Re: VPNBOOK connects sometimes but no traffic

[Jonathan K. Bullard]

The problem is shown here:

2013-01-09 20:08:07 OpenSSL error: cannot load engine 'aesni'

which probably comes from the configuration line

engine aesni

"aesni" is not implemented by the version of OpenSSL used by Tunnelblick. As far as I know it never has been.

You should contact your VPN service provider. That is the organization which gave you your configuration files, and perhaps a username and password, and to which you are probably paying a fee for VPN service. For more information, please see  Getting VPN Service.

Tunnelblick is just the free software that many VPN service providers recommend or supply to their customers. We do not provide VPN service, just software.

On Wed, Jan 9, 2013 at 10:08 AM, Zied EL BATTI wrote:

I had a working VPN with VPNBOOK.com and since yesterday it's not working

below is my configuration :

client

dev tun2

proto udp

remote 93.115.84.198 25000 # - Server1

remote 93.114.44.253 25000 # - Server2

resolv-retry infinite

nobind

persist-key

persist-tun

ca vpnbook.crt

auth-user-pass

comp-lzo

verb 3

cipher AES-128-CBC

fast-io

pull

engine aesni

route-delay 2

redirect-gateway

and log :

2013-01-09 20:08:07 *Tunnelblick: OS X 10.8.2; Tunnelblick 3.3beta21b (build 3114.3185)

2013-01-09 20:08:07 *Tunnelblick: Attempting connection with vpnbook-UDP25000; Set nameserver = 1; monitoring connection

2013-01-09 20:08:07 *Tunnelblick: /Applications/Tunnelblick.app/Contents/Resources/openvpnstart start vpnbook-UDP25000.ovpn 1337 1 0 0 0 49 -atADGNWradsgnw 2.3-alpha1

2013-01-09 20:08:07 *Tunnelblick: openvpnstart message: Loading tun.kext

OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):

     /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3-alpha1/openvpn

     --cd

     /Users/zelbatti/Library/Application Support/Tunnelblick/Configurations

     --daemon

     --management

     127.0.0.1

     1337

     --config

     /Users/zelbatti/Library/Application Support/Tunnelblick/Configurations/vpnbook-UDP25000.ovpn

     --log

     /Library/Application Support/Tunnelblick/Logs/-SUsers-Szelbatti-SLibrary-SApplication Support-STunnelblick-SConfigurations-Svpnbook--UDP25000.ovpn.1_0_0_0_49.1337.openvpn.log

     --management-query-passwords

     --management-hold

     --script-security

     2

     --up

     /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atADGNWradsgnw

     --down

     /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atADGNWradsgnw

     --up-restart

     --route-pre-down

     /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -m -w -d -atADGNWradsgnw

2013-01-09 20:08:07 *Tunnelblick: Established communication with OpenVPN

2013-01-09 20:08:07 *Tunnelblick: Obtained VPN username and password from the Keychain

2013-01-09 20:08:07 OpenVPN 2.3-alpha1 i386-apple-darwin10.8.0 [SSL (OpenSSL)] [LZO2] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110522-1 (2.2.0)] built on Oct 27 2012

2013-01-09 20:08:07 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337

2013-01-09 20:08:07 Need hold release from management interface, waiting...

2013-01-09 20:08:07 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337

2013-01-09 20:08:07 MANAGEMENT: CMD 'pid'

2013-01-09 20:08:07 MANAGEMENT: CMD 'state on'

2013-01-09 20:08:07 MANAGEMENT: CMD 'state'

2013-01-09 20:08:07 MANAGEMENT: CMD 'bytecount 1'

2013-01-09 20:08:07 MANAGEMENT: CMD 'hold release'

2013-01-09 20:08:07 MANAGEMENT: CMD 'username "Auth" "freeopenvpn"'

2013-01-09 20:08:07 MANAGEMENT: CMD 'password [...]'

2013-01-09 20:08:07 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.

2013-01-09 20:08:07 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2013-01-09 20:08:07 MANAGEMENT: Client disconnected

2013-01-09 20:08:07 OpenSSL error: cannot load engine 'aesni'

2013-01-09 20:08:07 Exiting due to fatal error

2013-01-09 20:08:07 *Tunnelblick: openvpnstart starting OpenVPN:

                    *                    /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3-alpha1/openvpn --cd /Users/zelbatti/Library/Application Support/Tunnelblick/Configurations --daemon --management 127.0.0.1 1337 --config /Users/zelbatti/Library/Application Support/Tunnelblick/Configurations/vpnbook-UDP25000.ovpn --log /Library/Application Support/Tunnelblick/Logs/-SUsers-Szelbatti-SLibrary-SApplication Support-STunnelblick-SConfigurations-Svpnbook--UDP25000.ovpn.1_0_0_0_49.1337.openvpn.log --management-query-passwords --management-hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -atADGNWradsgnw --down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -atADGNWradsgnw --up-restart --route-pre-down /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -m -w -d -atADGNWradsgnw

2013-01-09 20:08:08 *Tunnelblick: Flushed the DNS cache

--
You received this message because you are subscribed to the Google Groups "tunnelblick-discuss" group.
To view this discussion on the web visit https://groups.google.com/d/msg/tunnelblick-discuss/-/BQAfAevAHiMJ.
To post to this group, send email to tunnelbli...@googlegroups.com.
To unsubscribe from this group, send email to tunnelblick-dis...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/tunnelblick-discuss?hl=en.

[Endo]

If you are using free service from VPNBOOK, you don't need to call the AES encryption, as far as I know. Unless the VPNBOOK server is also set up with the same, your connection won't be successful. Try it without the "cipher" and "engine" arguments.