SecureFishNet

Rating: 
4.85366
Your rating: None Average: 4.9 (41 votes)

SecureFishNet is OpenVPN client manager for
Sailfish. You can manage openvpn connection with it. It requires
Openvpn and that will be downloaded from repository. (If not you can
do it with “pkcon install openvpn”).

You need normal openvpn configuration file.

This package contains daemon and securefishnet-gui.

PushUpMenu:

- “flush”. In case of something broke routing and network does not work.

This reverses every change this program made to routing. If network still does not work after this, reboot is your friend.

 

IPv6 does not work.

 

 

 

Application versions: 
AttachmentSizeDate
File securefishnet-1.5-3.armv7hl.rpm78.1 KB26/08/2015 - 13:12
File securefishnet-1.5-4.armv7hl.rpm77.79 KB26/08/2015 - 20:14
File securefishnet-1.6-2.armv7hl.rpm111.93 KB22/10/2015 - 16:57
File securefishnet-1.6-2.i486.rpm120.59 KB22/10/2015 - 17:35
File securefishnet-1.6-3.armv7hl.rpm112.33 KB28/10/2015 - 17:26
File securefishnet-1.6-3.i486.rpm120.95 KB28/10/2015 - 18:21
File securefishnet-1.6-4.armv7hl.rpm112.34 KB11/11/2015 - 13:10
File securefishnet-1.6-4.i486.rpm120.94 KB11/11/2015 - 13:10
File securefishnet-1.6-5.armv7hl.rpm112.38 KB16/11/2015 - 09:42
File securefishnet-1.6-5.i486.rpm120.93 KB16/11/2015 - 09:42
File securefishnet-1.9-2.armv7hl.rpm139.88 KB10/04/2016 - 20:56
File securefishnet-1.9-2.i486.rpm151.24 KB10/04/2016 - 20:56
File securefishnet-1.9-5.armv7hl.rpm140.77 KB12/05/2016 - 15:02
File securefishnet-1.9-5.i486.rpm151.47 KB12/05/2016 - 15:02
File securefishnet-2.0-5.i486.rpm150.52 KB20/09/2016 - 16:11
File securefishnet-2.0-5.armv7hl.rpm138.31 KB20/09/2016 - 16:11
File securefishnet-2.0-7.armv7hl.rpm139.05 KB20/10/2016 - 14:01
File securefishnet-2.0-7.i486.rpm151.95 KB20/10/2016 - 14:01
File securefishnet-2.1-2.armv7hl.rpm139.59 KB30/08/2017 - 17:03
File securefishnet-2.1-2.i486.rpm151.33 KB30/08/2017 - 17:03
File securefishnet-2.1-4.armv7hl.rpm144.66 KB17/06/2018 - 12:35
File securefishnet-2.1-4.i486.rpm156.96 KB17/06/2018 - 12:35
File securefishnet-2.1-5.armv7hl.rpm144.81 KB12/09/2018 - 20:32
File securefishnet-2.1-5.i486.rpm157.23 KB12/09/2018 - 20:32
File securefishnet-2.1-7.armv7hl.rpm146.15 KB22/01/2019 - 12:28
File securefishnet-2.1-7.i486.rpm157.54 KB22/01/2019 - 12:28
File securefishnet-2.1-8.armv7hl.rpm146.13 KB28/01/2019 - 18:57
File securefishnet-2.1-8.i486.rpm157.3 KB28/01/2019 - 18:57
File securefishnet-2.1-9.armv7hl.rpm145.94 KB08/03/2019 - 11:38
File securefishnet-2.1-9.i486.rpm157.26 KB08/03/2019 - 11:38
File securefishnet-2.1-11.armv7hl.rpm147.17 KB08/08/2019 - 14:12
File securefishnet-2.1-11.i486.rpm159.11 KB08/08/2019 - 14:12
Changelog: 

2.1-11

  • Fixes for 3.1.0.11

2.1-9

  • Dns is not always ready instantly so add small delay

2.1-8

  • fix for bug in compat mode/static Key handling

2.1-7

  • Fix for various DNS and routing related issues

2.1-5

  • Fix for changes in SFOS 2.2.1.18 ( UI opened twice because of the way autostart was made (used when VPN is selected to start at boot) )

2.1-4

  • fixes for 2.2.0.29
  • fix for default gateway not persistent in connection change

2.1-2

  • fixes for 2.1.1.26 (not tested with earlier OS versions)

2.0-7

  • bug fixes
  • ui tweaks
  • connection changing logic improved

2.0-5

  • bug fixes
  • ui tweaks
  • more than 3 connections or conffiles
  • rewrite of connection changing logic ( again )

1.9-5

  • bug fixes

1.9-2

  • lots of new features (check config page)
  • rewrite of connection changing logic ( only tested with SFOS 2.0.1.7 )

1.6-5

  • fixed bug with routing not always working as it should

1.6-4

  • bug fixes

1.6-3

  • bug fixes

1.6-2

  • Lots of minor tweaks
  • UI fixes
  • more icon sizes = bigger rpm...
  • i486 build (not tested on real device but runs fine on emulator)

1.5-4

  • and more old bugs fixed... huh...

1.5-3

  • more bug fixes

1.5-2

  • bug fixes
  • You should reboot AFTER installing this as there might be some unwanted leftovers (in routing table) from earlier versions.

1.5-1

  • bug fixes
  • tcp connection handling improvements and other internal changes

1.4-4

  • bug fixes

1.4-2

  • new filepicker
  • uses less memory
  • loads faster

1.3-2

  • bug fixes
  • better roaming logic

1.2-4

  • Some roaming fixes
  • UI fixes
  • "Static Key" in config dialog might help if connection doesn't start (at all)

1.2-2

  • Roaming logic is removed from UI and daemon handles that now so you can close UI and it should still roam
  • bug fix for routing

1.0-4

  • bug fixes

1.0-2

  • fix for minor bug in roaming
  • less memory used
  • fix for gw not being set with newer openvpn

1.0-1

  • UIs internal logic rewrite
  • Added connection detection
  • Fixed reconnect with openvpn
  • Added restart of connection when changing networks ( wlan <-> mobile )
  • After UI start status of connection is now shown (If connection is/was up). Roaming logic is in UI so changing networks won't work when UI is closed. 

0.9-5

  • ui fixes

0.9-3

  • ui fixes

0.8-5

  • more bug fixes

0.8-4

  • fixes bug: dns forwarding in android apps

0.8-2

  • MicroSD button in filepicker might actually work now ;-)
  • Wait longer for response from openvpn

0.8-1

  • Landscape

0.7-2

  • Bug fixes

0.7-1

  • Small UI improvements
  • Encryption is now used on username and passwords when saved ( light encryption only )

0.6-3

  • Bug fixes

0.6-2

  • Bug fixes
  • You can now execute script with PushUpMenu ( user nemo )

0.6-1

  • Support for username/password
  • Rewrite of everything but UI

0.4-2

  • Minor bug fix

0.4-1

  • Added support for password encrypted keys ( in config )
  • Bug fixes

0.2-3

  • Bug fixes

0.2-2

  • Bug fixes
  • UI improvements

0.1-2 - initial release

Comments

ronny_b's picture

Update to 1.5-2 -> reboot -> run Sequrefishnet and "start" -> shows "connected".

Nevertheless, I can't access my home network.

What can I try, which was still working at 1.4-4.

Ronny

korppi's picture

One question : Can you stop the connection and restart it now ?

 

But in anycase I need log from command:

"openvpn --user nobody --group nobody --config config_name.conf --verb 4"

Just remove all the data you don't want to give me like IPs and such...

ronny_b's picture

I must still test Reconnect.

"openvpn" with user "nobody" gives me an error "Permission denied" because my ".key"-files are only readable by root. Requires the program now other permissions?

korppi's picture

New version to test again ;-)

korppi's picture

You can test without those... As in "openvpn --config config_name.conf --verb 4" . (Openvpn itself need to be launched as root. )

ronny_b's picture

Wow, how fast you make the updates! Connection to the home network works with 1.5-4 again. :-)

After I stopped the connection, the network no longer works ("ping google.de" show "unknown host"). When I choose 'flush', the network is working again.

Restarting VPN work until after a 'flush'. Without 'Flush' is 'starting' and after long time 'Resolve' appears. Unfortunately, it is the starting not interrupt with 'Stop' as grayed out.

korppi's picture

Found that problem, strange that it happens only very rarely with my setup.

It's dns problem and it is only triggered by my OVPNdaemon when switching the DNS to normal mode. And the bug is not even in my code...

Unfortunately I have no fix for that at the moment.

By the way "flush" does allmost the same thing as "stop" just more forcefully. And you can use "flush" even when "stop" is grayed out.

caprico's picture

As far as I can say from the comments here, I seem to have the same issue like ronny_b. Appliation doesn't react and keeps showing "starting". My .ovpn files work well on dekstop Linux using OpenVPN - I haven't tested them yet using command line on Sailfish, but will do + futher testing with your app.

Older versions didn't solve the issue.

korppi's picture

So is it working ones and not again too ? Or not at all ? Because "starting" there doesn't really mean anything...

caprico's picture

Thanks for your answer and sorry for the unlcear comment. It's actually a bit different, as I can't establish a connection at all. When I set up a new connection and press start button, it says "starting" and "disconnected" within a second. After using Flush-option, it leads to a constant turning circle and "starting" indication (and stop button appears). But the VPN connection is not established - static key option doesn't make a difference.

I've tested it with 2 different ovpn files (different gateways, same keys) and Jolla device is running on SF 1.1.7.27. I will try it again as soon as possible. 

korppi's picture

Sounds like different thing... Is your paths of certificates and keys absolute( something like "/home/nemo/client.key") ? Or maybe you should reboot... Version 1.4-4 has some fixes that might help.

caprico's picture

Yes keys are in the right place and "openvpn --config "vpnconfiguartionfile.ovpn" using terminal works perfectly. My last tests happend with v1.4-4 and reboot makes no difference.

In case I can do something else on my device which might help your development, please let me know. But no hurry :) If I can make it work somehow I'll let you know, thanks for your help!

korppi's picture

Ok I need log from command:

"openvpn --user nobody --group nobody --config config_name.conf --verb 4"

Just remove all the data you don't want to give me like IPs and such...

caprico's picture

What I realized is that it fails to start openvpn (command line) without being root. Maybe that has something to do with it? Unfortunately my knowledge hits a limit there.

I get following error:

Wed Aug 19 20:07:40 2015 us=506400 ERROR: Cannot open TUN/TAP dev /dev/net/tun: Permission denied (errno=13)
Wed Aug 19 20:07:40 2015 us=506613 Exiting due to fatal error

Anyways, I'll send you both logtexts via Openrepos contact form (I assume that will go to your email address) once I'm in front of my computer.

 

korppi's picture

Does it work now with 1.5-1 ?

korppi's picture

Received...

Normal user can't open tun/tap device. Thats why there is daemon handling that (and routing).

And thanks for logs.

caprico's picture

Thanks for the explanation and also for the update! Unfortunately no success in my case. I also removed the app (incl. user data) and reinstalled it + reboot. I'm sorry... :-/ I wished I had the knowledge to help!

In case I can send you other log files or try out stuff, please let me know.

ronny_b's picture

Hello,

unfortunately all versions of the program don't work with me after 1.0.4. I can start only once the connection and also access on my network. After I broke the connection, I can reconnect me until after a restart of the device to the network. The program displays otherwise just "starting", no further reaction. The remote site is a FritzBox with OpenVPN (Freetz) in connection with certificates with me.

Ronny

korppi's picture

Well there's bugs in 1.0-4 ... But you can use flush(routing back to normal), which should make it work again.

But what interests more is why newer versions doesn't work.

What version of sailfish to you have ?

Is the device Jolla or something else ?

Does the gui start at all or ... ?

Did you reboot the device after installing ?

ronny_b's picture

I had also already tried the option "routing back to normal", unfortunately, does not help.:-(

I have a Jolla phone with 1.1.7.25.

Yes, the GUI is starting. When I click on "start" the screen displays 'starting' and turns on until I press 'stop'. Only after a restart of the phone I can connect again exactly one time. In a second connection attempt is again only 'Starting' is displayed.

Ronny

korppi's picture

Ok so it gets stuck very early if "starting" is last message. Connected is what should read when connected...

And you have tried version 1.4-2 ?

ronny_b's picture

So, a test with V1.4-2:

- End old Securefishnet

- Update to 1.4-2

- Start new Securefishnet

- Touch "Start"

- Securefishnet shows "Starting" -> "Auth" -> "Connected" :-)

- Touch "Stop"

- Securefishnet shows "Disconnected"

- Touch "Start"

- Securefishnet shows "Starting" to I press again on "Stop" :-(

Only when I touch "Flush (routing back to normal)" the additional entry in the routing table is cleared. Now I can again make a new connection. :-)

But how can I reach that resets the routing table when you exit the connection automatically, which has in the old version works reliably?

Ronny

korppi's picture

Ok I was looking at wrong part of the code...

Do you have developer mode on ? If so you could check if openvpn is still in process list when you click stop after successfull connection.

Or command as root "journalctl -rx|grep OVPNdaemon|head" (log in reverse order). There should be "OK_STOPPED" and "STATE,DISCONNECTED,"

ronny_b's picture

When VPN is connected:

[nemo@Jolla ~]$ ps -ef | grep openvpn
nobody    3509  3498  0 10:16 ?        00:00:00 /usr/sbin/openvpn --user nobody --group nobody --config /etc/openvpn/vpn.conf --dev p2p5 --dev-type tun --verb 4 --management-query-passwords --auth-retry interact --management-hold on --persist-tun --auth-user-pass --persist-key --management 127.0.0.1 4445

 

After touch "Stop" is no openvpn in process list. Here the log:

[nemo@Jolla ~]$ sudo journalctl -rx|grep OVPNdaemon|head
Aug 15 10:20:33 Jolla OVPNdaemon[4149]: "STATE,DISCONNECTED,"
Aug 15 10:20:33 Jolla OVPNdaemon[4149]: "OK_STOPPED"
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: "STATE1,OPENVPN_STARTED,"
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: "MANAGEMENT:192.168.100.1,VPNGW,"
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: rtt min/avg/max/mdev = 4.548/4.548/4.548/0.000 ms
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: 1 packets transmitted, 1 received, 0% packet loss, time 0ms
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: --- 192.168.100.1 ping statistics ---
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: 64 bytes from 192.168.100.1: icmp_req=1 ttl=64 time=4.54 ms
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: PING 192.168.100.1 (192.168.100.1) 56(84) bytes of data.
Aug 15 10:20:28 Jolla OVPNdaemon[4149]: Do you want to ping broadcast? Then -b

korppi's picture

OK looks fine...

This time after clicking "stop" as root command "killall -9 OVPNdaemon" and wait few seconds and try start again, does it work then ?

ronny_b's picture

When I after clicking "Stop" kill OVPNdaemon, it will be restarted. Nevertheless the connection can be only after "Flush (routing back to normal)" start again.

korppi's picture

I meant does it need anything else than killing the daemon to start the connection again?

Or do you need to do "flush" ?

ronny_b's picture

When I kill the daemon, it will restart automatically.

 

When I then start the connection, it hangs anyway at the message "Starting".

korppi's picture

Ok. Just wondering why that part of code is not broken for everybody... Because I haven't seen that  behavior in long time after I fixed it...

Anyway I have enough info, will check the code and see if there is something that I didn't see last time.

girishpadia's picture

I want openvpn client for Nokia N9. Is port available of this application?

Pages