Google Groups

Tap0 has 2 IP addresses


ML Apr 20, 2012 11:56 AM
Posted in group: tunnelblick-discuss
Hello
I'm running the last version of TunnelBlick and it works fine.
I have still a problem. When it starts I have the following log :
---

2012-04-20 20:33:57 *Tunnelblick: OS X 10.6.8; Tunnelblick 3.2.3
(build 2891.2932)
2012-04-20 20:33:57 *Tunnelblick: Attempting connection with XXXX; Set
nameserver = 1; monitoring connection
2012-04-20 20:33:57 *Tunnelblick: /Applications/Tunnelblick.app/
Contents/Resources/openvpnstart start XXXX.ovpn 1338 1 0 0 0 114 -
atDASNGWrdasngw
2012-04-20 20:33:57 *Tunnelblick: openvpnstart message: Loading
tap.kext
2012-04-20 20:33:57 *Tunnelblick: Established communication with
OpenVPN
2012-04-20 20:33:57 OpenVPN 2.2.1 i386-apple-darwin10.8.0 [SSL] [LZO2]
[PKCS11] [eurephia] built on Jan  8 2012
2012-04-20 20:33:57 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
2012-04-20 20:33:57 Need hold release from management interface,
waiting...
2012-04-20 20:33:57 MANAGEMENT: Client connected from 127.0.0.1:1338
2012-04-20 20:33:57 MANAGEMENT: CMD 'pid'
2012-04-20 20:33:57 MANAGEMENT: CMD 'state on'
2012-04-20 20:33:57 MANAGEMENT: CMD 'state'
2012-04-20 20:33:57 MANAGEMENT: CMD 'hold release'
2012-04-20 20:33:57 WARNING: No server certificate verification method
has been enabled.  See http://openvpn.net/howto.html#mitm for more
info.
2012-04-20 20:33:57 NOTE: the current --script-security setting may
allow this configuration to call user-defined scripts
2012-04-20 20:33:57 LZO compression initialized
2012-04-20 20:33:57 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:
0 ET:0 EL:0 ]
2012-04-20 20:33:57 Socket Buffers: R=[262140->65536] S=[131070-
>65536]
2012-04-20 20:33:57 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:
135 ET:32 EL:0 AF:3/1 ]
2012-04-20 20:33:57 Local Options hash (VER=V4): '31fdf004'
2012-04-20 20:33:57 Expected Remote Options hash (VER=V4): '3e6d1056'
2012-04-20 20:33:57 Attempting to establish TCP connection with
XXX.XXX.XXX.XXX:1194 [nonblock]
2012-04-20 20:33:57 MANAGEMENT: >STATE:1334946837,TCP_CONNECT,,,
2012-04-20 20:33:57 *Tunnelblick: openvpnstart: /Applications/
Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.2.1/openvpn --cd /
Users/michel/Library/Application Support/Tunnelblick/Configurations --
daemon --management 127.0.0.1 1338 --config /Users/michel/Library/
Application Support/Tunnelblick/Configurations/Gecko.ovpn --log /
Library/Application Support/Tunnelblick/Logs/-SUsers-Smichel-SLibrary-
SApplication Support-STunnelblick-SConfigurations-SGecko.ovpn.
1_0_0_0_114.1338.openvpn.log --management-query-passwords --management-
hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/
Resources/client.up.tunnelblick.sh -m -w -d -a -atDASNGWrdasngw --
down /Applications/Tunnelblick.app/Contents/Resources/
client.down.tunnelblick.sh -m -w -d -a -atDASNGWrdasngw --up-restart
2012-04-20 20:33:58 TCP connection established with XXX.XXX.XXX.XXX:
1194
2012-04-20 20:33:58 TCPv4_CLIENT link local: [undef]
2012-04-20 20:33:58 TCPv4_CLIENT link remote: XXX.XXX.XXX.XXX:1194
2012-04-20 20:33:58 MANAGEMENT: >STATE:1334946838,WAIT,,,
2012-04-20 20:33:58 MANAGEMENT: >STATE:1334946838,AUTH,,,
2012-04-20 20:33:58 TLS: Initial packet from XXX.XXX.XXX.XXX:1194,
sid=178505fa 55d7aa36
2012-04-20 20:33:59 VERIFY OK: depth=1, /C=FR/ST=…..
2012-04-20 20:33:59 VERIFY OK: depth=0, /C=FR/ST=…..
2012-04-20 20:34:01 Data Channel Encrypt: Cipher 'BF-CBC' initialized
with 128 bit key
2012-04-20 20:34:01 Data Channel Encrypt: Using 160 bit message hash
'SHA1' for HMAC authentication
2012-04-20 20:34:01 Data Channel Decrypt: Cipher 'BF-CBC' initialized
with 128 bit key
2012-04-20 20:34:01 Data Channel Decrypt: Using 160 bit message hash
'SHA1' for HMAC authentication
2012-04-20 20:34:01 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-
AES256-SHA, 1024 bit RSA
2012-04-20 20:34:01 [vpn.gecko.fr] Peer Connection Initiated with
XXX.XXX.XXX.XXX:1194
2012-04-20 20:34:02 MANAGEMENT: >STATE:1334946842,GET_CONFIG,,,
2012-04-20 20:34:03 SENT CONTROL [vpn.gecko.fr]:
'PUSH_REQUEST' (status=1)
2012-04-20 20:34:03 PUSH: Received control message: 'PUSH_REPLY,dhcp-
option DNS <mydns1>,dhcp-option DNS <mydns2>,route-gateway
<mygateway>,ping 10,ping-restart 120,ifconfig 192.168.1.211
255.255.255.0'
2012-04-20 20:34:03 OPTIONS IMPORT: timers and/or timeouts modified
2012-04-20 20:34:03 OPTIONS IMPORT: --ifconfig/up options modified
2012-04-20 20:34:03 OPTIONS IMPORT: route-related options modified
2012-04-20 20:34:03 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option
options modified
2012-04-20 20:34:03 TUN/TAP device /dev/tap0 opened
2012-04-20 20:34:03 MANAGEMENT: >STATE:1334946843,ASSIGN_IP,,
192.168.1.211,
2012-04-20 20:34:03 /sbin/ifconfig tap0 delete
                                        ifconfig: ioctl (SIOCDIFADDR):
Can't assign requested address
2012-04-20 20:34:03 NOTE: Tried to delete pre-existing tun/tap
instance -- No Problem if failure
2012-04-20 20:34:03 /sbin/ifconfig tap0 192.168.1.211 netmask
255.255.255.0 mtu 1500 up
2012-04-20 20:34:03 /Applications/Tunnelblick.app/Contents/Resources/
client.up.tunnelblick.sh -m -w -d -a -atDASNGWrdasngw tap0 1500 1576
192.168.1.211 255.255.255.0 init
2012-04-20 20:34:05 *Tunnelblick: Flushed the DNS cache
2012-04-20 20:34:05 Initialization Sequence Completed
2012-04-20 20:34:05 MANAGEMENT: >STATE:1334946845,CONNECTED,SUCCESS,
192.168.1.211,XXX.XXX.XXX.XXX
                                          No such key
---

So, an ifconfig tapà shows
---

tap0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        ether f2:6a:ed:1e:31:36
        inet 192.168.1.211 netmask 0xffffff00 broadcast 192.168.1.255
        open (pid 640)
---

The script continue with
---
2012-04-20 20:34:08 *Tunnelblick client.up.tunnelblick.sh: Sleeping
for 0 seconds to wait for DHCP to finish setup.
2012-04-20 20:34:08 *Tunnelblick client.up.tunnelblick.sh: Sleeping
for 1 seconds to wait for DHCP to finish setup.
2012-04-20 20:34:09 *Tunnelblick client.up.tunnelblick.sh: Sleeping
for 2 seconds to wait for DHCP to finish setup.
2012-04-20 20:34:11 *Tunnelblick client.up.tunnelblick.sh: Retrieved
name server(s) [ mydns1 mydns2], domain name [ mydomain], and WINS
server(s) [ ]
2012-04-20 20:34:11 *Tunnelblick client.up.tunnelblick.sh: Up to two
'No such key' warnings are normal and may be ignored
2012-04-20 20:34:11 *Tunnelblick client.up.tunnelblick.sh: Saved the
DNS and WINS configurations for later use
2012-04-20 20:34:11 *Tunnelblick client.up.tunnelblick.sh: Set up to
monitor system configuration with process-network-changes
2012-04-20 20:34:17 *Tunnelblick process-network-changes: A system
configuration change was ignored because it was not relevant
---

Now, ifconfig tap0 shows
---
tap0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        ether f2:6a:ed:1e:31:36
        inet 192.168.1.211 netmask 0xffffff00 broadcast 192.168.1.255
        inet 192.168.1.94 netmask 0xffffff00 broadcast 192.168.1.255
        open (pid 640)
---
As you can see an second IP address has been allocated. I can see the
request in the server side (DHCP_DISCOVER)

Is it an configuration problem? The same configuration runs on Windows
without this allocation.
Thank you very much