Public IP Changes (And I don`t want that ^^)
151 views
Skip to first unread message
Dr...@thedragonworld.com
Jan 19, 2015, 3:42:41 AM1/19/15
to tunnelbli...@googlegroups.com
It is funny, "everyone" has problems in going online throw the VPN-Tunnel and I don`t want it.
I have two VPN directions.
From home to work ... here everything is fine.
And from work to home ... here my public IP is changing and the whole traffic goes to the VPN.
On work there is a pfsense VPN.
At home there is a QNAP NAS VPN.
So the config is different, but no entry for gateway-redirect.
Also the checkbox "traffic throw VPN" is not checked.
I had "don`t set nameserver", but for the posting here I have enabled it again.
On work the LAN is 192.168.1.0
On home the LAN is 192.168.184.1
With OpenVPN on Windows I had no problems.
Please help :)
Here is the diagnostic:
*Tunnelblick: OS X 10.10.1; Tunnelblick 3.4.3 (build 4055.4198); prior version 3.4.2 (build 4055.4161); Admin user
"Sanitized" condensed configuration file for /Users/Cupro/Library/Application Support/Tunnelblick/Configurations/Dragonlair.tblk:
client
dev tun
script-security 3
proto udp
remote XXXXXXXXXX 1194
resolv-retry infinite
nobind
ca Dragonlair.crt
auth-user-pass
reneg-sec 0
cipher AES-128-CBC
comp-lzo
================================================================================
"Sanitized" full configuration file
client
dev tun
script-security 3
proto udp
remote XXXXXXXXX 1194
resolv-retry infinite
nobind
ca Dragonlair.crt
auth-user-pass
reneg-sec 0
cipher AES-128-CBC
comp-lzo
================================================================================
There are no unusual files in Dragonlair.tblk
================================================================================
Configuration preferences:
useDNS = 1
-doNotDisconnectOnFastUserSwitch = 0
-routeAllTrafficThroughVpn = 0
-runMtuTest = 0
-keychainHasUsernameAndPassword = 1
-openvpnVersion =
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-keepConnected = 1
-doNotDisconnectOnSleep = 1
-lastConnectionSucceeded = 1
-tunnelDownSoundName = None
-tunnelUpSoundName = None
================================================================================
Wildcard preferences:
================================================================================
Program preferences:
skipWarningAboutSimultaneousConnections = 1
skipWarningThatIPANotFetchedBeforeConnection = 1
skipWarningThatIPAddressDidNotChangeAfterConnection = 1
launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.4.3 (build 4055.4198)",
"3.4.2 (build 4055.4161)",
"3.4.1 (build 4054)"
)
statusDisplayNumber = 0
lastLaunchTime = 443088149.793049
doNotShowNotificationWindowOnMouseover = 1
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = Dragonlair
keyboardShortcutIndex = 1
updateAutomatically = 0
updateCheckAutomatically = 1
updateSendProfileInfo = 0
NSWindow Frame SettingsSheetWindow = -1499 708 829 424 -1920 142 1920 1177
NSWindow Frame ConnectingWindow = 525 529 389 187 0 0 1440 877
detailsWindowFrameVersion = 4055.4198
detailsWindowFrame = {{-1767, 223}, {1492, 992}}
detailsWindowLeftFrame = {{0, 0}, {273, 875}}
leftNavSelectedDisplayName = Dragonlair
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUFeedURL = https://www.tunnelblick.net/appcast-s.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 0
SUAutomaticallyUpdate = 0
SULastCheckTime = 2015-01-18 13:41:14 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 11
WebKitStandardFont = .Helvetica Neue DeskInterface
================================================================================
Tunnelblick Log:
2015-01-19 09:32:37 *Tunnelblick: OS X 10.10.1; Tunnelblick 3.4.3 (build 4055.4198); prior version 3.4.2 (build 4055.4161)
2015-01-19 09:32:37 *Tunnelblick: Attempting connection with Dragonlair using shadow copy; Set nameserver = 1; monitoring connection
2015-01-19 09:32:37 *Tunnelblick: openvpnstart start Dragonlair.tblk 1338 1 0 1 0 16688 -ptADGNWradsgnw 2.3.6
2015-01-19 09:32:38 *Tunnelblick: openvpnstart log:
Tunnelblick:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.6/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-SCupro-SLibrary-SApplication Support-STunnelblick-SConfigurations-SDragonlair.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_16688.1338.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources
--config
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources/config.ovpn
--cd
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources
--management
127.0.0.1
1338
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw
2015-01-19 09:32:38 *Tunnelblick: Established communication with OpenVPN
2015-01-19 09:32:38 *Tunnelblick: Obtained VPN username and password from the Keychain
2015-01-19 09:32:38 *Tunnelblick: openvpnstart starting OpenVPN
2015-01-19 09:32:38 OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 8 2015
2015-01-19 09:32:38 library versions: OpenSSL 1.0.1k 8 Jan 2015, LZO 2.08
2015-01-19 09:32:38 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2015-01-19 09:32:38 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2015-01-19 09:32:38 UDPv4 link local: [undef]
2015-01-19 09:32:38 UDPv4 link remote: [AF_INET]XXXXXXXXXXX:1194
2015-01-19 09:32:38 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2015-01-19 09:32:39 [TS Series NAS] Peer Connection Initiated with [AF_INET]XXXXXXXXXXXX:1194
2015-01-19 09:32:54 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
2015-01-19 09:32:54 Opened utun device utun1
2015-01-19 09:32:54 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2015-01-19 09:32:54 /sbin/ifconfig utun1 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2015-01-19 09:32:54 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2015-01-19 09:32:54 /sbin/ifconfig utun1 10.8.0.10 10.8.0.9 mtu 1500 netmask 255.255.255.255 up
2015-01-19 09:32:54 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw utun1 1500 1558 10.8.0.10 10.8.0.9 init
**********************************************
Start of output from client.up.tunnelblick.sh
Retrieved from OpenVPN: name server(s) [ 192.168.184.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Set ServerAddresses to 192.168.184.1
Set SearchDomains to openvpn
Set DomainName to openvpn
Flushed the DNS cache via dscacheutil
No matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from client.up.tunnelblick.sh
**********************************************
add net XXXXXXXXXX: gateway 192.168.1.253
add net 0.0.0.0: gateway 10.8.0.9
add net 128.0.0.0: gateway 10.8.0.9
add net 10.8.0.0: gateway 10.8.0.9
2015-01-19 09:32:57 *Tunnelblick: No 'connected.sh' script to execute
2015-01-19 09:32:57 Initialization Sequence Completed
2015-01-19 09:33:02 *Tunnelblick process-network-changes: A system configuration change was ignored
2015-01-19 09:33:32 *Tunnelblick: After 30.0 seconds, gave up trying to fetch IP address information using the ipInfo host's name after connecting.
2015-01-19 09:34:02 *Tunnelblick: After 30.0 seconds, gave up trying to fetch IP address information using the ipInfo host's IP address after connecting.
================================================================================
Console Log:
2015-01-19 09:17:25 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 09:17:25 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 09:18:16 Tunnelblick[309] currentIPInfo(Name): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:18:46 Tunnelblick[309] currentIPInfo(Address): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:32:38 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 09:32:38 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 09:33:32 Tunnelblick[309] currentIPInfo(Name): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:34:02 Tunnelblick[309] currentIPInfo(Address): IP address info could not be fetched within 30.0 seconds
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) <Linked Against>
111 0 0xffffff7f8138d000 0x4000 0x4000 com.protech.NoSleep (1.4.0) <5 4 3>
jkbull...gmail.com
Jan 19, 2015, 6:14:06 AM1/19/15
to tunnelbli...@googlegroups.com, Dr...@thedragonworld.com
Hmmm. Odd. I can see that everything is being routed through the VPN:
But don't see why. From the log Tunnelblick says is not using "redirect-gateway". That option can be "pushed" from the VPN server to the VPN client, but I don't see that in the log. Something else must be going on.
If you add the following line to the configuration file:
verb 4
OpenVPN will display additional information about the options it is being started with, and additional information about the connection process. Please make the change and then post the diagnostic info again.
Cupropituvanso Draco
Jan 19, 2015, 8:01:49 AM1/19/15
to jkbull...gmail.com, tunnelbli...@googlegroups.com
Thanks for the hint … on the QNAP is a checkbox for „Gateway-Redirect“ behind Advanced settings.
But know I have more troubles :)
If I connect I have no connection to nothing. Whether VPN or WorldWide.
If I change the Nameserversetting to „not set“ I have WorldWideWeb with the local IP, but still no access to the Network behind VPN.
Here is the new log with verb 4:
*Tunnelblick: OS X 10.10.1; Tunnelblick 3.4.3 (build 4055.4198); prior version 3.4.2 (build 4055.4161); Admin user
"Sanitized" condensed configuration file for /Users/Cupro/Library/Application Support/Tunnelblick/Configurations/Dragonlair.tblk:
client
dev tun
script-security 3
proto udp
remote XXXXXXXXXXXXXXXXX 1194
resolv-retry infinite
nobind
ca Dragonlair.crt
auth-user-pass
reneg-sec 0
cipher AES-128-CBC
comp-lzo
verb 4
================================================================================
"Sanitized" full configuration file
client
dev tun
script-security 3
proto udp
remote XXXXXXXXXXXXXXXXX 1194
resolv-retry infinite
nobind
ca Dragonlair.crt
auth-user-pass
reneg-sec 0
cipher AES-128-CBC
comp-lzo
verb 4
lastLaunchTime = 443363059.484181
doNotShowNotificationWindowOnMouseover = 1
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = Dragonlair
keyboardShortcutIndex = 1
updateAutomatically = 0
updateCheckAutomatically = 1
updateSendProfileInfo = 0
NSWindow Frame SettingsSheetWindow = -1499 708 829 424 -1920 142 1920 1177
NSWindow Frame ConnectingWindow = -1155 701 389 187 -1920 -41 1920 1177
detailsWindowFrameVersion = 4055.4198
detailsWindowFrame = {{186, 166}, {1132, 617}}
detailsWindowLeftFrame = {{0, 0}, {205, 500}}
leftNavSelectedDisplayName = Dragonlair
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUFeedURL = https://www.tunnelblick.net/appcast-s.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 0
SUAutomaticallyUpdate = 0
SULastCheckTime = 2015-01-19 12:24:19 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 11
WebKitStandardFont = .Helvetica Neue DeskInterface
================================================================================
Tunnelblick Log:
2015-01-19 13:48:25 *Tunnelblick: openvpnstart starting OpenVPN
2015-01-19 13:48:25 *Tunnelblick: OS X 10.10.1; Tunnelblick 3.4.3 (build 4055.4198); prior version 3.4.2 (build 4055.4161)
2015-01-19 13:48:25 *Tunnelblick: Attempting connection with Dragonlair using shadow copy; Set nameserver = 1; monitoring connection
2015-01-19 13:48:25 *Tunnelblick: openvpnstart start Dragonlair.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.6
2015-01-19 13:48:26 *Tunnelblick: openvpnstart log:
Tunnelblick:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.6/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-SCupro-SLibrary-SApplication Support-STunnelblick-SConfigurations-SDragonlair.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_16688.1337.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources
--config
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources/config.ovpn
--cd
/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources
--management
127.0.0.1
1337
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw
2015-01-19 13:48:26 *Tunnelblick: Established communication with OpenVPN
2015-01-19 13:48:26 *Tunnelblick: Obtained VPN username and password from the Keychain
2015-01-19 13:48:26 us=255714 Current Parameter Settings:
2015-01-19 13:48:26 us=255881 config = '/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources/config.ovpn'
2015-01-19 13:48:26 us=255890 mode = 0
2015-01-19 13:48:26 us=255895 show_ciphers = DISABLED
2015-01-19 13:48:26 us=255900 show_digests = DISABLED
2015-01-19 13:48:26 us=255904 show_engines = DISABLED
2015-01-19 13:48:26 us=255908 genkey = DISABLED
2015-01-19 13:48:26 us=255913 key_pass_file = '[UNDEF]'
2015-01-19 13:48:26 us=255918 show_tls_ciphers = DISABLED
2015-01-19 13:48:26 us=255922 Connection profiles [default]:
2015-01-19 13:48:26 us=255927 proto = udp
2015-01-19 13:48:26 us=255932 local = '[UNDEF]'
2015-01-19 13:48:26 us=255936 local_port = 0
2015-01-19 13:48:26 us=255941 remote = 'XXXXXXXXXXXXXXXXX'
2015-01-19 13:48:26 us=255945 remote_port = 1194
2015-01-19 13:48:26 us=255950 remote_float = DISABLED
2015-01-19 13:48:26 us=255954 bind_defined = DISABLED
2015-01-19 13:48:26 us=255959 bind_local = DISABLED
2015-01-19 13:48:26 us=255963 connect_retry_seconds = 5
2015-01-19 13:48:26 us=255967 connect_timeout = 10
2015-01-19 13:48:26 us=255972 connect_retry_max = 0
2015-01-19 13:48:26 us=255977 socks_proxy_server = '[UNDEF]'
2015-01-19 13:48:26 us=255981 socks_proxy_port = 0
2015-01-19 13:48:26 us=255986 socks_proxy_retry = DISABLED
2015-01-19 13:48:26 us=255990 tun_mtu = 1500
2015-01-19 13:48:26 us=255994 tun_mtu_defined = ENABLED
2015-01-19 13:48:26 us=255999 link_mtu = 1500
2015-01-19 13:48:26 us=256003 link_mtu_defined = DISABLED
2015-01-19 13:48:26 us=256008 tun_mtu_extra = 0
2015-01-19 13:48:26 us=256012 tun_mtu_extra_defined = DISABLED
2015-01-19 13:48:26 us=256017 mtu_discover_type = -1
2015-01-19 13:48:26 us=256021 fragment = 0
2015-01-19 13:48:26 us=256026 mssfix = 1450
2015-01-19 13:48:26 us=256030 explicit_exit_notification = 0
2015-01-19 13:48:26 us=256034 Connection profiles END
2015-01-19 13:48:26 us=256039 remote_random = DISABLED
2015-01-19 13:48:26 us=256043 ipchange = '[UNDEF]'
2015-01-19 13:48:26 us=256048 dev = 'tun'
2015-01-19 13:48:26 us=256052 dev_type = '[UNDEF]'
2015-01-19 13:48:26 us=256058 dev_node = '[UNDEF]'
2015-01-19 13:48:26 us=256063 lladdr = '[UNDEF]'
2015-01-19 13:48:26 us=256067 topology = 1
2015-01-19 13:48:26 us=256072 tun_ipv6 = DISABLED
2015-01-19 13:48:26 us=256076 ifconfig_local = '[UNDEF]'
2015-01-19 13:48:26 us=256080 ifconfig_remote_netmask = '[UNDEF]'
2015-01-19 13:48:26 us=256085 ifconfig_noexec = DISABLED
2015-01-19 13:48:26 us=256089 ifconfig_nowarn = DISABLED
2015-01-19 13:48:26 us=256094 ifconfig_ipv6_local = '[UNDEF]'
2015-01-19 13:48:26 us=256098 ifconfig_ipv6_netbits = 0
2015-01-19 13:48:26 us=256102 ifconfig_ipv6_remote = '[UNDEF]'
2015-01-19 13:48:26 us=256107 shaper = 0
2015-01-19 13:48:26 us=256111 mtu_test = 0
2015-01-19 13:48:26 us=256115 mlock = DISABLED
2015-01-19 13:48:26 us=256120 keepalive_ping = 0
2015-01-19 13:48:26 us=256124 keepalive_timeout = 0
2015-01-19 13:48:26 us=256128 inactivity_timeout = 0
2015-01-19 13:48:26 us=256132 ping_send_timeout = 0
2015-01-19 13:48:26 us=256137 ping_rec_timeout = 0
2015-01-19 13:48:26 us=256141 ping_rec_timeout_action = 0
2015-01-19 13:48:26 us=256145 ping_timer_remote = DISABLED
2015-01-19 13:48:26 us=256149 remap_sigusr1 = 0
2015-01-19 13:48:26 us=256154 persist_tun = DISABLED
2015-01-19 13:48:26 us=256158 persist_local_ip = DISABLED
2015-01-19 13:48:26 us=256162 persist_remote_ip = DISABLED
2015-01-19 13:48:26 us=256166 persist_key = DISABLED
2015-01-19 13:48:26 us=256171 passtos = DISABLED
2015-01-19 13:48:26 us=256175 resolve_retry_seconds = 1000000000
2015-01-19 13:48:26 us=256185 username = '[UNDEF]'
2015-01-19 13:48:26 us=256190 groupname = '[UNDEF]'
2015-01-19 13:48:26 us=256194 chroot_dir = '[UNDEF]'
2015-01-19 13:48:26 us=256199 cd_dir = '/Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources'
2015-01-19 13:48:26 us=256203 writepid = '[UNDEF]'
2015-01-19 13:48:26 us=256207 up_script = '/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw'
2015-01-19 13:48:26 us=256212 down_script = '/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw'
2015-01-19 13:48:26 us=256216 down_pre = DISABLED
2015-01-19 13:48:26 us=256220 up_restart = DISABLED
2015-01-19 13:48:26 us=256225 up_delay = DISABLED
2015-01-19 13:48:26 us=256229 daemon = ENABLED
2015-01-19 13:48:26 us=256233 inetd = 0
2015-01-19 13:48:26 us=256237 log = ENABLED
2015-01-19 13:48:26 us=256242 suppress_timestamps = DISABLED
2015-01-19 13:48:26 us=256246 nice = 0
2015-01-19 13:48:26 us=256250 verbosity = 4
2015-01-19 13:48:26 us=256254 mute = 0
2015-01-19 13:48:26 us=256259 status_file = '[UNDEF]'
2015-01-19 13:48:26 us=256263 status_file_version = 1
2015-01-19 13:48:26 us=256267 status_file_update_freq = 60
2015-01-19 13:48:26 us=256271 occ = ENABLED
2015-01-19 13:48:26 us=256276 rcvbuf = 65536
2015-01-19 13:48:26 us=256282 sndbuf = 65536
2015-01-19 13:48:26 us=256287 sockflags = 0
2015-01-19 13:48:26 us=256291 fast_io = DISABLED
2015-01-19 13:48:26 us=256296 lzo = 7
2015-01-19 13:48:26 us=256300 route_script = '[UNDEF]'
2015-01-19 13:48:26 us=256305 route_default_gateway = '[UNDEF]'
2015-01-19 13:48:26 us=256311 route_default_metric = 0
2015-01-19 13:48:26 us=256315 route_noexec = DISABLED
2015-01-19 13:48:26 us=256319 route_delay = 0
2015-01-19 13:48:26 us=256323 route_delay_window = 30
2015-01-19 13:48:26 us=256328 route_delay_defined = DISABLED
2015-01-19 13:48:26 us=256332 route_nopull = DISABLED
2015-01-19 13:48:26 us=256338 route_gateway_via_dhcp = DISABLED
2015-01-19 13:48:26 us=256343 max_routes = 100
2015-01-19 13:48:26 us=256348 allow_pull_fqdn = DISABLED
2015-01-19 13:48:26 us=256352 management_addr = '127.0.0.1'
2015-01-19 13:48:26 us=256357 management_port = 1337
2015-01-19 13:48:26 us=256362 management_user_pass = '[UNDEF]'
2015-01-19 13:48:26 us=256367 management_log_history_cache = 250
2015-01-19 13:48:26 us=256371 management_echo_buffer_size = 100
2015-01-19 13:48:26 us=256376 management_write_peer_info_file = '[UNDEF]'
2015-01-19 13:48:26 us=256381 management_client_user = '[UNDEF]'
2015-01-19 13:48:26 us=256386 management_client_group = '[UNDEF]'
2015-01-19 13:48:26 us=256391 management_flags = 6
2015-01-19 13:48:26 us=256395 shared_secret_file = '[UNDEF]'
2015-01-19 13:48:26 us=256400 key_direction = 0
2015-01-19 13:48:26 us=256405 ciphername_defined = ENABLED
2015-01-19 13:48:26 us=256409 ciphername = 'AES-128-CBC'
2015-01-19 13:48:26 us=256414 authname_defined = ENABLED
2015-01-19 13:48:26 us=256418 authname = 'SHA1'
2015-01-19 13:48:26 us=256423 prng_hash = 'SHA1'
2015-01-19 13:48:26 us=256428 prng_nonce_secret_len = 16
2015-01-19 13:48:26 us=256432 keysize = 0
2015-01-19 13:48:26 us=256437 engine = DISABLED
2015-01-19 13:48:26 us=256442 replay = ENABLED
2015-01-19 13:48:26 us=256446 mute_replay_warnings = DISABLED
2015-01-19 13:48:26 us=256451 replay_window = 64
2015-01-19 13:48:26 us=256456 replay_time = 15
2015-01-19 13:48:26 us=256460 packet_id_file = '[UNDEF]'
2015-01-19 13:48:26 us=256465 use_iv = ENABLED
2015-01-19 13:48:26 us=256469 test_crypto = DISABLED
2015-01-19 13:48:26 us=256474 tls_server = DISABLED
2015-01-19 13:48:26 us=256478 tls_client = ENABLED
2015-01-19 13:48:26 us=256488 key_method = 2
2015-01-19 13:48:26 us=256493 ca_file = 'Dragonlair.crt'
2015-01-19 13:48:26 us=256498 ca_path = '[UNDEF]'
2015-01-19 13:48:26 us=256503 dh_file = '[UNDEF]'
2015-01-19 13:48:26 us=256507 cert_file = '[UNDEF]'
2015-01-19 13:48:26 us=256512 priv_key_file = '[UNDEF]'
2015-01-19 13:48:26 us=256516 pkcs12_file = '[UNDEF]'
2015-01-19 13:48:26 us=256521 cipher_list = '[UNDEF]'
2015-01-19 13:48:26 us=256526 tls_verify = '[UNDEF]'
2015-01-19 13:48:26 us=256530 tls_export_cert = '[UNDEF]'
2015-01-19 13:48:26 us=256535 verify_x509_type = 0
2015-01-19 13:48:26 us=256539 verify_x509_name = '[UNDEF]'
2015-01-19 13:48:26 us=256544 crl_file = '[UNDEF]'
2015-01-19 13:48:26 us=256549 ns_cert_type = 0
2015-01-19 13:48:26 us=256553 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256558 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256562 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256567 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256571 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256576 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256581 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256585 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256589 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256594 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256598 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256603 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256607 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256611 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256616 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256620 remote_cert_ku[i] = 0
2015-01-19 13:48:26 us=256624 remote_cert_eku = '[UNDEF]'
2015-01-19 13:48:26 us=256629 ssl_flags = 0
2015-01-19 13:48:26 us=256633 tls_timeout = 2
2015-01-19 13:48:26 us=256638 renegotiate_bytes = 0
2015-01-19 13:48:26 us=256642 renegotiate_packets = 0
2015-01-19 13:48:26 us=256647 renegotiate_seconds = 0
2015-01-19 13:48:26 us=256651 handshake_window = 60
2015-01-19 13:48:26 us=256656 transition_window = 3600
2015-01-19 13:48:26 us=256660 single_session = DISABLED
2015-01-19 13:48:26 us=256665 push_peer_info = DISABLED
2015-01-19 13:48:26 us=256669 tls_exit = DISABLED
2015-01-19 13:48:26 us=256674 tls_auth_file = '[UNDEF]'
2015-01-19 13:48:26 us=256679 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256684 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256689 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256694 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256698 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256703 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256708 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256712 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256717 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256722 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256726 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256731 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256736 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256741 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256745 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256750 pkcs11_protected_authentication = DISABLED
2015-01-19 13:48:26 us=256757 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256762 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256766 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256771 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256781 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256786 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256791 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256795 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256800 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256805 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256810 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256814 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256819 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256824 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256828 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256833 pkcs11_private_mode = 00000000
2015-01-19 13:48:26 us=256838 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256843 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256847 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256852 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256856 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256860 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256865 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256870 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256874 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256879 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256883 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256888 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256893 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256898 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256902 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256907 pkcs11_cert_private = DISABLED
2015-01-19 13:48:26 us=256912 pkcs11_pin_cache_period = -1
2015-01-19 13:48:26 us=256917 pkcs11_id = '[UNDEF]'
2015-01-19 13:48:26 us=256921 pkcs11_id_management = DISABLED
2015-01-19 13:48:26 us=256930 server_network = 0.0.0.0
2015-01-19 13:48:26 us=256936 server_netmask = 0.0.0.0
2015-01-19 13:48:26 us=256944 server_network_ipv6 = ::
2015-01-19 13:48:26 us=256949 server_netbits_ipv6 = 0
2015-01-19 13:48:26 us=256954 server_bridge_ip = 0.0.0.0
2015-01-19 13:48:26 us=256959 server_bridge_netmask = 0.0.0.0
2015-01-19 13:48:26 us=256965 server_bridge_pool_start = 0.0.0.0
2015-01-19 13:48:26 us=256970 server_bridge_pool_end = 0.0.0.0
2015-01-19 13:48:26 us=256975 ifconfig_pool_defined = DISABLED
2015-01-19 13:48:26 us=256980 ifconfig_pool_start = 0.0.0.0
2015-01-19 13:48:26 us=256986 ifconfig_pool_end = 0.0.0.0
2015-01-19 13:48:26 us=256991 ifconfig_pool_netmask = 0.0.0.0
2015-01-19 13:48:26 us=256995 ifconfig_pool_persist_filename = '[UNDEF]'
2015-01-19 13:48:26 us=257000 ifconfig_pool_persist_refresh_freq = 600
2015-01-19 13:48:26 us=257005 ifconfig_ipv6_pool_defined = DISABLED
2015-01-19 13:48:26 us=257010 ifconfig_ipv6_pool_base = ::
2015-01-19 13:48:26 us=257015 ifconfig_ipv6_pool_netbits = 0
2015-01-19 13:48:26 us=257019 n_bcast_buf = 256
2015-01-19 13:48:26 us=257024 tcp_queue_limit = 64
2015-01-19 13:48:26 us=257029 real_hash_size = 256
2015-01-19 13:48:26 us=257033 virtual_hash_size = 256
2015-01-19 13:48:26 us=257038 client_connect_script = '[UNDEF]'
2015-01-19 13:48:26 us=257042 learn_address_script = '[UNDEF]'
2015-01-19 13:48:26 us=257047 client_disconnect_script = '[UNDEF]'
2015-01-19 13:48:26 us=257052 client_config_dir = '[UNDEF]'
2015-01-19 13:48:26 us=257057 ccd_exclusive = DISABLED
2015-01-19 13:48:26 us=257062 tmp_dir = '/var/folders/5k/2pw5ssqd0ql0wwy48xnqn_8h0000gn/T/'
2015-01-19 13:48:26 us=257066 push_ifconfig_defined = DISABLED
2015-01-19 13:48:26 us=257072 push_ifconfig_local = 0.0.0.0
2015-01-19 13:48:26 us=257077 push_ifconfig_remote_netmask = 0.0.0.0
2015-01-19 13:48:26 us=257087 push_ifconfig_ipv6_defined = DISABLED
2015-01-19 13:48:26 us=257092 push_ifconfig_ipv6_local = ::/0
2015-01-19 13:48:26 us=257097 push_ifconfig_ipv6_remote = ::
2015-01-19 13:48:26 us=257102 enable_c2c = DISABLED
2015-01-19 13:48:26 us=257107 duplicate_cn = DISABLED
2015-01-19 13:48:26 us=257111 cf_max = 0
2015-01-19 13:48:26 us=257116 cf_per = 0
2015-01-19 13:48:26 us=257121 max_clients = 1024
2015-01-19 13:48:26 us=257125 max_routes_per_client = 256
2015-01-19 13:48:26 us=257130 auth_user_pass_verify_script = '[UNDEF]'
2015-01-19 13:48:26 us=257135 auth_user_pass_verify_script_via_file = DISABLED
2015-01-19 13:48:26 us=257140 port_share_host = '[UNDEF]'
2015-01-19 13:48:26 us=257144 port_share_port = 0
2015-01-19 13:48:26 us=257149 client = ENABLED
2015-01-19 13:48:26 us=257153 pull = ENABLED
2015-01-19 13:48:26 us=257158 auth_user_pass_file = 'stdin'
2015-01-19 13:48:26 us=257166 OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 8 2015
2015-01-19 13:48:26 us=257176 library versions: OpenSSL 1.0.1k 8 Jan 2015, LZO 2.08
2015-01-19 13:48:26 us=258214 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2015-01-19 13:48:26 us=258753 Need hold release from management interface, waiting...
2015-01-19 13:48:26 us=441365 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2015-01-19 13:48:26 us=494826 MANAGEMENT: CMD 'pid'
2015-01-19 13:48:26 us=494916 MANAGEMENT: CMD 'state on'
2015-01-19 13:48:26 us=494969 MANAGEMENT: CMD 'state'
2015-01-19 13:48:26 us=495023 MANAGEMENT: CMD 'bytecount 1'
2015-01-19 13:48:26 us=495071 MANAGEMENT: CMD 'hold release'
2015-01-19 13:48:26 us=502146 MANAGEMENT: CMD 'username "Auth" "Cupro"'
2015-01-19 13:48:26 us=502225 MANAGEMENT: CMD 'password [...]'
2015-01-19 13:48:26 us=502458 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2015-01-19 13:48:26 us=502519 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2015-01-19 13:48:26 us=503056 LZO compression initialized
2015-01-19 13:48:26 us=503143 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
2015-01-19 13:48:26 us=503205 Socket Buffers: R=[196724->65536] S=[9216->65536]
2015-01-19 13:48:26 us=503320 MANAGEMENT: >STATE:1421671706,RESOLVE,,,
2015-01-19 13:48:26 us=600961 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
2015-01-19 13:48:26 us=601197 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
2015-01-19 13:48:26 us=601286 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
2015-01-19 13:48:26 us=601376 Local Options hash (VER=V4): '66096c33'
2015-01-19 13:48:26 us=601525 Expected Remote Options hash (VER=V4): '691e95c7'
2015-01-19 13:48:26 us=601626 UDPv4 link local: [undef]
2015-01-19 13:48:26 us=601698 UDPv4 link remote: [AF_INET]XXXXXXXXXXXXXXXXX:1194
2015-01-19 13:48:26 us=601823 MANAGEMENT: >STATE:1421671706,WAIT,,,
2015-01-19 13:48:26 us=615336 MANAGEMENT: >STATE:1421671706,AUTH,,,
2015-01-19 13:48:26 us=615394 TLS: Initial packet from [AF_INET]XXXXXXXXXXXXXXXXX:1194, sid=90fe8b1c 97412aea
2015-01-19 13:48:26 us=615493 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2015-01-19 13:48:26 us=813834 VERIFY OK: depth=1, C=TW, ST=Taiwan, L=Taipei, O=QNAP Systems Inc., OU=NAS, CN=TS Series NAS, name=NAS, emailAddress=ad...@qnap.com
2015-01-19 13:48:26 us=814083 VERIFY OK: depth=0, C=TW, ST=Taiwan, L=Taipei, O=QNAP Systems Inc., OU=NAS, CN=TS Series NAS, name=NAS, emailAddress=ad...@qnap.com
2015-01-19 13:48:27 us=7712 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-01-19 13:48:27 us=7846 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2015-01-19 13:48:27 us=7910 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-01-19 13:48:27 us=7968 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2015-01-19 13:48:27 us=8159 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2015-01-19 13:48:27 us=8369 [TS Series NAS] Peer Connection Initiated with [AF_INET]XXXXXXXXXXXXXXXXX:1194
2015-01-19 13:48:28 us=185857 MANAGEMENT: >STATE:1421671708,GET_CONFIG,,,
2015-01-19 13:48:29 us=364560 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-19 13:48:34 us=721747 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-19 13:48:39 us=197486 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-19 13:48:41 us=818271 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5'
2015-01-19 13:48:41 us=818503 OPTIONS IMPORT: timers and/or timeouts modified
2015-01-19 13:48:41 us=818572 OPTIONS IMPORT: --ifconfig/up options modified
2015-01-19 13:48:41 us=818625 OPTIONS IMPORT: route options modified
2015-01-19 13:48:41 us=818676 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2015-01-19 13:48:41 us=819412 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
2015-01-19 13:48:41 us=819756 Opened utun device utun1
2015-01-19 13:48:41 us=819903 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2015-01-19 13:48:41 us=820028 MANAGEMENT: >STATE:1421671721,ASSIGN_IP,,10.8.0.6,
2015-01-19 13:48:41 us=820152 /sbin/ifconfig utun1 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2015-01-19 13:48:41 us=824595 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2015-01-19 13:48:41 us=824774 /sbin/ifconfig utun1 10.8.0.6 10.8.0.5 mtu 1500 netmask 255.255.255.255 up
2015-01-19 13:48:41 us=828783 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw utun1 1500 1558 10.8.0.6 10.8.0.5 init
**********************************************
Start of output from client.up.tunnelblick.sh
Retrieved from OpenVPN: name server(s) [ 192.168.184.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Set ServerAddresses to 192.168.184.1
Set SearchDomains to openvpn
Set DomainName to openvpn
Flushed the DNS cache via dscacheutil
No matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from client.up.tunnelblick.sh
**********************************************
2015-01-19 13:48:44 us=998591 MANAGEMENT: >STATE:1421671724,ADD_ROUTES,,,
2015-01-19 13:48:44 us=998757 /sbin/route add -net 10.8.0.0 10.8.0.5 255.255.255.0
add net 10.8.0.0: gateway 10.8.0.5
2015-01-19 13:48:45 us=959 Initialization Sequence Completed
2015-01-19 13:48:45 us=1056 MANAGEMENT: >STATE:1421671725,CONNECTED,SUCCESS,10.8.0.6,XXXXXXXXXXXXXXXXX
2015-01-19 13:48:45 us=1465 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5'
2015-01-19 13:48:45 us=12794 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5'
2015-01-19 13:48:45 *Tunnelblick: No 'connected.sh' script to execute
================================================================================
Console Log:
2015-01-19 09:17:25 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 09:17:25 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 09:18:16 Tunnelblick[309] currentIPInfo(Name): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:18:46 Tunnelblick[309] currentIPInfo(Address): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:32:38 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 09:32:38 Tunnelblick[309] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 09:33:32 Tunnelblick[309] currentIPInfo(Name): IP address info could not be fetched within 30.0 seconds
2015-01-19 09:34:02 Tunnelblick[309] currentIPInfo(Address): IP address info could not be fetched within 30.0 seconds
2015-01-19 12:47:41 WindowServer[111] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 100 (kCGSDisplayWillReconfigure) (CID 0x14b03, PID 309)
2015-01-19 13:20:15 WindowServer[111] disable_update_timeout: UI updates were forcibly disabled by application "Tunnelblick" for over 1.00 seconds. Server has re-enabled them.
2015-01-19 13:20:15 WindowServer[111] common_reenable_update: UI updates were finally reenabled by application "Tunnelblick" after 1.31 seconds (server forcibly re-enabled them after 1.31 seconds)
2015-01-19 13:20:17 WindowServer[111] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 109 (<unknown>) (CID 0x14b03, PID 309)
2015-01-19 13:20:18 WindowServer[111] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 109 (<unknown>) (CID 0x14b03, PID 309)
2015-01-19 13:20:45 WindowServer[111] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 109 (<unknown>) (CID 0x14b03, PID 309)
2015-01-19 13:22:34 WindowServer[111] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 100 (kCGSDisplayWillReconfigure) (CID 0x14b03, PID 309)
2015-01-19 13:23:08 Tunnelblick[309] setShutdownVariables: invoked, but have already set them
2015-01-19 13:23:08 Tunnelblick[309] applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes
2015-01-19 13:23:08 Tunnelblick[309] Finished shutting down Tunnelblick; allowing termination
2015-01-19 13:24:19 Tunnelblick[370] Set program update feedURL to https://www.tunnelblick.net/appcast-s.rss
2015-01-19 13:24:21 Tunnelblick[370] DEBUG: Updater: systemVersion 10.10.1 satisfies minimumSystemVersion 10.4.0
2015-01-19 13:24:21 Tunnelblick[370] DEBUG: Updater: systemVersion 10.10.1 satisfies minimumSystemVersion 10.4.0
2015-01-19 13:24:58 WindowServer[96] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 100 (kCGSDisplayWillReconfigure) (CID 0x1e187, PID 370)
2015-01-19 13:24:59 WindowServer[96] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 100 (kCGSDisplayWillReconfigure) (CID 0x1e187, PID 370)
2015-01-19 13:26:17 WindowServer[96] CGError post_notification(const CGSNotificationType, void *const, const size_t, const bool, const CGSRealTimeDelta, const int, const CGSConnectionID *const, const pid_t): Timed out 0.250 second wait for reply from "Tunnelblick" for synchronous notification type 100 (kCGSDisplayWillReconfigure) (CID 0x1e187, PID 370)
2015-01-19 13:27:45 Tunnelblick[370] openvpnstart status from compareShadowCopy: 252
2015-01-19 13:27:58 Tunnelblick[370] openvpnstart status from compareShadowCopy: 252
2015-01-19 13:28:08 Tunnelblick[370] Beginning installation or repair
2015-01-19 13:28:08 authexec[499] executing /Applications/Tunnelblick.app/Contents/Resources/installer
2015-01-19 13:28:08 Tunnelblick[370] Installation or repair succeeded; Log:
Tunnelblick installer started 2015-01-19 13:28:08. 3 arguments: 0x0001 /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk /Users/Cupro/Library/Application Support/Tunnelblick/Configurations/Dragonlair.tblk
Copied /Users/Cupro/Library/Application Support/Tunnelblick/Configurations/Dragonlair.tblk to /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk.temp
Moved /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk.temp to /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk
Changed ownership of /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk and its contents from 501:80 to 0:0
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources/config.ovpn
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/Cupro/Dragonlair.tblk/Contents/Resources/Dragonlair.crt
2015-01-19 13:28:08 Tunnelblick[370] Created or updated secure (shadow) copy of configuration file /Users/Cupro/Library/Application Support/Tunnelblick/Configurations/Dragonlair.tblk
2015-01-19 13:28:09 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 13:28:09 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 13:32:02 Tunnelblick[370] currentIPInfo(Name): IP address info could not be fetched within 30.0 seconds
2015-01-19 13:32:32 Tunnelblick[370] currentIPInfo(Address): IP address info could not be fetched within 30.0 seconds
2015-01-19 13:33:58 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 13:33:58 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 13:34:56 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 13:34:56 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
2015-01-19 13:48:26 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'username'
2015-01-19 13:48:26 Tunnelblick[370] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Dragonlair' account = 'password'
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) <Linked Against>
111 0 0xffffff7f8138d000 0x4000 0x4000 com.protech.NoSleep (1.4.0) <5 4 3>
jkbull...gmail.com
Jan 19, 2015, 8:24:56 AM1/19/15
to tunnelbli...@googlegroups.com, dr...@thedragonworld.com
When you connect using "Set nameserver", the DNS servers will be set to "192.168.184.1". Is that the address of the router on the network your computer is connected to, or is that the address of the router on the network behind the VPN?
This may be mostly a DNS problem. It should be easy to test that: manually set the DNS servers on your computer (System Preferences : Network) to "8.8.8.8" and "8.8.4.4" to set them to Google Public DNS (or some other public DNS). Then use "Set nameserver".
If this was a DNS problem, you should then be able to get to the general Internet. But you won't be able to get to servers on the network behind the VPN by using names -- you will have to use their IP addresses.
Tunnelblick does not support "split DNS", where one DNS server is used for some names and a different DNS server is used for other names. OS X doesn't do DNS the way Windows does; Windows sends DNS queries to all the DNS servers and uses the first response; OS X queries the first DNS server, and only uses the next one if the first one does not respond within a timeout period, which I think is 30 seconds.
As I understand it, Viscosity does do "split DNS", so if that is what you need, you might try them.
I would be happy to add "split DNS" to Tunnelblick but don't know how to tell OS X to do it.
On Monday, January 19, 2015 at 8:01:49 AM UTC-5, Cupropituvanso Draco wrote:
Thanks for the hint … on the QNAP is a checkbox for „Gateway-Redirect“ behind Advanced settings.But know I have more troubles :)If I connect I have no connection to nothing. Whether VPN or WorldWide.If I change the Nameserversetting to „not set“ I have WorldWideWeb with the local IP, but still no access to the Network behind VPN.Here is the new log with verb 4:
<snip>
Dr...@thedragonworld.com
Jan 21, 2015, 4:10:02 AM1/21/15
to tunnelbli...@googlegroups.com, dr...@thedragonworld.com
My local network (factory) is 192.168.1.1
My private network (vpn) is 192.168.184.1
I know that through VPN there is no DNS possible (without other problems), so I only use IP through VPN.
I have tested with or without "set Nameserver" I cannot ping anything through VPN since I deactivated redirect-gateway on my VPN Server.
In both cases I can ping Web-IPs.
And as ususal, if I dont set Nameservers DNS in LocalNetwork and Web works.
I will not change the DHCP Settings to any public DNS Servers.
It doesn't seems to be a DNS Problem.
Dr...@thedragonworld.com
Jan 21, 2015, 4:27:59 AM1/21/15
to tunnelbli...@googlegroups.com, dr...@thedragonworld.com, Dr...@thedragonworld.com
It seems that the route cannot be set:
2015-01-21 10:14:01 us=59072 [TS Series NAS] Peer Connection Initiated with [AF_INET]XXXXXXX:1194
2015-01-21 10:14:02 us=90399 MANAGEMENT: >STATE:1421831642,GET_CONFIG,,,
2015-01-21 10:14:03 us=122255 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-21 10:14:08 us=185826 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-21 10:14:13 us=494712 SENT CONTROL [TS Series NAS]: 'PUSH_REQUEST' (status=1)
2015-01-21 10:14:16 us=20293 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.10 10.8.0.9'
2015-01-21 10:14:16 us=20529 OPTIONS IMPORT: timers and/or timeouts modified
2015-01-21 10:14:16 us=20641 OPTIONS IMPORT: --ifconfig/up options modified
2015-01-21 10:14:16 us=20706 OPTIONS IMPORT: route options modified
2015-01-21 10:14:16 us=20808 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2015-01-21 10:14:16 us=21421 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
2015-01-21 10:14:16 us=21741 Opened utun device utun1
2015-01-21 10:14:16 us=21816 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2015-01-21 10:14:16 us=21881 MANAGEMENT: >STATE:1421831656,ASSIGN_IP,,10.8.0.10,
2015-01-21 10:14:16 us=21955 /sbin/ifconfig utun1 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2015-01-21 10:14:16 us=25264 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2015-01-21 10:14:16 us=25395 /sbin/ifconfig utun1 10.8.0.10 10.8.0.9 mtu 1500 netmask 255.255.255.255 up
2015-01-21 10:14:16 us=27856 MANAGEMENT: >STATE:1421831656,ADD_ROUTES,,,
2015-01-21 10:14:16 us=27984 /sbin/route add -net 10.8.0.0 10.8.0.9 255.255.255.0
add net 10.8.0.0: gateway 10.8.0.9
2015-01-21 10:14:16 us=30753 Initialization Sequence Completed
2015-01-21 10:14:16 us=30893 MANAGEMENT: >STATE:1421831656,CONNECTED,SUCCESS,10.8.0.10,XXXXXXXXX
2015-01-21 10:14:16 *Tunnelblick: No 'connected.sh' script to execute
2015-01-21 10:14:16 us=221953 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.10 10.8.0.9'
2015-01-21 10:14:16 us=224247 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 192.168.184.1,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.10 10.8.0.9'
2015-01-21 10:14:21 *Tunnelblick: This computer's apparent public IP address (YYYYYYYYYY) was unchanged after the connection was made
Dr...@thedragonworld.com
Feb 3, 2015, 4:58:26 AM2/3/15
to tunnelbli...@googlegroups.com, dr...@thedragonworld.com, Dr...@thedragonworld.com
I have disabled OpenVPN on my QNAP and I am using now the VPN Server on my private pfsense and it works!
So no issue of Tunnelblick! I try to edit my first post to mark it as solved and how.
R.S.
Apr 28, 2015, 9:11:45 PM4/28/15
to tunnelbli...@googlegroups.com, dr...@thedragonworld.com
I would be happy to add "split DNS" to Tunnelblick but don't know how to tell OS X to do it.
Something to investigate as a possible way?
http://www.zelotus.com/2011/07/28/per-domain-resolver/ - and the relevant man page, 'man 5 resolver'. It allows for files to be created "which override the default global resolvers" and providing search precedence for said resolvers. It does appear in my limited testing that if I create a file inside the /etc/resolver directory (which does not exist by default) with domain and nameserver lines, it will in fact check my 'internal VPN nameserver' for domains I specify there and the globally set ones for everything else.
Presumably these entries could be added or removed upon VPN connect or disconnect?
R.S.
Reply all
Reply to author
Forward
0 new messages