Re: Mountain Lion GM connection issues

[Jonathan K. Bullard]

Take a look at If OpenVPN is connected to the server but you can't access the Internet.

You are apparently paying StrongVPN for VPN service, so you should contact their tech support, too. 

On Wed, Jul 11, 2012 at 7:47 AM, Jamie Taylor <jamieoli...@gmail.com> wrote:

Just updated to Mountain Lion GM from Lion. Tunnelblick connects OK but no internet access - DNS issue I think? Worked fine yesterday on Lion and works fine now on a PC so it's not my VPN provider. Logs below.

Thanks for the help.

Configuration file:

remote **.***.**.* **** udp
remote **.***.**.* *** udp
remote **.***.**.* ** udp
key-direction 1
client
dev tun
resolv-retry infinite
nobind
persist-key
persist-tun
;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #]
verb 4
reneg-sec 86400
echo vpn-co33 ovpn007
tun-mtu 1500
route-method exe
route-delay 2
redirect-gateway def1
comp-lzo adaptive
explicit-exit-notify 2
fragment 1390
mssfix 1390
hand-window 30


Log:

2012-07-11 13:30:18 *Tunnelblick: OS X 10.8.0; Tunnelblick 3.3beta06 (build 3028)
2012-07-11 13:30:18 *Tunnelblick: Attempting connection with StrongVPN co33; Set nameserver = 1; monitoring connection
2012-07-11 13:30:18 *Tunnelblick: /Applications/Tunnelblick.app/Contents/Resources/openvpnstart start StrongVPN\ co33.ovpn 1337 1 0 0 0 49 -atDASNGWrdasngw
2012-07-11 13:30:18 *Tunnelblick: openvpnstart starting OpenVPN:
                    *                    /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3-alpha1/openvpn --cd /Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations --daemon --management 127.0.0.1 1337 --config /Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations/StrongVPN co33.ovpn --log /Library/Application Support/Tunnelblick/Logs/-SUsers-SJamie-SLibrary-SApplication Support-STunnelblick-SConfigurations-SStrongVPN co33.ovpn.1_0_0_0_49.1337.openvpn.log --management-query-passwords --management-hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atDASNGWrdasngw --down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw --up-restart --route-pre-down /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -m -w -d -atDASNGWrdasngw
2012-07-11 13:30:19 *Tunnelblick: openvpnstart message: Loading tun.kext

2012-07-11 13:30:19 us=77185 Current Parameter Settings:
2012-07-11 13:30:19 us=77353   config = '/Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations/StrongVPN co33.ovpn'
2012-07-11 13:30:19 us=77370   mode = 0
2012-07-11 13:30:19 us=77382   show_ciphers = DISABLED
2012-07-11 13:30:19 us=77393   show_digests = DISABLED
2012-07-11 13:30:19 us=77403   show_engines = DISABLED
2012-07-11 13:30:19 us=77413   genkey = DISABLED
2012-07-11 13:30:19 us=77423   key_pass_file = '[UNDEF]'
2012-07-11 13:30:19 us=77434   show_tls_ciphers = DISABLED
2012-07-11 13:30:19 us=77444 Connection profiles [default]:
2012-07-11 13:30:19 us=77455   proto = udp
2012-07-11 13:30:19 us=77465   local = '[UNDEF]'
2012-07-11 13:30:19 us=77475   local_port = 1194
2012-07-11 13:30:19 us=77485   remote = '[UNDEF]'
2012-07-11 13:30:19 us=77496   remote_port = 1194
2012-07-11 13:30:19 us=77506   remote_float = DISABLED
2012-07-11 13:30:19 us=77516   bind_defined = DISABLED
2012-07-11 13:30:19 us=77526   bind_local = DISABLED
2012-07-11 13:30:19 us=77537   connect_retry_seconds = 5
2012-07-11 13:30:19 us=77548   connect_timeout = 10
2012-07-11 13:30:19 us=77558   connect_retry_max = 0
2012-07-11 13:30:19 us=77568   socks_proxy_server = '[UNDEF]'
2012-07-11 13:30:19 us=77578   socks_proxy_port = 0
2012-07-11 13:30:19 us=77588   socks_proxy_retry = DISABLED
2012-07-11 13:30:19 us=77599   tun_mtu = 1500
2012-07-11 13:30:19 us=77609   tun_mtu_defined = ENABLED
2012-07-11 13:30:19 us=77619   link_mtu = 1500
2012-07-11 13:30:19 us=77629   link_mtu_defined = DISABLED
2012-07-11 13:30:19 us=77640   tun_mtu_extra = 0
2012-07-11 13:30:19 us=77650   tun_mtu_extra_defined = DISABLED
2012-07-11 13:30:19 us=77661   mtu_discover_type = -1
2012-07-11 13:30:19 us=77671   fragment = 1390
2012-07-11 13:30:19 us=77681   mssfix = 1390
2012-07-11 13:30:19 us=77691   explicit_exit_notification = 2
2012-07-11 13:30:19 us=77702 Connection profiles [0]:
2012-07-11 13:30:19 us=77712   proto = udp
2012-07-11 13:30:19 us=77722   local = '[UNDEF]'
2012-07-11 13:30:19 us=77732   local_port = 0
2012-07-11 13:30:19 us=77743   remote = '89.187.79.8'
2012-07-11 13:30:19 us=77753   remote_port = 4398
2012-07-11 13:30:19 us=77763   remote_float = DISABLED
2012-07-11 13:30:19 us=77773   bind_defined = DISABLED
2012-07-11 13:30:19 us=77783   bind_local = DISABLED
2012-07-11 13:30:19 us=77793   connect_retry_seconds = 5
2012-07-11 13:30:19 us=77803   connect_timeout = 10
2012-07-11 13:30:19 us=77813   connect_retry_max = 0
2012-07-11 13:30:19 us=77824   socks_proxy_server = '[UNDEF]'
2012-07-11 13:30:19 us=77834   socks_proxy_port = 0
2012-07-11 13:30:19 us=77843   socks_proxy_retry = DISABLED
2012-07-11 13:30:19 us=77857   tun_mtu = 1500
2012-07-11 13:30:19 us=77867   tun_mtu_defined = ENABLED
2012-07-11 13:30:19 us=77878   link_mtu = 1500
2012-07-11 13:30:19 us=77888   link_mtu_defined = DISABLED
2012-07-11 13:30:19 us=77898   tun_mtu_extra = 0
2012-07-11 13:30:19 us=77908   tun_mtu_extra_defined = DISABLED
2012-07-11 13:30:19 us=77918   mtu_discover_type = -1
2012-07-11 13:30:19 us=77928   fragment = 1390
2012-07-11 13:30:19 us=77938   mssfix = 1390
2012-07-11 13:30:19 us=77948   explicit_exit_notification = 2
2012-07-11 13:30:19 us=77958 Connection profiles [1]:
2012-07-11 13:30:19 us=77968   proto = udp
2012-07-11 13:30:19 us=77978   local = '[UNDEF]'
2012-07-11 13:30:19 us=77988   local_port = 0
2012-07-11 13:30:19 us=77998   remote = '89.187.79.8'
2012-07-11 13:30:19 us=78008   remote_port = 123
2012-07-11 13:30:19 us=78018   remote_float = DISABLED
2012-07-11 13:30:19 us=78028   bind_defined = DISABLED
2012-07-11 13:30:19 us=78038   bind_local = DISABLED
2012-07-11 13:30:19 us=78048   connect_retry_seconds = 5
2012-07-11 13:30:19 us=78058   connect_timeout = 10
2012-07-11 13:30:19 us=78078   connect_retry_max = 0
2012-07-11 13:30:19 us=78089   socks_proxy_server = '[UNDEF]'
2012-07-11 13:30:19 us=78099   socks_proxy_port = 0
2012-07-11 13:30:19 us=78109   socks_proxy_retry = DISABLED
2012-07-11 13:30:19 us=78119   tun_mtu = 1500
2012-07-11 13:30:19 us=78129   tun_mtu_defined = ENABLED
2012-07-11 13:30:19 us=78139   link_mtu = 1500
2012-07-11 13:30:19 us=78149   link_mtu_defined = DISABLED
2012-07-11 13:30:19 us=78159   tun_mtu_extra = 0
2012-07-11 13:30:19 us=78168   tun_mtu_extra_defined = DISABLED
2012-07-11 13:30:19 us=78178   mtu_discover_type = -1
2012-07-11 13:30:19 us=78188   fragment = 1390
2012-07-11 13:30:19 us=78198   mssfix = 1390
2012-07-11 13:30:19 us=78208   explicit_exit_notification = 2
2012-07-11 13:30:19 us=78218 Connection profiles [2]:
2012-07-11 13:30:19 us=78228   proto = udp
2012-07-11 13:30:19 us=78237   local = '[UNDEF]'
2012-07-11 13:30:19 us=78247   local_port = 0
2012-07-11 13:30:19 us=78257   remote = '89.187.79.8'
2012-07-11 13:30:19 us=78267   remote_port = 53
2012-07-11 13:30:19 us=78277   remote_float = DISABLED
2012-07-11 13:30:19 us=78287   bind_defined = DISABLED
2012-07-11 13:30:19 us=78297   bind_local = DISABLED
2012-07-11 13:30:19 us=78307   connect_retry_seconds = 5
2012-07-11 13:30:19 us=78317   connect_timeout = 10
2012-07-11 13:30:19 us=78326   connect_retry_max = 0
2012-07-11 13:30:19 us=78336   socks_proxy_server = '[UNDEF]'
2012-07-11 13:30:19 us=78346   socks_proxy_port = 0
2012-07-11 13:30:19 us=78356   socks_proxy_retry = DISABLED
2012-07-11 13:30:19 us=78366   tun_mtu = 1500
2012-07-11 13:30:19 us=78377   tun_mtu_defined = ENABLED
2012-07-11 13:30:19 us=78387   link_mtu = 1500
2012-07-11 13:30:19 us=78397   link_mtu_defined = DISABLED
2012-07-11 13:30:19 us=78408   tun_mtu_extra = 0
2012-07-11 13:30:19 us=78418   tun_mtu_extra_defined = DISABLED
2012-07-11 13:30:19 us=78429   mtu_discover_type = -1
2012-07-11 13:30:19 us=78439   fragment = 1390
2012-07-11 13:30:19 us=78450   mssfix = 1390
2012-07-11 13:30:19 us=78460   explicit_exit_notification = 2
2012-07-11 13:30:19 us=78471 Connection profiles END
2012-07-11 13:30:19 us=78481   remote_random = DISABLED
2012-07-11 13:30:19 us=78492   ipchange = '[UNDEF]'
2012-07-11 13:30:19 us=78502   dev = 'tun'
2012-07-11 13:30:19 us=78513   dev_type = '[UNDEF]'
2012-07-11 13:30:19 us=78523   dev_node = '[UNDEF]'
2012-07-11 13:30:19 us=78533   lladdr = '[UNDEF]'
2012-07-11 13:30:19 us=78544   topology = 1
2012-07-11 13:30:19 us=78554   tun_ipv6 = DISABLED
2012-07-11 13:30:19 us=78564   ifconfig_local = '[UNDEF]'
2012-07-11 13:30:19 us=78575   ifconfig_remote_netmask = '[UNDEF]'
2012-07-11 13:30:19 us=78586   ifconfig_noexec = DISABLED
2012-07-11 13:30:19 us=78596   ifconfig_nowarn = DISABLED
2012-07-11 13:30:19 us=78607   ifconfig_ipv6_local = '[UNDEF]'
2012-07-11 13:30:19 us=78617   ifconfig_ipv6_netbits = 0
2012-07-11 13:30:19 us=78627   ifconfig_ipv6_remote = '[UNDEF]'
2012-07-11 13:30:19 us=78638   shaper = 0
2012-07-11 13:30:19 us=78649   mtu_test = 0
2012-07-11 13:30:19 us=78659   mlock = DISABLED
2012-07-11 13:30:19 us=78670   keepalive_ping = 0
2012-07-11 13:30:19 us=78680   keepalive_timeout = 0
2012-07-11 13:30:19 us=78691   inactivity_timeout = 0
2012-07-11 13:30:19 us=78701   ping_send_timeout = 0
2012-07-11 13:30:19 us=78711   ping_rec_timeout = 0
2012-07-11 13:30:19 us=78722   ping_rec_timeout_action = 0
2012-07-11 13:30:19 us=78732   ping_timer_remote = DISABLED
2012-07-11 13:30:19 us=78742   remap_sigusr1 = 0
2012-07-11 13:30:19 us=78753   persist_tun = ENABLED
2012-07-11 13:30:19 us=78763   persist_local_ip = DISABLED
2012-07-11 13:30:19 us=78774   persist_remote_ip = DISABLED
2012-07-11 13:30:19 us=78784   persist_key = ENABLED
2012-07-11 13:30:19 us=78803   passtos = DISABLED
2012-07-11 13:30:19 us=78818   resolve_retry_seconds = 1000000000
2012-07-11 13:30:19 us=78829   username = '[UNDEF]'
2012-07-11 13:30:19 us=78839   groupname = '[UNDEF]'
2012-07-11 13:30:19 us=78850   chroot_dir = '[UNDEF]'
2012-07-11 13:30:19 us=78861   cd_dir = '/Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations'
2012-07-11 13:30:19 us=78871   writepid = '[UNDEF]'
2012-07-11 13:30:19 us=78882   up_script = '/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atDASNGWrdasngw'
2012-07-11 13:30:19 us=78893   down_script = '/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw'
2012-07-11 13:30:19 us=78904   down_pre = DISABLED
2012-07-11 13:30:19 us=78914   up_restart = ENABLED
2012-07-11 13:30:19 us=78924   up_delay = DISABLED
2012-07-11 13:30:19 us=78935   daemon = ENABLED
2012-07-11 13:30:19 us=78945   inetd = 0
2012-07-11 13:30:19 us=78959   log = ENABLED
2012-07-11 13:30:19 us=78970   suppress_timestamps = DISABLED
2012-07-11 13:30:19 us=78981   nice = 0
2012-07-11 13:30:19 us=78991   verbosity = 4
2012-07-11 13:30:19 us=79002   mute = 0
2012-07-11 13:30:19 us=79012   gremlin = 0
2012-07-11 13:30:19 us=79023   status_file = '[UNDEF]'
2012-07-11 13:30:19 us=79033   status_file_version = 1
2012-07-11 13:30:19 us=79044   status_file_update_freq = 60
2012-07-11 13:30:19 us=79054   occ = ENABLED
2012-07-11 13:30:19 us=79065   rcvbuf = 65536
2012-07-11 13:30:19 us=79075   sndbuf = 65536
2012-07-11 13:30:19 us=79085   sockflags = 0
2012-07-11 13:30:19 us=79095   fast_io = DISABLED
2012-07-11 13:30:19 us=79106   lzo = 7
2012-07-11 13:30:19 us=79116   route_script = '[UNDEF]'
2012-07-11 13:30:19 us=79127   route_default_gateway = '[UNDEF]'
2012-07-11 13:30:19 us=79137   route_default_metric = 0
2012-07-11 13:30:19 us=79148   route_noexec = DISABLED
2012-07-11 13:30:19 us=79158   route_delay = 2
2012-07-11 13:30:19 us=79168   route_delay_window = 30
2012-07-11 13:30:19 us=79179   route_delay_defined = ENABLED
2012-07-11 13:30:19 us=79189   route_nopull = DISABLED
2012-07-11 13:30:19 us=79199   route_gateway_via_dhcp = DISABLED
2012-07-11 13:30:19 us=79210   max_routes = 100
2012-07-11 13:30:19 us=79220   allow_pull_fqdn = DISABLED
2012-07-11 13:30:19 us=79231   [redirect_default_gateway local=0]
2012-07-11 13:30:19 us=79242   management_addr = '127.0.0.1'
2012-07-11 13:30:19 us=79252   management_port = 1337
2012-07-11 13:30:19 us=79263   management_user_pass = '[UNDEF]'
2012-07-11 13:30:19 us=79274   management_log_history_cache = 250
2012-07-11 13:30:19 us=79284   management_echo_buffer_size = 100
2012-07-11 13:30:19 us=79296   management_write_peer_info_file = '[UNDEF]'
2012-07-11 13:30:19 us=79307   management_client_user = '[UNDEF]'
2012-07-11 13:30:19 us=79317   management_client_group = '[UNDEF]'
2012-07-11 13:30:19 us=79328   management_flags = 6
2012-07-11 13:30:19 us=79339   shared_secret_file = '[UNDEF]'
2012-07-11 13:30:19 us=79350   key_direction = 2
2012-07-11 13:30:19 us=79360   ciphername_defined = ENABLED
2012-07-11 13:30:19 us=79370   ciphername = 'BF-CBC'
2012-07-11 13:30:19 us=79381   authname_defined = ENABLED
2012-07-11 13:30:19 us=79392   authname = 'SHA1'
2012-07-11 13:30:19 us=79402   prng_hash = 'SHA1'
2012-07-11 13:30:19 us=79413   prng_nonce_secret_len = 16
2012-07-11 13:30:19 us=79423   keysize = 0
2012-07-11 13:30:19 us=79434   engine = DISABLED
2012-07-11 13:30:19 us=79444   replay = ENABLED
2012-07-11 13:30:19 us=79455   mute_replay_warnings = DISABLED
2012-07-11 13:30:19 us=79466   replay_window = 64
2012-07-11 13:30:19 us=79476   replay_time = 15
2012-07-11 13:30:19 us=79487   packet_id_file = '[UNDEF]'
2012-07-11 13:30:19 us=79507   use_iv = ENABLED
2012-07-11 13:30:19 us=79518   test_crypto = DISABLED
2012-07-11 13:30:19 us=79528   tls_server = DISABLED
2012-07-11 13:30:19 us=79539   tls_client = ENABLED
2012-07-11 13:30:19 us=79552   key_method = 2
2012-07-11 13:30:19 us=79563   ca_file = '[[INLINE]]'
2012-07-11 13:30:19 us=79574   ca_path = '[UNDEF]'
2012-07-11 13:30:19 us=79584   dh_file = '[UNDEF]'
2012-07-11 13:30:19 us=79595   cert_file = '[[INLINE]]'
2012-07-11 13:30:19 us=79605   priv_key_file = '[[INLINE]]'
2012-07-11 13:30:19 us=79616   pkcs12_file = '[UNDEF]'
2012-07-11 13:30:19 us=79627   cipher_list = '[UNDEF]'
2012-07-11 13:30:19 us=79637   tls_verify = '[UNDEF]'
2012-07-11 13:30:19 us=79648   tls_export_cert = '[UNDEF]'
2012-07-11 13:30:19 us=79658   tls_remote = '[UNDEF]'
2012-07-11 13:30:19 us=79669   crl_file = '[UNDEF]'
2012-07-11 13:30:19 us=79679   ns_cert_type = 0
2012-07-11 13:30:19 us=79689   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79700   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79710   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79720   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79731   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79741   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79752   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79762   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79772   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79782   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79792   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79802   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79812   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79823   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79833   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79843   remote_cert_ku[i] = 0
2012-07-11 13:30:19 us=79853   remote_cert_eku = '[UNDEF]'
2012-07-11 13:30:19 us=79864   ssl_flags = 0
2012-07-11 13:30:19 us=79874   tls_timeout = 2
2012-07-11 13:30:19 us=79884   renegotiate_bytes = 0
2012-07-11 13:30:19 us=79894   renegotiate_packets = 0
2012-07-11 13:30:19 us=79905   renegotiate_seconds = 86400
2012-07-11 13:30:19 us=79915   handshake_window = 30
2012-07-11 13:30:19 us=79926   transition_window = 3600
2012-07-11 13:30:19 us=79936   single_session = DISABLED
2012-07-11 13:30:19 us=79947   push_peer_info = DISABLED
2012-07-11 13:30:19 us=79957   tls_exit = DISABLED
2012-07-11 13:30:19 us=79968   tls_auth_file = '[[INLINE]]'
2012-07-11 13:30:19 us=79999   server_network = 0.0.0.0
2012-07-11 13:30:19 us=80014   server_netmask = 0.0.0.0
2012-07-11 13:30:19 us=80029   server_network_ipv6 = ::
2012-07-11 13:30:19 us=80040   server_netbits_ipv6 = 0
2012-07-11 13:30:19 us=80052   server_bridge_ip = 0.0.0.0
2012-07-11 13:30:19 us=80064   server_bridge_netmask = 0.0.0.0
2012-07-11 13:30:19 us=80076   server_bridge_pool_start = 0.0.0.0
2012-07-11 13:30:19 us=80088   server_bridge_pool_end = 0.0.0.0
2012-07-11 13:30:19 us=80098   ifconfig_pool_defined = DISABLED
2012-07-11 13:30:19 us=80110   ifconfig_pool_start = 0.0.0.0
2012-07-11 13:30:19 us=80122   ifconfig_pool_end = 0.0.0.0
2012-07-11 13:30:19 us=80133   ifconfig_pool_netmask = 0.0.0.0
2012-07-11 13:30:19 us=80144   ifconfig_pool_persist_filename = '[UNDEF]'
2012-07-11 13:30:19 us=80155   ifconfig_pool_persist_refresh_freq = 600
2012-07-11 13:30:19 us=80166   ifconfig_ipv6_pool_defined = DISABLED
2012-07-11 13:30:19 us=80177   ifconfig_ipv6_pool_base = ::
2012-07-11 13:30:19 us=80188   ifconfig_ipv6_pool_netbits = 0
2012-07-11 13:30:19 us=80198   n_bcast_buf = 256
2012-07-11 13:30:19 us=80209   tcp_queue_limit = 64
2012-07-11 13:30:19 us=80219   real_hash_size = 256
2012-07-11 13:30:19 us=80230   virtual_hash_size = 256
2012-07-11 13:30:19 us=80241   client_connect_script = '[UNDEF]'
2012-07-11 13:30:19 us=80261   learn_address_script = '[UNDEF]'
2012-07-11 13:30:19 us=80272   client_disconnect_script = '[UNDEF]'
2012-07-11 13:30:19 us=80283   client_config_dir = '[UNDEF]'
2012-07-11 13:30:19 us=80301   ccd_exclusive = DISABLED
2012-07-11 13:30:19 us=80313   tmp_dir = '/var/folders/pr/7lgl_28s30g5f0yf3g9ynyqc0000gn/T/'
2012-07-11 13:30:19 us=80323   push_ifconfig_defined = DISABLED
2012-07-11 13:30:19 us=80343   push_ifconfig_local = 0.0.0.0
2012-07-11 13:30:19 us=80354   push_ifconfig_remote_netmask = 0.0.0.0
2012-07-11 13:30:19 us=80363   push_ifconfig_ipv6_defined = DISABLED
2012-07-11 13:30:19 us=80373   push_ifconfig_ipv6_local = ::/0
2012-07-11 13:30:19 us=80382   push_ifconfig_ipv6_remote = ::
2012-07-11 13:30:19 us=80391   enable_c2c = DISABLED
2012-07-11 13:30:19 us=80400   duplicate_cn = DISABLED
2012-07-11 13:30:19 us=80409   cf_max = 0
2012-07-11 13:30:19 us=80418   cf_per = 0
2012-07-11 13:30:19 us=80427   max_clients = 1024
2012-07-11 13:30:19 us=80436   max_routes_per_client = 256
2012-07-11 13:30:19 us=80446   auth_user_pass_verify_script = '[UNDEF]'
2012-07-11 13:30:19 us=80455   auth_user_pass_verify_script_via_file = DISABLED
2012-07-11 13:30:19 us=80464   port_share_host = '[UNDEF]'
2012-07-11 13:30:19 us=80473   port_share_port = 0
2012-07-11 13:30:19 us=80482   client = ENABLED
2012-07-11 13:30:19 us=80491   pull = ENABLED
2012-07-11 13:30:19 us=80500   auth_user_pass_file = '[UNDEF]'
2012-07-11 13:30:19 us=80511 OpenVPN 2.3-alpha1 i386-apple-darwin10.7.1 [SSL (OpenSSL)] [LZO2] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110522-1 (2.2.0)] built on May  3 2012
2012-07-11 13:30:19 us=80625 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2012-07-11 13:30:19 us=81041 Need hold release from management interface, waiting...
2012-07-11 13:30:19 us=252822 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2012-07-11 13:30:19 us=265491 MANAGEMENT: CMD 'pid'
2012-07-11 13:30:19 us=265606 MANAGEMENT: CMD 'state on'
2012-07-11 13:30:19 us=265667 MANAGEMENT: CMD 'state'
2012-07-11 13:30:19 us=265737 MANAGEMENT: CMD 'bytecount 1'
2012-07-11 13:30:19 us=265796 MANAGEMENT: CMD 'hold release'
2012-07-11 13:30:19 us=265922 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2012-07-11 13:30:19 us=265967 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2012-07-11 13:30:19 us=266612 Control Channel Authentication: tls-auth using INLINE static key file
2012-07-11 13:30:19 us=266673 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-07-11 13:30:19 us=266718 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-07-11 13:30:19 us=266782 LZO compression initialized
2012-07-11 13:30:19 us=266882 Control Channel MTU parms [ L:1546 D:166 EF:66 EB:0 ET:0 EL:0 ]
2012-07-11 13:30:19 us=266982 Socket Buffers: R=[196724->65536] S=[9216->65536]
2012-07-11 13:30:19 us=267031 Data Channel MTU parms [ L:1546 D:1390 EF:46 EB:135 ET:0 EL:0 AF:3/1 ]
2012-07-11 13:30:19 us=267074 Fragmentation MTU parms [ L:1546 D:1390 EF:45 EB:135 ET:1 EL:0 AF:3/1 ]
2012-07-11 13:30:19 us=267129 Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
2012-07-11 13:30:19 us=267174 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
2012-07-11 13:30:19 us=267226 Local Options hash (VER=V4): '551868c6'
2012-07-11 13:30:19 us=267272 Expected Remote Options hash (VER=V4): 'e34c1722'
2012-07-11 13:30:19 us=267320 UDPv4 link local: [undef]
2012-07-11 13:30:19 us=267380 UDPv4 link remote: [AF_INET]89.187.79.8:4398
2012-07-11 13:30:19 us=267444 MANAGEMENT: >STATE:1342006219,WAIT,,,
2012-07-11 13:30:19 us=289932 MANAGEMENT: >STATE:1342006219,AUTH,,,
2012-07-11 13:30:19 us=290042 TLS: Initial packet from [AF_INET]89.187.79.8:4398, sid=ea6e8508 80b6c542
2012-07-11 13:30:19 us=426176 VERIFY OK: depth=1, C=US, ST=CA, L=San-Francisco, O=reliablehosting.com, CN=ovpn007, emailAddress=tec...@reliablehosting.com
2012-07-11 13:30:19 us=426494 VERIFY OK: depth=0, C=US, ST=CA, L=San-Francisco, O=reliablehosting.com, CN=vpn-co33, emailAddress=tec...@reliablehosting.com
2012-07-11 13:30:19 us=699648 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
2012-07-11 13:30:19 us=699753 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-07-11 13:30:19 us=699836 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
2012-07-11 13:30:19 us=699885 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-07-11 13:30:19 us=699961 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2012-07-11 13:30:19 us=700027 [vpn-co33] Peer Connection Initiated with [AF_INET]89.187.79.8:4398
2012-07-11 13:30:20 us=768890 MANAGEMENT: >STATE:1342006220,GET_CONFIG,,,
2012-07-11 13:30:21 us=981393 SENT CONTROL [vpn-co33]: 'PUSH_REQUEST' (status=1)
2012-07-11 13:30:22 us=7156 PUSH: Received control message: 'PUSH_REPLY,ping 1,ping-restart 60,route-delay 2,route-metric 1,dhcp-option DNS 193.26.222.2,dhcp-option DNS 83.142.24.2,route 10.8.0.57,topology net30,ifconfig 10.8.0.62 10.8.0.61'
2012-07-11 13:30:22 us=7489 OPTIONS IMPORT: timers and/or timeouts modified
2012-07-11 13:30:22 us=7586 OPTIONS IMPORT: --ifconfig/up options modified
2012-07-11 13:30:22 us=7667 OPTIONS IMPORT: route options modified
2012-07-11 13:30:22 us=7747 OPTIONS IMPORT: route-related options modified
2012-07-11 13:30:22 us=7826 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2012-07-11 13:30:22 us=8057 ROUTE_GATEWAY 192.168.123.1/255.255.255.0 IFACE=en1 HWADDR=e0:f8:47:3a:e4:5e
2012-07-11 13:30:22 us=8275 TUN/TAP device /dev/tun0 opened
2012-07-11 13:30:22 us=8385 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2012-07-11 13:30:22 us=8519 MANAGEMENT: >STATE:1342006222,ASSIGN_IP,,10.8.0.62,
2012-07-11 13:30:22 us=8628 /sbin/ifconfig tun0 delete
                                        ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2012-07-11 13:30:22 us=13184 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2012-07-11 13:30:22 us=13335 /sbin/ifconfig tun0 10.8.0.62 10.8.0.61 mtu 1500 netmask 255.255.255.255 up
2012-07-11 13:30:22 us=15762 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atDASNGWrdasngw tun0 1500 1546 10.8.0.62 10.8.0.61 init
                                          No such key
2012-07-11 13:30:26 us=299030 /sbin/route add -net 89.187.79.8 192.168.123.1 255.255.255.255
                                        add net 89.187.79.8: gateway 192.168.123.1
2012-07-11 13:30:26 us=305114 /sbin/route add -net 0.0.0.0 10.8.0.61 128.0.0.0
                                        add net 0.0.0.0: gateway 10.8.0.61
2012-07-11 13:30:26 us=308248 /sbin/route add -net 128.0.0.0 10.8.0.61 128.0.0.0
                                        add net 128.0.0.0: gateway 10.8.0.61
2012-07-11 13:30:26 us=310907 MANAGEMENT: >STATE:1342006226,ADD_ROUTES,,,
2012-07-11 13:30:26 us=311070 /sbin/route add -net 10.8.0.57 10.8.0.61 255.255.255.255
                                        add net 10.8.0.57: gateway 10.8.0.61
2012-07-11 13:30:26 us=314293 Initialization Sequence Completed
2012-07-11 13:30:26 us=314452 MANAGEMENT: >STATE:1342006226,CONNECTED,SUCCESS,10.8.0.62,89.187.79.8
2012-07-11 13:31:28 us=546105 event_wait : Interrupted system call (code=4)
2012-07-11 13:31:28 us=546804 TCP/UDP: Closing socket
2012-07-11 13:31:28 us=547041 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw tun0 1500 1546 10.8.0.62 10.8.0.61 restart
2012-07-11 13:31:28 us=620089 SIGUSR1[hard,] received, process restarting
2012-07-11 13:31:28 us=620192 MANAGEMENT: >STATE:1342006288,RECONNECTING,SIGUSR1,,
2012-07-11 13:31:28 us=625487 MANAGEMENT: CMD 'hold release'
2012-07-11 13:31:28 us=625618 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2012-07-11 13:31:28 us=625698 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2012-07-11 13:31:28 us=625787 Re-using SSL/TLS context
2012-07-11 13:31:28 us=625842 LZO compression initialized
2012-07-11 13:31:28 us=625949 Control Channel MTU parms [ L:1546 D:166 EF:66 EB:0 ET:0 EL:0 ]
2012-07-11 13:31:28 us=626035 Socket Buffers: R=[196724->65536] S=[9216->65536]
2012-07-11 13:31:28 us=626092 Data Channel MTU parms [ L:1546 D:1390 EF:46 EB:135 ET:0 EL:0 AF:3/1 ]
2012-07-11 13:31:28 us=626146 Fragmentation MTU parms [ L:1546 D:1390 EF:45 EB:135 ET:1 EL:0 AF:3/1 ]
2012-07-11 13:31:28 us=626201 Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
2012-07-11 13:31:28 us=626244 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto UDPv4,comp-lzo,mtu-dynamic,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
2012-07-11 13:31:28 us=626291 Local Options hash (VER=V4): '551868c6'
2012-07-11 13:31:28 us=626335 Expected Remote Options hash (VER=V4): 'e34c1722'
2012-07-11 13:31:28 us=626381 UDPv4 link local: [undef]
2012-07-11 13:31:28 us=626429 UDPv4 link remote: [AF_INET]89.187.79.8:4398
2012-07-11 13:31:28 us=626489 MANAGEMENT: >STATE:1342006288,WAIT,,,
2012-07-11 13:31:49 us=844919 event_wait : Interrupted system call (code=4)
2012-07-11 13:31:49 us=845031 SIGTERM received, sending exit notification to peer
2012-07-11 13:31:51 us=18298 TCP/UDP: Closing socket
2012-07-11 13:31:51 us=18622 /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -m -w -d -atDASNGWrdasngw tun0 1500 1546 10.8.0.62 10.8.0.61 init
2012-07-11 13:31:52 *Tunnelblick client.route-pre-down.tunnelblick.sh: WARNING: No existing OpenVPN DNS configuration found; not tearing down anything; exiting.
2012-07-11 13:31:52 us=38202 /sbin/route delete -net 10.8.0.57 10.8.0.61 255.255.255.255
                                        delete net 10.8.0.57: gateway 10.8.0.61
2012-07-11 13:31:52 us=40710 /sbin/route delete -net 89.187.79.8 192.168.123.1 255.255.255.255
                                        delete net 89.187.79.8: gateway 192.168.123.1
2012-07-11 13:31:52 us=42842 /sbin/route delete -net 0.0.0.0 10.8.0.61 128.0.0.0
                                        delete net 0.0.0.0: gateway 10.8.0.61
2012-07-11 13:31:52 us=44571 /sbin/route delete -net 128.0.0.0 10.8.0.61 128.0.0.0
                                        delete net 128.0.0.0: gateway 10.8.0.61
2012-07-11 13:31:52 us=46338 Closing TUN/TAP interface
2012-07-11 13:31:52 us=46615 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw tun0 1500 1546 10.8.0.62 10.8.0.61 init
2012-07-11 13:31:53 *Tunnelblick client.down.tunnelblick.sh: WARNING: No existing OpenVPN DNS configuration found; not tearing down anything; exiting.
2012-07-11 13:31:53 us=60752 SIGTERM[soft,exit-with-notification] received, process exiting
2012-07-11 13:31:53 us=60852 MANAGEMENT: >STATE:1342006313,EXITING,exit-with-notification,,
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):

     /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3-alpha1/openvpn
     --cd
     /Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations
     --daemon
     --management
     127.0.0.1
     1337
     --config
     /Volumes/Toshiba [Data]/Jamie/Library/Application Support/Tunnelblick/Configurations/StrongVPN co33.ovpn
     --log
     /Library/Application Support/Tunnelblick/Logs/-SUsers-SJamie-SLibrary-SApplication Support-STunnelblick-SConfigurations-SStrongVPN co33.ovpn.1_0_0_0_49.1337.openvpn.log
     --management-query-passwords
     --management-hold
     --script-security
     2
     --up
     /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atDASNGWrdasngw
     --down
     /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw
     --up-restart
     --route-pre-down
     /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -m -w -d -atDASNGWrdasngw
2012-07-11 13:30:19 *Tunnelblick: Established communication with OpenVPN
2012-07-11 13:30:26 *Tunnelblick: Flushed the DNS cache
2012-07-11 13:31:49 *Tunnelblick: Disconnecting; Disconnect button pressed
2012-07-11 13:31:52 *Tunnelblick: Flushed the DNS cache

--
You received this message because you are subscribed to the Google Groups "tunnelblick-discuss" group.
To view this discussion on the web visit https://groups.google.com/d/msg/tunnelblick-discuss/-/vG1sHHLpKjkJ.
To post to this group, send email to tunnelbli...@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-dis...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/tunnelblick-discuss?hl=en.

[Jamie Taylor]

It's not a DNS fault.

I will try to contact my VPN provider but in the meantime any ideas?

Thanks

2012-07-11 13:30:19 us=426176 VERIFY OK: depth=1, C=US, ST=CA, L=San-Francisco, O=reliablehosting.com, CN=ovpn007, emailAddress=techies@reliablehosting.com
2012-07-11 13:30:19 us=426494 VERIFY OK: depth=0, C=US, ST=CA, L=San-Francisco, O=reliablehosting.com, CN=vpn-co33, emailAddress=techies@reliablehosting.com

To post to this group, send email to tunnelblick-discuss@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-discuss+unsub...@googlegroups.com.

[jkbull...gmail.com]

Most problems like this have been caused when an upgrade to Mountain Lion loses manual network settings that were present in Lion.

[Andre Scheffknecht]

Thanks delfinof!!! I thought that I am the only one with the problem?!

On Saturday, July 14, 2012 7:40:31 AM UTC+2, delfinof wrote:

Same happens here, it is a Tunnelblick issue.

After Tunnelblick estabilishes the connection, you will be:

- able to connect to servers available in the vpn, when referenced *by ip*

- the dns resolution does not work, instead.

But the strangest thing is that:

- giving the hostname to "ping" DOES NOT WORK

- giving the same hostname to "host", WORKS

Bye

   Francesco

[delfinof]

Using 3.0b010 works also for me.

Another issue: if you connect your mac to an external monitor (setting it as the default screen) and use the notebook screen as the second screen, the tunnelblick icon disappears from the menu bar.

bye

  Francesco

Il giorno martedì 17 luglio 2012 16:36:16 UTC+2, André Lucas ha scritto:

Hi,

I got pretty much the same problem with the Mountain Lion GM seed - a configuration that worked perfectly with Lion failed to lookup names on Mountain Lion. I am running 3.3b06. I had to change 'Set DNS/WINS' to 'Set nameserver' (3.0b010), then everything magically started working again. I will investigate, but right now I'm just glad to have my VPN back!

Oddly, even when it wasn't working, 'scutil --dns' showed the right DNS servers and search domain. I'm quite new to OS X and the resolver seems a bit... strange.

I've read elsewhere that host(1) is a bad tool to use, as it resolves names differently to everything else. For almost all DNS diagnostics I use dig(1).

-André

[Jonathan K. Bullard]

Francesco -

Thanks for the info that setting DNS/WINS to Set nameserver (3.b10) worked for you.

About the external monitor: I can't reproduce the problem you are having. Can you give more details:

Are you using Mounain Lion "Gold Master"?

How are your screens arranged in the "Arrangement" tab of the Displays System Preferences?  (For example, "external screen on top").

Does the Tunnelblick icon disappear at the time you switch from having the menu bar on the laptop screen to having it on the external screen? If not, when exactly does it appear. That is, what sequence of actions will make it disappear?

Thanks. 

--

You received this message because you are subscribed to the Google Groups "tunnelblick-discuss" group.

To view this discussion on the web visit https://groups.google.com/d/msg/tunnelblick-discuss/-/j_f02M5HvsAJ.

To post to this group, send email to tunnelbli...@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-dis...@googlegroups.com.

[Francesco Delfino]

Yes, I am using the gold master (download last sunday).

External screen is on the left, laptop screen is on the right

I just notice that everytime I move from office (where I have the external screen) and home (where I use the laptop screen) I have to find the tunnelblick process, kill it and restart it in order to setup a vpn connection.

About the DNS issue, I also noticed that if I rewrite, from the network panel, the same exact DNS that Tunnelblick is getting from the openvpn server, it starts to work; if I then delete the "manual" settings (and I see the same address in gray since it is an automatic setting) it again does not work.

I guess it is happining something weird with the api responsible for setting the DNS name...

bye

   Francesco

[jkbull...gmail.com]

I have just posted an article in the Tunnelblick Wiki about Mountain Lion Issues.

It deals with the issues in this discussion and describes troubleshooting steps and workarounds.