Apparent public IP address not changed after connecting
56 views
Skip to first unread message
Anthony Human
Feb 2, 2018, 8:47:30 AM2/2/18
to tunnelblick-discuss
*Tunnelblick: OS X 10.13.4; Tunnelblick 3.7.4b (build 4921); Admin user
git commit 88763bb2b2bfcc7debb3ddc78cdf5a350722717c
Configuration myvpn
"Sanitized" condensed configuration file for /Library/Application Support/Tunnelblick/Shared/myvpn.tblk:
client
dev tap
proto udp
remote -------------- 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5
script-security 2
up dhcp-client-request.sh
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
146 0 0xffffff7f80f5e000 0x7000 0x7000 com.kairos.driver.DuetDisplay (2) ACE0314B-69A7-3100-9155-3B4B6C96B2EC <105 5 4 3>
================================================================================
Unusual files in myvpn.tblk:
Contents/Resources/dhcp-client-request.sh
================================================================================
Configuration preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"3.7.4b (build 4921)"
)
lastLaunchTime = 539243744.977544
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = myvpn
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame ConnectingWindow = 645 630 389 187 0 0 1680 1028
detailsWindowFrameVersion = 4921
detailsWindowFrame = {{462, 656}, {920, 468}}
detailsWindowLeftFrame = {{0, 0}, {165, 350}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = log
leftNavSelectedDisplayName = myvpn
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2018-02-02 13:35:11 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times
================================================================================
Tunnelblick Log:
2018-02-02 07:38:28 Multiple --up scripts defined. The previously configured script is overridden.
2018-02-02 07:38:28 OpenVPN 2.4.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Dec 7 2017
2018-02-02 07:38:28 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.10
2018-02-02 07:38:28 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2018-02-02 07:38:28 Need hold release from management interface, waiting...
*Tunnelblick: OS X 10.13.4; Tunnelblick 3.7.4b (build 4921)
2018-02-02 07:38:28 *Tunnelblick: Attempting connection with myvpn; Set nameserver = 769; monitoring connection
2018-02-02 07:38:28 *Tunnelblick: openvpnstart start myvpn.tblk 1337 769 0 3 0 1065330 -ptADGNWradsgnw 2.4.4-openssl-1.0.2n
2018-02-02 07:38:29 *Tunnelblick: openvpnstart log:
Loading tap-signed.kext
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.4-openssl-1.0.2n/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SLibrary-SApplication Support-STunnelblick-SShared-Smyvpn.tblk-SContents-SResources-Sconfig.ovpn.769_0_3_0_1065330.1337.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Shared/myvpn.tblk/Contents/Resources
--setenv
IV_GUI_VER
"net.tunnelblick.tunnelblick 4921 3.7.4b (build 4921)"
--verb
3
--config
/Library/Application Support/Tunnelblick/Shared/myvpn.tblk/Contents/Resources/config.ovpn
--verb
3
--cd
/Library/Application Support/Tunnelblick/Shared/myvpn.tblk/Contents/Resources
--management
127.0.0.1
1337
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw
--route-pre-down
/Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw
2018-02-02 07:38:28 *Tunnelblick: openvpnstart starting OpenVPN
2018-02-02 07:38:29 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2018-02-02 07:38:29 *Tunnelblick: Established communication with OpenVPN
2018-02-02 07:38:29 MANAGEMENT: CMD 'pid'
2018-02-02 07:38:29 MANAGEMENT: CMD 'state on'
2018-02-02 07:38:29 MANAGEMENT: CMD 'state'
2018-02-02 07:38:29 MANAGEMENT: CMD 'bytecount 1'
2018-02-02 07:38:29 MANAGEMENT: CMD 'hold release'
2018-02-02 07:38:29 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2018-02-02 07:38:29 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2018-02-02 07:38:29 MANAGEMENT: >STATE:1517578709,RESOLVE,,,,,,
2018-02-02 07:38:29 TCP/UDP: Preserving recently used remote address: [AF_INET]24.107.153.4:12974
2018-02-02 07:38:29 Socket Buffers: R=[196724->196724] S=[9216->9216]
2018-02-02 07:38:29 UDP link local: (not bound)
2018-02-02 07:38:29 UDP link remote: [AF_INET]24.107.153.4:12974
2018-02-02 07:38:29 MANAGEMENT: >STATE:1517578709,WAIT,,,,,,
2018-02-02 07:38:29 MANAGEMENT: >STATE:1517578709,AUTH,,,,,,
2018-02-02 07:38:29 TLS: Initial packet from [AF_INET]24.107.153.4:12974, sid=c02b40e9 b8a90dcb
2018-02-02 07:38:29 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=netgear CA, name=EasyRSA, emailAddress=mail@netgear
2018-02-02 07:38:29 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=server, name=EasyRSA, emailAddress=mail@netgear
2018-02-02 07:38:29 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2018-02-02 07:38:29 [server] Peer Connection Initiated with [AF_INET]24.107.153.4:12974
2018-02-02 07:38:31 MANAGEMENT: >STATE:1517578711,GET_CONFIG,,,,,,
2018-02-02 07:38:31 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2018-02-02 07:38:31 PUSH: Received control message: 'PUSH_REPLY,ping 10,ping-restart 120,route-delay 10,route 192.168.1.0 255.255.255.0 192.168.1.1'
2018-02-02 07:38:31 OPTIONS IMPORT: timers and/or timeouts modified
2018-02-02 07:38:31 OPTIONS IMPORT: route options modified
2018-02-02 07:38:31 OPTIONS IMPORT: route-related options modified
2018-02-02 07:38:31 Outgoing Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
2018-02-02 07:38:31 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
2018-02-02 07:38:31 Incoming Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
2018-02-02 07:38:31 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
2018-02-02 07:38:31 TUN/TAP device /dev/tap0 opened
2018-02-02 07:38:31 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.up.tunnelblick.sh
Did 'ipconfig set "tap0" DHCP'
Configuring tap DNS via DHCP asynchronously
End of output from client.up.tunnelblick.sh
**********************************************
Sleeping for 0 seconds to wait for DHCP to finish setup.
Sleeping for 1 seconds to wait for DHCP to finish setup.
Sleeping for 2 seconds to wait for DHCP to finish setup.
Retrieved from DHCP/BOOTP packet: name server(s) [ 192.168.1.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Changed DNS ServerAddresses setting from '10.10.253.45 10.80.253.63' to '192.168.1.1'
Changed DNS SearchDomains setting from 'ladue.k12.mo.us' to 'openvpn'
Changed DNS DomainName setting from 'ladue.k12.mo.us' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '192.168.1.1' will be used for DNS queries when the VPN is active
NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
2018-02-02 07:38:43 MANAGEMENT: >STATE:1517578723,ADD_ROUTES,,,,,,
2018-02-02 07:38:43 /sbin/route add -net 192.168.1.0 192.168.1.1 255.255.255.0
route: writing to routing socket: File exists
add net 192.168.1.0: gateway 192.168.1.1: File exists
2018-02-02 07:38:43 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2018-02-02 07:38:43 Initialization Sequence Completed
2018-02-02 07:38:43 MANAGEMENT: >STATE:1517578723,CONNECTED,SUCCESS,,24.107.153.4,12974,,
2018-02-02 07:38:43 *Tunnelblick: No 'connected.sh' script to execute
2018-02-02 07:38:45 *Tunnelblick process-network-changes: A system configuration change was ignored
2018-02-02 07:38:48 *Tunnelblick: This computer's apparent public IP address (71.86.129.130) was unchanged after the connection was made
2018-02-02 07:39:39 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
2018-02-02 07:39:40 *Tunnelblick: No 'pre-disconnect.sh' script to execute
2018-02-02 07:39:40 *Tunnelblick: Disconnecting using 'kill'
2018-02-02 07:39:40 event_wait : Interrupted system call (code=4)
2018-02-02 07:39:40 /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.route-pre-down.tunnelblick.sh
WARNING: Ignoring change of Network Primary Service from 2FFA7B4B-B96C-4CF8-94A7-E1C819B10108 to RestoreIpv6Services :
2FFA7B4B-B96C-4CF8-94A7-E1C819B10108
Cancelled monitoring of system configuration changes
Released the DHCP lease via ipconfig set "tap0" NONE.
End of output from client.route-pre-down.tunnelblick.sh
**********************************************
2018-02-02 07:39:40 /sbin/route delete -net 192.168.1.0 192.168.1.1 255.255.255.0
route: writing to routing socket: not in table
delete net 192.168.1.0: gateway 192.168.1.1: not in table
2018-02-02 07:39:40 Closing TUN/TAP interface
2018-02-02 07:39:40 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.down.tunnelblick.sh
Restored the DNS and SMB configurations
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
End of output from client.down.tunnelblick.sh
**********************************************
2018-02-02 07:39:40 SIGTERM[hard,] received, process exiting
2018-02-02 07:39:40 MANAGEMENT: >STATE:1517578780,EXITING,SIGTERM,,,,,
2018-02-02 07:39:41 *Tunnelblick: No 'post-disconnect.sh' script to execute
2018-02-02 07:39:41 *Tunnelblick: Expected disconnection occurred.
================================================================================
"Sanitized" full configuration file
client
dev tap
proto udp
remote ynohtna102.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5
script-security 2
up dhcp-client-request.sh
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
XHC0: flags=0<> mtu 0
XHC20: flags=0<> mtu 0
XHC1: flags=0<> mtu 0
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether 78:4f:43:58:9d:88
inet6 fe80::18bf:ed35:d3f:d712%en0 prefixlen 64 secured scopeid 0x8
inet 10.10.70.23 netmask 0xffff0000 broadcast 10.10.255.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
ether 0a:4f:43:58:9d:88
media: autoselect
status: inactive
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1484
ether f6:81:82:80:17:08
inet6 fe80::f481:82ff:fe80:1708%awdl0 prefixlen 64 scopeid 0xa
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
en3: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=60<TSO4,TSO6>
ether e2:00:c9:50:4f:01
media: autoselect <full-duplex>
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=60<TSO4,TSO6>
ether e2:00:c9:50:4f:00
media: autoselect <full-duplex>
status: inactive
en4: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=60<TSO4,TSO6>
ether e2:00:c9:50:4f:05
media: autoselect <full-duplex>
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=60<TSO4,TSO6>
ether e2:00:c9:50:4f:04
media: autoselect <full-duplex>
status: inactive
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether e2:00:c9:50:4f:00
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x2
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 12 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 14 priority 0 path cost 0
member: en3 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 11 priority 0 path cost 0
member: en4 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 13 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::41e8:f7a:c625:da2d%utun0 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::a2ff:11e2:2e6e:5ad2%utun1 prefixlen 64 scopeid 0x11
nd6 options=201<PERFORMNUD,DAD>
en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether ac:de:48:00:11:22
inet6 fe80::aede:48ff:fe00:1122%en5 prefixlen 64 scopeid 0x7
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
================================================================================
Console Log:
2018-02-02 07:33:29 Tunnelblick[409] startDisconnectingUserKnows: while already disconnecting 'myvpn'; OpenVPN state = 'DISCONNECTING'
2018-02-02 07:33:29 tunnelblickd[1617] Status = 248 from tunnelblick-helper command 'kill 1400'
2018-02-02 07:33:29 Tunnelblick[409] tunnelblickd status from kill: 248
tunnelblickd stderr:
'killOneOpenvpn(1400): Process does not exist
'
2018-02-02 07:35:09 Tunnelblick[409] Sparkle: Verified appcast signature
Tunnelblick developer
Feb 2, 2018, 12:09:51 PM2/2/18
to tunnelblick-discuss
You need to contact Netgear support for this.
Reply all
Reply to author
Forward
0 new messages