Connection to VypVPN

Question

Connection to VypVPN

Closed this issue 2 years ago · 6 comments

Hello, I have problems since OSMC Vesion 2022-09-1 with the connection to VypVPN. I get the following error message. How can I fix this.
Thanks
023-03-19 17:49:40 SIGTERM[soft,exit-with-notification] received, process exiting

2023-03-19 17:49:22 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed u>
2023-03-19 17:49:22 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need t>
2023-03-19 17:49:22 WARNING: file '/home/osmc/.kodi/addons/service.vpn.manager/VyprVPN/pass.txt' is group or others accessible
2023-03-19 17:49:22 OpenVPN 2.5.1 arm-unknown-linux-gnueabihf [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2021
2023-03-19 17:49:22 library versions: OpenSSL 1.1.1n 15 Mar 2022, LZO 2.10
2023-03-19 17:49:22 TCP/UDP: Preserving recently used remote address: [AF_INET]209.99.60.18:1194
2023-03-19 17:49:22 UDP link local: (not bound)
2023-03-19 17:49:22 UDP link remote: [AF_INET]209.99.60.18:1194
2023-03-19 17:49:28 [ch1.vyprvpn.com] Peer Connection Initiated with [AF_INET]209.99.60.18:1194
2023-03-19 17:49:35 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('BF-CBC') to --data-ciphers (currently 'AES-256-GCM:AES>
2023-03-19 17:49:35 ERROR: Failed to apply push options
2023-03-19 17:49:35 Failed to open tun/tap interface
2023-03-19 17:49:35 SIGTERM received, sending exit notification to peer
2023-03-19 17:49:40 SIGTERM[soft,exit-with-notification] received, process exiting

Answer 1 · 2023-04-05T16:47:20.000Z

Updated template to (probably) make this work - at least it's consistent with the ovpn files your provider is sharing. If it doesn't work, i'll deprecate and you can use User Defined.

Answer 2 · 2023-04-21T08:37:20.000Z

I'm also with VyprVPN and receive the same error message when trying to connect using client version v7.0.3.

I edited the TEMPLATE.txt in the following folders:
\osmc\home\osmc.kodi\addons\service.vpn.manager\VyprVPN
\osmc\home\osmc.kodi\userdata\addon_data\service.vpn.manager\Downloads\VyprVPN.

...by adding the following parameters:
data-ciphers AES-256-GCM:AES-128-GCM:BF-CBC
data-ciphers-fallback BF-CBC
cipher BF-CBC

...but at the consequent reconnects I received the same error message.
It's like my edits were being ignored.
Not sure what the location of the actual template is that the service is using or what would I need to do for the service to appreciate my edits. I'll try to disable and re-enable the service to see if it picks up my template edits that way.

Answer 3 · 2023-04-21T08:51:43.000Z

If the standard definitions aren't working, don't try and edit the templates, just get your ovpn and feed it into the wizard. The templates are regenerated infrequently and edits will be over written.

…

On Fri, Apr 21, 2023 at 9:37 AM Adam Baranyai ***@***.***> wrote: I'm also with VyprVPN and receive the same error message when trying to connect using client version v7.0.3. I edited the TEMPLATE.txt in the following folders: \osmc\home\osmc.kodi\addons\service.vpn.manager\VyprVPN \osmc\home\osmc.kodi\userdata\addon_data\service.vpn.manager\Downloads\VyprVPN. ...by adding the following parameters: data-ciphers AES-256-GCM:AES-128-GCM:BF-CBC data-ciphers-fallback BF-CBC cipher BF-CBC ...but at the consequent reconnects I received the same error message. It's like my edits were being ignored. Not sure what the location of the actual template is that the service is using or what would I need to do for the service to appreciate my edits. I'll try to disable and re-enable the service to see if it picks up my template edits that way. — Reply to this email directly, view it on GitHub <#390 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AECJZZNT5KUMEIBGMUFLMSTXCJBMXANCNFSM6AAAAAAWAIAVGY> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>

Answer 4 · 2023-04-21T09:00:18.000Z

Thanks for the quick reply, that explains my experience.
Meanwhile I tried manually installing, configuring and connecting version 7.0.3, 7.0.0, 6.9.3 and 6.9.1 and I had the same error with all of them.
Can you elaborate on how do I feed ovpn into the wizard?

Answer 5 · 2023-04-21T09:09:07.000Z

Click the User Defined wizard on the settings page and follow the instructions on the screen

…

On Fri, Apr 21, 2023 at 10:00 AM Adam Baranyai ***@***.***> wrote: Thanks for the quick reply, that explains my experience. Meanwhile I tried manually installing, configuring and connecting version 7.0.3, 7.0.0, 6.9.3 and 6.9.1 and I had the same error with all of them. Can you elaborate on how do I feed ovpn into the wizard? — Reply to this email directly, view it on GitHub <#390 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AECJZZMK5IRGRSBKKVOSDKDXCJECZANCNFSM6AAAAAAWAIAVGY> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>

Answer 6 · 2023-04-21T10:35:58.000Z

Finally I'm connected again, thanks for the suggestion and quick help Zomboided! ;)

Since setting this up took a good couple of hours of trial and error with intense head scratching, I leave the solution here so others don't have to go through the same trauma.

The user defined wizard worked with a .ovpn file containing the followings:

client
dev tun
proto udp
remote nz1.vyprvpn.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
persist-remote-ip
verify-x509-name nz1.vyprvpn.com name
auth-user-pass
comp-lzo
verb 3
data-ciphers AES-256-GCM:AES-128-GCM:BF-CBC
data-ciphers-fallback BF-CBC
cipher BF-CBC

Practically it's the VyprVPN provided OpenVPN file (for a New Zealand VPN connection) with a couple of modificitations:

I removed "keepalive 10 60"
I added "data-ciphers AES-256-GCM:AES-128-GCM:BF-CBC"
I added "data-ciphers-fallback BF-CBC"
I added "cipher BF-CBC"

The VyprVPN provided OpenVPN files can be downloaded from the following location:
https://support.vyprvpn.com/hc/en-us/articles/360038096131-Where-can-I-find-the-OpenVPN-files-

Then you just need to:

copy the country specific .ovpn file and the ca.vyprvpn.com.crt to a folder on Kodi
make the above mentioned 4 changes to the country specific .ovpn file
run the user defined wizard
follow the prompts
define your username and password
initiate the connection

One thing I still don't understand: Why would VyprVPN provide .ovpn files that don't work without modification.
Well, this is a mystery to be solved by someone else. I'm out. :)