issue on osx 10.8
62 views
Skip to first unread message
csae...@uibk.ac.at
Aug 26, 2021, 2:53:34 PM8/26/21
to tunnelbli...@googlegroups.com
hello,
according to the homepage i should be installing
"On macOS 10.7.5 and higher, the latest stable or beta version from the
Downloads page should be used."
but the new stable download is installable only macos 10.10 onwards.
i am on mac os x 10.8 mountain lion, and installed first version 3.5.25,
but this version seems not being able to correctly handle the proton
opvn file < it would connect, but no websites get loaded.
thank you.
according to the homepage i should be installing
"On macOS 10.7.5 and higher, the latest stable or beta version from the
Downloads page should be used."
but the new stable download is installable only macos 10.10 onwards.
i am on mac os x 10.8 mountain lion, and installed first version 3.5.25,
but this version seems not being able to correctly handle the proton
opvn file < it would connect, but no websites get loaded.
thank you.
Tunnelblick developer
Aug 26, 2021, 3:02:58 PM8/26/21
to tunnelblick-discuss
Thanks! I have updated the website to fix the conflicting info.
You should use 3.5.25, which should work on 10.8.
If that won't connect to your VPN, please post the diagnostic info obtained by following the instructions at Read Before You Post.
Ju Ri
Aug 27, 2021, 5:11:41 AM8/27/21
to tunnelblick-discuss
Hello,
i have now posted the details , the first attempt was with OpenVPN 2.4.4 (latest) which did not connect, and the second attempt with OpenVPN 2.3.18 (default for Tunnelblick 3.5.25 which is installed), which connected but again would not load any sites.
Configuration us-free-01.protonvpn.com.udp
"Sanitized" condensed configuration file for /Users/rich/Library/Application Support/Tunnelblick/Configurations/us-free-01.protonvpn.com.udp.tblk:
client
dev tun
proto udp
remote us-free-01.protonvpn.com 1194
remote us-free-01.protonvpn.com 80
remote us-free-01.protonvpn.com 443
remote us-free-01.protonvpn.com 4569
remote us-free-01.protonvpn.com 5060
remote-random
resolv-retry infinite
nobind
cipher AES-256-CBC
auth SHA512
verb 3
setenv CLIENT_CERT 0
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
reneg-sec 0
remote-cert-tls server
auth-user-pass
pull
fast-io
<ca>
[Security-related line(s) omitted]
</ca>
key-direction 1
<tls-auth>
[Security-related line(s) omitted]
</tls-auth>
================================================================================
"Sanitized" full configuration file
# ==============================================================================
# Copyright (c) 2016-2020 Proton Technologies AG (Switzerland)
# Email: con...@protonvpn.com
#
# The MIT License (MIT)
#
# Permission is hereby granted, free of charge, to any person obtaining a copy
# of this software and associated documentation files (the "Software"), to deal
# in the Software without restriction, including without limitation the rights
# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
# copies of the Software, and to permit persons to whom the Software is
# furnished to do so, subject to the following conditions:
#
# The above copyright notice and this permission notice shall be included in all
# copies or substantial portions of the Software.
#
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR # OTHERWISE, ARISING
# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
# IN THE SOFTWARE.
# ==============================================================================
# The server you are connecting to is using a circuit in order to separate entry IP from exit IP
# The same entry IP allows to connect to multiple exit IPs in the same data center.
# If you want to explicitly select the exit IP corresponding to server US-FREE#1 you need to
# append a special suffix to your OpenVPN username.
# Please use "riku+b:0" in order to enforce exiting through US-FREE#1.
# If you are a paying user you can also enable ProtonVPN ad blocker (NetShield).
# Use: "riku+b:0+f1" to enable anti-malware filtering
# Use: "riku+b:0+f2" to additionally enable ad-blocking filtering.
client
dev tun
proto udp
remote us-free-01.protonvpn.com 1194
remote us-free-01.protonvpn.com 80
remote us-free-01.protonvpn.com 443
remote us-free-01.protonvpn.com 4569
remote us-free-01.protonvpn.com 5060
remote-random
resolv-retry infinite
nobind
# The following setting is only needed for old OpenVPN clients compatibility. New clients
# automatically negotiate the optimal cipher.
cipher AES-256-CBC
auth SHA512
verb 3
setenv CLIENT_CERT 0
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
reneg-sec 0
remote-cert-tls server
auth-user-pass
pull
fast-io
<ca>
[Security-related line(s) omitted]
</ca>
key-direction 1
<tls-auth>
[Security-related line(s) omitted]
</tls-auth>
================================================================================
There are no unusual files in us-free-01.protonvpn.com.udp.tblk
================================================================================
Configuration preferences:
-openvpnVersion =
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
================================================================================
Program preferences:
launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.5.25 (build 4270.5160)"
)
lastLaunchTime = 651747667.04137
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = us-free-01.protonvpn.com.udp
keyboardShortcutIndex = 1
updateCheckAutomatically = 0
updateSendProfileInfo = 0
NSWindow Frame ConnectingWindow = 434 529 412 297 0 0 1280 1002
detailsWindowFrameVersion = 4270.5160
detailsWindowFrame = {{182, 401}, {916, 468}}
detailsWindowLeftFrame = {{0, 0}, {163, 350}}
leftNavSelectedDisplayName = us-free-01.protonvpn.com.udp
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 0
SUFeedURL = https://www.tunnelblick.net/appcast-s.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 0
SULastCheckTime = 2021-08-26 12:23:46 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times
================================================================================
Tunnelblick Log:
2021-08-27 11:07:40 OpenVPN 2.3.18 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Sep 29 2018
2021-08-27 11:07:40 library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.08
2021-08-27 11:07:40 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2021-08-27 11:07:40 Need hold release from management interface, waiting...
2021-08-27 11:07:39 *Tunnelblick: OS X 10.8.0; Tunnelblick 3.5.25 (build 4270.5160)
2021-08-27 11:07:40 *Tunnelblick: Attempting connection with us-free-01.protonvpn.com.udp using shadow copy; Set nameserver = 1; monitoring connection
2021-08-27 11:07:40 *Tunnelblick: openvpnstart start us-free-01.protonvpn.com.udp.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.18
2021-08-27 11:07:41 *Tunnelblick: openvpnstart log:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-Srich-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sus--free--01.protonvpn.com.udp.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_16688.1337.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources
--config
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources/config.ovpn
--cd
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources
--management
127.0.0.1
1337
/Library/Application Support/Tunnelblick/edhkeocobnkcmhfegelbdkdkliodecllonchgjld.mip
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw
2021-08-27 11:07:41 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2021-08-27 11:07:41 MANAGEMENT: CMD 'pid'
2021-08-27 11:07:41 MANAGEMENT: CMD 'state on'
2021-08-27 11:07:41 MANAGEMENT: CMD 'state'
2021-08-27 11:07:41 MANAGEMENT: CMD 'bytecount 1'
2021-08-27 11:07:41 *Tunnelblick: Established communication with OpenVPN
2021-08-27 11:07:41 MANAGEMENT: CMD 'hold release'
2021-08-27 11:07:48 MANAGEMENT: CMD 'username "Auth" "riku"'
2021-08-27 11:07:48 MANAGEMENT: CMD 'password [...]'
2021-08-27 11:07:48 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2021-08-27 11:07:48 Control Channel Authentication: tls-auth using INLINE static key file
2021-08-27 11:07:48 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 11:07:48 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 11:07:48 Socket Buffers: R=[196724->196724] S=[9216->9216]
2021-08-27 11:07:48 MANAGEMENT: >STATE:1630055268,RESOLVE,,,
2021-08-27 11:07:48 UDPv4 link local: [undef]
2021-08-27 11:07:48 UDPv4 link remote: [AF_INET]108.59.0.14:80
2021-08-27 11:07:48 MANAGEMENT: >STATE:1630055268,WAIT,,,
2021-08-27 11:07:48 MANAGEMENT: >STATE:1630055268,AUTH,,,
2021-08-27 11:07:48 TLS: Initial packet from [AF_INET]108.59.0.14:80, sid=e7f68e2a 643b7da6
2021-08-27 11:07:48 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-08-27 11:07:51 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA
2021-08-27 11:07:51 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1
2021-08-27 11:07:51 Validating certificate key usage
2021-08-27 11:07:51 ++ Certificate has key usage 00a0, expects 00a0
2021-08-27 11:07:51 VERIFY KU OK
2021-08-27 11:07:51 Validating certificate extended key usage
2021-08-27 11:07:51 ++ Certificate has EKU (str) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication
2021-08-27 11:07:51 ++ Certificate has EKU (oid) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication
2021-08-27 11:07:51 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2021-08-27 11:07:51 VERIFY EKU OK
2021-08-27 11:07:51 VERIFY OK: depth=0, CN=lxc-us-04.protonvpn.com
2021-08-27 11:07:51 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634'
2021-08-27 11:07:51 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'
2021-08-27 11:07:51 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2021-08-27 11:07:51 Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 11:07:51 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2021-08-27 11:07:51 Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 11:07:51 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
2021-08-27 11:07:51 [lxc-us-04.protonvpn.com] Peer Connection Initiated with [AF_INET]108.59.0.14:80
2021-08-27 11:07:52 MANAGEMENT: >STATE:1630055272,GET_CONFIG,,,
2021-08-27 11:07:53 SENT CONTROL [lxc-us-04.protonvpn.com]: 'PUSH_REQUEST' (status=1)
2021-08-27 11:07:53 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 10.26.0.1,sndbuf 524288,rcvbuf 524288,redirect-gateway def1,explicit-exit-notify,comp-lzo no,route-gateway 10.26.0.1,topology subnet,ping 10,ping-restart 60,socket-flags TCP_NODELAY,ifconfig 10.26.0.50 255.255.0.0,peer-id 655423'
2021-08-27 11:07:53 Option 'explicit-exit-notify' in [PUSH-OPTIONS]:5 is ignored by previous <connection> blocks
2021-08-27 11:07:53 OPTIONS IMPORT: timers and/or timeouts modified
2021-08-27 11:07:53 OPTIONS IMPORT: explicit notify parm(s) modified
2021-08-27 11:07:53 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
2021-08-27 11:07:53 Socket Buffers: R=[196724->524288] S=[9216->524288]
2021-08-27 11:07:53 OPTIONS IMPORT: --socket-flags option modified
2021-08-27 11:07:53 NOTE: setsockopt TCP_NODELAY=1 failed
2021-08-27 11:07:53 OPTIONS IMPORT: --ifconfig/up options modified
2021-08-27 11:07:53 OPTIONS IMPORT: route options modified
2021-08-27 11:07:53 OPTIONS IMPORT: route-related options modified
2021-08-27 11:07:53 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2021-08-27 11:07:53 OPTIONS IMPORT: peer-id set
2021-08-27 11:07:53 OPTIONS IMPORT: adjusting link_mtu to 1636
2021-08-27 11:07:53 Opened utun device utun0
2021-08-27 11:07:53 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2021-08-27 11:07:53 MANAGEMENT: >STATE:1630055273,ASSIGN_IP,,10.26.0.50,
2021-08-27 11:07:53 /sbin/ifconfig utun0 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2021-08-27 11:07:53 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2021-08-27 11:07:53 /sbin/ifconfig utun0 10.26.0.50 10.26.0.50 netmask 255.255.0.0 mtu 1500 up
2021-08-27 11:07:53 /sbin/route add -net 10.26.0.0 10.26.0.50 255.255.0.0
add net 10.26.0.0: gateway 10.26.0.50
2021-08-27 11:07:53 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw utun0 1500 1636 10.26.0.50 255.255.0.0 init
**********************************************
Start of output from client.up.tunnelblick.sh
Retrieved from OpenVPN: name server(s) [ 10.26.0.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Changed DNS ServerAddresses setting from '192.168.1.1' to '10.26.0.1'
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from 'homenet.telecomitalia.it' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '10.26.0.1' will be used for DNS queries when the VPN is active
The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from client.up.tunnelblick.sh
**********************************************
2021-08-27 11:07:58 /sbin/route add -net 108.59.0.14 192.168.1.1 255.255.255.255
add net 108.59.0.14: gateway 192.168.1.1
2021-08-27 11:07:58 /sbin/route add -net 0.0.0.0 10.26.0.1 128.0.0.0
add net 0.0.0.0: gateway 10.26.0.1
2021-08-27 11:07:58 /sbin/route add -net 128.0.0.0 10.26.0.1 128.0.0.0
add net 128.0.0.0: gateway 10.26.0.1
2021-08-27 11:07:58 Initialization Sequence Completed
2021-08-27 11:07:58 MANAGEMENT: >STATE:1630055278,CONNECTED,SUCCESS,10.26.0.50,108.59.0.14
2021-08-27 11:07:58 *Tunnelblick: No 'connected.sh' script to execute
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=3<RXCSUM,TXCSUM>
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=2b<RXCSUM,TXCSUM,VLAN_HWTAGGING,TSO4>
ether c8:2a:14:56:4b:aa
inet6 fe80::ca2a:14ff:fe56:4baa%en0 prefixlen 64 scopeid 0x4
inet 192.168.1.45 netmask 0xffffff00 broadcast 192.168.1.255
media: autoselect (1000baseT <full-duplex,flow-control,energy-efficient-ethernet>)
status: active
en1: flags=8823<UP,BROADCAST,SMART,SIMPLEX,MULTICAST> mtu 1500
ether 28:cf:da:00:95:43
media: autoselect (<unknown type>)
status: inactive
p2p0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 2304
ether 0a:cf:da:00:95:43
media: autoselect
status: inactive
fw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 4078
lladdr c8:2a:14:ff:fe:ee:15:a0
media: autoselect <full-duplex>
status: inactive
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 10.26.0.50 --> 10.26.0.50 netmask 0xffff0000
================================================================================
Console Log:
2021-08-27 11:01:04 Tunnelblick[570] Set the new '*-notOKToCheckThatIPAddressDidNotChangeAfterConnection' preference from the 'notOKToCheckThatIPAddressDidNotChangeAfterConnection' preference
2021-08-27 11:01:05 Tunnelblick[570] Set program update feedURL to https://www.tunnelblick.net/appcast-s.rss
2021-08-27 11:02:57 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:02:57 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:02:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 11:02:58 tunnelblickd[581] Status = 0 from tunnelblick-helper command 'compareShadowCopy us-free-01.protonvpn.com.udp'
2021-08-27 11:02:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:02:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:02:58 tunnelblickd[581] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile us-free-01.protonvpn.com.udp.tblk 0'
2021-08-27 11:02:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:02:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:02:59 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 11:02:59 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.800000 seconds...
2021-08-27 11:02:59 tunnelblickd[581] Status = 0 from tunnelblick-helper command 'start us-free-01.protonvpn.com.udp.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.4.4'
2021-08-27 11:03:08 Tunnelblick[570] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'username' because it does not exist
2021-08-27 11:03:08 Tunnelblick[570] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'password' because it does not exist
2021-08-27 11:05:39 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:05:39 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:05:39 tunnelblickd[596] Status = 0 from tunnelblick-helper command 'kill 587'
2021-08-27 11:05:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:05:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:05:40 tunnelblickd[596] Status = 0 from tunnelblick-helper command 'postDisconnect us-free-01.protonvpn.com.udp.tblk 1'
2021-08-27 11:07:39 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:07:39 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:07:39 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 11:07:39 tunnelblickd[605] Status = 0 from tunnelblick-helper command 'compareShadowCopy us-free-01.protonvpn.com.udp'
2021-08-27 11:07:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:07:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:07:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 11:07:40 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.800000 seconds...
2021-08-27 11:07:40 tunnelblickd[605] Status = 0 from tunnelblick-helper command 'start us-free-01.protonvpn.com.udp.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.18'
2021-08-27 11:07:48 Tunnelblick[570] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'username' because it does not exist
2021-08-27 11:07:48 Tunnelblick[570] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'password' because it does not exist
2021-08-27 11:07:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:07:58 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:07:58 tunnelblickd[605] Status = 0 from tunnelblick-helper command 'connected us-free-01.protonvpn.com.udp.tblk 1'
2021-08-27 11:08:05 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 11:08:05 Tunnelblick[570] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 11:08:05 tunnelblickd[605] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile us-free-01.protonvpn.com.udp.tblk 0'
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) <Linked Against>
Tunnelblick developer
Aug 27, 2021, 7:59:57 AM8/27/21
to tunnelblick-discuss
Please make sure that "Check if the apparent public IP address changed after connecting" is checked and get the diagnostic info again, following all of the instructions in Read Before You Post, but wait for at least 90 seconds before disconnecting the VPN and clicking the "Copy Diagnostic Info to Clipboard" button.
Ju Ri
Aug 27, 2021, 1:42:30 PM8/27/21
to tunnelblick-discuss
Yes, i have seen this and checked in the Advanced Tab, of Settings Tab in Configuration.
Here are the details. Again, it would connect succesfully, but not loading any sites.
# If you are a paying user you can also enable ProtonVPN ad blocker (NetShield).
# Use: ":0+f2" to additionally enable ad-blocking filtering.
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = us-free-01.protonvpn.com.udp
keyboardShortcutIndex = 1
updateCheckAutomatically = 0
updateSendProfileInfo = 0
NSWindow Frame ConnectingWindow = 434 529 412 297 0 0 1280 1002
detailsWindowFrameVersion = 4270.5160
detailsWindowLeftFrame = {{0, 0}, {164, 350}}
leftNavSelectedDisplayName = us-free-01.protonvpn.com.udp
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 0
SUFeedURL = https://www.tunnelblick.net/appcast-s.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 0
SULastCheckTime = 2021-08-26 12:23:46 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times
================================================================================
Tunnelblick Log:
2021-08-27 19:37:56 library versions: OpenSSL 1.0.2p 14 Aug 2018, LZO 2.08
2021-08-27 19:37:56 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2021-08-27 19:37:56 Need hold release from management interface, waiting...
2021-08-27 19:37:54 *Tunnelblick: OS X 10.8.0; Tunnelblick 3.5.25 (build 4270.5160)
2021-08-27 19:37:55 *Tunnelblick: Attempting connection with us-free-01.protonvpn.com.udp using shadow copy; Set nameserver = 1; monitoring connection
2021-08-27 19:37:55 *Tunnelblick: openvpnstart start us-free-01.protonvpn.com.udp.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.18
2021-08-27 19:37:57 *Tunnelblick: openvpnstart log:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-Srich-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sus--free--01.protonvpn.com.udp.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_16688.1337.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources
--config
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources/config.ovpn
--cd
/Library/Application Support/Tunnelblick/Users/rich/us-free-01.protonvpn.com.udp.tblk/Contents/Resources
--management
127.0.0.1
1337
/Library/Application Support/Tunnelblick/edhkeocobnkcmhfegelbdkdkliodecllonchgjld.mip
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw
2021-08-27 19:37:57 MANAGEMENT: CMD 'pid'
2021-08-27 19:37:57 MANAGEMENT: CMD 'state on'
2021-08-27 19:37:57 MANAGEMENT: CMD 'state'
2021-08-27 19:37:57 MANAGEMENT: CMD 'bytecount 1'
2021-08-27 19:37:57 *Tunnelblick: Established communication with OpenVPN
2021-08-27 19:37:57 MANAGEMENT: CMD 'hold release'
2021-08-27 19:38:05 MANAGEMENT: CMD 'username "Auth" "riku"'
2021-08-27 19:38:05 MANAGEMENT: CMD 'password [...]'
2021-08-27 19:38:06 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2021-08-27 19:38:06 Control Channel Authentication: tls-auth using INLINE static key file
2021-08-27 19:38:06 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 19:38:06 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 19:38:06 Socket Buffers: R=[196724->196724] S=[9216->9216]
2021-08-27 19:38:06 MANAGEMENT: >STATE:1630085886,RESOLVE,,,
2021-08-27 19:38:06 UDPv4 link local: [undef]
2021-08-27 19:38:06 UDPv4 link remote: [AF_INET]199.115.115.80:1194
2021-08-27 19:38:06 MANAGEMENT: >STATE:1630085886,WAIT,,,
2021-08-27 19:38:06 MANAGEMENT: >STATE:1630085886,AUTH,,,
2021-08-27 19:38:06 TLS: Initial packet from [AF_INET]199.115.115.80:1194, sid=952090c2 a7d46505
2021-08-27 19:38:06 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-08-27 19:38:06 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA
2021-08-27 19:38:06 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1
2021-08-27 19:38:06 Validating certificate key usage
2021-08-27 19:38:06 ++ Certificate has key usage 00a0, expects 00a0
2021-08-27 19:38:06 VERIFY KU OK
2021-08-27 19:38:06 Validating certificate extended key usage
2021-08-27 19:38:06 ++ Certificate has EKU (str) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication
2021-08-27 19:38:06 ++ Certificate has EKU (oid) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication
2021-08-27 19:38:06 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2021-08-27 19:38:06 VERIFY EKU OK
2021-08-27 19:38:06 VERIFY OK: depth=0, CN=lxc-us-06.protonvpn.com
2021-08-27 19:38:06 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634'
2021-08-27 19:38:06 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'
2021-08-27 19:38:06 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2021-08-27 19:38:06 Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 19:38:06 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2021-08-27 19:38:06 Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
2021-08-27 19:38:06 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
2021-08-27 19:38:06 [lxc-us-06.protonvpn.com] Peer Connection Initiated with [AF_INET]199.115.115.80:1194
2021-08-27 19:38:07 MANAGEMENT: >STATE:1630085887,GET_CONFIG,,,
2021-08-27 19:38:09 SENT CONTROL [lxc-us-06.protonvpn.com]: 'PUSH_REQUEST' (status=1)
2021-08-27 19:38:09 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 10.21.0.1,sndbuf 524288,rcvbuf 524288,redirect-gateway def1,explicit-exit-notify,comp-lzo no,route-gateway 10.21.0.1,topology subnet,ping 10,ping-restart 60,socket-flags TCP_NODELAY,ifconfig 10.21.0.10 255.255.0.0,peer-id 327706'
2021-08-27 19:38:09 Option 'explicit-exit-notify' in [PUSH-OPTIONS]:5 is ignored by previous <connection> blocks
2021-08-27 19:38:09 OPTIONS IMPORT: timers and/or timeouts modified
2021-08-27 19:38:09 OPTIONS IMPORT: explicit notify parm(s) modified
2021-08-27 19:38:09 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
2021-08-27 19:38:09 Socket Buffers: R=[196724->524288] S=[9216->524288]
2021-08-27 19:38:09 OPTIONS IMPORT: --socket-flags option modified
2021-08-27 19:38:09 NOTE: setsockopt TCP_NODELAY=1 failed
2021-08-27 19:38:09 OPTIONS IMPORT: --ifconfig/up options modified
2021-08-27 19:38:09 OPTIONS IMPORT: route options modified
2021-08-27 19:38:09 OPTIONS IMPORT: route-related options modified
2021-08-27 19:38:09 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2021-08-27 19:38:09 OPTIONS IMPORT: peer-id set
2021-08-27 19:38:09 OPTIONS IMPORT: adjusting link_mtu to 1636
2021-08-27 19:38:09 Opened utun device utun0
2021-08-27 19:38:09 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2021-08-27 19:38:09 MANAGEMENT: >STATE:1630085889,ASSIGN_IP,,10.21.0.10,
2021-08-27 19:38:09 /sbin/ifconfig utun0 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2021-08-27 19:38:09 /sbin/ifconfig utun0 10.21.0.10 10.21.0.10 netmask 255.255.0.0 mtu 1500 up
2021-08-27 19:38:09 /sbin/route add -net 10.21.0.0 10.21.0.10 255.255.0.0
add net 10.21.0.0: gateway 10.21.0.10
2021-08-27 19:38:09 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -d -f -m -w -ptADGNWradsgnw utun0 1500 1636 10.21.0.10 255.255.0.0 init Retrieved from OpenVPN: name server(s) [ 10.21.0.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from 'homenet.telecomitalia.it' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from client.up.tunnelblick.sh
**********************************************
2021-08-27 19:38:13 /sbin/route add -net 199.115.115.80 192.168.1.1 255.255.255.255
add net 199.115.115.80: gateway 192.168.1.1
2021-08-27 19:38:13 /sbin/route add -net 0.0.0.0 10.21.0.1 128.0.0.0
add net 0.0.0.0: gateway 10.21.0.1
2021-08-27 19:38:13 /sbin/route add -net 128.0.0.0 10.21.0.1 128.0.0.0
add net 128.0.0.0: gateway 10.21.0.1
2021-08-27 19:38:13 Initialization Sequence Completed
2021-08-27 19:38:13 MANAGEMENT: >STATE:1630085893,CONNECTED,SUCCESS,10.21.0.10,199.115.115.80
================================================================================
Console Log:
2021-08-27 17:38:05 Tunnelblick[570] setShutdownVariables: invoked, but have already set them
2021-08-27 17:38:06 Tunnelblick[570] applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes
2021-08-27 17:38:06 Tunnelblick[570] Finished shutting down Tunnelblick; allowing termination
2021-08-27 19:35:12 Tunnelblick[268] Set program update feedURL to https://www.tunnelblick.net/appcast-s.rss
2021-08-27 19:37:54 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 19:37:54 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 19:37:55 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 19:37:55 tunnelblickd[340] Status = 0 from tunnelblick-helper command 'compareShadowCopy us-free-01.protonvpn.com.udp'
2021-08-27 19:37:55 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 19:37:55 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 19:37:55 tunnelblickd[340] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile us-free-01.protonvpn.com.udp.tblk 0'
2021-08-27 19:37:55 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 19:37:55 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 19:37:56 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.400000 seconds...
2021-08-27 19:37:56 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.800000 seconds...
2021-08-27 19:37:56 tunnelblickd[340] Status = 0 from tunnelblick-helper command 'start us-free-01.protonvpn.com.udp.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.18'
2021-08-27 19:38:05 Tunnelblick[268] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'username' because it does not exist
2021-08-27 19:38:05 Tunnelblick[268] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-us-free-01.protonvpn.com.udp' account = 'password' because it does not exist
2021-08-27 19:38:13 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 19:38:13 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
2021-08-27 19:38:13 tunnelblickd[340] Status = 0 from tunnelblick-helper command 'connected us-free-01.protonvpn.com.udp.tblk 1'
2021-08-27 19:38:30 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.100000 seconds...
2021-08-27 19:38:30 Tunnelblick[268] runTunnelblickd: no data available from tunnelblickd socket; sleeping 0.200000 seconds...
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) <Linked Against>
0 new messages