help - cannot connect to Tunnelblick - Mac OS X and in china.. thanks
233 views
Skip to first unread message
nahnah
Aug 19, 2009, 11:57:24 AM8/19/09
to tunnelblick-discuss
2009-08-19 23:55:51 SUCCESS: pid=711
2009-08-19 23:55:51 SUCCESS: real-time state notification set to ON
2009-08-19 23:55:51 SUCCESS: real-time log notification set to ON
2009-08-19 23:55:51 OpenVPN 2.1_rc15 i386-apple-darwin9.8.0 [SSL]
[LZO2] [PKCS11] built on Aug 10 2009
2009-08-19 23:55:51 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
2009-08-19 23:55:51 waiting...
2009-08-19 23:55:51 MANAGEMENT: Client connected from 127.0.0.1:1337
2009-08-19 23:55:51 END
2009-08-19 23:55:51 SUCCESS: hold release succeeded
2009-08-19 23:55:51 WARNING: No server certificate verification method
has been enabled. See http://openvpn.net/howto.html#mitm for more
info.
2009-08-19 23:55:51 NOTE: the current --script-security setting may
allow this configuration to call user-defined scripts
2009-08-19 23:55:51 Cannot load certificate file client.crt: error:
02001002:system library:fopen:No such file or directory: error:
20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL
routines:SSL_CTX_use_certificate_file:system lib
Please advise.. thanks!
2009-08-19 23:55:51 SUCCESS: real-time state notification set to ON
2009-08-19 23:55:51 SUCCESS: real-time log notification set to ON
2009-08-19 23:55:51 OpenVPN 2.1_rc15 i386-apple-darwin9.8.0 [SSL]
[LZO2] [PKCS11] built on Aug 10 2009
2009-08-19 23:55:51 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
2009-08-19 23:55:51 waiting...
2009-08-19 23:55:51 MANAGEMENT: Client connected from 127.0.0.1:1337
2009-08-19 23:55:51 END
2009-08-19 23:55:51 SUCCESS: hold release succeeded
2009-08-19 23:55:51 WARNING: No server certificate verification method
has been enabled. See http://openvpn.net/howto.html#mitm for more
info.
2009-08-19 23:55:51 NOTE: the current --script-security setting may
allow this configuration to call user-defined scripts
2009-08-19 23:55:51 Cannot load certificate file client.crt: error:
02001002:system library:fopen:No such file or directory: error:
20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL
routines:SSL_CTX_use_certificate_file:system lib
Please advise.. thanks!
jkbull...gmail.com
Aug 19, 2009, 9:33:19 PM8/19/09
to tunnelblick-discuss
From the errors, it looks like it can't find your certificate file.
All the files should be in
~/Library/openvpn
where the "~" is your home directory.
On Aug 19, 11:57 am, nahnah <serene....@gmail.com> wrote:
> 2009-08-19 23:55:51 SUCCESS: pid=711
> 2009-08-19 23:55:51 SUCCESS: real-time state notification set to ON
> 2009-08-19 23:55:51 SUCCESS: real-time log notification set to ON
> 2009-08-19 23:55:51 OpenVPN 2.1_rc15 i386-apple-darwin9.8.0 [SSL]
> [LZO2] [PKCS11] built on Aug 10 2009
> 2009-08-19 23:55:51 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
> 2009-08-19 23:55:51 waiting...
> 2009-08-19 23:55:51 MANAGEMENT: Client connected from 127.0.0.1:1337
> 2009-08-19 23:55:51 END
> 2009-08-19 23:55:51 SUCCESS: hold release succeeded
> 2009-08-19 23:55:51 WARNING: No server certificate verification method
> has been enabled. Seehttp://openvpn.net/howto.html#mitmfor more
All the files should be in
~/Library/openvpn
where the "~" is your home directory.
On Aug 19, 11:57 am, nahnah <serene....@gmail.com> wrote:
> 2009-08-19 23:55:51 SUCCESS: pid=711
> 2009-08-19 23:55:51 SUCCESS: real-time state notification set to ON
> 2009-08-19 23:55:51 SUCCESS: real-time log notification set to ON
> 2009-08-19 23:55:51 OpenVPN 2.1_rc15 i386-apple-darwin9.8.0 [SSL]
> [LZO2] [PKCS11] built on Aug 10 2009
> 2009-08-19 23:55:51 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
> 2009-08-19 23:55:51 waiting...
> 2009-08-19 23:55:51 MANAGEMENT: Client connected from 127.0.0.1:1337
> 2009-08-19 23:55:51 END
> 2009-08-19 23:55:51 SUCCESS: hold release succeeded
> 2009-08-19 23:55:51 WARNING: No server certificate verification method
Mark
Aug 20, 2009, 8:30:22 AM8/20/09
to tunnelblick-discuss
I have the exact same problem. I am completely new to VPN and have no
idea about crt and key files. Should these files have been included
with the Tunnelblick download? If not, do I need to create them and
how? If not, where can I get them? Do they need to be configured? I
have just signed up with Witopia on the PPTP package.
Thanks in advance for any help,
Mark.
idea about crt and key files. Should these files have been included
with the Tunnelblick download? If not, do I need to create them and
how? If not, where can I get them? Do they need to be configured? I
have just signed up with Witopia on the PPTP package.
Thanks in advance for any help,
Mark.
jkbull...gmail.com
Aug 20, 2009, 8:54:55 AM8/20/09
to tunnelblick-discuss
From a quick look at the Witopia website, their PPTP package does not
use OpenVPN. It uses PPTP. So Tunnelblick wouldn't work with it.
From what they say, you shouldn't need any software like Tunnelblick
to use their PPTP package: "Most computers and smartphones have
compatible PPTP software already built in so you don’t even have to
install any software to use it."
I suggest you read Witopia's documentation about how to use their
service, or contact Witopia tech support.
If you get Witopia's "SSL (OpenVPN)" service, Witopia apparently
provides you with a customized-by-them version of Tunnelblick, with
the necessary certificate, key, and configuration files already set up
for you.
use OpenVPN. It uses PPTP. So Tunnelblick wouldn't work with it.
From what they say, you shouldn't need any software like Tunnelblick
to use their PPTP package: "Most computers and smartphones have
compatible PPTP software already built in so you don’t even have to
install any software to use it."
I suggest you read Witopia's documentation about how to use their
service, or contact Witopia tech support.
If you get Witopia's "SSL (OpenVPN)" service, Witopia apparently
provides you with a customized-by-them version of Tunnelblick, with
the necessary certificate, key, and configuration files already set up
for you.
Mark
Aug 20, 2009, 9:55:18 AM8/20/09
to tunnelblick-discuss
I think you're spot-on. I bought the wrong package, should have opted
for the SSL version - at least they have a 30 day money back
guarantee. thanks for your help, wasted a lot of hours trying to
figure this out last night.
M.
On Aug 20, 1:54 pm, "jkbull...gmail.com" <jkbull...@gmail.com> wrote:
> From a quick look at the Witopia website, their PPTP package does not
> use OpenVPN. It uses PPTP. So Tunnelblick wouldn't work with it.
>
> From what they say, you shouldn't need any software like Tunnelblick
> to use their PPTP package: "Most computers and smartphones have
> compatible PPTP software already built in so you don’t even have to
> install any software to use it."
>
> I suggest you read Witopia's documentation about how to use their
> service, or contact Witopia tech support.
>
> If you get Witopia's "SSL (OpenVPN)" service, Witopia apparently
> provides you with a customized-by-them version of Tunnelblick, with
> the necessary certificate, key, and configuration files already set up
> for you.
>
> On Aug 20, 8:30 am, Mark <markwwebs...@gmail.com> wrote:
>
> > I have the exact same problem. I am completely new to VPN and have no
> > idea aboutcrtand key files. Should these files have been included
for the SSL version - at least they have a 30 day money back
guarantee. thanks for your help, wasted a lot of hours trying to
figure this out last night.
M.
On Aug 20, 1:54 pm, "jkbull...gmail.com" <jkbull...@gmail.com> wrote:
> From a quick look at the Witopia website, their PPTP package does not
> use OpenVPN. It uses PPTP. So Tunnelblick wouldn't work with it.
>
> From what they say, you shouldn't need any software like Tunnelblick
> to use their PPTP package: "Most computers and smartphones have
> compatible PPTP software already built in so you don’t even have to
> install any software to use it."
>
> I suggest you read Witopia's documentation about how to use their
> service, or contact Witopia tech support.
>
> If you get Witopia's "SSL (OpenVPN)" service, Witopia apparently
> provides you with a customized-by-them version of Tunnelblick, with
> the necessary certificate, key, and configuration files already set up
> for you.
>
> On Aug 20, 8:30 am, Mark <markwwebs...@gmail.com> wrote:
>
> > I have the exact same problem. I am completely new to VPN and have no
coco
Aug 25, 2009, 10:53:44 AM8/25/09
to tunnelblick-discuss
I think I similar issue than "nahnah" to connect : I just bought the
triql pqckqge for openvpn, downloaded and installed Tunnelblick... I
have the small icon on the right top side of the screen but it does
not want to connect when I click on " Connect 'openvpn' ".
PLEASE HELP !!
Here is the message I got from the "Details" menu:
2009-08-25 22:51:48 Tunnelblick 3 (3.0b16 build 575); OpenVPN 2
(2.1_rc19)
2009-08-25 22:51:49 SUCCESS: pid=413
2009-08-25 22:51:49 SUCCESS: real-time state notification set to ON
2009-08-25 22:51:49 SUCCESS: real-time log notification set to ON
2009-08-25 22:51:49 OpenVPN 2.1_rc19 i386-apple-darwin9.8.0 [SSL]
[LZO2] [PKCS11] built on Aug 22 2009
2009-08-25 22:51:49 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
2009-08-25 22:51:49 waiting...
2009-08-25 22:51:49 MANAGEMENT: Client connected from 127.0.0.1:1338
2009-08-25 22:51:49 MANAGEMENT: CMD 'pid'
2009-08-25 22:51:49 MANAGEMENT: CMD 'state on'
2009-08-25 22:51:49 MANAGEMENT: CMD 'log on all'
2009-08-25 22:51:49 END
2009-08-25 22:51:49 MANAGEMENT: CMD 'hold release'
2009-08-25 22:51:49 SUCCESS: hold release succeeded
2009-08-25 22:51:49 WARNING: No server certificate verification method
2009-08-25 22:51:49 NOTE: the current --script-security setting may
Coco
triql pqckqge for openvpn, downloaded and installed Tunnelblick... I
have the small icon on the right top side of the screen but it does
not want to connect when I click on " Connect 'openvpn' ".
PLEASE HELP !!
Here is the message I got from the "Details" menu:
2009-08-25 22:51:48 Tunnelblick 3 (3.0b16 build 575); OpenVPN 2
(2.1_rc19)
2009-08-25 22:51:49 SUCCESS: pid=413
2009-08-25 22:51:49 SUCCESS: real-time state notification set to ON
2009-08-25 22:51:49 SUCCESS: real-time log notification set to ON
2009-08-25 22:51:49 OpenVPN 2.1_rc19 i386-apple-darwin9.8.0 [SSL]
[LZO2] [PKCS11] built on Aug 22 2009
2009-08-25 22:51:49 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
2009-08-25 22:51:49 waiting...
2009-08-25 22:51:49 MANAGEMENT: Client connected from 127.0.0.1:1338
2009-08-25 22:51:49 MANAGEMENT: CMD 'pid'
2009-08-25 22:51:49 MANAGEMENT: CMD 'state on'
2009-08-25 22:51:49 MANAGEMENT: CMD 'log on all'
2009-08-25 22:51:49 END
2009-08-25 22:51:49 MANAGEMENT: CMD 'hold release'
2009-08-25 22:51:49 SUCCESS: hold release succeeded
2009-08-25 22:51:49 WARNING: No server certificate verification method
2009-08-25 22:51:49 NOTE: the current --script-security setting may
allow this configuration to call user-defined scripts
2009-08-25 22:51:49 Cannot load certificate file client.crt: error:
02001002:system library:fopen:No such file or directory: error:
20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL
routines:SSL_CTX_use_certificate_file:system lib
THANKS to advise how to get connection working.
20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL
routines:SSL_CTX_use_certificate_file:system lib
Coco
jkbull...gmail.com
Aug 25, 2009, 11:44:07 AM8/25/09
to tunnelblick-discuss
My understanding is that Witopia (I'm assuming that's what you bought)
has their own customized version of Tunnelblick. After you buy, they
send you the customized Tunnelblick with everything you need, or a
link to a place to download it from.
If you bought it from someone else, you should contact their tech
support. They'll have to provide the missing certificates, etc.
On Aug 25, 10:53 am, coco <corentin.maur...@gmail.com> wrote:
> I think I similar issue than "nahnah" to connect : I just bought the
> triql pqckqge for openvpn, downloaded and installed Tunnelblick... I
> have the small icon on the right top side of the screen but it does
> not want to connect when I click on " Connect 'openvpn' ".
>
> PLEASE HELP !!
>
> Here is the message I got from the "Details" menu:
>
> 2009-08-25 22:51:48 Tunnelblick 3 (3.0b16 build 575); OpenVPN 2
> (2.1_rc19)
> 2009-08-25 22:51:49 SUCCESS: pid=413
> 2009-08-25 22:51:49 SUCCESS: real-time state notification set to ON
> 2009-08-25 22:51:49 SUCCESS: real-time log notification set to ON
> 2009-08-25 22:51:49 OpenVPN 2.1_rc19 i386-apple-darwin9.8.0 [SSL]
> [LZO2] [PKCS11] built on Aug 22 2009
> 2009-08-25 22:51:49 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
> 2009-08-25 22:51:49 waiting...
> 2009-08-25 22:51:49 MANAGEMENT: Client connected from 127.0.0.1:1338
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'pid'
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'state on'
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'log on all'
> 2009-08-25 22:51:49 END
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'hold release'
> 2009-08-25 22:51:49 SUCCESS: hold release succeeded
> 2009-08-25 22:51:49 WARNING: No server certificate verification method
> has been enabled. Seehttp://openvpn.net/howto.html#mitmfor more
has their own customized version of Tunnelblick. After you buy, they
send you the customized Tunnelblick with everything you need, or a
link to a place to download it from.
If you bought it from someone else, you should contact their tech
support. They'll have to provide the missing certificates, etc.
On Aug 25, 10:53 am, coco <corentin.maur...@gmail.com> wrote:
> I think I similar issue than "nahnah" to connect : I just bought the
> triql pqckqge for openvpn, downloaded and installed Tunnelblick... I
> have the small icon on the right top side of the screen but it does
> not want to connect when I click on " Connect 'openvpn' ".
>
> PLEASE HELP !!
>
> Here is the message I got from the "Details" menu:
>
> 2009-08-25 22:51:48 Tunnelblick 3 (3.0b16 build 575); OpenVPN 2
> (2.1_rc19)
> 2009-08-25 22:51:49 SUCCESS: pid=413
> 2009-08-25 22:51:49 SUCCESS: real-time state notification set to ON
> 2009-08-25 22:51:49 SUCCESS: real-time log notification set to ON
> 2009-08-25 22:51:49 OpenVPN 2.1_rc19 i386-apple-darwin9.8.0 [SSL]
> [LZO2] [PKCS11] built on Aug 22 2009
> 2009-08-25 22:51:49 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
> 2009-08-25 22:51:49 waiting...
> 2009-08-25 22:51:49 MANAGEMENT: Client connected from 127.0.0.1:1338
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'pid'
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'state on'
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'log on all'
> 2009-08-25 22:51:49 END
> 2009-08-25 22:51:49 MANAGEMENT: CMD 'hold release'
> 2009-08-25 22:51:49 SUCCESS: hold release succeeded
> 2009-08-25 22:51:49 WARNING: No server certificate verification method
Serene Nah
Aug 25, 2009, 12:18:17 PM8/25/09
to tunnelbli...@googlegroups.com
folks,
the way I resolved my issue was getting the witopia SSL package that gives you their version of tunnelblick with the certificates..
the ssl package doesnt do that hence leading to the same problem.
Hope this helps
the way I resolved my issue was getting the witopia SSL package that gives you their version of tunnelblick with the certificates..
the ssl package doesnt do that hence leading to the same problem.
Hope this helps
coco
Aug 25, 2009, 1:06:35 PM8/25/09
to tunnelblick-discuss
thanks
I did not expect to be so complicate though...
On Aug 25, 11:44 pm, "jkbull...gmail.com" <jkbull...@gmail.com> wrote:
> My understanding is that Witopia (I'm assuming that's what you bought)
> has their own customized version of Tunnelblick. After you buy, they
> send you the customized Tunnelblick with everything you need, or a
> link to a place to download it from.
>
> If you bought it from someone else, you should contact their tech
> support. They'll have to provide the missing certificates, etc.
>
> On Aug 25, 10:53 am, coco <corentin.maur...@gmail.com> wrote:
>
> > I think I have similar issue than "nahnah" to connect : I just bought the
I did not expect to be so complicate though...
On Aug 25, 11:44 pm, "jkbull...gmail.com" <jkbull...@gmail.com> wrote:
> My understanding is that Witopia (I'm assuming that's what you bought)
> has their own customized version of Tunnelblick. After you buy, they
> send you the customized Tunnelblick with everything you need, or a
> link to a place to download it from.
>
> If you bought it from someone else, you should contact their tech
> support. They'll have to provide the missing certificates, etc.
>
> On Aug 25, 10:53 am, coco <corentin.maur...@gmail.com> wrote:
>
Reply all
Reply to author
Forward
0 new messages