@bam365 thanks for letting us know the problem! I updated the package with the missing dependency ;-)
Search Criteria
Package Details: awsvpnclient 4.1.0-3
Package Actions
| Git Clone URL: | https://aur.archlinux.org/awsvpnclient.git (read-only, click to copy) |
|---|---|
| Package Base: | awsvpnclient |
| Description: | AWS VPN Client |
| Upstream URL: | https://aws.amazon.com/vpn/ |
| Keywords: | aws aws-clientvpn aws-vpn aws-vpnclient clientvpn |
| Licenses: | custom |
| Submitter: | project0 |
| Maintainer: | project0 |
| Last Packager: | project0 |
| Votes: | 10 |
| Popularity: | 0.98 |
| First Submitted: | 2021-06-26 08:56 (UTC) |
| Last Updated: | 2024-12-13 18:25 (UTC) |
Dependencies (3)
- lsof (lsof-gitAUR)
- xdg-utils (busking-gitAUR, xdg-utils-slockAUR, mimiAUR, mimi-gitAUR, xdg-utils-handlrAUR, openerAUR, xdg-utils-mimeoAUR, mimejs-gitAUR)
- zstd (zstd-gitAUR, zstd-staticAUR) (make)
Required by (0)
Sources (2)
project0 commented on 2021-07-21 14:26 (UTC)
dcaixinha commented on 2021-07-21 13:51 (UTC)
@bam365 that fixed it for me! thank you very much :)
bam365 commented on 2021-07-21 11:29 (UTC)
For those getting "Unknown error occurred" when trying to connect, and the log file in /var/log/aws-vpn-client/$USER/ shows that it fails after opening the openvpn management interface, which looks like this in the log:
2021-07-05 11:07:41.423 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 Need password(s) from management interface, waiting...
2021-07-05 11:07:42.433 +02:00 [DBG] [TI=13] Wait for OpenVPN processes to finish graceful shutdown
This might be because you do not have the lsof command installed. Try installing it with pacman -S lsof and see if that fixes the issue.
dcaixinha commented on 2021-07-05 10:46 (UTC)
I have a colleague that's using the same .ovpn file in Ubuntu and it works for him, so this seems to be somehow tied to Arch... I understand it's not easy to support @project0, thanks for the help anyway!
project0 commented on 2021-07-05 10:36 (UTC)
@7thSon do you even use federated-auth? (If not i would prefer not using AWS VPN and stick to native OpenVPN).
In /home/$USER/.config/AWSVPNClient/ should also be a separate openvpn log. I would check this as well, maybe something is wrong with your configuration (ovpn file).
Also double check the awsvpnclient is running (the logs does not indicate it, but who knows, maybe it crashes?). Maybe trying first on a supported OS would clarify if the problem is really the client/OS setup or some other miss configuration.
I am afraid that i cannot help more, AWS officially only supports Ubuntu for their client right now and do not share the source code of their implementation :-(.
dcaixinha commented on 2021-07-05 10:32 (UTC)
FWIW I get the exact same error and logs as @7thSon, so we're probably missing the same thing (?)
7thSon commented on 2021-07-05 10:18 (UTC) (edited on 2021-07-05 10:19 (UTC) by 7thSon)
@project0 Of course, I get an error when I try to connect using the AWS VPN Client gui, after having added my profile and selecting the .ovpn file, when I click "Connect" I just get an error dialog saying "Unknown error occurred. Try again.". The log I posted below is from clicking "Connect" in the gui tool.
The log in /home/$USER/.config/AWSVPNClient/ prints this when I try to connect with the gui: https://hastebin.com/denurinigu.less
project0 commented on 2021-07-05 09:56 (UTC) (edited on 2021-07-05 10:11 (UTC) by project0)
@7thSon Can you share more details about the error you retrieve? I still do not understand at which point you face problems (opening the browser? Error message before?). Did you also checked the logs in /home/$USER/.config/AWSVPNClient/?
Do you use federated-auth (SAML)?
7thSon commented on 2021-07-05 09:14 (UTC) (edited on 2021-07-05 09:17 (UTC) by 7thSon)
I'm also having problems with this, at the end of the log I get this:
2021-07-05 11:07:41.412 +02:00 [DBG] [TI=13] Starting OpenVPN process with command: "/opt/awsvpnclient/Service/Resources/openvpn/acvc-openvpn" --config "/home/user/.config/AWSVPNClient/OpenVpnConfigs/AWSVPN" --management 127.0.0.1 8096 "/home/user/.config/AWSVPNClient/acvc-8096.txt" --management-query-passwords --script-security 2 --up /opt/awsvpnclient/Service/Resources/openvpn/configure-dns --down /opt/awsvpnclient/Service/Resources/openvpn/configure-dns --up-restart --down-pre
2021-07-05 11:07:41.413 +02:00 [DBG] [TI=11] Listening for OpenVPN output from [4121]
2021-07-05 11:07:41.422 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 WARNING: file '/home/user/.config/AWSVPNClient/acvc-8096.txt' is group or others accessible
2021-07-05 11:07:41.423 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 OpenVPN 2.4.5 x86_64-pc-linux-gnu [SSL (OpenSSL)] [EPOLL] [MH/PKTINFO] [AEAD] built on Feb 19 2021
2021-07-05 11:07:41.423 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 library versions: OpenSSL 1.0.2u 20 Dec 2019
2021-07-05 11:07:41.423 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:8096
2021-07-05 11:07:41.423 +02:00 [DBG] [TI=11] [PID: 4121] Mon Jul 5 11:07:41 2021 Need password(s) from management interface, waiting...
2021-07-05 11:07:42.433 +02:00 [DBG] [TI=13] Wait for OpenVPN processes to finish graceful shutdown
2021-07-05 11:07:42.439 +02:00 [DBG] [TI=13] OpenVPN process may still in graceful shutdown. Sleep 300 ms
2021-07-05 11:07:42.750 +02:00 [DBG] [TI=13] OpenVPN process may still in graceful shutdown. Sleep 300 ms
2021-07-05 11:07:43.073 +02:00 [DBG] [TI=13] OpenVPN process may still in graceful shutdown. Sleep 300 ms
2021-07-05 11:07:43.396 +02:00 [DBG] [TI=13] Finished waiting OpenVPN graceful shutdown. Proceed with killing any orphaned OpenVPN processes
2021-07-05 11:07:43.406 +02:00 [DBG] Attempting to kill process: 4121
2021-07-05 11:07:43.506 +02:00 [DBG] Orphaned process are alive: False
2021-07-05 11:07:43.506 +02:00 [DBG] [TI=13] Attempting to restore /etc/resolv.conf if /etc/resolv.conf.ovpnsave exists
2021-07-05 11:07:43.506 +02:00 [DBG] [TI=13] /etc/resolv.conf.ovpnsave not found
It looks like the process expects a password from a management interface, but then immediately fails and shuts down openvpn.
I have set up systemd-resolved and awsvpnclient services as instructed here, as well as updated nsswitch.conf. When I start the awsvpn gui client and try to connect I still get the "Unknown error occurred. Try again" error dialog.
I also tried xdg-open 'http://google.com' and it opens up a browser tab just fine.
ambots13 commented on 2021-07-01 04:28 (UTC)
@damentz Thanks! For some reason it worked out well. Took some time to figure out the nss which even broke my boot up and wifi connection on boot.
Regardless it worked! I am amazed at how efficient the AUR community is.
Pinned Comments
project0 commented on 2021-06-28 15:58 (UTC) (edited on 2024-02-12 11:07 (UTC) by project0)
Please note the following requirements for AWS VPN Client:
If you depend on DNS servers from VPN you need to have a running systemd-resolved.service. Please ensure it does not conflict with any other DNS resolver service or configuration you may use.
sudo systemctl --now enable systemd-resolved.serviceYou have to enable and start the awsvpnclient.service after installation:
sudo systemctl --now enable awsvpnclientFor troubelshooting its worth checking first the logs:
See also the official docs: https://docs.aws.amazon.com/vpn/latest/clientvpn-user/client-vpn-connect-linux.html
If you face any other problem please check the troubleshooting guide (DNS issues): https://docs.aws.amazon.com/vpn/latest/clientvpn-user/linux-troubleshooting.html#aws-provided-client