Unable to connect to internet when using openvpn on MAC using tunnelblick

633 views

Skip to first unread message

maheshb...@gmail.com

unread,

May 29, 2017, 12:47:55 PM5/29/17

to tunnelblick-discuss

Hi team,

I have a open vpn server and my MAC is a client as a part of POC. When I try to connect to openVPN using tunnelblick, it connects but there is no internet access.

*Tunnelblick: OS X 10.12.5; Tunnelblick 3.7.1a (build 4812); prior version 3.7.0 (build 4790); Admin user

git commit e70dc14d7a954d6fe0040b3b8c9007feb98ee29d

Configuration config

"Sanitized" condensed configuration file for /Users/madapa/Library/Application Support/Tunnelblick/Configurations/config.tblk:

client

remote 54.224.199.89 443

proto tcp

resolv-retry infinite

route-delay 2

pull

comp-lzo yes

dev tun

nobind

ca ca.crt

cert madapa.crt

key madapa.key

================================================================================

Non-Apple kexts that are loaded:

Index Refs Address Size Wired Name (Version) UUID <Linked Against>

149 3 0xffffff7f8331c000 0x61000 0x61000 org.virtualbox.kext.VBoxDrv (5.1.22) 93316754-E074-3CE2-9464-DDA4356FF02E <7 5 4 3 1>

151 0 0xffffff7f8337d000 0x8000 0x8000 org.virtualbox.kext.VBoxUSB (5.1.22) D956DCFA-4E4F-320A-BEBC-E4823501B1FF <150 149 41 7 5 4 3 1>

152 0 0xffffff7f83385000 0x5000 0x5000 org.virtualbox.kext.VBoxNetFlt (5.1.22) 446923A0-E855-3E75-9173-66FA4CE2474A <149 7 5 4 3 1>

153 0 0xffffff7f8338a000 0x6000 0x6000 org.virtualbox.kext.VBoxNetAdp (5.1.22) 4A6C39E1-5D90-3E34-9673-57B0DD779CD7 <149 5 4 1>

154 0 0xffffff7f83390000 0x4000 0x4000 com.paloaltonetworks.kext.pangpd (1.0.0) 2EB7232F-AC35-3CB5-81B3-D81783A18EEF <5 4 3 1>

================================================================================

There are no unusual files in config.tblk

================================================================================

Configuration preferences:

-resetPrimaryInterfaceAfterDisconnect = 0

-routeAllTrafficThroughVpn = 0

-lastConnectionSucceeded = 1

================================================================================

Wildcard preferences:

================================================================================

Program preferences:

launchAtNextLogin = 1

notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0

askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1

tunnelblickVersionHistory = (

"3.7.1a (build 4812)",

"3.7.0 (build 4790)"

)

statusDisplayNumber = 0

lastLaunchTime = 517257622.069472

lastLanguageAtLaunchWasRTL = 0

connectionWindowDisplayCriteria = showWhenConnecting

maxLogDisplaySize = 102400

lastConnectedDisplayName = config

keyboardShortcutIndex = 1

updateCheckAutomatically = 1

updateSendProfileInfo = 1

NSWindow Frame SettingsSheetWindow = 277 -13 829 524 0 0 1280 777

NSWindow Frame ConnectingWindow = 445 455 389 187 0 0 1280 777

NSWindow Frame SUUpdateAlert = 330 304 620 392 0 0 1280 777

detailsWindowFrameVersion = 4812

detailsWindowFrame = {{171, 63}, {1036, 714}}

detailsWindowLeftFrame = {{0, 0}, {187, 596}}

detailsWindowViewIndex = 0

detailsWindowConfigurationsTabIdentifier = log

leftNavSelectedDisplayName = config

AdvancedWindowTabIdentifier = connectingAndDisconnecting

haveDealtWithSparkle1dot5b6 = 1

haveDealtWithOldTunTapPreferences = 1

haveDealtWithOldLoginItem = 1

SUEnableAutomaticChecks = 1

SUScheduledCheckInterval = 86400

SUSendProfileInfo = 1

SULastCheckTime = 2017-05-28 14:14:50 +0000

SULastProfileSubmissionDate = 2017-05-25 19:25:35 +0000

SUHasLaunchedBefore = 1

SUSkippedVersion = 4811

WebKitDefaultFontSize = 16

WebKitStandardFont = Times

================================================================================

Tunnelblick Log:

*Tunnelblick: OS X 10.12.5; Tunnelblick 3.7.1a (build 4812); prior version 3.7.0 (build 4790)

2017-05-29 12:36:45 *Tunnelblick: Attempting connection with config using shadow copy; Set nameserver = 769; monitoring connection

2017-05-29 12:36:45 *Tunnelblick: openvpnstart start config.tblk 1337 769 0 1 0 1065264 -ptADGNWradsgnw 2.3.16-openssl-1.0.2k

2017-05-29 12:36:46 *Tunnelblick: openvpnstart log:

OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):

/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.16-openssl-1.0.2k/openvpn

--daemon

--log

/Library/Application Support/Tunnelblick/Logs/-SUsers-Smadapa-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sconfig.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1065264.1337.openvpn.log

--cd

/Library/Application Support/Tunnelblick/Users/madapa/config.tblk/Contents/Resources

--verb

--config

/Library/Application Support/Tunnelblick/Users/madapa/config.tblk/Contents/Resources/config.ovpn

--verb

--cd

/Library/Application Support/Tunnelblick/Users/madapa/config.tblk/Contents/Resources

--management

127.0.0.1

1337

--management-query-passwords

--management-hold

--script-security

--up

/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw

--down

/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw

2017-05-29 12:36:46 OpenVPN 2.3.16 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on May 19 2017

2017-05-29 12:36:46 library versions: OpenSSL 1.0.2k 26 Jan 2017, LZO 2.09

2017-05-29 12:36:46 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337

2017-05-29 12:36:46 Need hold release from management interface, waiting...

2017-05-29 12:36:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337

2017-05-29 12:36:46 *Tunnelblick: openvpnstart starting OpenVPN

2017-05-29 12:36:46 *Tunnelblick: Established communication with OpenVPN

2017-05-29 12:36:46 MANAGEMENT: CMD 'pid'

2017-05-29 12:36:46 MANAGEMENT: CMD 'state on'

2017-05-29 12:36:46 MANAGEMENT: CMD 'state'

2017-05-29 12:36:46 MANAGEMENT: CMD 'bytecount 1'

2017-05-29 12:36:46 MANAGEMENT: CMD 'hold release'

2017-05-29 12:36:46 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.

2017-05-29 12:36:46 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2017-05-29 12:36:46 Socket Buffers: R=[131072->131072] S=[131072->131072]

2017-05-29 12:36:46 Attempting to establish TCP connection with [AF_INET]54.224.199.89:443 [nonblock]

2017-05-29 12:36:46 MANAGEMENT: >STATE:1496075806,TCP_CONNECT,,,

2017-05-29 12:36:47 TCP connection established with [AF_INET]54.224.199.89:443

2017-05-29 12:36:47 TCPv4_CLIENT link local: [undef]

2017-05-29 12:36:47 TCPv4_CLIENT link remote: [AF_INET]54.224.199.89:443

2017-05-29 12:36:47 MANAGEMENT: >STATE:1496075807,WAIT,,,

2017-05-29 12:36:47 MANAGEMENT: >STATE:1496075807,AUTH,,,

2017-05-29 12:36:47 TLS: Initial packet from [AF_INET]54.224.199.89:443, sid=69848bc8 ad2af8a9

2017-05-29 12:36:48 VERIFY OK: depth=1, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=m...@myhost.mydomain

2017-05-29 12:36:48 VERIFY OK: depth=0, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=m...@myhost.mydomain

2017-05-29 12:36:48 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key

2017-05-29 12:36:48 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).

2017-05-29 12:36:48 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication

2017-05-29 12:36:48 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key

2017-05-29 12:36:48 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).

2017-05-29 12:36:48 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication

2017-05-29 12:36:48 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA

2017-05-29 12:36:48 [ITNJ] Peer Connection Initiated with [AF_INET]54.224.199.89:443

2017-05-29 12:36:49 MANAGEMENT: >STATE:1496075809,GET_CONFIG,,,

2017-05-29 12:36:50 SENT CONTROL [ITNJ]: 'PUSH_REQUEST' (status=1)

2017-05-29 12:36:50 PUSH: Received control message: 'PUSH_REPLY,persist-key,persist-tun,redirect-gateway local def1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,route 10.11.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.11.0.6 10.11.0.5,peer-id 0'

2017-05-29 12:36:50 OPTIONS IMPORT: timers and/or timeouts modified

2017-05-29 12:36:50 OPTIONS IMPORT: --persist options modified

2017-05-29 12:36:50 OPTIONS IMPORT: --ifconfig/up options modified

2017-05-29 12:36:50 OPTIONS IMPORT: route options modified

2017-05-29 12:36:50 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified

2017-05-29 12:36:50 OPTIONS IMPORT: peer-id set

2017-05-29 12:36:50 OPTIONS IMPORT: adjusting link_mtu to 1547

2017-05-29 12:36:50 Opening utun (connect(AF_SYS_CONTROL)): Resource busy

2017-05-29 12:36:50 Opened utun device utun2

2017-05-29 12:36:50 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0

2017-05-29 12:36:50 MANAGEMENT: >STATE:1496075810,ASSIGN_IP,,10.11.0.6,

2017-05-29 12:36:50 /sbin/ifconfig utun2 delete

ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address

2017-05-29 12:36:50 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure

2017-05-29 12:36:50 /sbin/ifconfig utun2 10.11.0.6 10.11.0.5 mtu 1500 netmask 255.255.255.255 up

2017-05-29 12:36:50 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun2 1500 1547 10.11.0.6 10.11.0.5 init

**********************************************

Start of output from client.up.tunnelblick.sh

Disabled IPv6 for 'MT65xx Preloader'

Disabled IPv6 for 'Apple USB Ethernet Adapter'

Disabled IPv6 for 'USB 10/100/1000 LAN'

Disabled IPv6 for 'Thunderbolt Ethernet'

Disabled IPv6 for 'iPhone USB'

Disabled IPv6 for 'Wi-Fi'

Disabled IPv6 for 'Bluetooth PAN'

Disabled IPv6 for 'Thunderbolt Bridge'

Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]

Not aggregating ServerAddresses because running on OS X 10.6 or higher

Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected

Saved the DNS and SMB configurations so they can be restored

Changed DNS ServerAddresses setting from '192.168.1.1' to '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220'

Changed DNS SearchDomains setting from '' to 'openvpn'

Changed DNS DomainName setting from 'home' to 'openvpn'

Did not change SMB NetBIOSName setting of ''

Did not change SMB Workgroup setting of ''

Did not change SMB WINSAddresses setting of ''

DNS servers '8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220' will be used for DNS queries when the VPN is active

The DNS servers include only free public DNS servers known to Tunnelblick.

Flushed the DNS cache via dscacheutil

/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil

Notified mDNSResponder that the DNS cache was flushed

Setting up to monitor system configuration with process-network-changes

End of output from client.up.tunnelblick.sh

**********************************************

2017-05-29 12:36:57 /sbin/route add -net 0.0.0.0 10.11.0.5 128.0.0.0

add net 0.0.0.0: gateway 10.11.0.5

2017-05-29 12:36:57 /sbin/route add -net 128.0.0.0 10.11.0.5 128.0.0.0

add net 128.0.0.0: gateway 10.11.0.5

2017-05-29 12:36:58 MANAGEMENT: >STATE:1496075818,ADD_ROUTES,,,

2017-05-29 12:36:58 /sbin/route add -net 10.11.0.1 10.11.0.5 255.255.255.255

add net 10.11.0.1: gateway 10.11.0.5

2017-05-29 12:36:58 Initialization Sequence Completed

2017-05-29 12:36:58 MANAGEMENT: >STATE:1496075818,CONNECTED,SUCCESS,10.11.0.6,54.224.199.89

2017-05-29 12:36:58 *Tunnelblick: No 'connected.sh' script to execute

2017-05-29 12:37:38 *Tunnelblick: After 30.0 seconds, gave up trying to fetch IP address information using the ipInfo host's name after connecting.

2017-05-29 12:38:03 [ITNJ] Inactivity timeout (--ping-restart), restarting

2017-05-29 12:38:03 SIGUSR1[soft,ping-restart] received, process restarting

2017-05-29 12:38:03 MANAGEMENT: >STATE:1496075883,RECONNECTING,ping-restart,,

2017-05-29 12:38:03 *Tunnelblick: No 'reconnecting.sh' script to execute

2017-05-29 12:38:03 MANAGEMENT: CMD 'hold release'

2017-05-29 12:38:03 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.

2017-05-29 12:38:03 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2017-05-29 12:38:03 Socket Buffers: R=[131072->131072] S=[131072->131072]

2017-05-29 12:38:03 Attempting to establish TCP connection with [AF_INET]54.224.199.89:443 [nonblock]

2017-05-29 12:38:03 MANAGEMENT: >STATE:1496075883,TCP_CONNECT,,,

2017-05-29 12:38:14 TCP: connect to [AF_INET]54.224.199.89:443 failed, will try again in 5 seconds: Operation timed out

2017-05-29 12:38:19 MANAGEMENT: >STATE:1496075899,TCP_CONNECT,,,

2017-05-29 12:38:25 *Tunnelblick: Disconnecting; notification window disconnect button pressed

2017-05-29 12:38:25 *Tunnelblick: No 'pre-disconnect.sh' script to execute

2017-05-29 12:38:25 *Tunnelblick: Disconnecting using 'kill'

2017-05-29 12:38:25 /sbin/route delete -net 10.11.0.1 10.11.0.5 255.255.255.255

delete net 10.11.0.1: gateway 10.11.0.5

2017-05-29 12:38:25 /sbin/route delete -net 0.0.0.0 10.11.0.5 128.0.0.0

delete net 0.0.0.0: gateway 10.11.0.5

2017-05-29 12:38:25 /sbin/route delete -net 128.0.0.0 10.11.0.5 128.0.0.0

delete net 128.0.0.0: gateway 10.11.0.5

2017-05-29 12:38:25 Closing TUN/TAP interface

2017-05-29 12:38:25 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun2 1500 1544 10.11.0.6 10.11.0.5 init

**********************************************

Start of output from client.down.tunnelblick.sh

Cancelled monitoring of system configuration changes

Restored the DNS and SMB configurations

Re-enabled IPv6 (automatic) for 'MT65xx Preloader'

Re-enabled IPv6 (automatic) for 'Apple USB Ethernet Adapter'

Re-enabled IPv6 (automatic) for 'USB 10/100/1000 LAN'

Re-enabled IPv6 (automatic) for 'Thunderbolt Ethernet'

Re-enabled IPv6 (automatic) for 'iPhone USB'

Re-enabled IPv6 (automatic) for 'Wi-Fi'

Re-enabled IPv6 (automatic) for 'Bluetooth PAN'

Re-enabled IPv6 (automatic) for 'Thunderbolt Bridge'

Flushed the DNS cache via dscacheutil

/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil

Notified mDNSResponder that the DNS cache was flushed

End of output from client.down.tunnelblick.sh

**********************************************

2017-05-29 12:38:28 SIGTERM[hard,init_instance] received, process exiting

2017-05-29 12:38:28 MANAGEMENT: >STATE:1496075908,EXITING,init_instance,,

2017-05-29 12:38:28 *Tunnelblick: No 'post-disconnect.sh' script to execute

2017-05-29 12:38:29 *Tunnelblick: Expected disconnection occurred.

================================================================================

"Sanitized" full configuration file

client

remote 54.224.199.89 443

proto tcp

resolv-retry infinite

route-delay 2

pull

comp-lzo yes

dev tun

nobind

ca ca.crt

cert madapa.crt

key madapa.key

================================================================================

ifconfig output:

lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384

options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>

inet 127.0.0.1 netmask 0xff000000

inet6 ::1 prefixlen 128

inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1

nd6 options=201<PERFORMNUD,DAD>

gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280

stf0: flags=0<> mtu 1280

en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500

ether 98:01:a7:a1:2a:57

inet 192.168.1.5 netmask 0xffffff00 broadcast 192.168.1.255

inet6 fe80::1803:20a1:ce5c:90e3%en0 prefixlen 64 secured scopeid 0x4

nd6 options=201<PERFORMNUD,DAD>

media: autoselect

status: active

en1: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500

options=60<TSO4,TSO6>

ether 4a:00:06:8b:75:50

media: autoselect <full-duplex>

status: inactive

en2: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500

options=60<TSO4,TSO6>

ether 4a:00:06:8b:75:51

media: autoselect <full-duplex>

status: inactive

bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500

options=63<RXCSUM,TXCSUM,TSO4,TSO6>

ether 4a:00:06:8b:75:50

Configuration:

id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0

maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200

root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0

ipfilter disabled flags 0x2

member: en1 flags=3<LEARNING,DISCOVER>

ifmaxaddr 0 port 5 priority 0 path cost 0

member: en2 flags=3<LEARNING,DISCOVER>

ifmaxaddr 0 port 6 priority 0 path cost 0

nd6 options=201<PERFORMNUD,DAD>

media: <unknown type>

status: inactive

p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304

ether 0a:01:a7:a1:2a:57

media: autoselect

status: inactive

awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1484

ether 02:ba:ba:7a:00:43

inet6 fe80::ba:baff:fe7a:43%awdl0 prefixlen 64 scopeid 0x9

nd6 options=201<PERFORMNUD,DAD>

media: autoselect

status: active

utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000

inet6 fe80::5430:2a8c:1b46:2923%utun0 prefixlen 64 scopeid 0xa

nd6 options=201<PERFORMNUD,DAD>

gpd0: flags=8862<BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1400

ether 02:50:41:00:01:01

inet 10.0.90.14 netmask 0xffffffff broadcast 10.0.90.14

utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380

inet6 fe80::a18d:e097:6cb3:251%utun1 prefixlen 64 scopeid 0xd

nd6 options=201<PERFORMNUD,DAD>

================================================================================

Console Log:

2017-05-29 12:37:38 Tunnelblick[12949] currentIPInfo(Name): IP address info could not be fetched within 35.0 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x60000065c680 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://www.tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://www.tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://www.tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://www.tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'

2017-05-29 12:38:13 Tunnelblick[12949] currentIPInfo(Address): IP address info could not be fetched within 35.4 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x608000858db0 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=http://205.233.73.116/ipinfo, NSErrorFailingURLKey=http://205.233.73.116/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=http://205.233.73.116/ipinfo, NSErrorFailingURLKey=http://205.233.73.116/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'

adelaka...@gmail.com

unread,

Dec 15, 2017, 8:48:29 AM12/15/17

to tunnelblick-discuss

Hi, same problem here. Have you solved it?

2017-05-29 12:36:48 VERIFY OK: depth=1, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=me@myhost.mydomain
2017-05-29 12:36:48 VERIFY OK: depth=0, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=me@myhost.mydomain

Tunnelblick developer

unread,

Dec 15, 2017, 9:25:07 AM12/15/17

to tunnelblick-discuss

This "same problem" (connected to VPN but no Internet access) has literally dozens of different causes.

If you want help, please follow the instructions at Read Before You Post to get the info needed to diagnose problems and then post that info.

On Friday, December 15, 2017 at 8:48:29 AM UTC-5, Adela Karaman wrote:

Hi, same problem here. Have you solved it?

mohake...@gmail.com

unread,

Dec 30, 2017, 3:23:21 AM12/30/17

to tunnelblick-discuss

i am having similar issue. One thing i noticed is the mapping of

ip address on the MAC once the VPN is up. I am not sure where the 192.168.100.5 is coming from and it is not pingable. The server tunnel interface is 192.168.100.1.

utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500

inet 192.168.100.6 --> 192.168.100.5 netmask 0xffffffff

2017-05-29 12:36:48 VERIFY OK: depth=1, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=me@myhost.mydomain
2017-05-29 12:36:48 VERIFY OK: depth=0, C=US, ST=NJ, L=CLIFTON, O=OPAQ, OU=IT, CN=ITNJ, name=EasyRSA, emailAddress=me@myhost.mydomain

Nick Jansen

unread,

Jan 2, 2018, 7:12:47 AM1/2/18

to tunnelblick-discuss

Same issue here.

Reply all

Reply to author

Forward

0 new messages