Timing out on Sonoma 14.0, M2 Chip.
218 views
Skip to first unread message
exitdevice
Nov 1, 2023, 8:37:31 PM11/1/23
to tunnelblick-discuss
Hello -- this VPN config works fine on an older Mac, but not on my new Mac running Sonoma. Any ideas? Configuration is below. Many thanks!
*Tunnelblick: macOS 14.0 (23A344); Tunnelblick 4.0.0beta10 (build 5900); prior version 3.8.8e (build 5779.1); Admin user
git commit 687044a5dbb8396db46f570c19e139f8dd85e1f8The Tunnelblick.app process is not being translated (arm64)
System Integrity Protection is enabled
Model: Mac14,12
Configuration vpn
"Sanitized" condensed configuration file for /Users/dm/Library/Application Support/Tunnelblick/Configurations/vpn.tblk:
client
dev tun
remote apollo.feralhosting.com 1194
proto udp
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert bestfriend.crt
key bestfriend.key
tls-auth tls-auth.key 1
ns-cert-type server
comp-lzo
verb 3
mute 20
================================================================================
Files in vpn.tblk:
Contents/Resources/bes….crt
Contents/Resources/tls….key
Contents/Resources/ca.crt
Contents/Resources/bes….key
Contents/Resources/config.ovpn
================================================================================
Tunnelblick Kext Policy Data:
net.tunnelblick.tap|Z2SG5H3HC8|Jonathan Bullard|1|1
net.tunnelblick.tun|Z2SG5H3HC8|Jonathan Bullard|1|1
================================================================================
Configuration preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-lastConnectionSucceeded = 0
================================================================================
Wildcard preferences:
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
================================================================================
Program preferences:
launchAtNextLogin = 1
tunnelblickVersionHistory = (
"4.0.0beta10 (build 5900)",
"3.8.8b (build 5777)",
"3.8.8e (build 5779.1)",
"4.0.0beta10 (build 5900)"
)
lastLaunchTime = 720575895.418382
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
NSWindow Frame SettingsSheetWindow = 556 196 829 548 0 0 1920 1055
NSWindow Frame ConnectingWindow = 1085 919 389 217 0 0 2560 1415
NSWindow Frame SUUpdateAlert = 970 784 620 398 0 0 2560 1415
detailsWindowFrameVersion = 5777
detailsWindowFrame = {{820, 691}, {920, 522}}
detailsWindowLeftFrame = {{0, 0}, {167, 402}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = log
leftNavSelectedDisplayName = vpn
AdvancedWindowTabIdentifier = connectingAndDisconnecting
haveDealtWithOldTunTapPreferences = 1
haveDealtWithAlwaysShowLoginWindow = 1
haveDealtWithOldLoginItem = 1
haveDealtWithAfterDisconnect = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SULastCheckTime = 2023-11-01 23:58:15 +0000
SUHasLaunchedBefore = 1
SUSkippedVersion = 5779.1
================================================================================
Forced preferences:
(None)
================================================================================
Deployed forced preferences:
(None)
================================================================================
Tunnelblick Log:
2023-11-01 19:09:41.140252 *Tunnelblick: macOS 14.0 (23A344); Tunnelblick 4.0.0beta10 (build 5900); prior version 3.8.8e (build 5779.1)
2023-11-01 19:09:41.432295 *Tunnelblick: Cannot recognize the vpn-loadTap preference value of '(null)', so Tunnelblick will not load the tap kext
2023-11-01 19:09:41.579233 *Tunnelblick: Attempting connection with vpn using shadow copy; Set nameserver = 0x00000301; monitoring connection
2023-11-01 19:09:41.579706 *Tunnelblick: openvpnstart start vpn.tblk 50065 0x00000301 0 1 0 0x0210c130 -ptADGNWradsgnw 2.5.9-openssl-1.1.1w <password>
2023-11-01 19:09:41.598408 *Tunnelblick: openvpnstart starting OpenVPN
2023-11-01 19:09:41.892735 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-11-01 19:09:41.892874 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-01 19:09:41.893114 OpenVPN 2.5.9 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Oct 24 2023
2023-11-01 19:09:41.893126 library versions: OpenSSL 1.1.1w 11 Sep 2023, LZO 2.10
2023-11-01 19:09:41.893844 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:50065
2023-11-01 19:09:41.893856 Need hold release from management interface, waiting...
2023-11-01 19:09:42.205527 *Tunnelblick: openvpnstart log:
OpenVPN started successfully.
Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.5.9-openssl-1.1.1w/openvpn
--daemon
--log-append /Library/Application Support/Tunnelblick/Logs/-SUsers-Sdm-SLibrary-SApplication Support-STunnelblick-SConfigurations-Svpn.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_34652464.50065.openvpn.log
--cd /Library/Application Support/Tunnelblick/Users/dm/vpn.tblk/Contents/Resources
--machine-readable-output
--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5900 4.0.0beta10 (build 5900)"
--verb 3
--config /Library/Application Support/Tunnelblick/Users/dm/vpn.tblk/Contents/Resources/config.ovpn
--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Users/dm/vpn.tblk/Contents/Resources
--verb 3
--cd /Library/Application Support/Tunnelblick/Users/dm/vpn.tblk/Contents/Resources
--management 127.0.0.1 50065 /Library/Application Support/Tunnelblick/Mips/vpn.tblk.mip
--setenv IV_SSO webauth
--management-query-passwords
--management-hold
--script-security 2
--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2023-11-01 19:09:42.215624 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:50065
2023-11-01 19:09:42.240937 MANAGEMENT: CMD 'pid'
2023-11-01 19:09:42.240994 MANAGEMENT: CMD 'auth-retry interact'
2023-11-01 19:09:42.241019 MANAGEMENT: CMD 'state on'
2023-11-01 19:09:42.241038 MANAGEMENT: CMD 'state'
2023-11-01 19:09:42.241065 MANAGEMENT: CMD 'bytecount 1'
2023-11-01 19:09:42.242586 *Tunnelblick: Established communication with OpenVPN
2023-11-01 19:09:42.243137 *Tunnelblick: >INFO:OpenVPN Management Interface Version 3 -- type 'help' for more info
2023-11-01 19:09:42.243862 MANAGEMENT: CMD 'hold release'
2023-11-01 19:09:42.244099 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
2023-11-01 19:09:42.244129 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2023-11-01 19:09:42.247011 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2023-11-01 19:09:42.247057 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2023-11-01 19:09:42.247138 MANAGEMENT: >STATE:1698883782,RESOLVE,,,,,,
2023-11-01 19:09:42.277907 TCP/UDP: Preserving recently used remote address: [AF_INET]185.21.216.162:1194
2023-11-01 19:09:42.278098 Socket Buffers: R=[786896->786896] S=[9216->9216]
2023-11-01 19:09:42.278144 UDP link local: (not bound)
2023-11-01 19:09:42.278172 UDP link remote: [AF_INET]185.21.216.162:1194
2023-11-01 19:09:42.278215 MANAGEMENT: >STATE:1698883782,WAIT,,,,,,
2023-11-01 19:10:43.161519 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2023-11-01 19:10:43.161735 TLS Error: TLS handshake failed
2023-11-01 19:10:43.162111 SIGUSR1[soft,tls-error] received, process restarting
2023-11-01 19:10:43.162167 MANAGEMENT: >STATE:1698883843,RECONNECTING,tls-error,,,,,
2023-11-01 19:10:43.164386 MANAGEMENT: CMD 'hold release'
2023-11-01 19:10:43.164489 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
2023-11-01 19:10:43.164520 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2023-11-01 19:10:43.164654 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2023-11-01 19:10:43.164683 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2023-11-01 19:10:43.164892 MANAGEMENT: >STATE:1698883843,RESOLVE,,,,,,
2023-11-01 19:10:43.167623 TCP/UDP: Preserving recently used remote address: [AF_INET]185.21.216.162:1194
2023-11-01 19:10:43.167775 Socket Buffers: R=[786896->786896] S=[9216->9216]
2023-11-01 19:10:43.167807 UDP link local: (not bound)
2023-11-01 19:10:43.167820 UDP link remote: [AF_INET]185.21.216.162:1194
2023-11-01 19:10:43.167843 MANAGEMENT: >STATE:1698883843,WAIT,,,,,,
2023-11-01 19:10:43.168276 MANAGEMENT: CMD 'hold release'
2023-11-01 19:10:51.747553 *Tunnelblick: Disconnecting; notification window disconnect button pressed
2023-11-01 19:10:52.059856 *Tunnelblick: Disconnecting using 'kill'
2023-11-01 19:10:52.224874 event_wait : Interrupted system call (code=4)
2023-11-01 19:10:52.225193 SIGTERM[hard,] received, process exiting
2023-11-01 19:10:52.225217 MANAGEMENT: >STATE:1698883852,EXITING,SIGTERM,,,,,
2023-11-01 19:10:52.728710 *Tunnelblick: Expected disconnection occurred.
================================================================================
Installer log:
Tunnelblick installer started 2023-11-01 19:05:11.087073; getuid() = 501; geteuid() = 0; getgid() = 20; getegid() = 20
currentDirectoryPath = '/'; 1 arguments:
0x0401
Determined username 'dm' from getuid(): 501
Uninstalled tunnelblick-tun.kext
Uninstalled tunnelblick-tap.kext
Tunnelblick installer succeeded
================================================================================
Down log:
(Not found)
================================================================================
Previous down log:
(Not found)
================================================================================
Network services:
An asterisk (*) denotes that a network service is disabled.
Ethernet
Thunderbolt Bridge
Wi-Fi
Wi-Fi Power (en1): Off
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
anpi1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:c7
media: none
status: inactive
anpi0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:c6
media: none
status: inactive
anpi3: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:c9
media: none
status: inactive
anpi2: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:c8
media: none
status: inactive
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=50b<RXCSUM,TXCSUM,VLAN_HWTAGGING,AV,CHANNEL_IO>
ether 20:a5:cb:ca:33:ca
inet6 fe80::c2d:d4a7:2927:a0bb%en0 prefixlen 64 secured scopeid 0x8
inet 192.168.106.4 netmask 0xffffff00 broadcast 192.168.106.255
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (1000baseT <full-duplex,flow-control>)
status: active
en6: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:a6
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en7: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:a7
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en8: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:a8
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en9: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 92:1d:01:0b:c3:a9
nd6 options=201<PERFORMNUD,DAD>
media: none
status: inactive
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:13:85:59:eb:c0
media: autoselect <full-duplex>
status: inactive
en3: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:13:85:59:eb:c4
media: autoselect <full-duplex>
status: inactive
en4: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:13:85:59:eb:c8
media: autoselect <full-duplex>
status: inactive
en5: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 36:13:85:59:eb:cc
media: autoselect <full-duplex>
status: inactive
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 36:13:85:59:eb:c0
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 13 priority 0 path cost 0
member: en3 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 14 priority 0 path cost 0
member: en4 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 15 priority 0 path cost 0
member: en5 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 16 priority 0 path cost 0
nd6 options=201<PERFORMNUD,DAD>
media: <unknown type>
status: inactive
ap1: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 22:a5:cb:d3:8c:aa
media: autoselect
en1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 20:a5:cb:d3:8c:aa
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (<unknown type>)
status: inactive
awdl0: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 6a:f6:7e:dd:07:c3
inet6 fe80::68f6:7eff:fedd:7c3%awdl0 prefixlen 64 scopeid 0x14
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (<unknown type>)
status: inactive
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 6a:f6:7e:dd:07:c3
inet6 fe80::68f6:7eff:fedd:7c3%llw0 prefixlen 64 scopeid 0x15
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: inactive
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet6 fe80::895:7516:8880:be4a%utun0 prefixlen 64 scopeid 0x16
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::e41b:4e1b:38ab:f144%utun1 prefixlen 64 scopeid 0x17
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::c3f:e697:96c5:41be%utun2 prefixlen 64 scopeid 0x18
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun3 prefixlen 64 scopeid 0x19
nd6 options=201<PERFORMNUD,DAD>
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1350
options=6460<TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
inet6 fe80::8f59:9f8b:cdb4:5b8b%utun4 prefixlen 64 scopeid 0x1a
nd6 options=201<PERFORMNUD,DAD>
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
================================================================================
Quit Log:
2023-11-01 18:58:03.084228 applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes)
2023-11-01 18:58:03.094675 shutDownTunnelblick: started.
2023-11-01 18:58:03.094911 shutDownTunnelblick: Starting cleanup.
2023-11-01 18:58:03.095068 cleanup: Entering cleanup
2023-11-01 18:58:03.095201 cleanup aborted because Tunnelblick did not finish launching
2023-11-01 18:58:03.095314 shutDownTunnelblick: Cleanup finished.
2023-11-01 18:58:03.095430 Finished shutting down Tunnelblick; allowing termination
================================================================================
Traces Log:
================================================================================
Console Log:
Tunnelblick developer
Nov 1, 2023, 8:51:50 PM11/1/23
to tunnelblick-discuss
That can be caused by any number of things. Search this discussion group for "Waiting for server response" (in quotes) and look at the posts.
exitdevice
Nov 2, 2023, 6:14:34 PM11/2/23
to tunnelblick-discuss
I will continue to read past posts on this issue. Are there any clues that jump out in the diagnostic I posted?
Tunnelblick developer
Nov 2, 2023, 7:46:19 PM11/2/23
to tunnelblick-discuss
No, if there were I would have said so.
Reply all
Reply to author
Forward
0 new messages