Re: My Tunnelblick on Mac OS X 10.6.8 stuck on "Authorizing"

3,678 views
Skip to first unread message

Jonathan K. Bullard

unread,
Jun 15, 2012, 1:58:33 PM6/15/12
to tunnelbli...@googlegroups.com
As you said, the client is stuck waiting for the authorization.

Take a look at the server log, maybe that has a clue.

On Fri, Jun 15, 2012 at 1:20 PM, Maxor <bakr.s...@gmail.com> wrote:
Hi,

I have installed openvpn 2.0.9 on CentOS. Attached is my client configuration file. It gives me the following Log:

2012-06-15 20:13:14 *Tunnelblick: OS X 10.6.8; Tunnelblick 3.2.6 (build 2891.3007)
2012-06-15 20:13:14 *Tunnelblick: Attempting connection with Internet_conf; Set nameserver = 1; monitoring connection
2012-06-15 20:13:14 *Tunnelblick: /Applications/Tunnelblick.app/Contents/Resources/openvpnstart start Internet_conf.ovpn 1338 1 0 0 0 49 -atDASNGWrdasngw 
2012-06-15 20:13:14 *Tunnelblick: openvpnstart message: Loading tun.kext
2012-06-15 20:13:14 OpenVPN 2.2.1 i386-apple-darwin10.7.1 [SSL] [LZO2] [PKCS11] [eurephia] built on May  2 2012
2012-06-15 20:13:14 MANAGEMENT: TCP Socket listening on 127.0.0.1:1338
2012-06-15 20:13:14 Need hold release from management interface, waiting...
2012-06-15 20:13:14 MANAGEMENT: Client connected from 127.0.0.1:1338
2012-06-15 20:13:14 MANAGEMENT: CMD 'pid'
2012-06-15 20:13:14 MANAGEMENT: CMD 'state on'
2012-06-15 20:13:14 MANAGEMENT: CMD 'state'
2012-06-15 20:13:14 MANAGEMENT: CMD 'hold release'
2012-06-15 20:13:14 *Tunnelblick: openvpnstart: /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.2.1/openvpn --cd /Users/pioneer/Library/Application Support/Tunnelblick/Configurations --daemon --management 127.0.0.1 1338 --config /Users/pioneer/Library/Application Support/Tunnelblick/Configurations/Internet_Bakoor.ovpn --log /Library/Application Support/Tunnelblick/Logs/-SUsers-Spioneer-SLibrary-SApplication Support-STunnelblick-SConfigurations-SInternet_Bakoor.ovpn.1_0_0_0_49.1338.openvpn.log --management-query-passwords --management-hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atDASNGWrdasngw --down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atDASNGWrdasngw --up-restart
2012-06-15 20:13:14 *Tunnelblick: Established communication with OpenVPN
2012-06-15 20:13:18 MANAGEMENT: CMD 'username "Auth" "user"'
2012-06-15 20:13:18 MANAGEMENT: CMD 'password [...]'
2012-06-15 20:13:18 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2012-06-15 20:13:18 Control Channel Authentication: tls-auth using INLINE static key file
2012-06-15 20:13:18 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-06-15 20:13:18 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2012-06-15 20:13:18 LZO compression initialized
2012-06-15 20:13:18 Control Channel MTU parms [ L:1544 D:168 EF:68 EB:0 ET:0 EL:0 ]
2012-06-15 20:13:18 Socket Buffers: R=[262140->100000] S=[131070->100000]
2012-06-15 20:13:18 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
2012-06-15 20:13:18 Local Options hash (VER=V4): 'ee93268d'
2012-06-15 20:13:18 Expected Remote Options hash (VER=V4): 'bd577cd1'
2012-06-15 20:13:18 Attempting to establish TCP connection with a.b.c.d:443 [nonblock]
2012-06-15 20:13:18 MANAGEMENT: >STATE:1339780398,TCP_CONNECT,,,
2012-06-15 20:13:19 TCP connection established with a.b.c.d:443
2012-06-15 20:13:19 TCPv4_CLIENT link local: [undef]
2012-06-15 20:13:19 TCPv4_CLIENT link remote: a.b.c.d:443
2012-06-15 20:13:19 MANAGEMENT: >STATE:1339780399,WAIT,,,
2012-06-15 20:13:19 MANAGEMENT: >STATE:1339780399,AUTH,,,
2012-06-15 20:13:19 TLS: Initial packet from a.b.c.d:443, sid=c0f5d25d 99a7065b
2012-06-15 20:13:19 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this


Any help will be appreciated.




--
You received this message because you are subscribed to the Google Groups "tunnelblick-discuss" group.
To view this discussion on the web visit https://groups.google.com/d/msg/tunnelblick-discuss/-/HGkJrOBzmVsJ.
To post to this group, send email to tunnelbli...@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-dis...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/tunnelblick-discuss?hl=en.

Maxor

unread,
Jun 15, 2012, 8:41:50 PM6/15/12
to tunnelbli...@googlegroups.com
Thank you for your reply, 

Nothing important in: /var/log/openvpnas.log
To post to this group, send email to tunnelblick-discuss@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-discuss+unsub...@googlegroups.com.
To post to this group, send email to tunnelblick-discuss@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-discuss+unsub...@googlegroups.com.
To post to this group, send email to tunnelblick-discuss@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-discuss+unsub...@googlegroups.com.
Message has been deleted

Maxor

unread,
Jun 15, 2012, 8:50:51 PM6/15/12
to tunnelbli...@googlegroups.com
Ah Sorry, I did find sth related to my problem in the server log file:

2012-06-15 19:56:45-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:56:45 2012 TCP connection established with my-IP:51605'
2012-06-15 19:56:46-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:56:46 2012 my_IP:51605 TLS: Initial packet from my_IP:51605, sid=df6c222e edb9bc59'
2012-06-15 19:57:22-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:22 2012 TCP connection established with my_IP:51607'
2012-06-15 19:57:23-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:23 2012 :51607 TLS: Initial packet from my_IP:51607, sid=1b09f73a 6eb08a2b'
2012-06-15 19:57:45-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:45 2012 my_IP:51605 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)'

2012-06-15 19:57:45-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:45 2012 :51605 TLS Error: TLS handshake failed'
2012-06-15 19:57:45-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:45 2012 0:51605 Fatal TLS error (check_tls_errors_co), restarting'
2012-06-15 19:57:45-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:57:45 2012 :51605 SIGUSR1[soft,tls-error] received, client-instance restarting'
2012-06-15 19:58:22-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:58:22 2012 90:51607 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)'
2012-06-15 19:58:22-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:58:22 2012 :51607 TLS Error: TLS handshake failed'
2012-06-15 19:58:22-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:58:22 2012 0:51607 Fatal TLS error (check_tls_errors_co), restarting'
2012-06-15 19:58:22-0400 [-] OVPN 0 OUT: 'Fri Jun 15 23:58:22 2012 0:51607 SIGUSR1[soft,tls-error] received, client-instance restarting'

:-(

elshen...@gmail.com

unread,
Aug 2, 2018, 4:44:44 AM8/2/18
to tunnelblick-discuss
Hi, 
 
Have you found a solution??

Tunnelblick developer

unread,
Aug 2, 2018, 5:47:59 AM8/2/18
to tunnelblick-discuss
(Note that this discussion is more than six years old.)

There are many causes for this; usually there is something wrong with the certificates.

To get help for a problem, please post the diagnostic info obtained by following the instructions at Read Before You Post.
Reply all
Reply to author
Forward
0 new messages