trying to run on fedora33

[smyffanon]

does Vopono understand the firewall on fedora?

I"m trying to run on fedora33, connecting to proton. I have not installed the program, it's still running from the build directory.

First, the specified applicaion doesn't execute - the command lines I tried :

./vopono  exec  --provider protonVPN --server ${CNT}   --protocol openvpn "/bin/alacrity"
./vopono  exec  "firefox" --provider protonVPN --server ${CNT}   --protocol openvpn 

it looks like it's blocked on something

Vopono looks like it connects to protonVPN, and I can execute a shell from a separate terminal - this works and I can list interfaces and ping from this new terminal window

ip netns exec ${ns_name} alacritty &

 ip a l
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
59: proton_us_s@if60: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000

I can ping out from this terminal (DNS is working and resolv.conf contains only 8.8.8.8)
but if I run a browser I get "cannot connect")

does this output make sense?

traceroute ibm.com
traceroute to ibm.com (184.29.122.66), 30 hops max, 60 byte packets
 1  fed32 (10.200.1.1)  0.029 ms  0.010 ms  0.009 ms
 2  fed32 (10.200.1.1)  0.021 ms !X  0.013 ms !X  0.018 ms !X

[jamesmcm]

Can you please run it with the -v flag i.e.:

./vopono  -v exec  "firefox" --provider protonVPN --server ${CNT}   --protocol openvpn 

and then copy the output?

Also try with --no-killswitch and --firewall iptables but with it working in the shell I don't think that's the issue.

[smyffanon]

I ran -v yesterday and left it going for an hour and didn't see the TLS handshake message

./vopono -v exec "firefox" --provider protonVPN --server ${CNT} --no-killswitch --firewall iptables --protocol openvpn

2021-06-26T14:43:10.248Z DEBUG vopono::util > Using config dir from XDG dirs: /FRED/.config
2021-06-26T14:43:10.254Z DEBUG vopono::pulseaudio > Setting PULSE_SERVER to /run/user/1000/pulse/native
2021-06-26T14:43:10.254Z INFO vopono::util > Calling sudo for elevated privileges, current user will be used as default user
2021-06-26T14:43:10.254Z DEBUG vopono::util > Args: ["./vopono", "-v", "exec", "firefox", "--provider", "protonVPN", "--server", "us", "--no-killswitch", "--firewall", "iptables", "--protocol", "openvpn"]
2021-06-26T14:43:10.382Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.388Z WARN vopono > Could not parse PULSE_SERVER from pactl info output: Err(Could not parse pactl output!:
)
2021-06-26T14:43:10.388Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.389Z DEBUG vopono::util > Existing namespaces: []
2021-06-26T14:43:10.390Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.390Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.390Z DEBUG vopono::exec > vopono config.toml: configuration property "custom_config" not found
2021-06-26T14:43:10.390Z DEBUG vopono::exec > vopono config.toml: configuration property "postup" not found
2021-06-26T14:43:10.390Z DEBUG vopono::exec > vopono config.toml: configuration property "predown" not found
2021-06-26T14:43:10.390Z DEBUG vopono::exec > vopono config.toml: configuration property "user" not found
2021-06-26T14:43:10.390Z DEBUG vopono::exec > vopono config.toml: configuration property "dns" not found
2021-06-26T14:43:10.390Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.390Z DEBUG vopono::network_interface > ip addr
2021-06-26T14:43:10.391Z DEBUG vopono::exec > Interface: eno1
2021-06-26T14:43:10.391Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.392Z INFO vopono::util > Chosen config: /FRED/.config/vopono/proton/openvpn/united_states-us.ovpn
2021-06-26T14:43:10.393Z DEBUG vopono::util > Existing namespaces: []
2021-06-26T14:43:10.393Z DEBUG vopono::util > ip netns add vopono_proton_us
2021-06-26T14:43:10.394Z INFO vopono::netns > Created new network namespace: vopono_proton_us
2021-06-26T14:43:10.395Z DEBUG vopono::util > Existing interfaces:
2021-06-26T14:43:10.396Z DEBUG vopono::util > Assigned IPs: []
2021-06-26T14:43:10.397Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip addr add 127.0.0.1/8 dev lo
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:43:10.399Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip link set lo up
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:43:10.401Z DEBUG vopono::veth_pair > NetworkManager detected, adding proton_us_d to unmanaged devices
2021-06-26T14:43:10.401Z DEBUG vopono::util > nmcli connection reload
2021-06-26T14:43:10.412Z DEBUG vopono::util > ip link add proton_us_d type veth peer name proton_us_s
2021-06-26T14:43:10.413Z DEBUG vopono::util > ip link set proton_us_d up
2021-06-26T14:43:10.414Z DEBUG vopono::util > ip link set proton_us_s netns vopono_proton_us up
2021-06-26T14:43:10.428Z DEBUG vopono::util > ip addr add 10.200.1.1/24 dev proton_us_d
2021-06-26T14:43:10.430Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip addr add 10.200.1.2/24 dev proton_us_s
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:43:10.434Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip route add default via 10.200.1.1 dev proton_us_s
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:43:10.437Z INFO vopono::netns > IP address of namespace as seen from host: 10.200.1.2
2021-06-26T14:43:10.437Z INFO vopono::netns > IP address of host as seen from namespace: 10.200.1.1
2021-06-26T14:43:10.437Z DEBUG vopono::util > iptables -t nat -A POSTROUTING -s 10.200.1.0/24 -o eno1 -j MASQUERADE
2021-06-26T14:43:10.438Z DEBUG vopono::util > iptables -I FORWARD -i proton_us_d -o eno1 -j ACCEPT
2021-06-26T14:43:10.440Z DEBUG vopono::util > iptables -I FORWARD -o proton_us_d -i eno1 -j ACCEPT
2021-06-26T14:43:10.442Z DEBUG vopono::util > sysctl -q net.ipv4.ip_forward=1
2021-06-26T14:43:10.443Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:43:10.443Z DEBUG vopono::vpn > Read auth file: /FRED/.config/vopono/proton/openvpn/auth.txt
2021-06-26T14:43:10.443Z DEBUG vopono::dns_config > Setting namespace vopono_proton_us DNS server to 8.8.8.8
2021-06-26T14:43:10.444Z INFO vopono::openvpn > Launching OpenVPN...
2021-06-26T14:43:10.444Z DEBUG vopono::openvpn > Found remotes: [Remote { host: Hostname("us.protonvpn.com"), port: 443, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 5060, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 80, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 4569, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 1194, protocol: UDP }]
2021-06-26T14:43:10.444Z DEBUG vopono::netns > ip netns exec vopono_proton_us openvpn --config /FRED/.config/vopono/proton/openvpn/united_states-us.ovpn --machine-readable-output --log /etc/netns/vopono_proton_us/openvpn.log --auth-user-pass /FRED/.config/vopono/proton/openvpn/auth.txt
2021-06-26T14:43:10.450Z DEBUG vopono::openvpn > "1624718590.450483 1 OpenVPN 2.4.11 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 21 2021\n"
2021-06-26T14:43:10.450Z DEBUG vopono::openvpn > "1624718590.450522 1 library versions: OpenSSL 1.1.1k FIPS 25 Mar 2021, LZO 2.10\n"
2021-06-26T14:43:10.453Z DEBUG vopono::openvpn > "1624718590.453266 14000002 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication\n"
2021-06-26T14:43:10.453Z DEBUG vopono::openvpn > "1624718590.453281 14000002 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication\n"
2021-06-26T14:43:10.476Z DEBUG vopono::openvpn > "1624718590.475982 1 TCP/UDP: Preserving recently used remote address: [AF_INET]173.0.77.12:5060\n"
2021-06-26T14:43:10.476Z DEBUG vopono::openvpn > "1624718590.476016 2b000003 Socket Buffers: R=[212992->212992] S=[212992->212992]\n"
2021-06-26T14:43:10.476Z DEBUG vopono::openvpn > "1624718590.476023 1 UDP link local: (not bound)\n"
2021-06-26T14:43:10.476Z DEBUG vopono::openvpn > "1624718590.476030 1 UDP link remote: [AF_INET]173.0.77.12:5060\n"
2021-06-26T14:44:10.700Z DEBUG vopono::openvpn > "1624718650.700865 3000021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)\n"
2021-06-26T14:44:10.700Z DEBUG vopono::openvpn > "1624718650.700889 3000021 TLS Error: TLS handshake failed\n"
2021-06-26T14:44:10.700Z DEBUG vopono::openvpn > "1624718650.700984 1 SIGUSR1[soft,tls-error] received, process restarting\n"
2021-06-26T14:44:10.701Z DEBUG vopono::openvpn > "1624718650.701003 21000003 Restart pause, 5 second(s)\n"
2021-06-26T14:44:15.701Z DEBUG vopono::openvpn > "1624718655.701178 1 TCP/UDP: Preserving recently used remote address: [AF_INET]37.120.215.243:5060\n"
2021-06-26T14:44:15.701Z DEBUG vopono::openvpn > "1624718655.701239 2b000003 Socket Buffers: R=[212992->212992] S=[212992->212992]\n"
2021-06-26T14:44:15.701Z DEBUG vopono::openvpn > "1624718655.701379 1 UDP link local: (not bound)\n"
2021-06-26T14:44:15.701Z DEBUG vopono::openvpn > "1624718655.701387 1 UDP link remote: [AF_INET]37.120.215.243:5060\n"
2021-06-26T14:45:15.334Z DEBUG vopono::openvpn > "1624718715.334853 3000021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)\n"
2021-06-26T14:45:15.334Z DEBUG vopono::openvpn > "1624718715.334876 3000021 TLS Error: TLS handshake failed\n"
2021-06-26T14:45:15.334Z DEBUG vopono::openvpn > "1624718715.334946 1 SIGUSR1[soft,tls-error] received, process restarting\n"
2021-06-26T14:45:15.334Z DEBUG vopono::openvpn > "1624718715.334963 21000003 Restart pause, 5 second(s)\n"
2021-06-26T14:45:20.335Z DEBUG vopono::openvpn > "1624718720.335102 1 TCP/UDP: Preserving recently used remote address: [AF_INET]162.210.192.157:5060\n"
2021-06-26T14:45:20.335Z DEBUG vopono::openvpn > "1624718720.335156 2b000003 Socket Buffers: R=[212992->212992] S=[212992->212992]\n"
2021-06-26T14:45:20.335Z DEBUG vopono::openvpn > "1624718720.335300 1 UDP link local: (not bound)\n"
2021-06-26T14:45:20.335Z DEBUG vopono::openvpn > "1624718720.335306 1 UDP link remote: [AF_INET]162.210.192.157:5060\n"

[smyffanon]

./vopono -v exec "firefox" --provider protonVPN --server ${CNT} --protocol openvpn
2021-06-26T14:48:08.744Z DEBUG vopono::util > Using config dir from XDG dirs: /FRED/.config
2021-06-26T14:48:08.775Z DEBUG vopono::pulseaudio > Setting PULSE_SERVER to /run/user/1000/pulse/native
2021-06-26T14:48:08.775Z INFO vopono::util > Calling sudo for elevated privileges, current user will be used as default user
2021-06-26T14:48:08.775Z DEBUG vopono::util > Args: ["./vopono", "-v", "exec", "firefox", "--provider", "protonVPN", "--server", "us", "--protocol", "openvpn"]
2021-06-26T14:48:08.910Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.917Z WARN vopono > Could not parse PULSE_SERVER from pactl info output: Err(Could not parse pactl output!:
)
2021-06-26T14:48:08.917Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.918Z DEBUG vopono::util > Existing namespaces: []
2021-06-26T14:48:08.918Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.918Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.918Z DEBUG vopono::exec > vopono config.toml: configuration property "custom_config" not found
2021-06-26T14:48:08.918Z DEBUG vopono::exec > vopono config.toml: configuration property "postup" not found
2021-06-26T14:48:08.918Z DEBUG vopono::exec > vopono config.toml: configuration property "predown" not found
2021-06-26T14:48:08.918Z DEBUG vopono::exec > vopono config.toml: configuration property "user" not found
2021-06-26T14:48:08.918Z DEBUG vopono::exec > vopono config.toml: configuration property "dns" not found
2021-06-26T14:48:08.918Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.918Z DEBUG vopono::network_interface > ip addr
2021-06-26T14:48:08.919Z DEBUG vopono::exec > Interface: eno1
2021-06-26T14:48:08.919Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.920Z INFO vopono::util > Chosen config: /FRED/.config/vopono/proton/openvpn/united_states-us.ovpn
2021-06-26T14:48:08.921Z DEBUG vopono::util > Existing namespaces: []
2021-06-26T14:48:08.921Z DEBUG vopono::util > ip netns add vopono_proton_us
2021-06-26T14:48:08.922Z INFO vopono::netns > Created new network namespace: vopono_proton_us
2021-06-26T14:48:08.924Z DEBUG vopono::util > Existing interfaces:
2021-06-26T14:48:08.925Z DEBUG vopono::util > Assigned IPs: []
2021-06-26T14:48:08.925Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip addr add 127.0.0.1/8 dev lo
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:48:08.927Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip link set lo up
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:48:08.929Z DEBUG vopono::veth_pair > NetworkManager detected, adding proton_us_d to unmanaged devices
2021-06-26T14:48:08.929Z DEBUG vopono::util > nmcli connection reload
2021-06-26T14:48:08.940Z DEBUG vopono::util > ip link add proton_us_d type veth peer name proton_us_s
2021-06-26T14:48:08.942Z DEBUG vopono::util > ip link set proton_us_d up
2021-06-26T14:48:08.943Z DEBUG vopono::util > ip link set proton_us_s netns vopono_proton_us up
2021-06-26T14:48:08.955Z DEBUG vopono::util > ip addr add 10.200.1.1/24 dev proton_us_d
2021-06-26T14:48:08.957Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip addr add 10.200.1.2/24 dev proton_us_s
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:48:08.960Z DEBUG vopono::netns > ip netns exec vopono_proton_us ip route add default via 10.200.1.1 dev proton_us_s
Bind /etc/netns/vopono_proton_us/openvpn.log -> /etc/openvpn.log failed: No such file or directory
2021-06-26T14:48:08.962Z INFO vopono::netns > IP address of namespace as seen from host: 10.200.1.2
2021-06-26T14:48:08.962Z INFO vopono::netns > IP address of host as seen from namespace: 10.200.1.1
2021-06-26T14:48:08.962Z DEBUG vopono::util > nft add table inet vopono_nat
2021-06-26T14:48:08.965Z DEBUG vopono::util > nft add chain inet vopono_nat postrouting { type nat hook postrouting priority 100 ; }
2021-06-26T14:48:08.969Z DEBUG vopono::util > nft add rule inet vopono_nat postrouting oifname eno1 ip saddr 10.200.1.0/24 counter masquerade
2021-06-26T14:48:08.973Z DEBUG vopono::util > nft add table inet vopono_bridge
2021-06-26T14:48:08.976Z DEBUG vopono::util > nft add chain inet vopono_bridge forward { type filter hook forward priority -10 ; }
2021-06-26T14:48:08.979Z DEBUG vopono::util > nft add rule inet vopono_bridge forward iifname proton_us_d oifname eno1 counter accept
2021-06-26T14:48:08.981Z DEBUG vopono::util > nft add rule inet vopono_bridge forward oifname proton_us_d iifname eno1 counter accept
2021-06-26T14:48:08.984Z DEBUG vopono::util > sysctl -q net.ipv4.ip_forward=1
2021-06-26T14:48:08.985Z DEBUG vopono::util > Using config dir from $SUDO_USER config: /FRED/.config
2021-06-26T14:48:08.985Z DEBUG vopono::vpn > Read auth file: /FRED/.config/vopono/proton/openvpn/auth.txt
2021-06-26T14:48:08.985Z DEBUG vopono::dns_config > Setting namespace vopono_proton_us DNS server to 8.8.8.8
2021-06-26T14:48:08.986Z INFO vopono::openvpn > Launching OpenVPN...
2021-06-26T14:48:08.986Z DEBUG vopono::openvpn > Found remotes: [Remote { host: Hostname("us.protonvpn.com"), port: 443, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 5060, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 80, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 4569, protocol: UDP }, Remote { host: Hostname("us.protonvpn.com"), port: 1194, protocol: UDP }]
2021-06-26T14:48:08.986Z DEBUG vopono::netns > ip netns exec vopono_proton_us openvpn --config /FRED/.config/vopono/proton/openvpn/united_states-us.ovpn --machine-readable-output --log /etc/netns/vopono_proton_us/openvpn.log --auth-user-pass /FRED/.config/vopono/proton/openvpn/auth.txt
2021-06-26T14:48:08.991Z DEBUG vopono::openvpn > "1624718888.991184 1 OpenVPN 2.4.11 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 21 2021\n"
2021-06-26T14:48:08.991Z DEBUG vopono::openvpn > "1624718888.991212 1 library versions: OpenSSL 1.1.1k FIPS 25 Mar 2021, LZO 2.10\n"
2021-06-26T14:48:08.993Z DEBUG vopono::openvpn > "1624718888.993517 14000002 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication\n"
2021-06-26T14:48:08.993Z DEBUG vopono::openvpn > "1624718888.993529 14000002 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication\n"
2021-06-26T14:48:09.022Z DEBUG vopono::openvpn > "1624718889.022715 1 TCP/UDP: Preserving recently used remote address: [AF_INET]208.84.155.67:1194\n"
2021-06-26T14:48:09.022Z DEBUG vopono::openvpn > "1624718889.022743 2b000003 Socket Buffers: R=[212992->212992] S=[212992->212992]\n"
2021-06-26T14:48:09.022Z DEBUG vopono::openvpn > "1624718889.022748 1 UDP link local: (not bound)\n"
2021-06-26T14:48:09.022Z DEBUG vopono::openvpn > "1624718889.022753 1 UDP link remote: [AF_INET]208.84.155.67:1194\n"
2021-06-26T14:49:09.945Z DEBUG vopono::openvpn > "1624718949.945863 3000021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)\n"
2021-06-26T14:49:09.945Z DEBUG vopono::openvpn > "1624718949.945888 3000021 TLS Error: TLS handshake failed\n"
2021-06-26T14:49:09.945Z DEBUG vopono::openvpn > "1624718949.945981 1 SIGUSR1[soft,tls-error] received, process restarting\n"
2021-06-26T14:49:09.946Z DEBUG vopono::openvpn > "1624718949.946001 21000003 Restart pause, 5 second(s)\n"
2021-06-26T14:49:14.946Z DEBUG vopono::openvpn > "1624718954.946136 1 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.129.97:1194\n"
2021-06-26T14:49:14.946Z DEBUG vopono::openvpn > "1624718954.946184 2b000003 Socket Buffers: R=[212992->212992] S=[212992->212992]\n"
2021-06-26T14:49:14.946Z DEBUG vopono::openvpn > "1624718954.946303 1 UDP link local: (not bound)\n"
2021-06-26T14:49:14.946Z DEBUG vopono::openvpn > "1624718954.946309 1 UDP link remote: [AF_INET]209.58.129.97:1194\n"

[jamesmcm]

Can you check if firewalld is running?

sudo firewall-cmd --state

It seems something is blocking the OpenVPN connection:

2021-06-26T14:49:09.945Z DEBUG vopono::openvpn > "1624718949.945863 3000021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)\n"

Which is causing it to block waiting for a successful connection.

[smyffanon]

firewall-cmd --state
running

---

when I start the external term window root in the new namespace may ping out at will
I must run this in the for normal non-root user to be able to ping out

sysctl -w net.ipv4.ping_group_range="0 2000"

[smyffanon]

I stopped firewalld and the vopono executable finishes and firefox comes up OK, sites still unreachable.

EDIT: 5 minutes later firefox is browsing OK.

and the terminal also comes up.

For some reason vopono asked for my username / password again.
I must get to work - some deadlines this week, I'll experiment more a week and a half from now.

Thanks for your help. I'll check here for more tips to try.

What are the ports I must open, and did I miss it in the manual?

[smyffanon]

small update: if I run a command that puts itself in the background, vopono thinks it's finished and cleans up after itself (deletes the namespace and interfaces).

I have a bunch of firefox shell scripts, where firefox launches with a different profile, and the shell scripts put themselves in the background. So firefox will be running in a now-nonexistent namespace.

When I get everything working I'll have to change the scripts or get a terminal.

[jamesmcm]

There is an open issue for firewalld support: #93

I don't use it on Arch though so it's a bit hard to test and fix. If you run vopono with the verbose flag you can see all of the nftables / iptables rules that get set. In theory the nftables should work with firewalld but it seems they conflict somehow.

As for the background issue, it's strange, it should only quit once the process ends IIRC - it uses https://doc.rust-lang.org/std/process/struct.Child.html#method.wait_with_output - but maybe this is affected by being put in the background if it takes that as the end of output. It should be simple to add a check whether the PID is actually alive or not, but in the meantime you can use the -k keep-alive flag to force vopono to stay open.

Note that Firefox might still share the parent process when using multiple profiles though, so test that carefully (I found it easier just to use developer-edition and the normal one so they are completely separate).