1 | Configuration: |
---|
2 | --- |
---|
3 | client |
---|
4 | resolv-retry 20 |
---|
5 | keepalive 10 60 |
---|
6 | nobind |
---|
7 | mute-replay-warnings |
---|
8 | ns-cert-type server |
---|
9 | comp-lzo |
---|
10 | max-routes 500 |
---|
11 | verb 1 |
---|
12 | persist-key |
---|
13 | persist-tun |
---|
14 | explicit-exit-notify 1 |
---|
15 | dev tun |
---|
16 | proto udp |
---|
17 | port 1194 |
---|
18 | cipher AES-128-CBC |
---|
19 | cert keys/client.crt |
---|
20 | key keys/client.key |
---|
21 | ca keys/client-ca.crt |
---|
22 | remote X.X.X.X 1194 # public address |
---|
23 | remote X.X.X.X 1194 # static WAN 1 |
---|
24 | --- |
---|
25 | |
---|
26 | |
---|
27 | |
---|
28 | |
---|
29 | Log: |
---|
30 | --- |
---|
31 | 2018-01-31 19:54:19 DEPRECATED OPTION: --max-routes option ignored.The number of routes is unlimited as of OpenVPN 2.4. This option will be removed in a future version, please remove it from your configuration. |
---|
32 | 2018-01-31 19:54:19 OpenVPN 2.4.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Nov 2 2017 |
---|
33 | 2018-01-31 19:54:19 library versions: LibreSSL 2.5.5, LZO 2.10 |
---|
34 | 2018-01-31 19:54:19 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337 |
---|
35 | 2018-01-31 19:54:19 Need hold release from management interface, waiting... |
---|
36 | *Tunnelblick: OS X 10.13.3; Tunnelblick 3.7.4 (build 4900) |
---|
37 | 2018-01-31 19:54:19 *Tunnelblick: Attempting connection with client using shadow copy; Set nameserver = 769; monitoring connection |
---|
38 | 2018-01-31 19:54:19 *Tunnelblick: openvpnstart start client.tblk 1337 769 0 1 0 1100208 -ptADGNWradsgnw 2.4.4-libressl-2.5.5 |
---|
39 | 2018-01-31 19:54:20 *Tunnelblick: openvpnstart log: |
---|
40 | OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line): |
---|
41 | |
---|
42 | /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.4-libressl-2.5.5/openvpn |
---|
43 | --daemon |
---|
44 | --log |
---|
45 | /Library/Application Support/Tunnelblick/Logs/-SUsers-Sahanjrah-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sclient.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1100208.1337.openvpn.log |
---|
46 | --cd |
---|
47 | /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources |
---|
48 | --setenv |
---|
49 | IV_GUI_VER |
---|
50 | "net.tunnelblick.tunnelblick 4900 3.7.4 (build 4900)" |
---|
51 | --verb |
---|
52 | 3 |
---|
53 | --config |
---|
54 | /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources/config.ovpn |
---|
55 | --verb |
---|
56 | 3 |
---|
57 | --cd |
---|
58 | /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources |
---|
59 | --management |
---|
60 | 127.0.0.1 |
---|
61 | 1337 |
---|
62 | --mtu-test |
---|
63 | --management-query-passwords |
---|
64 | --management-hold |
---|
65 | --script-security |
---|
66 | 2 |
---|
67 | --route-up |
---|
68 | /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -p -w -ptADGNWradsgnw |
---|
69 | --down |
---|
70 | /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -p -w -ptADGNWradsgnw |
---|
71 | |
---|
72 | 2018-01-31 19:54:19 *Tunnelblick: openvpnstart starting OpenVPN |
---|
73 | 2018-01-31 19:54:20 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337 |
---|
74 | 2018-01-31 19:54:20 *Tunnelblick: Established communication with OpenVPN |
---|
75 | 2018-01-31 19:54:20 MANAGEMENT: CMD 'pid' |
---|
76 | 2018-01-31 19:54:20 MANAGEMENT: CMD 'state on' |
---|
77 | 2018-01-31 19:54:20 MANAGEMENT: CMD 'state' |
---|
78 | 2018-01-31 19:54:20 MANAGEMENT: CMD 'bytecount 1' |
---|
79 | 2018-01-31 19:54:20 MANAGEMENT: CMD 'hold release' |
---|
80 | 2018-01-31 19:54:20 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead. |
---|
81 | 2018-01-31 19:54:20 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts |
---|
82 | 2018-01-31 19:54:20 TCP/UDP: Preserving recently used remote address: [AF_INET]X.X.X.X:1194 |
---|
83 | 2018-01-31 19:54:20 Socket Buffers: R=[196724->196724] S=[9216->9216] |
---|
84 | 2018-01-31 19:54:20 UDP link local: (not bound) |
---|
85 | 2018-01-31 19:54:20 UDP link remote: [AF_INET]X.X.X.X:1194 |
---|
86 | 2018-01-31 19:54:20 MANAGEMENT: >STATE:1517457260,WAIT,,,,,, |
---|
87 | 2018-01-31 19:54:20 MANAGEMENT: >STATE:1517457260,AUTH,,,,,, |
---|
88 | 2018-01-31 19:54:20 TLS: Initial packet from [AF_INET]X.X.X.X:1194, sid=46628b79 c989367e |
---|
89 | 2018-01-31 19:54:20 VERIFY OK: depth=1, CN=certificateAuthority, C=CO, ST=ST, L=L, O=O, OU=OU, dnQualifier=certificateAuthority |
---|
90 | 2018-01-31 19:54:20 VERIFY OK: nsCertType=SERVER |
---|
91 | 2018-01-31 19:54:20 VERIFY OK: depth=0, C=CO, ST=ST, O=O, OU=OU, CN=server, dnQualifier=server |
---|
92 | 2018-01-31 19:54:22 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA |
---|
93 | 2018-01-31 19:54:22 [server] Peer Connection Initiated with [AF_INET]X.X.X.X:1194 |
---|
94 | 2018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,GET_CONFIG,,,,,, |
---|
95 | 2018-01-31 19:54:23 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1) |
---|
96 | 2018-01-31 19:54:23 NOTE: Beginning empirical MTU test -- results should be available in 3 to 4 minutes. |
---|
97 | 2018-01-31 19:54:23 PUSH: Received control message: 'PUSH_REPLY,register-dns,route 192.168.0.0 255.255.254.0,route 192.168.50.0 255.255.255.0,topology net30,ping 10,ping-restart 60,dhcp-option DNS 192.168.50.1,dhcp-option DOMAIN example.com,ifconfig 192.168.50.126 192.168.50.125' |
---|
98 | 2018-01-31 19:54:23 Options error: Unrecognized option or missing or extra parameter(s) in [PUSH-OPTIONS]:1: register-dns (2.4.4) |
---|
99 | 2018-01-31 19:54:23 OPTIONS IMPORT: timers and/or timeouts modified |
---|
100 | 2018-01-31 19:54:23 OPTIONS IMPORT: --ifconfig/up options modified |
---|
101 | 2018-01-31 19:54:23 OPTIONS IMPORT: route options modified |
---|
102 | 2018-01-31 19:54:23 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified |
---|
103 | 2018-01-31 19:54:23 Outgoing Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key |
---|
104 | 2018-01-31 19:54:23 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication |
---|
105 | 2018-01-31 19:54:23 Incoming Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key |
---|
106 | 2018-01-31 19:54:23 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication |
---|
107 | 2018-01-31 19:54:23 Opened utun device utun0 |
---|
108 | 2018-01-31 19:54:23 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 |
---|
109 | 2018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,ASSIGN_IP,,192.168.50.126,,,, |
---|
110 | 2018-01-31 19:54:23 /sbin/ifconfig utun0 delete |
---|
111 | ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address |
---|
112 | 2018-01-31 19:54:23 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure |
---|
113 | 2018-01-31 19:54:23 /sbin/ifconfig utun0 192.168.50.126 192.168.50.125 mtu 1500 netmask 255.255.255.255 up |
---|
114 | 2018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,ADD_ROUTES,,,,,, |
---|
115 | 2018-01-31 19:54:23 /sbin/route add -net 192.168.0.0 192.168.50.125 255.255.254.0 |
---|
116 | add net 192.168.0.0: gateway 192.168.50.125 |
---|
117 | 2018-01-31 19:54:23 /sbin/route add -net 192.168.50.0 192.168.50.125 255.255.255.0 |
---|
118 | add net 192.168.50.0: gateway 192.168.50.125 |
---|
119 | ********************************************** |
---|
120 | Start of output from client.up.tunnelblick.sh |
---|
121 | Disabled IPv6 for 'Wi-Fi' |
---|
122 | Disabled IPv6 for 'Bluetooth PAN' |
---|
123 | Disabled IPv6 for 'Thunderbolt Bridge' |
---|
124 | Retrieved from OpenVPN: name server(s) [ 192.168.50.1 ], domain name [ example.com ], search domain(s) [ ], and SMB server(s) [ ] |
---|
125 | Not aggregating ServerAddresses because running on OS X 10.6 or higher |
---|
126 | Prepending 'example.com' to search domains '' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was selected |
---|
127 | Saved the DNS and SMB configurations so they can be restored |
---|
128 | Changed DNS ServerAddresses setting from '192.168.1.254' to '192.168.50.1' |
---|
129 | Changed DNS SearchDomains setting from '' to 'example.com' |
---|
130 | Changed DNS DomainName setting from 'attlocal.net' to 'example.com' |
---|
131 | Did not change SMB NetBIOSName setting of '' |
---|
132 | Did not change SMB Workgroup setting of '' |
---|
133 | Did not change SMB WINSAddresses setting of '' |
---|
134 | DNS servers '192.168.50.1' will be used for DNS queries when the VPN is active |
---|
135 | NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems. |
---|
136 | Flushed the DNS cache via dscacheutil |
---|
137 | /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil |
---|
138 | Notified mDNSResponder that the DNS cache was flushed |
---|
139 | Setting up to monitor system configuration with process-network-changes |
---|
140 | End of output from client.up.tunnelblick.sh |
---|
141 | ********************************************** |
---|
142 | 2018-01-31 19:54:27 *Tunnelblick: No 'connected.sh' script to execute |
---|
143 | 2018-01-31 19:54:27 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this |
---|
144 | 2018-01-31 19:54:27 Initialization Sequence Completed |
---|
145 | 2018-01-31 19:54:27 MANAGEMENT: >STATE:1517457267,CONNECTED,SUCCESS,192.168.50.126,X.X.X.X,1194,, |
---|
146 | 2018-01-31 19:54:32 *Tunnelblick process-network-changes: A system configuration change was ignored |
---|
147 | 2018-01-31 19:54:32 *Tunnelblick: This computer's apparent public IP address (Y.Y.Y.Y) was unchanged after the connection was made |
---|
148 | 2018-01-31 19:57:32 NOTE: Empirical MTU test completed [Tried,Actual] local->remote=[1557,1557] remote->local=[1557,1557] |
---|
149 | --- |
---|