[URGENT] Tunnelblick suddenly stopped working
60 views
Skip to first unread message
Jamie Liu
May 27, 2025, 11:18:18 AMMay 27
to tunnelblick-discuss
Tunnelblick worked well for me before, but yesterday after I quitted Tunnelblick, it stopped working anymore. Restarting my Mac didn't help!
Now when I tried to connect to my OpenVPN, I got this error:
Tunnelblick was not able to load a system extension that is needed to connect to pokvpn1-ovpnclient-ver9.
You need to install Tunnelblick's system extensions to use this configuration.
You can do that from Tunnelblick's 'Utilities' panel.
After you install the system extensions, macOS will guide you through its process of 'allowing' them,
which will include a restart of your computer.
'Allowing' the system extensions may require a change to a system security setting.
The setting can be changed only in Recovery mode. You may need to restart in Recovery mode, make the change,
then restart again normally. macOS should guide you through this process.
Why did this happen? Do I really need to install Tunnelblick's system extensions as instructed above?
But the instruction in this page https://tunnelblick.net/cKextsInstallation.html doesn't fit my Mac's System Settings options.
Please help me out!
Now when I tried to connect to my OpenVPN, I got this error:
Tunnelblick was not able to load a system extension that is needed to connect to pokvpn1-ovpnclient-ver9.
You need to install Tunnelblick's system extensions to use this configuration.
You can do that from Tunnelblick's 'Utilities' panel.
After you install the system extensions, macOS will guide you through its process of 'allowing' them,
which will include a restart of your computer.
'Allowing' the system extensions may require a change to a system security setting.
The setting can be changed only in Recovery mode. You may need to restart in Recovery mode, make the change,
then restart again normally. macOS should guide you through this process.
Why did this happen? Do I really need to install Tunnelblick's system extensions as instructed above?
But the instruction in this page https://tunnelblick.net/cKextsInstallation.html doesn't fit my Mac's System Settings options.
Please help me out!
BTW, my laptop is an Apple M2 Max, macOS is Sequoia Version 15.4.
Also, I am trying to attached the log, but found no button for me to do the attachment. It only allow me to attach a photo!
Tunnelblick Developer
May 27, 2025, 11:28:52 AMMay 27
to tunnelblick-discuss
Please post the Diagnostic Info – see Before You Post. To attach a file, click on the "paperclip" button immediately to the left of the attach photo button, shown in this screenshot:
If you don't see the button, just paste the (long) Diagnostic Info into your reply.
If you don't see the button, just paste the (long) Diagnostic Info into your reply.
Jamie Liu
May 27, 2025, 12:08:42 PMMay 27
to tunnelblick-discuss
I don't have the paper clip icon. Maybe I don't have the authority to attach files? I could only attach pictures.
Tunnelblick Developer
May 27, 2025, 12:20:40 PMMay 27
to tunnelblick-discuss
OK, paste the (long) Diagnostic Info into your reply.
Jamie Liu
May 27, 2025, 12:37:35 PMMay 27
to tunnelblick-discuss
*Tunnelblick: macOS 15.4 (24E248); Tunnelblick 4.0.1 (build 5971); Admin user
git commit 2a85efdab228d7d29828ab63061eb59f799f84fa
The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,6
================================================================================
Configuration my-openvpn-profile
"Sanitized" condensed configuration file for /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk:
client
<ca>
[Security-related line(s) omitted]
</ca>
key-direction 1
<tls-auth>
[Security-related line(s) omitted]
</tls-auth>
proto udp
mssfix 1300
cipher AES-256-GCM
resolv-retry infinite
persist-key
persist-tun
reneg-sec 0
remote my.remote.vpn.site 1194
remote my.remote.vpn.site 1194
dev tun
auth-user-pass
auth-retry interact
static-challenge "Enter your OTP:" 1
verb 3
pull-filter ignore "dhcp-option DNS"
pull-filter ignore "dhcp-option WINS"
nobind
connect-retry 5 60 # Retry 5 times with a 60 second interval between retries
connect-retry-max 5 # Maximum of 5 retry attempts
explicit-exit-notify
================================================================================
Files in my-openvpn-profile.tblk:
Contents/Resources/config.ovpn
================================================================================
Configuration preferences:
-doNotDisconnectOnFastUserSwitch = 1
-doNotReconnectOnFastUserSwitch = 1
-keychainHasUsernameAndPassword = 1
-loadTap = always
-loadTun = always
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-keepConnected = 1
-doNotDisconnectOnSleep = 1
-loggingLevel = 3
-loginWindowSecurityTokenCheckboxIsChecked = 0
-lastConnectionSucceeded = 0
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"4.0.1 (build 5971)"
)
lastLaunchTime = 769981816.85859
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = my-openvpn-profile
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame SettingsSheetWindow = 458 206 829 548 0 0 1728 1079
NSWindow Frame ConnectingWindow = 669 646 389 217 0 0 1728 1079
NSWindow Frame SUUpdateAlert = 554 510 620 398 0 0 1728 1079
NSWindow Frame ListingWindow = 452 471 500 428 0 0 1728 1079
detailsWindowFrameVersion = 5971
detailsWindowFrame = {{347, 335}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = settings
leftNavSelectedDisplayName = my-openvpn-profile
AdvancedWindowTabIdentifier = sounds
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2025-05-26 19:50:17 +0000
SUHasLaunchedBefore = 1
SUSkippedVersion = 6300
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Kext Policy Data:
================================================================================
Tunnelblick Log:
2025-05-27 09:05:19.422223 *Tunnelblick: macOS 15.4 (24E248); Tunnelblick 4.0.1 (build 5971)
2025-05-27 09:05:19.739818 *Tunnelblick: Attempting connection with my-openvpn-profile; Set nameserver = 0x00000301; monitoring connection
2025-05-27 09:05:19.740696 *Tunnelblick: openvpnstart start my-openvpn-profile.tblk 60261 0x00000301 0 3 0 0x0210c133 -ptADGNWradsgnw 2.6.9-openssl-3.0.13 <password>
2025-05-27 09:05:19.792495 *Tunnelblick: openvpnstart starting OpenVPN
2025-05-27 09:05:29.849827 *Tunnelblick:
Could not start OpenVPN (openvpnstart returned with status #247)
Contents of the openvpnstart log:
openvpnstart log:
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Unable to load net.tunnelblick.tun and/or net.tunnelblick.tap kexts in 5 tries. (It was not loaded even though the system said it was loaded.)
================================================================================
Installer log:
Tunnelblick installer started 2024-10-07 16:19:41.153992; getuid() = 501; geteuid() = 0; getgid() = 20; getegid() = 20
currentDirectoryPath = '/'; 3 arguments:
0x0001
/Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
/private/var/folders/xq/23znt8gd1lg5pbkyrd47b83h0000gn/T/net.tunnelblick.tunnelblick-VPDksb/my-openvpn-profile.tblk
Determined username 'myuser' from getuid(): 501
renamex_np() tests succeeded for /Applications
renamex_np() tests succeeded for /Library/Application Support/Tunnelblick
renamex_np() tests succeeded for /Users/myuser/Library/Application Support/Tunnelblick/Configurations
renamex_np() succeeded renaming /Library/Application Support/Tunnelblick/installer-temp to /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents/Resources
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents/Resources/config.ovpn
Tunnelblick installer succeeded
================================================================================
Down log:
13:57:04 *Tunnelblick: **********************************************
13:57:04 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:57:04 *Tunnelblick: INHIBIT_NETWORK_MONITORING is true, so not removing leasewatcher
13:57:04 *Tunnelblick: MADE_DNS_CHANGES is false, so not restoring network_settings
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "AX88179A"
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Thunderbolt Bridge"
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Wi-Fi"
13:57:04 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:57:04 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:57:04 *Tunnelblick: Up to six 'No such key' messages may appear next and may be ignored.
13:57:04 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:57:04 *Tunnelblick: **********************************************
================================================================================
Previous down log:
13:10:07 *Tunnelblick: **********************************************
13:10:07 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:10:07 *Tunnelblick: INHIBIT_NETWORK_MONITORING is true, so not removing leasewatcher
13:10:07 *Tunnelblick: MADE_DNS_CHANGES is false, so not restoring network_settings
13:10:07 *Tunnelblick: Re-enabled IPv6 (automatic) for "AX88179A"
13:10:07 *Tunnelblick: Re-enabled IPv6 (automatic) for "Thunderbolt Bridge"
13:10:08 *Tunnelblick: Re-enabled IPv6 (automatic) for "Wi-Fi"
13:10:08 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:10:08 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:10:08 *Tunnelblick: Notified mDNSResponderHelper that the DNS cache was flushed
13:10:08 *Tunnelblick: Up to six 'No such key' messages may appear next and may be ignored.
13:10:08 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:10:08 *Tunnelblick: **********************************************
================================================================================
Network services:
An asterisk (*) denotes that a network service is disabled.
AX88179A
Thunderbolt Bridge
Wi-Fi
Wi-Fi Power (en0): On
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
anpi1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:89
media: none
status: inactive
anpi2: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:8a
media: none
status: inactive
anpi0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:88
media: none
status: inactive
en4: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:68
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:69
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en6: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:6a
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:40
media: autoselect <full-duplex>
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:44
media: autoselect <full-duplex>
status: inactive
en3: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:48
media: autoselect <full-duplex>
status: inactive
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:57:b7:e3:ed:40
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 11 priority 0 path cost 0
member: en3 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 12 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
ap1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether ce:89:1d:39:03:46
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (none)
status: inactive
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 5e:db:47:a1:f8:a9
inet6 fe80::8b3:bfac:e656:dda5%en0 prefixlen 64 secured scopeid 0xe
inet 192.168.68.101 netmask 0xffffff00 broadcast 192.168.68.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
awdl0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 66:22:ec:b3:76:b7
inet6 fe80::6422:ecff:feb3:76b7%awdl0 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 66:22:ec:b3:76:b7
inet6 fe80::6422:ecff:feb3:76b7%llw0 prefixlen 64 scopeid 0x11
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (none)
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet6 fe80::f4a3:b71a:85d7:28d8%utun0 prefixlen 64 scopeid 0x12
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::cb9c:accc:5fe5:1e71%utun1 prefixlen 64 scopeid 0x13
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::c5ee:c408:9730:c22e%utun2 prefixlen 64 scopeid 0x14
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun3 prefixlen 64 scopeid 0x15
nd6 options=201<PERFORMNUD,DAD>
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::1aa1:5e89:e85:32d4%utun4 prefixlen 64 scopeid 0x16
nd6 options=201<PERFORMNUD,DAD>
vmenet0: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
ether ca:b5:24:a6:5b:8a
media: autoselect
status: active
bridge100: flags=8a63<UP,BROADCAST,SMART,RUNNING,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500
options=3<RXCSUM,TXCSUM>
ether 5e:e9:1e:f7:46:64
inet 192.168.106.1 netmask 0xffffff00 broadcast 192.168.106.255
inet6 fe80::5ce9:1eff:fef7:4664%bridge100 prefixlen 64 scopeid 0x18
inet6 fd24:54f3:1bea:9810:878:d55f:9149:e949 prefixlen 64 autoconf secured
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: vmenet0 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 23 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun5: flags=80d1<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1390
inet 9.11.22.8 --> 9.11.22.8 netmask 0xfffff000
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2025-05-26 15:43:41.473411 applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes)
2025-05-26 15:43:41.480552 shutDownTunnelblick: started.
2025-05-26 15:43:41.481131 shutDownTunnelblick: Starting cleanup.
2025-05-26 15:43:41.481278 cleanup: Entering cleanup
2025-05-26 15:43:41.481387 synchronized user defaults
================================================================================
Traces Log:
================================================================================
Console Log:
git commit 2a85efdab228d7d29828ab63061eb59f799f84fa
The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,6
================================================================================
Configuration my-openvpn-profile
"Sanitized" condensed configuration file for /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk:
client
<ca>
[Security-related line(s) omitted]
</ca>
key-direction 1
<tls-auth>
[Security-related line(s) omitted]
</tls-auth>
proto udp
mssfix 1300
cipher AES-256-GCM
resolv-retry infinite
persist-key
persist-tun
reneg-sec 0
remote my.remote.vpn.site 1194
remote my.remote.vpn.site 1194
dev tun
auth-user-pass
auth-retry interact
static-challenge "Enter your OTP:" 1
verb 3
pull-filter ignore "dhcp-option DNS"
pull-filter ignore "dhcp-option WINS"
nobind
connect-retry 5 60 # Retry 5 times with a 60 second interval between retries
connect-retry-max 5 # Maximum of 5 retry attempts
explicit-exit-notify
================================================================================
Files in my-openvpn-profile.tblk:
Contents/Resources/config.ovpn
================================================================================
Configuration preferences:
-doNotDisconnectOnFastUserSwitch = 1
-doNotReconnectOnFastUserSwitch = 1
-keychainHasUsernameAndPassword = 1
-loadTap = always
-loadTun = always
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-keepConnected = 1
-doNotDisconnectOnSleep = 1
-loggingLevel = 3
-loginWindowSecurityTokenCheckboxIsChecked = 0
-lastConnectionSucceeded = 0
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"4.0.1 (build 5971)"
)
lastLaunchTime = 769981816.85859
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = my-openvpn-profile
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame SettingsSheetWindow = 458 206 829 548 0 0 1728 1079
NSWindow Frame ConnectingWindow = 669 646 389 217 0 0 1728 1079
NSWindow Frame SUUpdateAlert = 554 510 620 398 0 0 1728 1079
NSWindow Frame ListingWindow = 452 471 500 428 0 0 1728 1079
detailsWindowFrameVersion = 5971
detailsWindowFrame = {{347, 335}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = settings
leftNavSelectedDisplayName = my-openvpn-profile
AdvancedWindowTabIdentifier = sounds
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2025-05-26 19:50:17 +0000
SUHasLaunchedBefore = 1
SUSkippedVersion = 6300
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Kext Policy Data:
================================================================================
Tunnelblick Log:
2025-05-27 09:05:19.422223 *Tunnelblick: macOS 15.4 (24E248); Tunnelblick 4.0.1 (build 5971)
2025-05-27 09:05:19.739818 *Tunnelblick: Attempting connection with my-openvpn-profile; Set nameserver = 0x00000301; monitoring connection
2025-05-27 09:05:19.740696 *Tunnelblick: openvpnstart start my-openvpn-profile.tblk 60261 0x00000301 0 3 0 0x0210c133 -ptADGNWradsgnw 2.6.9-openssl-3.0.13 <password>
2025-05-27 09:05:19.792495 *Tunnelblick: openvpnstart starting OpenVPN
2025-05-27 09:05:29.849827 *Tunnelblick:
Could not start OpenVPN (openvpnstart returned with status #247)
Contents of the openvpnstart log:
openvpnstart log:
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Failed to load the tap kext; status = -603947007
Unable to load net.tunnelblick.tun and/or net.tunnelblick.tap kexts in 5 tries. (It was not loaded even though the system said it was loaded.)
================================================================================
Installer log:
Tunnelblick installer started 2024-10-07 16:19:41.153992; getuid() = 501; geteuid() = 0; getgid() = 20; getegid() = 20
currentDirectoryPath = '/'; 3 arguments:
0x0001
/Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
/private/var/folders/xq/23znt8gd1lg5pbkyrd47b83h0000gn/T/net.tunnelblick.tunnelblick-VPDksb/my-openvpn-profile.tblk
Determined username 'myuser' from getuid(): 501
renamex_np() tests succeeded for /Applications
renamex_np() tests succeeded for /Library/Application Support/Tunnelblick
renamex_np() tests succeeded for /Users/myuser/Library/Application Support/Tunnelblick/Configurations
renamex_np() succeeded renaming /Library/Application Support/Tunnelblick/installer-temp to /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents/Resources
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Shared/my-openvpn-profile.tblk/Contents/Resources/config.ovpn
Tunnelblick installer succeeded
================================================================================
Down log:
13:57:04 *Tunnelblick: **********************************************
13:57:04 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:57:04 *Tunnelblick: INHIBIT_NETWORK_MONITORING is true, so not removing leasewatcher
13:57:04 *Tunnelblick: MADE_DNS_CHANGES is false, so not restoring network_settings
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "AX88179A"
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Thunderbolt Bridge"
13:57:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Wi-Fi"
13:57:04 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:57:04 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:57:04 *Tunnelblick: Up to six 'No such key' messages may appear next and may be ignored.
13:57:04 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:57:04 *Tunnelblick: **********************************************
================================================================================
Previous down log:
13:10:07 *Tunnelblick: **********************************************
13:10:07 *Tunnelblick: Start of output from client.down.tunnelblick.sh
13:10:07 *Tunnelblick: INHIBIT_NETWORK_MONITORING is true, so not removing leasewatcher
13:10:07 *Tunnelblick: MADE_DNS_CHANGES is false, so not restoring network_settings
13:10:07 *Tunnelblick: Re-enabled IPv6 (automatic) for "AX88179A"
13:10:07 *Tunnelblick: Re-enabled IPv6 (automatic) for "Thunderbolt Bridge"
13:10:08 *Tunnelblick: Re-enabled IPv6 (automatic) for "Wi-Fi"
13:10:08 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
13:10:08 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
13:10:08 *Tunnelblick: Notified mDNSResponderHelper that the DNS cache was flushed
13:10:08 *Tunnelblick: Up to six 'No such key' messages may appear next and may be ignored.
13:10:08 *Tunnelblick: End of output from client.down.tunnelblick.sh
13:10:08 *Tunnelblick: **********************************************
================================================================================
Network services:
An asterisk (*) denotes that a network service is disabled.
AX88179A
Thunderbolt Bridge
Wi-Fi
Wi-Fi Power (en0): On
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
anpi1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:89
media: none
status: inactive
anpi2: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:8a
media: none
status: inactive
anpi0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:88
media: none
status: inactive
en4: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:68
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:69
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en6: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether da:42:14:54:37:6a
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:40
media: autoselect <full-duplex>
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:44
media: autoselect <full-duplex>
status: inactive
en3: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:57:b7:e3:ed:48
media: autoselect <full-duplex>
status: inactive
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:57:b7:e3:ed:40
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 10 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 11 priority 0 path cost 0
member: en3 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 12 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
ap1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether ce:89:1d:39:03:46
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (none)
status: inactive
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 5e:db:47:a1:f8:a9
inet6 fe80::8b3:bfac:e656:dda5%en0 prefixlen 64 secured scopeid 0xe
inet 192.168.68.101 netmask 0xffffff00 broadcast 192.168.68.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
awdl0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 66:22:ec:b3:76:b7
inet6 fe80::6422:ecff:feb3:76b7%awdl0 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 66:22:ec:b3:76:b7
inet6 fe80::6422:ecff:feb3:76b7%llw0 prefixlen 64 scopeid 0x11
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (none)
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet6 fe80::f4a3:b71a:85d7:28d8%utun0 prefixlen 64 scopeid 0x12
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::cb9c:accc:5fe5:1e71%utun1 prefixlen 64 scopeid 0x13
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::c5ee:c408:9730:c22e%utun2 prefixlen 64 scopeid 0x14
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun3 prefixlen 64 scopeid 0x15
nd6 options=201<PERFORMNUD,DAD>
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::1aa1:5e89:e85:32d4%utun4 prefixlen 64 scopeid 0x16
nd6 options=201<PERFORMNUD,DAD>
vmenet0: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
ether ca:b5:24:a6:5b:8a
media: autoselect
status: active
bridge100: flags=8a63<UP,BROADCAST,SMART,RUNNING,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500
options=3<RXCSUM,TXCSUM>
ether 5e:e9:1e:f7:46:64
inet 192.168.106.1 netmask 0xffffff00 broadcast 192.168.106.255
inet6 fe80::5ce9:1eff:fef7:4664%bridge100 prefixlen 64 scopeid 0x18
inet6 fd24:54f3:1bea:9810:878:d55f:9149:e949 prefixlen 64 autoconf secured
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: vmenet0 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 23 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun5: flags=80d1<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1390
inet 9.11.22.8 --> 9.11.22.8 netmask 0xfffff000
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2025-05-26 15:43:41.473411 applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes)
2025-05-26 15:43:41.480552 shutDownTunnelblick: started.
2025-05-26 15:43:41.481131 shutDownTunnelblick: Starting cleanup.
2025-05-26 15:43:41.481278 cleanup: Entering cleanup
2025-05-26 15:43:41.481387 synchronized user defaults
================================================================================
Traces Log:
================================================================================
Console Log:
Tunnelblick Developer
May 27, 2025, 1:09:06 PMMay 27
to tunnelblick-discuss
The problem is that somehow "Always load Tun driver" and "Always load Tap driver" have been selected. You don't need that for your configuration.
You can change them to "Automatically load Tun driver"; and "Automatically load Tap driver" in the Advanced settings window. Select the configuration(s) on the Configurations panel of the VPN Details page, then on the Settings tab click the "Advanced" button.
On Tuesday, May 27, 2025 at 12:37:35 PM UTC-4 drim...@gmail.com wrote:
*Tunnelblick: macOS 15.4 (24E248); Tunnelblick 4.0.1 (build 5971); Admin user
git commit 2a85efdab228d7d29828ab63061eb59f799f84fa
The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,6
…
Configuration preferences:
…
Jamie Liu
May 27, 2025, 3:05:14 PMMay 27
to tunnelblick-discuss
Wonderful! This solved the problem!
Thank you very much for your help!
Tunnelblick Developer
May 27, 2025, 3:23:03 PMMay 27
to tunnelblick-discuss
You're welcome! I wish all problems were this easy to find and fix!
Reply all
Reply to author
Forward
0 new messages