Note: The default network adapter is en0 for this system.
Note: I use DNSCrypt so I have manually set the DNS servers to 127.0.0.1
*Tunnelblick: OS X 10.11.4; Tunnelblick 3.6.3 (build 4560); Admin user
git commit de3da06d3f99c6839b7ffc5b18f7b3252a79fa8a
Configuration client
"Sanitized" condensed configuration file for /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk:
client
dev tun
auth-user-pass
proto udp
remote remote_ip_addr 1194
resolv-retry infinite
nobind
persist-key
persist-tun
comp-lzo
mute-replay-warnings
ca ca.crt
auth SHA512
cipher AES-256-CBC
verb 3
fragment 1400
mssfix
reneg-sec 0
tun-mtu 1500
tls-version-min 1.2
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
143 3 0xffffff7f82d4d000 0x63000 0x63000 org.virtualbox.kext.VBoxDrv (5.0.20) 63689CCF-CA21-3900-B5C6-487E41A57997 <7 5 4 3 1>
145 0 0xffffff7f82db0000 0x8000 0x8000 org.virtualbox.kext.VBoxUSB (5.0.20) F158578A-D7B0-3B85-B742-9E7867BCF948 <144 143 39 7 5 4 3 1>
146 0 0xffffff7f82db8000 0x5000 0x5000 org.virtualbox.kext.VBoxNetFlt (5.0.20) FF55D9DF-7F3D-3827-BE31-B319D57BBCF8 <143 7 5 4 3 1>
147 0 0xffffff7f82dbd000 0x6000 0x6000 org.virtualbox.kext.VBoxNetAdp (5.0.20) FEA9836D-EE06-392E-903E-9CDC607668D5 <143 5 4 1>
================================================================================
There are no unusual files in client.tblk
================================================================================
Configuration preferences:
-resetPrimaryInterfaceAfterDisconnect = 1
-routeAllTrafficThroughVpn = 1
-keychainHasUsernameAndPassword = 1
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-keepConnected = 1
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
================================================================================
Program preferences:
placeIconInStandardPositionInStatusBar = 1
launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.6.3 (build 4560)"
)
lastLaunchTime = 484438180.898178
showConnectedDurations = 1
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = client
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
updateSendProfileInfo = 0
tunnelblickdHash = 982f7a7b2b98739801aa88b72712259b30dea31dbe8f2662db447888ff2ff295
tunnelblickdPlistHash = ce400d395d1801b003398461b5420021f4d591822783a04b79b2f43956d28620
NSWindow Frame ConnectingWindow = 514 436 412 297 0 0 1440 877
detailsWindowFrameVersion = 4560
detailsWindowFrame = {{260, 307}, {920, 468}}
detailsWindowLeftFrame = {{0, 0}, {165, 350}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = settings
leftNavSelectedDisplayName = client
AdvancedWindowTabIdentifier = vpnCredentials
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUFeedURL =
https://www.tunnelblick.net/appcast-s.rssSUScheduledCheckInterval = 86400
SUSendProfileInfo = 0
SULastCheckTime = 2016-05-08 22:09:40 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times
================================================================================
Tunnelblick Log:
*Tunnelblick: OS X 10.11.4; Tunnelblick 3.6.3 (build 4560)
2016-05-08 17:11:42 *Tunnelblick: Attempting connection with client using shadow copy; Set nameserver = 769; monitoring connection
2016-05-08 17:11:42 *Tunnelblick: OpenVPNstart start New\ York.tblk 1338 769 0 1 0 1066800 -ptADGNWradsgnw 2.3.10
2016-05-08 17:11:42 *Tunnelblick: OpenVPNstart log:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/OpenVPN/OpenVPN-2.3.10/OpenVPN
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-Suser-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sclient.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1066800.1338.OpenVPN.log
--cd
/Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources
--verb
3
--config
/Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources/config.ovpn
--verb
3
--cd
/Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources
--management
127.0.0.1
1338
--management-query-passwords
--management-hold
--redirect-gateway
def1
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/
client.up.tunnelblick.sh -9 -d -f -m -r -w -ptADGNWradsgnw
--down
Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ OpenVPN ]
WARNING: Ignoring ServerAddresses '8.8.8.8 8.8.4.4' because ServerAddresses was set manually
Setting search domains to 'OpenVPN' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Did not change DNS ServerAddresses setting of '127.0.0.1' (but re-set it)
Changed DNS SearchDomains setting from '' to 'OpenVPN'
Changed DNS DomainName setting from '' to 'OpenVPN'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '127.0.0.1' were set manually
DNS servers '127.0.0.1' will be used for DNS queries when the VPN is active
NOTE: DNS server 127.0.0.1 often is used inside virtual machines (e.g., 'VirtualBox', 'Parallels', or 'VMWare'). The actual VPN server may be specified by the host machine. This DNS server setting may cause DNS queries to fail or be intercepted or falsified. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from
client.up.tunnelblick.sh **********************************************
2016-05-08 17:11:42 *Tunnelblick: Established communication with OpenVPN
2016-05-08 17:11:42 OpenVPN 2.3.10 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on May 3 2016
2016-05-08 17:11:42 library versions: OpenSSL 1.0.2h 3 May 2016, LZO 2.09
2016-05-08 17:11:42 MANAGEMENT: TCP Socket listening on [AF_INET]
127.0.0.1:13382016-05-08 17:11:42 Need hold release from management interface, waiting...
2016-05-08 17:11:42 MANAGEMENT: Client connected from [AF_INET]
127.0.0.1:13382016-05-08 17:11:42 MANAGEMENT: CMD 'pid'
2016-05-08 17:11:42 MANAGEMENT: CMD 'state on'
2016-05-08 17:11:42 MANAGEMENT: CMD 'state'
2016-05-08 17:11:42 MANAGEMENT: CMD 'bytecount 1'
2016-05-08 17:11:42 MANAGEMENT: CMD 'hold release'
2016-05-08 17:11:42 *Tunnelblick: OpenVPNstart starting OpenVPN
2016-05-08 17:11:50 MANAGEMENT: CMD 'username "Auth" "username"'
2016-05-08 17:11:50 MANAGEMENT: CMD 'password [...]'
2016-05-08 17:11:50 WARNING: No server certificate verification method has been enabled. See
http://OpenVPN.net/howto.html#mitm for more info.
2016-05-08 17:11:50 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2016-05-08 17:11:50 Socket Buffers: R=[196724->196724] S=[9216->9216]
2016-05-08 17:11:50 UDPv4 link local: [undef]
2016-05-08 17:11:50 UDPv4 link remote: [AF_INET]remote_ip_addr:1194
2016-05-08 17:11:50 MANAGEMENT: >STATE:1462745510,WAIT,,,
2016-05-08 17:11:50 MANAGEMENT: >STATE:1462745510,AUTH,,,
2016-05-08 17:11:50 TLS: Initial packet from [AF_INET]remote_ip_addr:1194, sid=59f0e32a e3bfb3a5
2016-05-08 17:11:50 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2016-05-08 17:11:51 VERIFY OK: depth=1, CA_INFO
2016-05-08 17:11:51 VERIFY OK: depth=0, CA_INFO
2016-05-08 17:11:51 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2016-05-08 17:11:51 Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2016-05-08 17:11:51 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2016-05-08 17:11:51 Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2016-05-08 17:11:51 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
2016-05-08 17:11:51 [server] Peer Connection Initiated with [AF_INET]remote_ip_addr:1194
2016-05-08 17:11:52 MANAGEMENT: >STATE:1462745512,GET_CONFIG,,,
2016-05-08 17:11:53 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2016-05-08 17:11:53 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,route 10.x.x.y,topology net30,ping 10,ping-restart 120,ifconfig 10.x.x.z 10.x.x.x'
2016-05-08 17:11:53 OPTIONS IMPORT: timers and/or timeouts modified
2016-05-08 17:11:53 OPTIONS IMPORT: --ifconfig/up options modified
2016-05-08 17:11:53 OPTIONS IMPORT: route options modified
2016-05-08 17:11:53 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2016-05-08 17:11:53 Opened utun device utun0
2016-05-08 17:11:53 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2016-05-08 17:11:53 MANAGEMENT: >STATE:1462745513,ASSIGN_IP,,10.x.x.z,
2016-05-08 17:11:53 /sbin/ifconfig utun0 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2016-05-08 17:11:53 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2016-05-08 17:11:53 /sbin/ifconfig utun0 10.x.x.z 10.x.x.x mtu 1500 netmask 255.255.255.255 up
2016-05-08 17:11:53 /Applications/Tunnelblick.app/Contents/Resources/
client.up.tunnelblick.sh -9 -d -f -m -r -w -ptADGNWradsgnw utun0 1500 1606 10.x.x.z 10.x.x.x init
**********************************************
Start of output from
client.up.tunnelblick.sh2016-05-08 17:11:57 *Tunnelblick: No 'connected.sh' script to execute
2016-05-08 17:11:57 /sbin/route add -net remote_ip_addr 192.168.1.1 255.255.255.255
add net remote_ip_addr: gateway 192.168.1.1
2016-05-08 17:11:57 /sbin/route add -net 0.0.0.0 10.x.x.x 128.0.0.0
add net
0.0.0.0: gateway 10.x.x.x
2016-05-08 17:11:57 /sbin/route add -net 128.0.0.0 10.x.x.x 128.0.0.0
add net
128.0.0.0: gateway 10.x.x.x
2016-05-08 17:11:57 MANAGEMENT: >STATE:1462745517,ADD_ROUTES,,,
2016-05-08 17:11:57 /sbin/route add -net 10.x.x.y 10.x.x.x 255.255.255.255
add net 10.x.x.y: gateway 10.x.x.x
2016-05-08 17:11:57 Initialization Sequence Completed
2016-05-08 17:11:57 MANAGEMENT: >STATE:1462745517,CONNECTED,SUCCESS,10.x.x.z,remote_ip_addr
2016-05-08 17:12:02 *Tunnelblick process-network-changes: A system configuration change was ignored
2016-05-08 17:12:05 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
2016-05-08 17:12:05 *Tunnelblick: No 'pre-disconnect.sh' script to execute
2016-05-08 17:12:05 *Tunnelblick: Disconnecting using 'kill'
2016-05-08 17:12:05 event_wait : Interrupted system call (code=4)
2016-05-08 17:12:05 /sbin/route delete -net 10.x.x.y 10.x.x.x 255.255.255.255
delete net 10.x.x.y: gateway 10.x.x.x
2016-05-08 17:12:05 /sbin/route delete -net remote_ip_addr 192.168.1.1 255.255.255.255
delete net remote_ip_addr: gateway 192.168.1.1
2016-05-08 17:12:05 /sbin/route delete -net 0.0.0.0 10.x.x.x 128.0.0.0
delete net
0.0.0.0: gateway 10.x.x.x
2016-05-08 17:12:05 /sbin/route delete -net 128.0.0.0 10.x.x.x 128.0.0.0
delete net
128.0.0.0: gateway 10.x.x.x
2016-05-08 17:12:05 Closing TUN/TAP interface
2016-05-08 17:12:05 /Applications/Tunnelblick.app/Contents/Resources/
client.down.tunnelblick.sh -9 -d -f -m -r -w -ptADGNWradsgnw utun0 1500 1606 10.x.x.z 10.x.x.x init
**********************************************
Start of output from
client.down.tunnelblick.sh Cancelled monitoring of system configuration changes
Restored the DNS and SMB configurations
2016-05-08 17:12:06 SIGTERM[hard,] received, process exiting
2016-05-08 17:12:06 MANAGEMENT: >STATE:1462745526,EXITING,SIGTERM,,
2016-05-08 17:12:06 *Tunnelblick: No 'post-disconnect.sh' script to execute
2016-05-08 17:12:06 *Tunnelblick: Expected disconnection occurred.
================================================================================
"Sanitized" full configuration file
client
dev tun
auth-user-pass
proto udp
remote remote_ip_addr 1194
resolv-retry infinite
nobind
persist-key
persist-tun
comp-lzo
mute-replay-warnings
ca ca.crt
auth SHA512
cipher AES-256-CBC
verb 3
fragment 1400
mssfix
reneg-sec 0
tun-mtu 1500
tls-version-min 1.2
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=3<RXCSUM,TXCSUM>
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff000000
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=1<PERFORMNUD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether MAC_HIDDEN
inet 192.168.x.x netmask 0xffffff00 broadcast 192.168.1.255
media: autoselect
status: active
en1: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
options=60<TSO4,TSO6>
ether MAC_HIDDEN
media: autoselect <full-duplex>
status: inactive
p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
ether MAC_HIDDEN
media: autoselect
status: inactive
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1484
ether MAC_HIDDEN
inet6 ADDR_HIDDEN %awdl0 prefixlen 64 scopeid 0x7
nd6 options=1<PERFORMNUD>
media: autoselect
status: active
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether MAC_HIDDEN
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x2
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 5 priority 0 path cost 0
media: <unknown type>
status: inactive
================================================================================
Console Log:
2016-05-08 17:09:40 Tunnelblick[808] Tunnelblick: OS X 10.11.4; Tunnelblick 3.6.3 (build 4560)
2016-05-08 17:09:40 Tunnelblick[808] Set the new '*-notOKToCheckThatIPAddressDidNotChangeAfterConnection' preference from the 'notOKToCheckThatIPAddressDidNotChangeAfterConnection' preference
2016-05-08 17:09:40 Tunnelblick[808] Set program update feedURL to
https://www.tunnelblick.net/appcast-s.rss2016-05-08 17:11:22 Tunnelblick[808] Converting/Installing /Users/user/Desktop/tunneblick-backup/Configurations/client.tblk/Contents/Resources/config.ovpn: One or more CR characters have been removed or replaced with LF characters
2016-05-08 17:11:22 Tunnelblick[808] Converting/Installing /Users/user/Desktop/tunneblick-backup/Configurations/client.tblk/Contents/Resources/config.ovpn: One or more CR characters have been removed or replaced with LF characters
2016-05-08 17:11:22 Tunnelblick[808] Converting/Installing /Users/user/Desktop/tunneblick-backup/Configurations/client.tblk/Contents/Resources/config.ovpn at line 19: Copied ca.crt
2016-05-08 17:11:22 Tunnelblick[808] Changed permissions from 644 to 740 on /private/var/folders/3k/v9lnccln1haB61v81blzitr0000gn/T/Tunnelblick-N6dPCn/client.tblk/Contents/Resources/ca.crt
2016-05-08 17:11:22 Tunnelblick[808] Converting/Installing /Users/user/Desktop/tunneblick-backup/Configurations/client.tblk/Contents/Resources/config.ovpn: Converted OpenVPN configuration
2016-05-08 17:11:28 Tunnelblick[808] localNameFromDisplayName: 'client' is not a known displayName
2016-05-08 17:11:28 Tunnelblick[808] Beginning installation or repair
2016-05-08 17:11:28 authexec[946] executing /Applications/Tunnelblick.app/Contents/Resources/installer
2016-05-08 17:11:28 Tunnelblick[808] Installation or repair succeeded; Log:
Tunnelblick installer started 2016-05-08 17:11:28. 3 arguments: 0x0001
/Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk
/private/var/folders/3k/v9tncc1n1hn861vhzblzjttr0000gn/T/Tunnelblick-N6dPCn/client.tblk
Copied /private/var/folders/3k/v9tncc1n1hn861vhzblzjttr0000gn/T/Tunnelblick-N6dPCn/client.tblk
to /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk.temp
Renamed /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk.temp
to /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk
Changed ownership of /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk and its contents from 501:20 to 501:80
Copied /Users/user/Library/Application Support/Tunnelblick/Configurations/client.tblk
to /Library/Application Support/Tunnelblick/Users/user/client.tblk.temp
Renamed /Library/Application Support/Tunnelblick/Users/user/client.tblk.temp
to /Library/Application Support/Tunnelblick/Users/user/client.tblk
Changed ownership of /Library/Application Support/Tunnelblick/Users/user/client.tblk and its contents from 501:80 to 0:0
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/user/client.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources/config.ovpn
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/user/client.tblk/Contents/Resources/ca.crt
Created secure (shadow) copy of client.tblk
Tunnelblick installer finished without error