN. I was feeling very frustrated yesterday. I blew out my Void installation in favor of Slackware64-15.0. Maybe there's a way to do this. Many thanks for all of the replies and your patience.
I made an error, the DNS is supposed to be set elsewhere:
Code:
brian:~$ cat /etc/resolvconf.conf
# Configuration for resolvconf(8)
# See resolvconf.conf(5) for details
resolv_conf=/etc/resolv.conf
# If you run a local name server, you should uncomment the below line and
# configure your subscribers configuration files below.
#name_servers=127.0.0.1
After some quick searching, there are some methods to have OpenVPN define DNS upon tunnel creation. It was always my intent to clean up my rc script but unfortunately life changed my list of importance...
So I ran Devuan Linux for a time which is a nifty Debian clone using sysvinit which allowed me to use NordVPN. That felt a bit wrong. So I'm back with Slackware64-current and will continue the struggle.
Slackware! Accept no substitute.
Okay this is a not so elegant work around. I installed virt-manager on my Void workstation and then installed a Devuan VM. The VM is light and snappy and I can run NordVPN from the VM. Heh.
I can access NordVPN from within the VM installed on the host and because it's QEMU/KVM it's pretty fast. I can run the VM fullscreen with little loss in resolution. Void by itself cannot access NordVPN.
It's a sloppy fix until we can get NordVPN working on Slackware.
Find out the steps that Devuan users take when they use Openvpn and/or nm-applet (NetworkManager) to connect to Nordvpn...and do a trace of the process. Then we can fix Slackware 15.0 & Current to do the necessary steps.
I am stuck until 2025. I use the extension in Chrome Browser for the meantime.
Any suggestions for an alternative are welcome ! As for my research, most of them support Windows well but not Linux !
Same here, mate! Slackware64-15.0 worked well with NordVPN using the slackbuild script from the good people at slackbuilds.org. Slackware64-current and NordVPN stopped working for me. I just installed Google Chrome on Slackware64-current and added the Chrome NordVPN extension, that works. Thanks for the excellent work around. Much appreciated!
Nothing there to configure. Probably you guys messed up OpenVPN config to the point that ideally would be to reinstall everything OpenVPN related.
Anyway: works using KDE Plasma Network Manager (so any GUI will do) and works when starting manually (well need to create file and edit ovpn to reflect the change).
firewall needs to be configured for tun nothing more.
howto (manual)
1) create a text file with your credentials in separate lines. save it in /etc/openvpn
2) edit Nordvpn *.ovpn file and modify this line
auth-user-pass
to this
auth-user-pass some_file.txt
save it and run
3)
cd /etc/openvpn && sudo openvpn *.ovpn &
howto Kde Plasma
1) open Configure Network Connections
2) press + in the left column
3) scroll down to Import VPN connection...
4) uload ovpn file
5) enter username
6) after connecting to ISP, select VPN connection from drop-down menu, enter password
it works either way for me.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.