Ticket #1013: Configuration and log.txt

File Configuration and log.txt, 9.7 KB (added by amans, 4 years ago)
Line 
1Configuration:
2---
3client
4resolv-retry 20
5keepalive 10 60
6nobind
7mute-replay-warnings
8ns-cert-type server
9comp-lzo
10max-routes 500
11verb 1
12persist-key
13persist-tun
14explicit-exit-notify 1
15dev tun
16proto udp
17port 1194
18cipher AES-128-CBC
19cert keys/client.crt
20key keys/client.key
21ca keys/client-ca.crt
22remote X.X.X.X 1194 # public address
23remote X.X.X.X 1194 # static WAN 1
24---
25
26
27
28
29Log:
30---
312018-01-31 19:54:19 DEPRECATED OPTION: --max-routes option ignored.The number of routes is unlimited as of OpenVPN 2.4. This option will be removed in a future version, please remove it from your configuration.
322018-01-31 19:54:19 OpenVPN 2.4.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Nov  2 2017
332018-01-31 19:54:19 library versions: LibreSSL 2.5.5, LZO 2.10
342018-01-31 19:54:19 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
352018-01-31 19:54:19 Need hold release from management interface, waiting...
36*Tunnelblick: OS X 10.13.3; Tunnelblick 3.7.4 (build 4900)
372018-01-31 19:54:19 *Tunnelblick: Attempting connection with client using shadow copy; Set nameserver = 769; monitoring connection
382018-01-31 19:54:19 *Tunnelblick: openvpnstart start client.tblk 1337 769 0 1 0 1100208 -ptADGNWradsgnw 2.4.4-libressl-2.5.5
392018-01-31 19:54:20 *Tunnelblick: openvpnstart log:
40     OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
41     
42          /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.4-libressl-2.5.5/openvpn
43          --daemon
44          --log
45          /Library/Application Support/Tunnelblick/Logs/-SUsers-Sahanjrah-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sclient.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1100208.1337.openvpn.log
46          --cd
47          /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources
48          --setenv
49          IV_GUI_VER
50          "net.tunnelblick.tunnelblick 4900 3.7.4 (build 4900)"
51          --verb
52          3
53          --config
54          /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources/config.ovpn
55          --verb
56          3
57          --cd
58          /Library/Application Support/Tunnelblick/Users/ahanjrah/client.tblk/Contents/Resources
59          --management
60          127.0.0.1
61          1337
62          --mtu-test
63          --management-query-passwords
64          --management-hold
65          --script-security
66          2
67          --route-up
68          /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -p -w -ptADGNWradsgnw
69          --down
70          /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -p -w -ptADGNWradsgnw
71
722018-01-31 19:54:19 *Tunnelblick: openvpnstart starting OpenVPN
732018-01-31 19:54:20 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
742018-01-31 19:54:20 *Tunnelblick: Established communication with OpenVPN
752018-01-31 19:54:20 MANAGEMENT: CMD 'pid'
762018-01-31 19:54:20 MANAGEMENT: CMD 'state on'
772018-01-31 19:54:20 MANAGEMENT: CMD 'state'
782018-01-31 19:54:20 MANAGEMENT: CMD 'bytecount 1'
792018-01-31 19:54:20 MANAGEMENT: CMD 'hold release'
802018-01-31 19:54:20 WARNING: --ns-cert-type is DEPRECATED.  Use --remote-cert-tls instead.
812018-01-31 19:54:20 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
822018-01-31 19:54:20 TCP/UDP: Preserving recently used remote address: [AF_INET]X.X.X.X:1194
832018-01-31 19:54:20 Socket Buffers: R=[196724->196724] S=[9216->9216]
842018-01-31 19:54:20 UDP link local: (not bound)
852018-01-31 19:54:20 UDP link remote: [AF_INET]X.X.X.X:1194
862018-01-31 19:54:20 MANAGEMENT: >STATE:1517457260,WAIT,,,,,,
872018-01-31 19:54:20 MANAGEMENT: >STATE:1517457260,AUTH,,,,,,
882018-01-31 19:54:20 TLS: Initial packet from [AF_INET]X.X.X.X:1194, sid=46628b79 c989367e
892018-01-31 19:54:20 VERIFY OK: depth=1, CN=certificateAuthority, C=CO, ST=ST, L=L, O=O, OU=OU, dnQualifier=certificateAuthority
902018-01-31 19:54:20 VERIFY OK: nsCertType=SERVER
912018-01-31 19:54:20 VERIFY OK: depth=0, C=CO, ST=ST, O=O, OU=OU, CN=server, dnQualifier=server
922018-01-31 19:54:22 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
932018-01-31 19:54:22 [server] Peer Connection Initiated with [AF_INET]X.X.X.X:1194
942018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,GET_CONFIG,,,,,,
952018-01-31 19:54:23 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
962018-01-31 19:54:23 NOTE: Beginning empirical MTU test -- results should be available in 3 to 4 minutes.
972018-01-31 19:54:23 PUSH: Received control message: 'PUSH_REPLY,register-dns,route 192.168.0.0 255.255.254.0,route 192.168.50.0 255.255.255.0,topology net30,ping 10,ping-restart 60,dhcp-option DNS 192.168.50.1,dhcp-option DOMAIN example.com,ifconfig 192.168.50.126 192.168.50.125'
982018-01-31 19:54:23 Options error: Unrecognized option or missing or extra parameter(s) in [PUSH-OPTIONS]:1: register-dns (2.4.4)
992018-01-31 19:54:23 OPTIONS IMPORT: timers and/or timeouts modified
1002018-01-31 19:54:23 OPTIONS IMPORT: --ifconfig/up options modified
1012018-01-31 19:54:23 OPTIONS IMPORT: route options modified
1022018-01-31 19:54:23 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
1032018-01-31 19:54:23 Outgoing Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
1042018-01-31 19:54:23 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
1052018-01-31 19:54:23 Incoming Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
1062018-01-31 19:54:23 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
1072018-01-31 19:54:23 Opened utun device utun0
1082018-01-31 19:54:23 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
1092018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,ASSIGN_IP,,192.168.50.126,,,,
1102018-01-31 19:54:23 /sbin/ifconfig utun0 delete
111                                        ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
1122018-01-31 19:54:23 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
1132018-01-31 19:54:23 /sbin/ifconfig utun0 192.168.50.126 192.168.50.125 mtu 1500 netmask 255.255.255.255 up
1142018-01-31 19:54:23 MANAGEMENT: >STATE:1517457263,ADD_ROUTES,,,,,,
1152018-01-31 19:54:23 /sbin/route add -net 192.168.0.0 192.168.50.125 255.255.254.0
116                                        add net 192.168.0.0: gateway 192.168.50.125
1172018-01-31 19:54:23 /sbin/route add -net 192.168.50.0 192.168.50.125 255.255.255.0
118                                        add net 192.168.50.0: gateway 192.168.50.125
119                                        **********************************************
120                                        Start of output from client.up.tunnelblick.sh
121                                        Disabled IPv6 for 'Wi-Fi'
122                                        Disabled IPv6 for 'Bluetooth PAN'
123                                        Disabled IPv6 for 'Thunderbolt Bridge'
124                                        Retrieved from OpenVPN: name server(s) [ 192.168.50.1 ], domain name [ example.com ], search domain(s) [  ], and SMB server(s) [  ]
125                                        Not aggregating ServerAddresses because running on OS X 10.6 or higher
126                                        Prepending 'example.com' to search domains '' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was selected
127                                        Saved the DNS and SMB configurations so they can be restored
128                                        Changed DNS ServerAddresses setting from '192.168.1.254' to '192.168.50.1'
129                                        Changed DNS SearchDomains setting from '' to 'example.com'
130                                        Changed DNS DomainName setting from 'attlocal.net' to 'example.com'
131                                        Did not change SMB NetBIOSName setting of ''
132                                        Did not change SMB Workgroup setting of ''
133                                        Did not change SMB WINSAddresses setting of ''
134                                        DNS servers '192.168.50.1' will be used for DNS queries when the VPN is active
135                                        NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
136                                        Flushed the DNS cache via dscacheutil
137                                        /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
138                                        Notified mDNSResponder that the DNS cache was flushed
139                                        Setting up to monitor system configuration with process-network-changes
140                                        End of output from client.up.tunnelblick.sh
141                                        **********************************************
1422018-01-31 19:54:27 *Tunnelblick: No 'connected.sh' script to execute
1432018-01-31 19:54:27 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
1442018-01-31 19:54:27 Initialization Sequence Completed
1452018-01-31 19:54:27 MANAGEMENT: >STATE:1517457267,CONNECTED,SUCCESS,192.168.50.126,X.X.X.X,1194,,
1462018-01-31 19:54:32 *Tunnelblick process-network-changes: A system configuration change was ignored
1472018-01-31 19:54:32 *Tunnelblick: This computer's apparent public IP address (Y.Y.Y.Y) was unchanged after the connection was made
1482018-01-31 19:57:32 NOTE: Empirical MTU test completed [Tried,Actual] local->remote=[1557,1557] remote->local=[1557,1557]
149---