Unable to connect to remote IP according the configuration
392 views
Skip to first unread message
Chichi Shou
Aug 27, 2022, 11:36:43 PM8/27/22
to tunnelblick-discuss
Hi Tunnelblick team,
I'm able to connect to VPN with my current .ovpn configuration on my MacBook Pro.
However, I used the same configuration to set up with my new MacBook Air (M2) but unable to connect to the remote IP. Please advise how should I fix the problem, thank you!
Tunnelblick 3.8.7a (build 5770)
MacBook Air (M2)
macOS Monterey
Version 12.5.1
I saw this message after I added the current .ovpn configuration.
Then I added IPs on my Network.
Connected to my added configuration but unable to connect the remote IP
Here is the log for investigation.
*Tunnelblick: macOS 12.5.1 (21G83); Tunnelblick 3.8.7a (build 5770); prior version 3.8.8beta04 (build 5800); Admin user
git commit 7df4363a5980ab8be88a6a3aaeee028f36813607
The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,2
Configuration costco
"Sanitized" condensed configuration file for /Users/chichishou/Library/Application Support/Tunnelblick/Configurations/costco.tblk:
client
dev tun
proto udp
remote 35.226.94.220 1195
persist-key
persist-tun
ca ca.crt
cert chichishou.crt
key chichishou.key
auth-user-pass
nobind
auth-nocache
script-security 2
reneg-sec 21600
tls-auth ta.key 1
cipher AES-256-CFB8
tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA
remote-cert-tls server
auth SHA512
================================================================================
Files in costco.tblk:
Contents/Resources/ta.key
Contents/Resources/ca.crt
Contents/Resources/chi….crt
Contents/Resources/chi….key
Contents/Resources/config.ovpn
================================================================================
Tunnelblick Kext Policy Data:
net.tunnelblick.tap|Z2SG5H3HC8|Jonathan Bullard|0|32
net.tunnelblick.tun|Z2SG5H3HC8|Jonathan Bullard|0|32
================================================================================
Configuration preferences:
-routeAllTrafficThroughVpn = 0
-keychainHasUsername = 1
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
-allowChangesToManuallySetNetworkSettings = 0
-consecutiveSuccessfulIPAddressChanges = 5
-loginWindowSecurityTokenCheckboxIsChecked = 0
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"3.8.7a (build 5770)",
"3.8.8beta04 (build 5800)",
"3.8.7a (build 5770)"
)
lastLaunchTime = 683348919.6663409
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = costco
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame SettingsSheetWindow = 226 148 829 548 0 0 1470 919
NSWindow Frame ConnectingWindow = 422 427 626 378 0 0 1470 919
detailsWindowFrameVersion = 5770
detailsWindowFrame = {{275, 319}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = log
leftNavSelectedDisplayName = costco
AdvancedWindowTabIdentifier = connectingAndDisconnecting
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2022-08-28 03:08:40 +0000
SUHasLaunchedBefore = 1
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Log:
2022-08-28 11:08:57.810618 *Tunnelblick: macOS 12.5.1 (21G83); Tunnelblick 3.8.7a (build 5770); prior version 3.8.8beta04 (build 5800)
2022-08-28 11:08:58.110333 *Tunnelblick: Attempting connection with costco using shadow copy; Set nameserver = 769; monitoring connection
2022-08-28 11:08:58.111160 *Tunnelblick: openvpnstart startcostco.tblk6533676901034652464-ptADGNWradsgnw2.5.4-openssl-1.1.1l <password>
2022-08-28 11:08:58.136902 *Tunnelblick: openvpnstart starting OpenVPN
2022-08-28 11:08:58.456406 DEPRECATED OPTION: --cipher set to 'AES-256-CFB8' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CFB8' to --data-ciphers or change --cipher 'AES-256-CFB8' to --data-ciphers-fallback 'AES-256-CFB8' to silence this warning.
2022-08-28 11:08:58.456853 OpenVPN 2.5.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Nov 29 2021
2022-08-28 11:08:58.456875 library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
2022-08-28 11:08:58.457707 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:65336
2022-08-28 11:08:58.457723 Need hold release from management interface, waiting...
2022-08-28 11:08:58.737324 *Tunnelblick: openvpnstart log:
OpenVPN started successfully.
Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.5.4-openssl-1.1.1l/openvpn
--daemon
--log /Library/Application Support/Tunnelblick/Logs/-SUsers-Schichishou-SLibrary-SApplication Support-STunnelblick-SConfigurations-Scostco.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_34652464.65336.openvpn.log
--cd /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--machine-readable-output
--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5770 3.8.7a (build 5770)"
--verb 3
--config /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources/config.ovpn
--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--verb 3
--cd /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--management 127.0.0.1 65336 /Library/Application Support/Tunnelblick/Mips/costco.tblk.mip
--management-query-passwords
--management-hold
--script-security 2
--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2022-08-28 11:08:58.746454 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:65336
2022-08-28 11:08:58.767759 MANAGEMENT: CMD 'pid'
2022-08-28 11:08:58.767806 MANAGEMENT: CMD 'auth-retry interact'
2022-08-28 11:08:58.767831 MANAGEMENT: CMD 'state on'
2022-08-28 11:08:58.767848 MANAGEMENT: CMD 'state'
2022-08-28 11:08:58.767876 MANAGEMENT: CMD 'bytecount 1'
2022-08-28 11:08:58.768230 *Tunnelblick: Established communication with OpenVPN
2022-08-28 11:08:58.769282 *Tunnelblick: >INFO:OpenVPN Management Interface Version 3 -- type 'help' for more info
2022-08-28 11:08:58.770245 MANAGEMENT: CMD 'hold release'
2022-08-28 11:09:13.348253 MANAGEMENT: CMD 'username "Auth" "chichishou"'
2022-08-28 11:09:13.348334 MANAGEMENT: CMD 'password [...]'
2022-08-28 11:09:13.348713 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2022-08-28 11:09:13.356408 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-08-28 11:09:13.356441 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-08-28 11:09:13.356645 TCP/UDP: Preserving recently used remote address: [AF_INET]35.226.94.220:1195
2022-08-28 11:09:13.356704 Socket Buffers: R=[786896->786896] S=[9216->9216]
2022-08-28 11:09:13.356718 UDP link local: (not bound)
2022-08-28 11:09:13.356730 UDP link remote: [AF_INET]35.226.94.220:1195
2022-08-28 11:09:13.356753 MANAGEMENT: >STATE:1661656153,WAIT,,,,,,
2022-08-28 11:09:13.524124 MANAGEMENT: >STATE:1661656153,AUTH,,,,,,
2022-08-28 11:09:13.524250 TLS: Initial packet from [AF_INET]35.226.94.220:1195, sid=a811d370 89efec0d
2022-08-28 11:09:13.735037 VERIFY OK: depth=1, CN=test1004
2022-08-28 11:09:13.737964 VERIFY KU OK
2022-08-28 11:09:13.738412 Validating certificate extended key usage
2022-08-28 11:09:13.739963 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-08-28 11:09:13.740006 VERIFY EKU OK
2022-08-28 11:09:13.740021 VERIFY OK: depth=0, CN=main
2022-08-28 11:09:14.408869 Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, peer certificate: 4096 bit RSA, signature: RSA-SHA256
2022-08-28 11:09:14.408986 [main] Peer Connection Initiated with [AF_INET]35.226.94.220:1195
2022-08-28 11:09:15.556488 MANAGEMENT: >STATE:1661656155,GET_CONFIG,,,,,,
2022-08-28 11:09:15.556708 SENT CONTROL [main]: 'PUSH_REQUEST' (status=1)
2022-08-28 11:09:15.726518 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,route 10.50.8.0 255.255.248.0,topology net30,ping 10,ping-restart 900,ifconfig 10.50.9.38 10.50.9.37,peer-id 0,cipher AES-256-GCM'
2022-08-28 11:09:15.726801 OPTIONS IMPORT: timers and/or timeouts modified
2022-08-28 11:09:15.726840 OPTIONS IMPORT: --ifconfig/up options modified
2022-08-28 11:09:15.726863 OPTIONS IMPORT: route options modified
2022-08-28 11:09:15.726923 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2022-08-28 11:09:15.726947 OPTIONS IMPORT: peer-id set
2022-08-28 11:09:15.726969 OPTIONS IMPORT: adjusting link_mtu to 1624
2022-08-28 11:09:15.726989 OPTIONS IMPORT: data channel crypto options modified
2022-08-28 11:09:15.727013 Data Channel: using negotiated cipher 'AES-256-GCM'
2022-08-28 11:09:15.729387 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-08-28 11:09:15.729471 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-08-28 11:09:15.730656 Opened utun device utun8
2022-08-28 11:09:15.730784 MANAGEMENT: >STATE:1661656155,ASSIGN_IP,,10.50.9.38,,,,
2022-08-28 11:09:15.730807 /sbin/ifconfig utun8 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2022-08-28 11:09:15.746694 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2022-08-28 11:09:15.746730 /sbin/ifconfig utun8 10.50.9.38 10.50.9.37 mtu 1500 netmask 255.255.255.255 up
2022-08-28 11:09:15.752141 /sbin/route add -net 35.226.94.220 192.168.1.1 255.255.255.255
add net 35.226.94.220: gateway 192.168.1.1
2022-08-28 11:09:15.760145 /sbin/route add -net 0.0.0.0 10.50.9.37 128.0.0.0
add net 0.0.0.0: gateway 10.50.9.37
2022-08-28 11:09:15.763118 /sbin/route add -net 128.0.0.0 10.50.9.37 128.0.0.0
add net 128.0.0.0: gateway 10.50.9.37
2022-08-28 11:09:15.765973 MANAGEMENT: >STATE:1661656155,ADD_ROUTES,,,,,,
2022-08-28 11:09:15.766014 /sbin/route add -net 10.50.8.0 10.50.9.37 255.255.248.0
add net 10.50.8.0: gateway 10.50.9.37
11:09:15 *Tunnelblick: **********************************************
11:09:15 *Tunnelblick: Start of output from client.up.tunnelblick.sh
11:09:17 *Tunnelblick: Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
11:09:18 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher
11:09:18 *Tunnelblick: Not replacing search domains '208.67.220.220 208.67.222.222 8.8.4.4 8.8.8.8' with 'openvpn' because the search domains were set manually, '-allowChangesToManuallySetNetworkSettings' was not selected, and 'Prepend domain name to search domains' was not selected
11:09:19 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored
11:09:19 *Tunnelblick: Changed DNS ServerAddresses setting from '100.64.0.1' to '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220'
11:09:19 *Tunnelblick: Did not change DNS SearchDomains setting of '208.67.220.220 208.67.222.222 8.8.4.4 8.8.8.8' (but re-set it)
11:09:19 *Tunnelblick: Changed DNS DomainName setting from '' to 'openvpn'
11:09:19 *Tunnelblick: Did not change SMB NetBIOSName setting of ''
11:09:19 *Tunnelblick: Did not change SMB Workgroup setting of ''
11:09:19 *Tunnelblick: Did not change SMB WINSAddresses setting of '192.168.1.1'
11:09:19 *Tunnelblick: DNS servers '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220' will be used for DNS queries when the VPN is active
11:09:19 *Tunnelblick: The DNS servers include only free public DNS servers known to Tunnelblick.
11:09:19 *Tunnelblick: Flushed the DNS cache via dscacheutil
11:09:19 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
11:09:19 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
11:09:19 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running
11:09:19 *Tunnelblick: Setting up to monitor system configuration with process-network-changes
11:09:19 *Tunnelblick: End of output from client.up.tunnelblick.sh
11:09:19 *Tunnelblick: **********************************************
2022-08-28 11:09:19.282779 Initialization Sequence Completed
2022-08-28 11:09:19.282797 MANAGEMENT: >STATE:1661656159,CONNECTED,SUCCESS,10.50.9.38,35.226.94.220,1195,,
2022-08-28 11:09:20.506202 *Tunnelblick: DNS address 100.64.0.1 is being routed through the VPN
2022-08-28 11:09:20.615518 *Tunnelblick: DNS address 208.67.220.220 is being routed through the VPN
2022-08-28 11:09:20.721639 *Tunnelblick: DNS address 208.67.222.222 is being routed through the VPN
2022-08-28 11:09:20.830733 *Tunnelblick: DNS address 8.8.4.4 is being routed through the VPN
2022-08-28 11:09:20.939468 *Tunnelblick: DNS address 8.8.8.8 is being routed through the VPN
================================================================================
Down log:
10:42:54 *Tunnelblick: **********************************************
10:42:54 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:42:54 *Tunnelblick: Cancelled monitoring system configuration changes
10:42:54 *Tunnelblick: Restored State:DNS
10:42:54 *Tunnelblick: Restored Setup:DNS
10:42:54 *Tunnelblick: Restored State:SMB
10:42:54 *Tunnelblick: Restored DNS and SMB settings
10:42:54 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:42:54 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:42:54 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:42:54 *Tunnelblick: **********************************************
================================================================================
Previous down log:
10:41:24 *Tunnelblick: **********************************************
10:41:24 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:41:24 *Tunnelblick: Cancelled monitoring system configuration changes
10:41:24 *Tunnelblick: Restored State:DNS
10:41:24 *Tunnelblick: Restored Setup:DNS
10:41:24 *Tunnelblick: Restored State:SMB
10:41:24 *Tunnelblick: Restored DNS and SMB settings
10:41:24 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:41:24 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:41:24 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:41:24 *Tunnelblick: **********************************************
================================================================================
Network services:
An asterisk (*) denotes that a network service is disabled.
Wi-Fi
Thunderbolt Bridge
Wi-Fi Power (en0): On
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
anpi0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:99
inet6 fe80::2867:d3ff:fe1e:ab99%anpi0 prefixlen 64 scopeid 0x4
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
anpi1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:9a
inet6 fe80::2867:d3ff:fe1e:ab9a%anpi1 prefixlen 64 scopeid 0x5
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
ap1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 3e:57:dc:62:cb:79
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: inactive
en3: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:79
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en4: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:7a
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:4c:4e:5f:2f:80
media: autoselect <full-duplex>
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:4c:4e:5f:2f:84
media: autoselect <full-duplex>
status: inactive
en0: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=6463<RXCSUM,TXCSUM,TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 1c:57:dc:62:cb:79
inet6 fe80::5d:2d28:38f5:3ef5%en0 prefixlen 64 secured scopeid 0xb
inet 192.168.1.111 netmask 0xffffff00 broadcast 192.168.1.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether fe:7a:0a:ae:70:70
inet6 fe80::fc7a:aff:feae:7070%awdl0 prefixlen 64 scopeid 0xc
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:4c:4e:5f:2f:80
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether fe:7a:0a:ae:70:70
inet6 fe80::fc7a:aff:feae:7070%llw0 prefixlen 64 scopeid 0xe
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 100.64.0.1 --> 100.64.0.1 netmask 0xffff0000
inet6 fe80::1e57:dcff:fe62:cb79%utun0 prefixlen 64 scopeid 0xf
inet6 fc00::6440:1 prefixlen 64
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::5b09:52c0:b0fd:5cb3%utun1 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::1d4e:5096:fa6:ad60%utun2 prefixlen 64 scopeid 0x11
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun3 prefixlen 64 scopeid 0x12
nd6 options=201<PERFORMNUD,DAD>
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::d7a3:e258:c41:cd1b%utun4 prefixlen 64 scopeid 0x13
nd6 options=201<PERFORMNUD,DAD>
utun5: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::7f7c:7e17:b709:3451%utun5 prefixlen 64 scopeid 0x14
nd6 options=201<PERFORMNUD,DAD>
utun6: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::7cc0:8da:bd93:11a8%utun6 prefixlen 64 scopeid 0x15
nd6 options=201<PERFORMNUD,DAD>
utun7: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::5636:28d6:e42a:de2c%utun7 prefixlen 64 scopeid 0x16
nd6 options=201<PERFORMNUD,DAD>
utun8: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 10.50.9.38 --> 10.50.9.37 netmask 0xffffffff
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2022-08-28 10:46:08.196087 applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes)
2022-08-28 10:46:08.199693 shutDownTunnelblick: started.
2022-08-28 10:46:08.200916 shutDownTunnelblick: Starting cleanup.
2022-08-28 10:46:08.201448 cleanup: Entering cleanup
2022-08-28 10:46:08.201930 synchronized user defaults
2022-08-28 10:46:08.944379 shutDownTunnelblick: Cleanup finished.
2022-08-28 10:46:08.945754 Finished shutting down Tunnelblick; allowing termination
================================================================================
Traces Log:
================================================================================
Console Log:
git commit 7df4363a5980ab8be88a6a3aaeee028f36813607
The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,2
Configuration costco
"Sanitized" condensed configuration file for /Users/chichishou/Library/Application Support/Tunnelblick/Configurations/costco.tblk:
client
dev tun
proto udp
remote 35.226.94.220 1195
persist-key
persist-tun
ca ca.crt
cert chichishou.crt
key chichishou.key
auth-user-pass
nobind
auth-nocache
script-security 2
reneg-sec 21600
tls-auth ta.key 1
cipher AES-256-CFB8
tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA
remote-cert-tls server
auth SHA512
================================================================================
Files in costco.tblk:
Contents/Resources/ta.key
Contents/Resources/ca.crt
Contents/Resources/chi….crt
Contents/Resources/chi….key
Contents/Resources/config.ovpn
================================================================================
Tunnelblick Kext Policy Data:
net.tunnelblick.tap|Z2SG5H3HC8|Jonathan Bullard|0|32
net.tunnelblick.tun|Z2SG5H3HC8|Jonathan Bullard|0|32
================================================================================
Configuration preferences:
-routeAllTrafficThroughVpn = 0
-keychainHasUsername = 1
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
-allowChangesToManuallySetNetworkSettings = 0
-consecutiveSuccessfulIPAddressChanges = 5
-loginWindowSecurityTokenCheckboxIsChecked = 0
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"3.8.7a (build 5770)",
"3.8.8beta04 (build 5800)",
"3.8.7a (build 5770)"
)
lastLaunchTime = 683348919.6663409
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = costco
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame SettingsSheetWindow = 226 148 829 548 0 0 1470 919
NSWindow Frame ConnectingWindow = 422 427 626 378 0 0 1470 919
detailsWindowFrameVersion = 5770
detailsWindowFrame = {{275, 319}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = log
leftNavSelectedDisplayName = costco
AdvancedWindowTabIdentifier = connectingAndDisconnecting
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2022-08-28 03:08:40 +0000
SUHasLaunchedBefore = 1
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Log:
2022-08-28 11:08:57.810618 *Tunnelblick: macOS 12.5.1 (21G83); Tunnelblick 3.8.7a (build 5770); prior version 3.8.8beta04 (build 5800)
2022-08-28 11:08:58.110333 *Tunnelblick: Attempting connection with costco using shadow copy; Set nameserver = 769; monitoring connection
2022-08-28 11:08:58.111160 *Tunnelblick: openvpnstart startcostco.tblk6533676901034652464-ptADGNWradsgnw2.5.4-openssl-1.1.1l <password>
2022-08-28 11:08:58.136902 *Tunnelblick: openvpnstart starting OpenVPN
2022-08-28 11:08:58.456406 DEPRECATED OPTION: --cipher set to 'AES-256-CFB8' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CFB8' to --data-ciphers or change --cipher 'AES-256-CFB8' to --data-ciphers-fallback 'AES-256-CFB8' to silence this warning.
2022-08-28 11:08:58.456853 OpenVPN 2.5.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Nov 29 2021
2022-08-28 11:08:58.456875 library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
2022-08-28 11:08:58.457707 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:65336
2022-08-28 11:08:58.457723 Need hold release from management interface, waiting...
2022-08-28 11:08:58.737324 *Tunnelblick: openvpnstart log:
OpenVPN started successfully.
Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.5.4-openssl-1.1.1l/openvpn
--daemon
--log /Library/Application Support/Tunnelblick/Logs/-SUsers-Schichishou-SLibrary-SApplication Support-STunnelblick-SConfigurations-Scostco.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_34652464.65336.openvpn.log
--cd /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--machine-readable-output
--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5770 3.8.7a (build 5770)"
--verb 3
--config /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources/config.ovpn
--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--verb 3
--cd /Library/Application Support/Tunnelblick/Users/chichishou/costco.tblk/Contents/Resources
--management 127.0.0.1 65336 /Library/Application Support/Tunnelblick/Mips/costco.tblk.mip
--management-query-passwords
--management-hold
--script-security 2
--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2022-08-28 11:08:58.746454 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:65336
2022-08-28 11:08:58.767759 MANAGEMENT: CMD 'pid'
2022-08-28 11:08:58.767806 MANAGEMENT: CMD 'auth-retry interact'
2022-08-28 11:08:58.767831 MANAGEMENT: CMD 'state on'
2022-08-28 11:08:58.767848 MANAGEMENT: CMD 'state'
2022-08-28 11:08:58.767876 MANAGEMENT: CMD 'bytecount 1'
2022-08-28 11:08:58.768230 *Tunnelblick: Established communication with OpenVPN
2022-08-28 11:08:58.769282 *Tunnelblick: >INFO:OpenVPN Management Interface Version 3 -- type 'help' for more info
2022-08-28 11:08:58.770245 MANAGEMENT: CMD 'hold release'
2022-08-28 11:09:13.348253 MANAGEMENT: CMD 'username "Auth" "chichishou"'
2022-08-28 11:09:13.348334 MANAGEMENT: CMD 'password [...]'
2022-08-28 11:09:13.348713 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2022-08-28 11:09:13.356408 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-08-28 11:09:13.356441 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-08-28 11:09:13.356645 TCP/UDP: Preserving recently used remote address: [AF_INET]35.226.94.220:1195
2022-08-28 11:09:13.356704 Socket Buffers: R=[786896->786896] S=[9216->9216]
2022-08-28 11:09:13.356718 UDP link local: (not bound)
2022-08-28 11:09:13.356730 UDP link remote: [AF_INET]35.226.94.220:1195
2022-08-28 11:09:13.356753 MANAGEMENT: >STATE:1661656153,WAIT,,,,,,
2022-08-28 11:09:13.524124 MANAGEMENT: >STATE:1661656153,AUTH,,,,,,
2022-08-28 11:09:13.524250 TLS: Initial packet from [AF_INET]35.226.94.220:1195, sid=a811d370 89efec0d
2022-08-28 11:09:13.735037 VERIFY OK: depth=1, CN=test1004
2022-08-28 11:09:13.737964 VERIFY KU OK
2022-08-28 11:09:13.738412 Validating certificate extended key usage
2022-08-28 11:09:13.739963 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-08-28 11:09:13.740006 VERIFY EKU OK
2022-08-28 11:09:13.740021 VERIFY OK: depth=0, CN=main
2022-08-28 11:09:14.408869 Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, peer certificate: 4096 bit RSA, signature: RSA-SHA256
2022-08-28 11:09:14.408986 [main] Peer Connection Initiated with [AF_INET]35.226.94.220:1195
2022-08-28 11:09:15.556488 MANAGEMENT: >STATE:1661656155,GET_CONFIG,,,,,,
2022-08-28 11:09:15.556708 SENT CONTROL [main]: 'PUSH_REQUEST' (status=1)
2022-08-28 11:09:15.726518 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,route 10.50.8.0 255.255.248.0,topology net30,ping 10,ping-restart 900,ifconfig 10.50.9.38 10.50.9.37,peer-id 0,cipher AES-256-GCM'
2022-08-28 11:09:15.726801 OPTIONS IMPORT: timers and/or timeouts modified
2022-08-28 11:09:15.726840 OPTIONS IMPORT: --ifconfig/up options modified
2022-08-28 11:09:15.726863 OPTIONS IMPORT: route options modified
2022-08-28 11:09:15.726923 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2022-08-28 11:09:15.726947 OPTIONS IMPORT: peer-id set
2022-08-28 11:09:15.726969 OPTIONS IMPORT: adjusting link_mtu to 1624
2022-08-28 11:09:15.726989 OPTIONS IMPORT: data channel crypto options modified
2022-08-28 11:09:15.727013 Data Channel: using negotiated cipher 'AES-256-GCM'
2022-08-28 11:09:15.729387 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-08-28 11:09:15.729471 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-08-28 11:09:15.730656 Opened utun device utun8
2022-08-28 11:09:15.730784 MANAGEMENT: >STATE:1661656155,ASSIGN_IP,,10.50.9.38,,,,
2022-08-28 11:09:15.730807 /sbin/ifconfig utun8 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2022-08-28 11:09:15.746694 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2022-08-28 11:09:15.746730 /sbin/ifconfig utun8 10.50.9.38 10.50.9.37 mtu 1500 netmask 255.255.255.255 up
2022-08-28 11:09:15.752141 /sbin/route add -net 35.226.94.220 192.168.1.1 255.255.255.255
add net 35.226.94.220: gateway 192.168.1.1
2022-08-28 11:09:15.760145 /sbin/route add -net 0.0.0.0 10.50.9.37 128.0.0.0
add net 0.0.0.0: gateway 10.50.9.37
2022-08-28 11:09:15.763118 /sbin/route add -net 128.0.0.0 10.50.9.37 128.0.0.0
add net 128.0.0.0: gateway 10.50.9.37
2022-08-28 11:09:15.765973 MANAGEMENT: >STATE:1661656155,ADD_ROUTES,,,,,,
2022-08-28 11:09:15.766014 /sbin/route add -net 10.50.8.0 10.50.9.37 255.255.248.0
add net 10.50.8.0: gateway 10.50.9.37
11:09:15 *Tunnelblick: **********************************************
11:09:15 *Tunnelblick: Start of output from client.up.tunnelblick.sh
11:09:17 *Tunnelblick: Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
11:09:18 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher
11:09:18 *Tunnelblick: Not replacing search domains '208.67.220.220 208.67.222.222 8.8.4.4 8.8.8.8' with 'openvpn' because the search domains were set manually, '-allowChangesToManuallySetNetworkSettings' was not selected, and 'Prepend domain name to search domains' was not selected
11:09:19 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored
11:09:19 *Tunnelblick: Changed DNS ServerAddresses setting from '100.64.0.1' to '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220'
11:09:19 *Tunnelblick: Did not change DNS SearchDomains setting of '208.67.220.220 208.67.222.222 8.8.4.4 8.8.8.8' (but re-set it)
11:09:19 *Tunnelblick: Changed DNS DomainName setting from '' to 'openvpn'
11:09:19 *Tunnelblick: Did not change SMB NetBIOSName setting of ''
11:09:19 *Tunnelblick: Did not change SMB Workgroup setting of ''
11:09:19 *Tunnelblick: Did not change SMB WINSAddresses setting of '192.168.1.1'
11:09:19 *Tunnelblick: DNS servers '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220' will be used for DNS queries when the VPN is active
11:09:19 *Tunnelblick: The DNS servers include only free public DNS servers known to Tunnelblick.
11:09:19 *Tunnelblick: Flushed the DNS cache via dscacheutil
11:09:19 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
11:09:19 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
11:09:19 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running
11:09:19 *Tunnelblick: Setting up to monitor system configuration with process-network-changes
11:09:19 *Tunnelblick: End of output from client.up.tunnelblick.sh
11:09:19 *Tunnelblick: **********************************************
2022-08-28 11:09:19.282779 Initialization Sequence Completed
2022-08-28 11:09:19.282797 MANAGEMENT: >STATE:1661656159,CONNECTED,SUCCESS,10.50.9.38,35.226.94.220,1195,,
2022-08-28 11:09:20.506202 *Tunnelblick: DNS address 100.64.0.1 is being routed through the VPN
2022-08-28 11:09:20.615518 *Tunnelblick: DNS address 208.67.220.220 is being routed through the VPN
2022-08-28 11:09:20.721639 *Tunnelblick: DNS address 208.67.222.222 is being routed through the VPN
2022-08-28 11:09:20.830733 *Tunnelblick: DNS address 8.8.4.4 is being routed through the VPN
2022-08-28 11:09:20.939468 *Tunnelblick: DNS address 8.8.8.8 is being routed through the VPN
================================================================================
Down log:
10:42:54 *Tunnelblick: **********************************************
10:42:54 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:42:54 *Tunnelblick: Cancelled monitoring system configuration changes
10:42:54 *Tunnelblick: Restored State:DNS
10:42:54 *Tunnelblick: Restored Setup:DNS
10:42:54 *Tunnelblick: Restored State:SMB
10:42:54 *Tunnelblick: Restored DNS and SMB settings
10:42:54 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:42:54 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:42:54 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:42:54 *Tunnelblick: **********************************************
================================================================================
Previous down log:
10:41:24 *Tunnelblick: **********************************************
10:41:24 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:41:24 *Tunnelblick: Cancelled monitoring system configuration changes
10:41:24 *Tunnelblick: Restored State:DNS
10:41:24 *Tunnelblick: Restored Setup:DNS
10:41:24 *Tunnelblick: Restored State:SMB
10:41:24 *Tunnelblick: Restored DNS and SMB settings
10:41:24 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:41:24 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:41:24 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:41:24 *Tunnelblick: **********************************************
================================================================================
Network services:
An asterisk (*) denotes that a network service is disabled.
Wi-Fi
Thunderbolt Bridge
Wi-Fi Power (en0): On
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
anpi0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:99
inet6 fe80::2867:d3ff:fe1e:ab99%anpi0 prefixlen 64 scopeid 0x4
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
anpi1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:9a
inet6 fe80::2867:d3ff:fe1e:ab9a%anpi1 prefixlen 64 scopeid 0x5
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
ap1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 3e:57:dc:62:cb:79
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: inactive
en3: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:79
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en4: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 2a:67:d3:1e:ab:7a
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:4c:4e:5f:2f:80
media: autoselect <full-duplex>
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:4c:4e:5f:2f:84
media: autoselect <full-duplex>
status: inactive
en0: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=6463<RXCSUM,TXCSUM,TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 1c:57:dc:62:cb:79
inet6 fe80::5d:2d28:38f5:3ef5%en0 prefixlen 64 secured scopeid 0xb
inet 192.168.1.111 netmask 0xffffff00 broadcast 192.168.1.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether fe:7a:0a:ae:70:70
inet6 fe80::fc7a:aff:feae:7070%awdl0 prefixlen 64 scopeid 0xc
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:4c:4e:5f:2f:80
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether fe:7a:0a:ae:70:70
inet6 fe80::fc7a:aff:feae:7070%llw0 prefixlen 64 scopeid 0xe
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 100.64.0.1 --> 100.64.0.1 netmask 0xffff0000
inet6 fe80::1e57:dcff:fe62:cb79%utun0 prefixlen 64 scopeid 0xf
inet6 fc00::6440:1 prefixlen 64
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::5b09:52c0:b0fd:5cb3%utun1 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::1d4e:5096:fa6:ad60%utun2 prefixlen 64 scopeid 0x11
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun3 prefixlen 64 scopeid 0x12
nd6 options=201<PERFORMNUD,DAD>
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::d7a3:e258:c41:cd1b%utun4 prefixlen 64 scopeid 0x13
nd6 options=201<PERFORMNUD,DAD>
utun5: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::7f7c:7e17:b709:3451%utun5 prefixlen 64 scopeid 0x14
nd6 options=201<PERFORMNUD,DAD>
utun6: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::7cc0:8da:bd93:11a8%utun6 prefixlen 64 scopeid 0x15
nd6 options=201<PERFORMNUD,DAD>
utun7: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::5636:28d6:e42a:de2c%utun7 prefixlen 64 scopeid 0x16
nd6 options=201<PERFORMNUD,DAD>
utun8: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 10.50.9.38 --> 10.50.9.37 netmask 0xffffffff
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2022-08-28 10:46:08.196087 applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes)
2022-08-28 10:46:08.199693 shutDownTunnelblick: started.
2022-08-28 10:46:08.200916 shutDownTunnelblick: Starting cleanup.
2022-08-28 10:46:08.201448 cleanup: Entering cleanup
2022-08-28 10:46:08.201930 synchronized user defaults
2022-08-28 10:46:08.944379 shutDownTunnelblick: Cleanup finished.
2022-08-28 10:46:08.945754 Finished shutting down Tunnelblick; allowing termination
================================================================================
Traces Log:
================================================================================
Console Log:
Regards,
Chichi Shou
Tunnelblick developer
Aug 27, 2022, 11:46:55 PM8/27/22
to tunnelblick-discuss
The message you saw was a warning. It does not mean you cannot connect.
It isn't enough to have the OpenVPN configuration file be the same to get the same result. You must also have the same Tunnelblick settings for that configuration.
If you want DNS queries to go through the VPN, you should check the "Route all IPv4 traffic through the VPN" checkbox on the "Settings" tab of Tunnelblick's "VPN Details" window. (That's the default, so you probably have un-checked it.)
Adding "search domains" is not what you should do if you want to set DNS server addresses. You should add "DNS servers". HOWEVER, your OpenVPN server already does that for you. So all you really need to do is check the box described above.
Chichi Shou
Aug 28, 2022, 1:52:35 AM8/28/22
to tunnelbli...@googlegroups.com
Hi team,
Thanks for the prompt reply. However, I still not tried with success, please check my steps, thank you.
I followed the instruction to add IPs on DNS Servers and clicked 'Route all IPv4 traffic through the VPN' and connect.
After input the password and clicked OK, the login window was pop up again and ask me to input the password again.
Input the password again, and able to connect the VPN, but no internet connection.
Logs are here for reference.
-routeAllTrafficThroughVpn = 1
detailsWindowFrame = {{544, 339}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = settings
leftNavSelectedDisplayName = costco
AdvancedWindowTabIdentifier = connectingAndDisconnecting
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2022-08-28 03:08:40 +0000
SUHasLaunchedBefore = 1
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Log:
================================================================================
Down log:
13:43:47 *Tunnelblick: **********************************************
13:43:47 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:43:47 *Tunnelblick: Cancelled monitoring system configuration changes
13:43:47 *Tunnelblick: Restored State:DNS
13:43:47 *Tunnelblick: Restored Setup:DNS
13:43:47 *Tunnelblick: Restored State:SMB
13:43:47 *Tunnelblick: Restored DNS and SMB settings
13:43:47 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:43:47 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:43:47 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:43:47 *Tunnelblick: **********************************************
================================================================================
Previous down log:
13:40:47 *Tunnelblick: **********************************************
13:40:47 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:40:48 *Tunnelblick: WARNING: Not restoring network settings because no saved Tunnelblick DNS information was found.
13:40:48 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:40:48 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:40:48 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:40:48 *Tunnelblick: **********************************************
Down log:
13:43:47 *Tunnelblick: **********************************************
13:43:47 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:43:47 *Tunnelblick: Cancelled monitoring system configuration changes
13:43:47 *Tunnelblick: Restored State:DNS
13:43:47 *Tunnelblick: Restored Setup:DNS
13:43:47 *Tunnelblick: Restored State:SMB
13:43:47 *Tunnelblick: Restored DNS and SMB settings
13:43:47 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:43:47 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:43:47 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:43:47 *Tunnelblick: **********************************************
================================================================================
Previous down log:
13:40:47 *Tunnelblick: **********************************************
13:40:47 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:40:48 *Tunnelblick: WARNING: Not restoring network settings because no saved Tunnelblick DNS information was found.
13:40:48 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:40:48 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:40:48 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:40:48 *Tunnelblick: **********************************************
ether ae:17:9c:62:21:ec
inet6 fe80::ac17:9cff:fe62:21ec%awdl0 prefixlen 64 scopeid 0xc
inet6 fe80::ac17:9cff:fe62:21ec%awdl0 prefixlen 64 scopeid 0xc
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:4c:4e:5f:2f:80
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
media: autoselect
status: active
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:4c:4e:5f:2f:80
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether ae:17:9c:62:21:ec
inet6 fe80::ac17:9cff:fe62:21ec%llw0 prefixlen 64 scopeid 0xe
inet6 fe80::ac17:9cff:fe62:21ec%llw0 prefixlen 64 scopeid 0xe
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2022-08-28 10:46:08.196087 applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes)
2022-08-28 10:46:08.199693 shutDownTunnelblick: started.
2022-08-28 10:46:08.200916 shutDownTunnelblick: Starting cleanup.
2022-08-28 10:46:08.201448 cleanup: Entering cleanup
2022-08-28 10:46:08.201930 synchronized user defaults
2022-08-28 10:46:08.944379 shutDownTunnelblick: Cleanup finished.
2022-08-28 10:46:08.945754 Finished shutting down Tunnelblick; allowing termination
================================================================================
Traces Log:
================================================================================
Console Log:
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2022-08-28 10:46:08.196087 applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes)
2022-08-28 10:46:08.199693 shutDownTunnelblick: started.
2022-08-28 10:46:08.200916 shutDownTunnelblick: Starting cleanup.
2022-08-28 10:46:08.201448 cleanup: Entering cleanup
2022-08-28 10:46:08.201930 synchronized user defaults
2022-08-28 10:46:08.944379 shutDownTunnelblick: Cleanup finished.
2022-08-28 10:46:08.945754 Finished shutting down Tunnelblick; allowing termination
================================================================================
Traces Log:
================================================================================
Console Log:
--
You received this message because you are subscribed to a topic in the Google Groups "tunnelblick-discuss" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/tunnelblick-discuss/gV3J8OGrs98/unsubscribe.
To unsubscribe from this group and all its topics, send an email to tunnelblick-dis...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/tunnelblick-discuss/e53ba331-3e4b-4c38-8786-68c3f3a58ac5n%40googlegroups.com.
Tunnelblick developer
Aug 30, 2022, 6:29:31 PM8/30/22
to tunnelblick-discuss
It appears you didn't follow the full instructions for getting the diagnostic info; there's no log of the connection (only logs of older connections). I suggest you restart your computer and try again.
Reply all
Reply to author
Forward
0 new messages