Skip to content

Instantly share code, notes, and snippets.

@Katafalkas

Katafalkas/tunnelblick_log_2

Created March 29, 2017 07:57
Show Gist options
  • Save Katafalkas/5ea210913651c7e71b02f9fe67470dc9 to your computer and use it in GitHub Desktop.
Save Katafalkas/5ea210913651c7e71b02f9fe67470dc9 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
tunnelblick_log_2
*Tunnelblick: OS X 10.12.3; Tunnelblick 3.7.0 (build 4790); Admin user
git commit 8c2e63a08fd49c4b4881925fea8282547bf2de25
Configuration foo@foo
"Sanitized" condensed configuration file for /Users/foo/Library/Application Support/Tunnelblick/Configurations/[email protected]:
resolv-retry infinite
ca ca.crt
persist-tun
verb 3
dev tun
key client.key
persist-key
comp-lzo
remote foo.foo.eu 1194
ns-cert-type server
proto udp
nobind
cert client.crt
client
================================================================================
Non-Apple kexts that are loaded:
Index Refs Address Size Wired Name (Version) UUID <Linked Against>
145 3 0xffffff7f84605000 0x61000 0x61000 org.virtualbox.kext.VBoxDrv (5.1.14) 08D6FFCF-2BDF-305C-8824-89E69602C30D <7 5 4 3 1>
148 0 0xffffff7f84666000 0x8000 0x8000 org.virtualbox.kext.VBoxUSB (5.1.14) BF0B350D-C893-37DF-82F0-BE86ABA49D26 <147 145 39 7 5 4 3 1>
149 0 0xffffff7f8466e000 0x5000 0x5000 org.virtualbox.kext.VBoxNetFlt (5.1.14) 0291FFCC-8E46-3FFD-B674-BFA42D4E67E4 <145 7 5 4 3 1>
150 0 0xffffff7f84673000 0x6000 0x6000 org.virtualbox.kext.VBoxNetAdp (5.1.14) EFBEE858-A3D7-3C61-86C0-F6AFDCA48229 <145 5 4 1>
================================================================================
There are no unusual files in [email protected]
================================================================================
Configuration preferences:
-notMonitoringConnection = 0
-useRouteUpInsteadOfUp = 0
-keepConnected = 0
-doNotDisableIpv6onTun = 0
-lastConnectionSucceeded = 1
================================================================================
Wildcard preferences:
================================================================================
Program preferences:
skipWarningThatIPAddressDidNotChangeAfterConnection = 1
launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.7.0 (build 4790)"
)
lastLaunchTime = 512330036.831424
lastLanguageAtLaunchWasRTL = 0
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = foo@foo
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
updateSendProfileInfo = 1
NSWindow Frame SettingsSheetWindow = 576 504 829 524 0 0 1680 1028
NSWindow Frame ConnectingWindow = 643 630 389 187 0 0 1680 1028
detailsWindowFrameVersion = 4790
detailsWindowFrame = {{64, 530}, {920, 468}}
detailsWindowLeftFrame = {{0, 0}, {165, 350}}
detailsWindowViewIndex = 0
detailsWindowConfigurationsTabIdentifier = log
leftNavSelectedDisplayName = foo@foo
AdvancedWindowTabIdentifier = whileConnected
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 1
SULastCheckTime = 2017-03-27 17:53:58 +0000
SULastProfileSubmissionDate = 2017-03-27 06:33:54 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times
================================================================================
Tunnelblick Log:
*Tunnelblick: OS X 10.12.3; Tunnelblick 3.7.0 (build 4790)
2017-03-29 10:46:15 *Tunnelblick: Attempting connection with foo@foo using shadow copy; Set nameserver = 769; monitoring connection
2017-03-29 10:46:15 *Tunnelblick: openvpnstart start [email protected] 1338 769 0 1 0 1065264 -ptADGNWradsgnw 2.3.14-openssl-1.0.2k
2017-03-29 10:46:15 *Tunnelblick: openvpnstart log:
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.14-openssl-1.0.2k/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-Sfoo-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sfoo@foo.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1065264.1338.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/foo/[email protected]/Contents/Resources
--verb
3
--config
/Library/Application Support/Tunnelblick/Users/foo/[email protected]/Contents/Resources/config.ovpn
--verb
3
--cd
/Library/Application Support/Tunnelblick/Users/foo/[email protected]/Contents/Resources
--management
127.0.0.1
1338
--management-query-passwords
--management-hold
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2017-03-29 10:46:15 *Tunnelblick: Established communication with OpenVPN
2017-03-29 10:46:15 OpenVPN 2.3.14 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 28 2017
2017-03-29 10:46:15 library versions: OpenSSL 1.0.2k 26 Jan 2017, LZO 2.09
2017-03-29 10:46:15 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1338
2017-03-29 10:46:15 Need hold release from management interface, waiting...
2017-03-29 10:46:15 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1338
2017-03-29 10:46:15 MANAGEMENT: CMD 'pid'
2017-03-29 10:46:15 MANAGEMENT: CMD 'state on'
2017-03-29 10:46:15 MANAGEMENT: CMD 'state'
2017-03-29 10:46:15 MANAGEMENT: CMD 'bytecount 1'
2017-03-29 10:46:15 MANAGEMENT: CMD 'hold release'
2017-03-29 10:46:15 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2017-03-29 10:46:15 Socket Buffers: R=[196724->196724] S=[9216->9216]
2017-03-29 10:46:15 MANAGEMENT: >STATE:1490773575,RESOLVE,,,
2017-03-29 10:46:15 *Tunnelblick: openvpnstart starting OpenVPN
2017-03-29 10:46:16 UDPv4 link local: [undef]
2017-03-29 10:46:16 UDPv4 link remote: [AF_INET]x.x.x.x:1194
2017-03-29 10:46:16 MANAGEMENT: >STATE:1490773576,WAIT,,,
2017-03-29 10:46:16 MANAGEMENT: >STATE:1490773576,AUTH,,,
2017-03-29 10:46:16 TLS: Initial packet from [AF_INET]x.x.x.x:1194, sid=2cff2b9a 302f874a
2017-03-29 10:46:16 VERIFY OK: depth=1, CN=RootCA, C=IS, L=Wilno, O=showaround, OU=Root
2017-03-29 10:46:16 VERIFY OK: nsCertType=SERVER
2017-03-29 10:46:16 VERIFY OK: depth=0, CN=SuperRouter, C=IS, L=Wilno, O=showaround, OU=server
2017-03-29 10:46:16 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
2017-03-29 10:46:16 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
2017-03-29 10:46:16 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2017-03-29 10:46:16 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
2017-03-29 10:46:16 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
2017-03-29 10:46:16 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2017-03-29 10:46:16 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
2017-03-29 10:46:16 [SuperRouter] Peer Connection Initiated with [AF_INET]52.212.66.65:1194
2017-03-29 10:46:18 MANAGEMENT: >STATE:1490773578,GET_CONFIG,,,
2017-03-29 10:46:19 SENT CONTROL [SuperRouter]: 'PUSH_REQUEST' (status=1)
2017-03-29 10:46:19 PUSH: Received control message: 'PUSH_REPLY,route 172.31.0.0 255.255.0.0,dhcp-option DNS 10.8.0.1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.26 10.8.0.25'
2017-03-29 10:46:19 OPTIONS IMPORT: timers and/or timeouts modified
2017-03-29 10:46:19 OPTIONS IMPORT: --ifconfig/up options modified
2017-03-29 10:46:19 OPTIONS IMPORT: route options modified
2017-03-29 10:46:19 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2017-03-29 10:46:19 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
2017-03-29 10:46:19 Opened utun device utun1
2017-03-29 10:46:19 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2017-03-29 10:46:19 MANAGEMENT: >STATE:1490773579,ASSIGN_IP,,10.8.0.26,
2017-03-29 10:46:19 /sbin/ifconfig utun1 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2017-03-29 10:46:19 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2017-03-29 10:46:19 /sbin/ifconfig utun1 10.8.0.26 10.8.0.25 mtu 1500 netmask 255.255.255.255 up
2017-03-29 10:46:19 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun1 1500 1542 10.8.0.26 10.8.0.25 init
**********************************************
Start of output from client.up.tunnelblick.sh
Retrieved from OpenVPN: name server(s) [ 10.8.0.1 8.8.8.8 8.8.4.4 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Changed DNS ServerAddresses setting from '192.168.102.254' to '10.8.0.1 8.8.8.8 8.8.4.4'
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from '' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '10.8.0.1 8.8.8.8 8.8.4.4' will be used for DNS queries when the VPN is active
NOTE: The DNS servers include one or more free public DNS servers known to Tunnelblick and one or more DNS servers not known to Tunnelblick. If used, the DNS servers not known to Tunnelblick may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
End of output from client.up.tunnelblick.sh
**********************************************
2017-03-29 10:46:23 *Tunnelblick: No 'connected.sh' script to execute
2017-03-29 10:46:23 MANAGEMENT: >STATE:1490773583,ADD_ROUTES,,,
2017-03-29 10:46:23 /sbin/route add -net 172.31.0.0 10.8.0.25 255.255.0.0
add net 172.31.0.0: gateway 10.8.0.25
2017-03-29 10:46:23 /sbin/route add -net 10.8.0.1 10.8.0.25 255.255.255.255
add net 10.8.0.1: gateway 10.8.0.25
2017-03-29 10:46:23 Initialization Sequence Completed
2017-03-29 10:46:23 MANAGEMENT: >STATE:1490773583,CONNECTED,SUCCESS,10.8.0.26,x.x.x.x
2017-03-29 10:46:27 *Tunnelblick process-network-changes: A system configuration change was ignored
2017-03-29 10:46:28 *Tunnelblick: This computer's apparent public IP address (x.x.x.x) was unchanged after the connection was made
2017-03-29 10:53:05 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
2017-03-29 10:53:05 *Tunnelblick: No 'pre-disconnect.sh' script to execute
2017-03-29 10:53:05 *Tunnelblick: Disconnecting using 'kill'
2017-03-29 10:53:05 event_wait : Interrupted system call (code=4)
2017-03-29 10:53:05 /sbin/route delete -net 10.8.0.1 10.8.0.25 255.255.255.255
delete net 10.8.0.1: gateway 10.8.0.25
2017-03-29 10:53:05 /sbin/route delete -net 172.31.0.0 10.8.0.25 255.255.0.0
delete net 172.31.0.0: gateway 10.8.0.25
2017-03-29 10:53:05 Closing TUN/TAP interface
2017-03-29 10:53:05 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun1 1500 1542 10.8.0.26 10.8.0.25 init
**********************************************
Start of output from client.down.tunnelblick.sh
Cancelled monitoring of system configuration changes
Restored the DNS and SMB configurations
Flushed the DNS cache via dscacheutil
/usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
Notified mDNSResponder that the DNS cache was flushed
End of output from client.down.tunnelblick.sh
**********************************************
2017-03-29 10:53:06 SIGTERM[hard,] received, process exiting
2017-03-29 10:53:06 MANAGEMENT: >STATE:1490773986,EXITING,SIGTERM,,
2017-03-29 10:53:06 *Tunnelblick: No 'post-disconnect.sh' script to execute
2017-03-29 10:53:06 *Tunnelblick: Expected disconnection occurred.
================================================================================
"Sanitized" full configuration file
resolv-retry infinite
ca ca.crt
persist-tun
verb 3
dev tun
key client.key
persist-key
comp-lzo
remote bar.foo.eu 1194
ns-cert-type server
proto udp
nobind
cert client.crt
client
================================================================================
ifconfig output:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether 78:4f:43:61:88:0f
inet 192.168.102.52 netmask 0xffffff00 broadcast 192.168.102.255
media: autoselect
status: active
en1: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
options=60<TSO4,TSO6>
ether d2:00:5c:c8:2f:00
media: autoselect <full-duplex>
status: inactive
en3: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
options=60<TSO4,TSO6>
ether d2:00:5c:c8:2f:01
media: autoselect <full-duplex>
status: inactive
en2: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
options=60<TSO4,TSO6>
ether d2:00:5c:c8:2f:04
media: autoselect <full-duplex>
status: inactive
en4: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
options=60<TSO4,TSO6>
ether d2:00:5c:c8:2f:05
media: autoselect <full-duplex>
status: inactive
bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether d2:00:5c:c8:2f:00
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x2
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 6 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 8 priority 0 path cost 0
member: en3 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 7 priority 0 path cost 0
member: en4 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
media: <unknown type>
status: inactive
p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
ether 0a:4f:43:61:88:0f
media: autoselect
status: inactive
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1484
ether d6:22:6b:75:28:2f
inet6 fe80::d422:6bff:fe75:282f%awdl0 prefixlen 64 scopeid 0xc
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::2449:3c8e:b03b:b2f1%utun0 prefixlen 64 scopeid 0xd
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::380:da29:e390:5958%utun2 prefixlen 64 scopeid 0xf
nd6 options=201<PERFORMNUD,DAD>
en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether ac:de:48:00:11:22
inet6 fe80::aede:48ff:fe00:1122%en5 prefixlen 64 scopeid 0x4
nd6 options=281<PERFORMNUD,INSECURE,DAD>
media: autoselect
status: active
================================================================================
Console Log:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment