Hi,
On 01/07/20 14:51, Marco De Vitis wrote:
Hi,
I use OpenVPN client 2.4.9 on Windows 10 (v2004), and I have issues
with the Network Location Awareness (NLA) Windows service.
The issue is essentially described here, even though it dates back to
Windows 7:
https://docs.microsoft.com/it-it/archive/blogs/the_microsoft_excel_support_team_blog/office-2013-reports-no-internet-connectivity-with-vpn-connection
My symptoms are the same: when I connect to my company VPN using
OpenVPN, soon or later (maybe after minutes, maybe hours) the NLA
service decides that no internet access is available, I get the "no
internet access" tray icon, and some applications do not work as they
should, notably Spotify and Office 365 in my case. Nevertheless, all
other applications work fine and I can successfully access the web and
my company LAN. But those apps refusing to connect are very annoying.
When this happens, this script actually finds no failed checks:
https://community.spiceworks.com/scripts/show/4340-network-connection-status-indicator-ncsi-test
what happens if you add to your config
route 0.0.0.0 0.0.0.0 vpn_gateway 9999
(or push "route 0.0.0.0 0.0.0.0 vpn_gateway 9999" from the server) ?
that sometimes helps Windows NLA to allow traffic over the VPN.
HTH,
JJK
I tried every workaround I could find on the web: remove antivirus,
disable windows firewall, set NLA delayed startup, set default gateway
in TAP NIC properties, set registry keys like in
https://support.microsoft.com/en-us/help/4550028/firewall-profile-does-not-switch-to-domain-when-using-third-party-vpn
or
https://social.technet.microsoft.com/Forums/en-US/e3e75a8f-27f7-479b-b573-3d012a69b45f/network-location-awareness-doesnt-detect-connectivity?forum=win10itpronetworking
Nothing fixed the issue.
I'm getting crazy, can anyone help, please?
Thanks.
This is the "ipconfig /all" output when connected to the VPN:
Configurazione IP di Windows
Nome host . . . . . . . . . . . . . . : <pcname>
Suffisso DNS primario . . . . . . . . : <companyname>.local
Tipo nodo . . . . . . . . . . . . . . : Ibrido
Routing IP abilitato. . . . . . . . . : No
Proxy WINS abilitato . . . . . . . . : No
Elenco di ricerca suffissi DNS. . . . : <companyname>
Scheda Ethernet Ethernet:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Realtek PCIe GbE Family
Controller
Indirizzo fisico. . . . . . . . . . . : 3C-2C-30-E6-30-91
DHCP abilitato. . . . . . . . . . . . : Sì
Configurazione automatica abilitata : Sì
Scheda sconosciuta OpenVPN:
Suffisso DNS specifico per connessione: <companyname>
Descrizione . . . . . . . . . . . . . : TAP-Windows Adapter V9
Indirizzo fisico. . . . . . . . . . . : 00-FF-98-72-CE-0F
DHCP abilitato. . . . . . . . . . . . : Sì
Configurazione automatica abilitata : Sì
Indirizzo IPv6 locale rispetto al collegamento . :
fe80::94e8:b4ce:f66f:19ab%20(Preferenziale)
Indirizzo IPv4. . . . . . . . . . . . : 172.28.254.241(Preferenziale)
Subnet mask . . . . . . . . . . . . . : 255.255.255.0
Lease ottenuto. . . . . . . . . . . . : mercoledì 1 luglio 2020
13:07:27
Scadenza lease . . . . . . . . . . . : giovedì 1 luglio 2021 13:07:26
Gateway predefinito . . . . . . . . . :
Server DHCP . . . . . . . . . . . . . : 172.28.254.254
IAID DHCPv6 . . . . . . . . . . . : 268500888
DUID Client DHCPv6. . . . . . . . :
00-01-00-01-24-FE-F3-1A-3C-2C-30-E6-30-91
Server DNS . . . . . . . . . . . . . : 172.28.254.1
NetBIOS su TCP/IP . . . . . . . . . . : Attivato
Scheda LAN wireless Connessione alla rete locale (LAN)* 1:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Microsoft Wi-Fi Direct
Virtual Adapter
Indirizzo fisico. . . . . . . . . . . : 4A-5F-99-1A-44-C7
DHCP abilitato. . . . . . . . . . . . : Sì
Configurazione automatica abilitata : Sì
Scheda LAN wireless Connessione alla rete locale (LAN)* 2:
Stato supporto. . . . . . . . . . . . : Supporto disconnesso
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Microsoft Wi-Fi Direct
Virtual Adapter #2
Indirizzo fisico. . . . . . . . . . . : 5A-5F-99-1A-44-C7
DHCP abilitato. . . . . . . . . . . . : Sì
Configurazione automatica abilitata : Sì
Scheda LAN wireless Wi-Fi:
Suffisso DNS specifico per connessione: home-life.hub
Descrizione . . . . . . . . . . . . . : Qualcomm QCA9377 802.11ac
Wireless Adapter
Indirizzo fisico. . . . . . . . . . . : 48-5F-99-1A-44-C7
DHCP abilitato. . . . . . . . . . . . : Sì
Configurazione automatica abilitata : Sì
Indirizzo IPv6 locale rispetto al collegamento . :
fe80::4d05:e505:5528:dfb1%17(Preferenziale)
Indirizzo IPv4. . . . . . . . . . . . : 192.168.1.27(Preferenziale)
Subnet mask . . . . . . . . . . . . . : 255.255.255.0
Lease ottenuto. . . . . . . . . . . . : mercoledì 1 luglio 2020
10:33:11
Scadenza lease . . . . . . . . . . . : giovedì 2 luglio 2020 13:04:47
Gateway predefinito . . . . . . . . . : 192.168.1.1
Server DHCP . . . . . . . . . . . . . : 192.168.1.1
IAID DHCPv6 . . . . . . . . . . . : 189292441
DUID Client DHCPv6. . . . . . . . :
00-01-00-01-24-FE-F3-1A-3C-2C-30-E6-30-91
Server DNS . . . . . . . . . . . . . : 192.168.1.1
NetBIOS su TCP/IP . . . . . . . . . . : Attivato
Scheda Ethernet vEthernet (WSL):
Suffisso DNS specifico per connessione:
Descrizione . . . . . . . . . . . . . : Hyper-V Virtual Ethernet
Adapter
Indirizzo fisico. . . . . . . . . . . : 00-15-5D-9C-2E-02
DHCP abilitato. . . . . . . . . . . . : No
Configurazione automatica abilitata : Sì
Indirizzo IPv6 locale rispetto al collegamento . :
fe80::988:24:36f1:1cf5%61(Preferenziale)
Indirizzo IPv4. . . . . . . . . . . . : 192.168.112.1(Preferenziale)
Subnet mask . . . . . . . . . . . . . : 255.255.240.0
Gateway predefinito . . . . . . . . . :
IAID DHCPv6 . . . . . . . . . . . : 1023415645
DUID Client DHCPv6. . . . . . . . :
00-01-00-01-24-FE-F3-1A-3C-2C-30-E6-30-91
Server DNS . . . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS su TCP/IP . . . . . . . . . . : Attivato
And here it the output of "route print":
===========================================================================
Elenco interfacce
16...3c 2c 30 e6 30 91 ......Realtek PCIe GbE Family Controller
20...00 ff 98 72 ce 0f ......TAP-Windows Adapter V9
4...4a 5f 99 1a 44 c7 ......Microsoft Wi-Fi Direct Virtual Adapter
21...5a 5f 99 1a 44 c7 ......Microsoft Wi-Fi Direct Virtual Adapter #2
17...48 5f 99 1a 44 c7 ......Qualcomm QCA9377 802.11ac Wireless Adapter
1...........................Software Loopback Interface 1
61...00 15 5d 9c 2e 02 ......Hyper-V Virtual Ethernet Adapter
===========================================================================
IPv4 Tabella route
===========================================================================
Route attive:
Indirizzo rete Mask Gateway Interfaccia Metrica
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.27 35
10.3.64.0 255.255.192.0 172.28.254.1 172.28.254.241 259
10.3.66.0 255.255.255.0 172.28.254.1 172.28.254.241 259
10.3.67.0 255.255.255.0 172.28.254.1 172.28.254.241 259
10.3.68.0 255.255.252.0 172.28.254.1 172.28.254.241 259
10.3.72.0 255.255.255.128 172.28.254.1 172.28.254.241 259
90.84.191.96 255.255.255.255 172.28.254.1 172.28.254.241 259
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
131.176.235.153 255.255.255.255 172.28.254.1 172.28.254.241 259
172.28.254.0 255.255.255.0 On-link 172.28.254.241 259
172.28.254.241 255.255.255.255 On-link 172.28.254.241 259
172.28.254.255 255.255.255.255 On-link 172.28.254.241 259
172.30.0.0 255.255.0.0 172.28.254.1 172.28.254.241 259
172.31.0.0 255.255.0.0 172.28.254.1 172.28.254.241 259
192.168.1.0 255.255.255.0 On-link 192.168.1.27 291
192.168.1.27 255.255.255.255 On-link 192.168.1.27 291
192.168.1.255 255.255.255.255 On-link 192.168.1.27 291
192.168.112.0 255.255.240.0 On-link 192.168.112.1 5256
192.168.112.1 255.255.255.255 On-link 192.168.112.1 5256
192.168.127.255 255.255.255.255 On-link 192.168.112.1 5256
192.168.151.0 255.255.255.0 172.28.254.1 172.28.254.241 259
192.168.250.0 255.255.255.0 172.28.254.1 172.28.254.241 259
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 192.168.1.27 291
224.0.0.0 240.0.0.0 On-link 192.168.112.1 5256
224.0.0.0 240.0.0.0 On-link 172.28.254.241 259
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 192.168.1.27 291
255.255.255.255 255.255.255.255 On-link 192.168.112.1 5256
255.255.255.255 255.255.255.255 On-link 172.28.254.241 259
===========================================================================
Route permanenti:
Nessuna
IPv6 Tabella route
===========================================================================
Route attive:
Interf Metrica Rete Destinazione Gateway
1 331 ::1/128 On-link
17 291 fe80::/64 On-link
61 5256 fe80::/64 On-link
20 259 fe80::/64 On-link
61 5256 fe80::988:24:36f1:1cf5/128
On-link
17 291 fe80::4d05:e505:5528:dfb1/128
On-link
20 259 fe80::94e8:b4ce:f66f:19ab/128
On-link
1 331 ff00::/8 On-link
17 291 ff00::/8 On-link
61 5256 ff00::/8 On-link
20 259 ff00::/8 On-link
===========================================================================
Route permanenti:
Nessuna
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
