API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 14th, 2017
420
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 61.25 KB | None | 0 0
raw download clone embed print report
  1. ------------------------------------------
  2. Linux myservername 4.4.0-101-generic #124-Ubuntu SMP Fri Nov 10 18:29:59 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
  3.  
  4. ------------------------------------------
  5. /etc/openvpn/server.conf
  6. ------------------------------------------
  7. port 1194
  8. proto udp
  9. dev tun
  10. ca /etc/openvpn/ca.crt
  11. cert /etc/openvpn/server.crt
  12. key /etc/openvpn/server.key # This file should be kept secret
  13. dh dh2048.pem
  14. server 10.8.0.0 255.255.255.0
  15. ifconfig-pool-persist ipp.txt
  16. push "redirect-gateway def1 bypass-dhcp"
  17. push "dhcp-option DNS 8.8.4.4"
  18. push "dhcp-option DNS 8.8.8.8"
  19. keepalive 10 120
  20. tls-auth ta.key 0 # This file is secret
  21. key-direction 0
  22. cipher AES-128-CBC # AES
  23. auth SHA256
  24. comp-lzo
  25. user nobody
  26. group nogroup
  27. persist-key
  28. persist-tun
  29. status openvpn-status.log
  30. log-append openvpn.log
  31. verb 4
  32. crl-verify /etc/openvpn/crl.pem
  33.  
  34. ------------------------------------------
  35. /etc/openvpn/openvpn.log
  36. ------------------------------------------
  37.  
  38. Thu Dec 14 22:17:14 2017 us=693364 Current Parameter Settings:
  39. Thu Dec 14 22:17:14 2017 us=693405 config = '/etc/openvpn/server.conf'
  40. Thu Dec 14 22:17:14 2017 us=693412 mode = 1
  41. Thu Dec 14 22:17:14 2017 us=693416 persist_config = DISABLED
  42. Thu Dec 14 22:17:14 2017 us=693419 persist_mode = 1
  43. Thu Dec 14 22:17:14 2017 us=693437 show_ciphers = DISABLED
  44. Thu Dec 14 22:17:14 2017 us=693440 show_digests = DISABLED
  45. Thu Dec 14 22:17:14 2017 us=693444 show_engines = DISABLED
  46. Thu Dec 14 22:17:14 2017 us=693447 genkey = DISABLED
  47. Thu Dec 14 22:17:14 2017 us=693450 key_pass_file = '[UNDEF]'
  48. Thu Dec 14 22:17:14 2017 us=693453 show_tls_ciphers = DISABLED
  49. Thu Dec 14 22:17:14 2017 us=693457 Connection profiles [default]:
  50. Thu Dec 14 22:17:14 2017 us=693460 proto = udp
  51. Thu Dec 14 22:17:14 2017 us=693463 local = '[UNDEF]'
  52. Thu Dec 14 22:17:14 2017 us=693467 local_port = 1194
  53. Thu Dec 14 22:17:14 2017 us=693470 remote = '[UNDEF]'
  54. Thu Dec 14 22:17:14 2017 us=693473 remote_port = 1194
  55. Thu Dec 14 22:17:14 2017 us=693477 remote_float = DISABLED
  56. Thu Dec 14 22:17:14 2017 us=693480 bind_defined = DISABLED
  57. Thu Dec 14 22:17:14 2017 us=693483 bind_local = ENABLED
  58. Thu Dec 14 22:17:14 2017 us=693486 connect_retry_seconds = 5
  59. Thu Dec 14 22:17:14 2017 us=693489 connect_timeout = 10
  60. Thu Dec 14 22:17:14 2017 us=693493 connect_retry_max = 0
  61. Thu Dec 14 22:17:14 2017 us=693496 socks_proxy_server = '[UNDEF]'
  62. Thu Dec 14 22:17:14 2017 us=693499 socks_proxy_port = 0
  63. Thu Dec 14 22:17:14 2017 us=693502 socks_proxy_retry = DISABLED
  64. Thu Dec 14 22:17:14 2017 us=693506 tun_mtu = 1500
  65. Thu Dec 14 22:17:14 2017 us=693509 tun_mtu_defined = ENABLED
  66. Thu Dec 14 22:17:14 2017 us=693512 link_mtu = 1500
  67. Thu Dec 14 22:17:14 2017 us=693515 link_mtu_defined = DISABLED
  68. Thu Dec 14 22:17:14 2017 us=693532 tun_mtu_extra = 0
  69. Thu Dec 14 22:17:14 2017 us=693535 tun_mtu_extra_defined = DISABLED
  70. Thu Dec 14 22:17:14 2017 us=693538 mtu_discover_type = -1
  71. Thu Dec 14 22:17:14 2017 us=693541 fragment = 0
  72. Thu Dec 14 22:17:14 2017 us=693545 mssfix = 1450
  73. Thu Dec 14 22:17:14 2017 us=693548 explicit_exit_notification = 0
  74. Thu Dec 14 22:17:14 2017 us=693551 Connection profiles END
  75. Thu Dec 14 22:17:14 2017 us=693554 remote_random = DISABLED
  76. Thu Dec 14 22:17:14 2017 us=693557 ipchange = '[UNDEF]'
  77. Thu Dec 14 22:17:14 2017 us=693560 dev = 'tun'
  78. Thu Dec 14 22:17:14 2017 us=693563 dev_type = '[UNDEF]'
  79. Thu Dec 14 22:17:14 2017 us=693567 dev_node = '[UNDEF]'
  80. Thu Dec 14 22:17:14 2017 us=693570 lladdr = '[UNDEF]'
  81. Thu Dec 14 22:17:14 2017 us=693587 topology = 1
  82. Thu Dec 14 22:17:14 2017 us=693590 tun_ipv6 = DISABLED
  83. Thu Dec 14 22:17:14 2017 us=693593 ifconfig_local = '10.8.0.1'
  84. Thu Dec 14 22:17:14 2017 us=693596 ifconfig_remote_netmask = '10.8.0.2'
  85. Thu Dec 14 22:17:14 2017 us=693600 ifconfig_noexec = DISABLED
  86. Thu Dec 14 22:17:14 2017 us=693603 ifconfig_nowarn = DISABLED
  87. Thu Dec 14 22:17:14 2017 us=693606 ifconfig_ipv6_local = '[UNDEF]'
  88. Thu Dec 14 22:17:14 2017 us=693609 ifconfig_ipv6_netbits = 0
  89. Thu Dec 14 22:17:14 2017 us=693612 ifconfig_ipv6_remote = '[UNDEF]'
  90. Thu Dec 14 22:17:14 2017 us=693616 shaper = 0
  91. Thu Dec 14 22:17:14 2017 us=693619 mtu_test = 0
  92. Thu Dec 14 22:17:14 2017 us=693622 mlock = DISABLED
  93. Thu Dec 14 22:17:14 2017 us=693625 keepalive_ping = 10
  94. Thu Dec 14 22:17:14 2017 us=693628 keepalive_timeout = 120
  95. Thu Dec 14 22:17:14 2017 us=693632 inactivity_timeout = 0
  96. Thu Dec 14 22:17:14 2017 us=693635 ping_send_timeout = 10
  97. Thu Dec 14 22:17:14 2017 us=693638 ping_rec_timeout = 240
  98. Thu Dec 14 22:17:14 2017 us=693641 ping_rec_timeout_action = 2
  99. Thu Dec 14 22:17:14 2017 us=693644 ping_timer_remote = DISABLED
  100. Thu Dec 14 22:17:14 2017 us=693647 remap_sigusr1 = 0
  101. Thu Dec 14 22:17:14 2017 us=693651 persist_tun = ENABLED
  102. Thu Dec 14 22:17:14 2017 us=693654 persist_local_ip = DISABLED
  103. Thu Dec 14 22:17:14 2017 us=693657 persist_remote_ip = DISABLED
  104. Thu Dec 14 22:17:14 2017 us=693660 persist_key = ENABLED
  105. Thu Dec 14 22:17:14 2017 us=693663 passtos = DISABLED
  106. Thu Dec 14 22:17:14 2017 us=693679 resolve_retry_seconds = 1000000000
  107. Thu Dec 14 22:17:14 2017 us=693688 username = 'nobody'
  108. Thu Dec 14 22:17:14 2017 us=693692 groupname = 'nogroup'
  109. Thu Dec 14 22:17:14 2017 us=693695 chroot_dir = '[UNDEF]'
  110. Thu Dec 14 22:17:14 2017 us=693698 cd_dir = '/etc/openvpn'
  111. Thu Dec 14 22:17:14 2017 us=693701 writepid = '/run/openvpn/server.pid'
  112. Thu Dec 14 22:17:14 2017 us=693704 up_script = '[UNDEF]'
  113. Thu Dec 14 22:17:14 2017 us=693707 down_script = '[UNDEF]'
  114. Thu Dec 14 22:17:14 2017 us=693710 down_pre = DISABLED
  115. Thu Dec 14 22:17:14 2017 us=693712 up_restart = DISABLED
  116. Thu Dec 14 22:17:14 2017 us=693715 up_delay = DISABLED
  117. Thu Dec 14 22:17:14 2017 us=693718 daemon = ENABLED
  118. Thu Dec 14 22:17:14 2017 us=693735 inetd = 0
  119. Thu Dec 14 22:17:14 2017 us=693738 log = ENABLED
  120. Thu Dec 14 22:17:14 2017 us=693741 suppress_timestamps = DISABLED
  121. Thu Dec 14 22:17:14 2017 us=693744 nice = 0
  122. Thu Dec 14 22:17:14 2017 us=693747 verbosity = 4
  123. Thu Dec 14 22:17:14 2017 us=693750 mute = 0
  124. Thu Dec 14 22:17:14 2017 us=693753 gremlin = 0
  125. Thu Dec 14 22:17:14 2017 us=693756 status_file = 'openvpn-status.log'
  126. Thu Dec 14 22:17:14 2017 us=693759 status_file_version = 1
  127. Thu Dec 14 22:17:14 2017 us=693762 status_file_update_freq = 10
  128. Thu Dec 14 22:17:14 2017 us=693765 occ = ENABLED
  129. Thu Dec 14 22:17:14 2017 us=693768 rcvbuf = 0
  130. Thu Dec 14 22:17:14 2017 us=693771 sndbuf = 0
  131. Thu Dec 14 22:17:14 2017 us=693774 mark = 0
  132. Thu Dec 14 22:17:14 2017 us=693776 sockflags = 0
  133. Thu Dec 14 22:17:14 2017 us=693779 fast_io = DISABLED
  134. Thu Dec 14 22:17:14 2017 us=693782 lzo = 7
  135. Thu Dec 14 22:17:14 2017 us=693785 route_script = '[UNDEF]'
  136. Thu Dec 14 22:17:14 2017 us=693788 route_default_gateway = '[UNDEF]'
  137. Thu Dec 14 22:17:14 2017 us=693791 route_default_metric = 0
  138. Thu Dec 14 22:17:14 2017 us=693795 route_noexec = DISABLED
  139. Thu Dec 14 22:17:14 2017 us=693798 route_delay = 0
  140. Thu Dec 14 22:17:14 2017 us=693801 route_delay_window = 30
  141. Thu Dec 14 22:17:14 2017 us=693804 route_delay_defined = DISABLED
  142. Thu Dec 14 22:17:14 2017 us=693807 route_nopull = DISABLED
  143. Thu Dec 14 22:17:14 2017 us=693810 route_gateway_via_dhcp = DISABLED
  144. Thu Dec 14 22:17:14 2017 us=693813 max_routes = 100
  145. Thu Dec 14 22:17:14 2017 us=693816 allow_pull_fqdn = DISABLED
  146. Thu Dec 14 22:17:14 2017 us=693833 route 10.8.0.0/255.255.255.0/nil/nil
  147. Thu Dec 14 22:17:14 2017 us=693836 management_addr = '[UNDEF]'
  148. Thu Dec 14 22:17:14 2017 us=693839 management_port = 0
  149. Thu Dec 14 22:17:14 2017 us=693842 management_user_pass = '[UNDEF]'
  150. Thu Dec 14 22:17:14 2017 us=693845 management_log_history_cache = 250
  151. Thu Dec 14 22:17:14 2017 us=693848 management_echo_buffer_size = 100
  152. Thu Dec 14 22:17:14 2017 us=693851 management_write_peer_info_file = '[UNDEF]'
  153. Thu Dec 14 22:17:14 2017 us=693854 management_client_user = '[UNDEF]'
  154. Thu Dec 14 22:17:14 2017 us=693857 management_client_group = '[UNDEF]'
  155. Thu Dec 14 22:17:14 2017 us=693860 management_flags = 0
  156. Thu Dec 14 22:17:14 2017 us=693863 shared_secret_file = '[UNDEF]'
  157. Thu Dec 14 22:17:14 2017 us=693867 key_direction = 1
  158. Thu Dec 14 22:17:14 2017 us=693870 ciphername_defined = ENABLED
  159. Thu Dec 14 22:17:14 2017 us=693887 ciphername = 'AES-128-CBC'
  160. Thu Dec 14 22:17:14 2017 us=693890 authname_defined = ENABLED
  161. Thu Dec 14 22:17:14 2017 us=693893 authname = 'SHA256'
  162. Thu Dec 14 22:17:14 2017 us=693896 prng_hash = 'SHA1'
  163. Thu Dec 14 22:17:14 2017 us=693899 prng_nonce_secret_len = 16
  164. Thu Dec 14 22:17:14 2017 us=693902 keysize = 0
  165. Thu Dec 14 22:17:14 2017 us=693905 engine = DISABLED
  166. Thu Dec 14 22:17:14 2017 us=693909 replay = ENABLED
  167. Thu Dec 14 22:17:14 2017 us=693912 mute_replay_warnings = DISABLED
  168. Thu Dec 14 22:17:14 2017 us=693915 replay_window = 64
  169. Thu Dec 14 22:17:14 2017 us=693918 replay_time = 15
  170. Thu Dec 14 22:17:14 2017 us=693921 packet_id_file = '[UNDEF]'
  171. Thu Dec 14 22:17:14 2017 us=693924 use_iv = ENABLED
  172. Thu Dec 14 22:17:14 2017 us=693927 test_crypto = DISABLED
  173. Thu Dec 14 22:17:14 2017 us=693930 tls_server = ENABLED
  174. Thu Dec 14 22:17:14 2017 us=693933 tls_client = DISABLED
  175. Thu Dec 14 22:17:14 2017 us=693939 key_method = 2
  176. Thu Dec 14 22:17:14 2017 us=693942 ca_file = '/etc/openvpn/ca.crt'
  177. Thu Dec 14 22:17:14 2017 us=693945 ca_path = '[UNDEF]'
  178. Thu Dec 14 22:17:14 2017 us=693948 dh_file = 'dh2048.pem'
  179. Thu Dec 14 22:17:14 2017 us=693951 cert_file = '/etc/openvpn/server.crt'
  180. Thu Dec 14 22:17:14 2017 us=693954 extra_certs_file = '[UNDEF]'
  181. Thu Dec 14 22:17:14 2017 us=693958 priv_key_file = '/etc/openvpn/server.key'
  182. Thu Dec 14 22:17:14 2017 us=693961 pkcs12_file = '[UNDEF]'
  183. Thu Dec 14 22:17:14 2017 us=693964 cipher_list = '[UNDEF]'
  184. Thu Dec 14 22:17:14 2017 us=693980 tls_verify = '[UNDEF]'
  185. Thu Dec 14 22:17:14 2017 us=693983 tls_export_cert = '[UNDEF]'
  186. Thu Dec 14 22:17:14 2017 us=693986 verify_x509_type = 0
  187. Thu Dec 14 22:17:14 2017 us=693989 verify_x509_name = '[UNDEF]'
  188. Thu Dec 14 22:17:14 2017 us=693992 crl_file = '/etc/openvpn/crl.pem'
  189. Thu Dec 14 22:17:14 2017 us=693995 ns_cert_type = 0
  190. Thu Dec 14 22:17:14 2017 us=693998 remote_cert_ku[i] = 0
  191. Thu Dec 14 22:17:14 2017 us=694001 remote_cert_ku[i] = 0
  192. Thu Dec 14 22:17:14 2017 us=694004 remote_cert_ku[i] = 0
  193. Thu Dec 14 22:17:14 2017 us=694007 remote_cert_ku[i] = 0
  194. Thu Dec 14 22:17:14 2017 us=694010 remote_cert_ku[i] = 0
  195. Thu Dec 14 22:17:14 2017 us=694013 remote_cert_ku[i] = 0
  196. Thu Dec 14 22:17:14 2017 us=694016 remote_cert_ku[i] = 0
  197. Thu Dec 14 22:17:14 2017 us=694019 remote_cert_ku[i] = 0
  198. Thu Dec 14 22:17:14 2017 us=694035 remote_cert_ku[i] = 0
  199. Thu Dec 14 22:17:14 2017 us=694038 remote_cert_ku[i] = 0
  200. Thu Dec 14 22:17:14 2017 us=694041 remote_cert_ku[i] = 0
  201. Thu Dec 14 22:17:14 2017 us=694044 remote_cert_ku[i] = 0
  202. Thu Dec 14 22:17:14 2017 us=694047 remote_cert_ku[i] = 0
  203. Thu Dec 14 22:17:14 2017 us=694050 remote_cert_ku[i] = 0
  204. Thu Dec 14 22:17:14 2017 us=694053 remote_cert_ku[i] = 0
  205. Thu Dec 14 22:17:14 2017 us=694056 remote_cert_ku[i] = 0
  206. Thu Dec 14 22:17:14 2017 us=694058 remote_cert_eku = '[UNDEF]'
  207. Thu Dec 14 22:17:14 2017 us=694062 ssl_flags = 0
  208. Thu Dec 14 22:17:14 2017 us=694065 tls_timeout = 2
  209. Thu Dec 14 22:17:14 2017 us=694067 renegotiate_bytes = 0
  210. Thu Dec 14 22:17:14 2017 us=694070 renegotiate_packets = 0
  211. Thu Dec 14 22:17:14 2017 us=694073 renegotiate_seconds = 3600
  212. Thu Dec 14 22:17:14 2017 us=694076 handshake_window = 60
  213. Thu Dec 14 22:17:14 2017 us=694079 transition_window = 3600
  214. Thu Dec 14 22:17:14 2017 us=694083 single_session = DISABLED
  215. Thu Dec 14 22:17:14 2017 us=694086 push_peer_info = DISABLED
  216. Thu Dec 14 22:17:14 2017 us=694089 tls_exit = DISABLED
  217. Thu Dec 14 22:17:14 2017 us=694092 tls_auth_file = 'ta.key'
  218. Thu Dec 14 22:17:14 2017 us=694095 pkcs11_protected_authentication = DISABLED
  219. Thu Dec 14 22:17:14 2017 us=694098 pkcs11_protected_authentication = DISABLED
  220. Thu Dec 14 22:17:14 2017 us=694101 pkcs11_protected_authentication = DISABLED
  221. Thu Dec 14 22:17:14 2017 us=694104 pkcs11_protected_authentication = DISABLED
  222. Thu Dec 14 22:17:14 2017 us=694107 pkcs11_protected_authentication = DISABLED
  223. Thu Dec 14 22:17:14 2017 us=694110 pkcs11_protected_authentication = DISABLED
  224. Thu Dec 14 22:17:14 2017 us=694113 pkcs11_protected_authentication = DISABLED
  225. Thu Dec 14 22:17:14 2017 us=694129 pkcs11_protected_authentication = DISABLED
  226. Thu Dec 14 22:17:14 2017 us=694132 pkcs11_protected_authentication = DISABLED
  227. Thu Dec 14 22:17:14 2017 us=694135 pkcs11_protected_authentication = DISABLED
  228. Thu Dec 14 22:17:14 2017 us=694138 pkcs11_protected_authentication = DISABLED
  229. Thu Dec 14 22:17:14 2017 us=694142 pkcs11_protected_authentication = DISABLED
  230. Thu Dec 14 22:17:14 2017 us=694145 pkcs11_protected_authentication = DISABLED
  231. Thu Dec 14 22:17:14 2017 us=694148 pkcs11_protected_authentication = DISABLED
  232. Thu Dec 14 22:17:14 2017 us=694151 pkcs11_protected_authentication = DISABLED
  233. Thu Dec 14 22:17:14 2017 us=694154 pkcs11_protected_authentication = DISABLED
  234. Thu Dec 14 22:17:14 2017 us=694158 pkcs11_private_mode = 00000000
  235. Thu Dec 14 22:17:14 2017 us=694161 pkcs11_private_mode = 00000000
  236. Thu Dec 14 22:17:14 2017 us=694164 pkcs11_private_mode = 00000000
  237. Thu Dec 14 22:17:14 2017 us=694182 pkcs11_private_mode = 00000000
  238. Thu Dec 14 22:17:14 2017 us=694185 pkcs11_private_mode = 00000000
  239. Thu Dec 14 22:17:14 2017 us=694188 pkcs11_private_mode = 00000000
  240. Thu Dec 14 22:17:14 2017 us=694191 pkcs11_private_mode = 00000000
  241. Thu Dec 14 22:17:14 2017 us=694194 pkcs11_private_mode = 00000000
  242. Thu Dec 14 22:17:14 2017 us=694197 pkcs11_private_mode = 00000000
  243. Thu Dec 14 22:17:14 2017 us=694200 pkcs11_private_mode = 00000000
  244. Thu Dec 14 22:17:14 2017 us=694203 pkcs11_private_mode = 00000000
  245. Thu Dec 14 22:17:14 2017 us=694206 pkcs11_private_mode = 00000000
  246. Thu Dec 14 22:17:14 2017 us=694209 pkcs11_private_mode = 00000000
  247. Thu Dec 14 22:17:14 2017 us=694212 pkcs11_private_mode = 00000000
  248. Thu Dec 14 22:17:14 2017 us=694215 pkcs11_private_mode = 00000000
  249. Thu Dec 14 22:17:14 2017 us=694217 pkcs11_private_mode = 00000000
  250. Thu Dec 14 22:17:14 2017 us=694220 pkcs11_cert_private = DISABLED
  251. Thu Dec 14 22:17:14 2017 us=694223 pkcs11_cert_private = DISABLED
  252. Thu Dec 14 22:17:14 2017 us=694226 pkcs11_cert_private = DISABLED
  253. Thu Dec 14 22:17:14 2017 us=694229 pkcs11_cert_private = DISABLED
  254. Thu Dec 14 22:17:14 2017 us=694232 pkcs11_cert_private = DISABLED
  255. Thu Dec 14 22:17:14 2017 us=694235 pkcs11_cert_private = DISABLED
  256. Thu Dec 14 22:17:14 2017 us=694238 pkcs11_cert_private = DISABLED
  257. Thu Dec 14 22:17:14 2017 us=694241 pkcs11_cert_private = DISABLED
  258. Thu Dec 14 22:17:14 2017 us=694244 pkcs11_cert_private = DISABLED
  259. Thu Dec 14 22:17:14 2017 us=694247 pkcs11_cert_private = DISABLED
  260. Thu Dec 14 22:17:14 2017 us=694250 pkcs11_cert_private = DISABLED
  261. Thu Dec 14 22:17:14 2017 us=694252 pkcs11_cert_private = DISABLED
  262. Thu Dec 14 22:17:14 2017 us=694255 pkcs11_cert_private = DISABLED
  263. Thu Dec 14 22:17:14 2017 us=694258 pkcs11_cert_private = DISABLED
  264. Thu Dec 14 22:17:14 2017 us=694261 pkcs11_cert_private = DISABLED
  265. Thu Dec 14 22:17:14 2017 us=694278 pkcs11_cert_private = DISABLED
  266. Thu Dec 14 22:17:14 2017 us=694281 pkcs11_pin_cache_period = -1
  267. Thu Dec 14 22:17:14 2017 us=694284 pkcs11_id = '[UNDEF]'
  268. Thu Dec 14 22:17:14 2017 us=694287 pkcs11_id_management = DISABLED
  269. Thu Dec 14 22:17:14 2017 us=694291 server_network = 10.8.0.0
  270. Thu Dec 14 22:17:14 2017 us=694294 server_netmask = 255.255.255.0
  271. Thu Dec 14 22:17:14 2017 us=694298 server_network_ipv6 = ::
  272. Thu Dec 14 22:17:14 2017 us=694301 server_netbits_ipv6 = 0
  273. Thu Dec 14 22:17:14 2017 us=694305 server_bridge_ip = 0.0.0.0
  274. Thu Dec 14 22:17:14 2017 us=694308 server_bridge_netmask = 0.0.0.0
  275. Thu Dec 14 22:17:14 2017 us=694311 server_bridge_pool_start = 0.0.0.0
  276. Thu Dec 14 22:17:14 2017 us=694315 server_bridge_pool_end = 0.0.0.0
  277. Thu Dec 14 22:17:14 2017 us=694332 push_entry = 'redirect-gateway def1 bypass-dhcp'
  278. Thu Dec 14 22:17:14 2017 us=694335 push_entry = 'dhcp-option DNS 8.8.4.4'
  279. Thu Dec 14 22:17:14 2017 us=694338 push_entry = 'dhcp-option DNS 8.8.8.8'
  280. Thu Dec 14 22:17:14 2017 us=694341 push_entry = 'route 10.8.0.1'
  281. Thu Dec 14 22:17:14 2017 us=694344 push_entry = 'topology net30'
  282. Thu Dec 14 22:17:14 2017 us=694347 push_entry = 'ping 10'
  283. Thu Dec 14 22:17:14 2017 us=694350 push_entry = 'ping-restart 120'
  284. Thu Dec 14 22:17:14 2017 us=694353 ifconfig_pool_defined = ENABLED
  285. Thu Dec 14 22:17:14 2017 us=694356 ifconfig_pool_start = 10.8.0.4
  286. Thu Dec 14 22:17:14 2017 us=694360 ifconfig_pool_end = 10.8.0.251
  287. Thu Dec 14 22:17:14 2017 us=694363 ifconfig_pool_netmask = 0.0.0.0
  288. Thu Dec 14 22:17:14 2017 us=694366 ifconfig_pool_persist_filename = 'ipp.txt'
  289. Thu Dec 14 22:17:14 2017 us=694369 ifconfig_pool_persist_refresh_freq = 600
  290. Thu Dec 14 22:17:14 2017 us=694372 ifconfig_ipv6_pool_defined = DISABLED
  291. Thu Dec 14 22:17:14 2017 us=694376 ifconfig_ipv6_pool_base = ::
  292. Thu Dec 14 22:17:14 2017 us=694379 ifconfig_ipv6_pool_netbits = 0
  293. Thu Dec 14 22:17:14 2017 us=694382 n_bcast_buf = 256
  294. Thu Dec 14 22:17:14 2017 us=694385 tcp_queue_limit = 64
  295. Thu Dec 14 22:17:14 2017 us=694388 real_hash_size = 256
  296. Thu Dec 14 22:17:14 2017 us=694391 virtual_hash_size = 256
  297. Thu Dec 14 22:17:14 2017 us=694394 client_connect_script = '[UNDEF]'
  298. Thu Dec 14 22:17:14 2017 us=694399 learn_address_script = '[UNDEF]'
  299. Thu Dec 14 22:17:14 2017 us=694402 client_disconnect_script = '[UNDEF]'
  300. Thu Dec 14 22:17:14 2017 us=694405 client_config_dir = '[UNDEF]'
  301. Thu Dec 14 22:17:14 2017 us=694408 ccd_exclusive = DISABLED
  302. Thu Dec 14 22:17:14 2017 us=694411 tmp_dir = '/tmp'
  303. Thu Dec 14 22:17:14 2017 us=694428 push_ifconfig_defined = DISABLED
  304. Thu Dec 14 22:17:14 2017 us=694431 push_ifconfig_local = 0.0.0.0
  305. Thu Dec 14 22:17:14 2017 us=694434 push_ifconfig_remote_netmask = 0.0.0.0
  306. Thu Dec 14 22:17:14 2017 us=694437 push_ifconfig_ipv6_defined = DISABLED
  307. Thu Dec 14 22:17:14 2017 us=694441 push_ifconfig_ipv6_local = ::/0
  308. Thu Dec 14 22:17:14 2017 us=694444 push_ifconfig_ipv6_remote = ::
  309. Thu Dec 14 22:17:14 2017 us=694447 enable_c2c = DISABLED
  310. Thu Dec 14 22:17:14 2017 us=694450 duplicate_cn = DISABLED
  311. Thu Dec 14 22:17:14 2017 us=694453 cf_max = 0
  312. Thu Dec 14 22:17:14 2017 us=694456 cf_per = 0
  313. Thu Dec 14 22:17:14 2017 us=694459 max_clients = 1024
  314. Thu Dec 14 22:17:14 2017 us=694462 max_routes_per_client = 256
  315. Thu Dec 14 22:17:14 2017 us=694465 auth_user_pass_verify_script = '[UNDEF]'
  316. Thu Dec 14 22:17:14 2017 us=694483 auth_user_pass_verify_script_via_file = DISABLED
  317. Thu Dec 14 22:17:14 2017 us=694486 port_share_host = '[UNDEF]'
  318. Thu Dec 14 22:17:14 2017 us=694489 port_share_port = 0
  319. Thu Dec 14 22:17:14 2017 us=694492 client = DISABLED
  320. Thu Dec 14 22:17:14 2017 us=694495 pull = DISABLED
  321. Thu Dec 14 22:17:14 2017 us=694498 auth_user_pass_file = '[UNDEF]'
  322. Thu Dec 14 22:17:14 2017 us=694502 OpenVPN 2.3.10 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jun 22 2017
  323. Thu Dec 14 22:17:14 2017 us=694508 library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08
  324. Thu Dec 14 22:17:14 2017 us=695155 Diffie-Hellman initialized with 2048 bit key
  325. Thu Dec 14 22:17:14 2017 us=695419 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
  326. Thu Dec 14 22:17:14 2017 us=695433 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
  327. Thu Dec 14 22:17:14 2017 us=695438 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
  328. Thu Dec 14 22:17:14 2017 us=695445 TLS-Auth MTU parms [ L:1570 D:1172 EF:78 EB:0 ET:0 EL:3 ]
  329. Thu Dec 14 22:17:14 2017 us=695452 Socket Buffers: R=[212992->212992] S=[212992->212992]
  330. Thu Dec 14 22:17:14 2017 us=695509 ROUTE_GATEWAY 194.1.247.193/255.255.255.224 IFACE=ens4 HWADDR=ca:bf:e3:82:ab:73
  331. Thu Dec 14 22:17:14 2017 us=695686 TUN/TAP device tun0 opened
  332. Thu Dec 14 22:17:14 2017 us=695695 TUN/TAP TX queue length set to 100
  333. Thu Dec 14 22:17:14 2017 us=695720 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
  334. Thu Dec 14 22:17:14 2017 us=695731 /sbin/ip link set dev tun0 up mtu 1500
  335. Thu Dec 14 22:17:14 2017 us=696923 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2
  336. Thu Dec 14 22:17:14 2017 us=698214 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2
  337. Thu Dec 14 22:17:14 2017 us=698877 Data Channel MTU parms [ L:1570 D:1450 EF:70 EB:143 ET:0 EL:3 AF:3/1 ]
  338. Thu Dec 14 22:17:14 2017 us=699197 GID set to nogroup
  339. Thu Dec 14 22:17:14 2017 us=699208 UID set to nobody
  340. Thu Dec 14 22:17:14 2017 us=699214 UDPv4 link local (bound): [undef]
  341. Thu Dec 14 22:17:14 2017 us=699231 UDPv4 link remote: [undef]
  342. Thu Dec 14 22:17:14 2017 us=699237 MULTI: multi_init called, r=256 v=256
  343. Thu Dec 14 22:17:14 2017 us=699251 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
  344. Thu Dec 14 22:17:14 2017 us=699258 ifconfig_pool_read(), in='client2,10.8.0.4', TODO: IPv6
  345. Thu Dec 14 22:17:14 2017 us=699263 succeeded -> ifconfig_pool_set()
  346. Thu Dec 14 22:17:14 2017 us=699267 IFCONFIG POOL LIST
  347. Thu Dec 14 22:17:14 2017 us=699285 client2,10.8.0.4
  348. Thu Dec 14 22:17:14 2017 us=699298 Initialization Sequence Completed
  349. Thu Dec 14 22:22:11 2017 us=935169 MULTI: multi_create_instance called
  350. Thu Dec 14 22:22:11 2017 us=935217 84.217.125.43:51112 Re-using SSL/TLS context
  351. Thu Dec 14 22:22:11 2017 us=935252 84.217.125.43:51112 LZO compression initialized
  352. Thu Dec 14 22:22:11 2017 us=935320 84.217.125.43:51112 Control Channel MTU parms [ L:1570 D:1172 EF:78 EB:0 ET:0 EL:3 ]
  353. Thu Dec 14 22:22:11 2017 us=935327 84.217.125.43:51112 Data Channel MTU parms [ L:1570 D:1450 EF:70 EB:143 ET:0 EL:3 AF:3/1 ]
  354. Thu Dec 14 22:22:11 2017 us=935339 84.217.125.43:51112 Local Options String: 'V4,dev-type tun,link-mtu 1570,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-128-CBC,auth SHA256,keysize 128,tls-auth,key-method 2,tls-server'
  355. Thu Dec 14 22:22:11 2017 us=935343 84.217.125.43:51112 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1570,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-128-CBC,auth SHA256,keysize 128,tls-auth,key-method 2,tls-client'
  356. Thu Dec 14 22:22:11 2017 us=935351 84.217.125.43:51112 Local Options hash (VER=V4): '1089825c'
  357. Thu Dec 14 22:22:11 2017 us=935356 84.217.125.43:51112 Expected Remote Options hash (VER=V4): '6907942a'
  358. Thu Dec 14 22:22:11 2017 us=935384 84.217.125.43:51112 TLS: Initial packet from [AF_INET]84.217.125.43:51112, sid=09431be2 04e4be84
  359. Thu Dec 14 22:22:12 2017 us=97602 84.217.125.43:51112 CRL CHECK OK: C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=Fort-Pond CA, name=server, emailAddress=myuser@myservername.net
  360. Thu Dec 14 22:22:12 2017 us=97648 84.217.125.43:51112 VERIFY OK: depth=1, C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=Fort-Pond CA, name=server, emailAddress=myuser@myservername.net
  361. Thu Dec 14 22:22:12 2017 us=97788 84.217.125.43:51112 CRL CHECK OK: C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=client2, name=server, emailAddress=myuser@myservername.net
  362. Thu Dec 14 22:22:12 2017 us=97799 84.217.125.43:51112 VERIFY OK: depth=0, C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=client2, name=server, emailAddress=myuser@myservername.net
  363. Thu Dec 14 22:22:12 2017 us=105179 84.217.125.43:51112 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  364. Thu Dec 14 22:22:12 2017 us=105194 84.217.125.43:51112 Data Channel Encrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
  365. Thu Dec 14 22:22:12 2017 us=105199 84.217.125.43:51112 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  366. Thu Dec 14 22:22:12 2017 us=105204 84.217.125.43:51112 Data Channel Decrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
  367. Thu Dec 14 22:22:12 2017 us=126639 84.217.125.43:51112 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
  368. Thu Dec 14 22:22:12 2017 us=126673 84.217.125.43:51112 [client2] Peer Connection Initiated with [AF_INET]84.217.125.43:51112
  369. Thu Dec 14 22:22:12 2017 us=126685 client2/84.217.125.43:51112 MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
  370. Thu Dec 14 22:22:12 2017 us=126704 client2/84.217.125.43:51112 MULTI: Learn: 10.8.0.6 -> client2/84.217.125.43:51112
  371. Thu Dec 14 22:22:12 2017 us=126709 client2/84.217.125.43:51112 MULTI: primary virtual IP for client2/84.217.125.43:51112: 10.8.0.6
  372. Thu Dec 14 22:22:14 2017 us=489580 client2/84.217.125.43:51112 PUSH: Received control message: 'PUSH_REQUEST'
  373. Thu Dec 14 22:22:14 2017 us=489609 client2/84.217.125.43:51112 send_push_reply(): safe_cap=940
  374. Thu Dec 14 22:22:14 2017 us=489620 client2/84.217.125.43:51112 SENT CONTROL [client2]: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.4.4,dhcp-option DNS 8.8.8.8,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' (status=1)
  375.  
  376. ------------------------------------------
  377. /etc/openvpn/openvpn-status.log
  378. ------------------------------------------
  379. OpenVPN CLIENT LIST
  380. Updated,Thu Dec 14 22:23:24 2017
  381. Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
  382. client2,84.217.125.43:51112,137526,218179,Thu Dec 14 22:22:11 2017
  383. ROUTING TABLE
  384. Virtual Address,Common Name,Real Address,Last Ref
  385. 10.8.0.6,client2,84.217.125.43:51112,Thu Dec 14 22:23:21 2017
  386. GLOBAL STATS
  387. Max bcast/mcast queue length,0
  388. END
  389.  
  390. ------------------------------------------
  391. iptables -S
  392. ------------------------------------------
  393. -P INPUT DROP
  394. -P FORWARD DROP
  395. -P OUTPUT DROP
  396. -A INPUT -i lo -j ACCEPT
  397. -A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  398. -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
  399. -A INPUT -i ens4 -p udp -m udp --sport 53 -j ACCEPT
  400. -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
  401. -A INPUT -m conntrack --ctstate INVALID -j DROP
  402. -A INPUT -p tcp -m tcp --dport 22 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  403. -A INPUT -p tcp -m tcp --sport 22 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  404. -A INPUT -p tcp -m tcp --dport 5000 -j ACCEPT
  405. -A INPUT -p udp -m udp --dport 1194 -j ACCEPT
  406. -A INPUT -p tcp -m tcp --dport 80 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  407. -A INPUT -p tcp -m tcp --dport 8080 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  408. -A INPUT -p tcp -m tcp --dport 80 -m limit --limit 25/min --limit-burst 100 -j ACCEPT
  409. -A INPUT -p tcp -m tcp --dport 25 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  410. -A INPUT -p tcp -m tcp --dport 143 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  411. -A INPUT -p tcp -m tcp --dport 993 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  412. -A INPUT -p tcp -m tcp --dport 110 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  413. -A INPUT -p tcp -m tcp --dport 995 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  414. -A INPUT -p tcp -m tcp --sport 443 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  415. -A INPUT -p tcp -m tcp --dport 8000 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  416. -A INPUT -i tun+ -j ACCEPT
  417. -A INPUT -i ens4 -p udp -m state --state NEW -m udp --dport 1194 -j ACCEPT
  418. -A FORWARD -i tun+ -j ACCEPT
  419. -A FORWARD -i tun+ -o ens4 -m state --state RELATED,ESTABLISHED -j ACCEPT
  420. -A FORWARD -i ens4 -o tun+ -m state --state RELATED,ESTABLISHED -j ACCEPT
  421. -A OUTPUT -o lo -j ACCEPT
  422. -A OUTPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
  423. -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
  424. -A OUTPUT -o ens4 -p udp -m udp --dport 53 -j ACCEPT
  425. -A OUTPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
  426. -A OUTPUT -p tcp -m tcp --sport 22 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  427. -A OUTPUT -p tcp -m tcp --dport 22 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  428. -A OUTPUT -p tcp -m tcp --sport 80 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  429. -A OUTPUT -p tcp -m tcp --sport 8080 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  430. -A OUTPUT -p tcp -m tcp --dport 25 -j REJECT --reject-with icmp-port-unreachable
  431. -A OUTPUT -p tcp -m tcp --sport 25 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  432. -A OUTPUT -p tcp -m tcp --sport 143 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  433. -A OUTPUT -p tcp -m tcp --sport 993 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  434. -A OUTPUT -p tcp -m tcp --sport 110 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  435. -A OUTPUT -p tcp -m tcp --sport 995 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  436. -A OUTPUT -p tcp -m tcp --dport 6667 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  437. -A OUTPUT -p tcp -m tcp --dport 443 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
  438. -A OUTPUT -p tcp -m tcp --sport 8000 -m conntrack --ctstate ESTABLISHED -j ACCEPT
  439. -A OUTPUT -o tun+ -j ACCEPT
  440.  
  441.  
  442. *Tunnelblick: OS X 10.13.1; Tunnelblick 3.7.4b (build 4921); prior version 3.7.1b (build 4813); Admin user
  443. git commit 88763bb2b2bfcc7debb3ddc78cdf5a350722717c
  444.  
  445.  
  446. Configuration client2
  447.  
  448. "Sanitized" condensed configuration file for /Library/Application Support/Tunnelblick/Shared/client2.tblk:
  449.  
  450. client
  451. dev tun
  452. proto udp
  453. remote www.myservername.net 1194
  454. resolv-retry infinite
  455. nobind
  456. user nobody
  457. group nogroup
  458. persist-key
  459. persist-tun
  460. remote-cert-tls server
  461. cipher AES-128-CBC
  462. auth SHA256
  463. comp-lzo
  464. verb 3
  465. key-direction 1
  466. <ca>
  467. [Security-related line(s) omitted]
  468. </ca>
  469. <cert>
  470. [Security-related line(s) omitted]
  471. </cert>
  472. <key>
  473. [Security-related line(s) omitted]
  474. </key>
  475. <tls-auth>
  476. [Security-related line(s) omitted]
  477. </tls-auth>
  478.  
  479.  
  480. ================================================================================
  481.  
  482. Non-Apple kexts that are loaded:
  483.  
  484. Index Refs Address Size Wired Name (Version) UUID <Linked Against>
  485. 22 0 0xffffff7f81007000 0xe000 0xe000 com.3dconnexion.driver (10.4.2) D1FC94C5-936D-3185-BECD-5AEA40D01AEC <21 20 16 5 4 3>
  486. 157 3 0xffffff7f83287000 0x61000 0x61000 org.virtualbox.kext.VBoxDrv (5.1.14) 08D6FFCF-2BDF-305C-8824-89E69602C30D <7 5 4 3 1>
  487. 165 0 0xffffff7f832e8000 0x8000 0x8000 org.virtualbox.kext.VBoxUSB (5.1.14) BF0B350D-C893-37DF-82F0-BE86ABA49D26 <164 157 20 7 5 4 3 1>
  488. 166 0 0xffffff7f832f0000 0x5000 0x5000 org.virtualbox.kext.VBoxNetFlt (5.1.14) 0291FFCC-8E46-3FFD-B674-BFA42D4E67E4 <157 7 5 4 3 1>
  489. 167 0 0xffffff7f832f5000 0x6000 0x6000 org.virtualbox.kext.VBoxNetAdp (5.1.14) EFBEE858-A3D7-3C61-86C0-F6AFDCA48229 <157 5 4 1>
  490.  
  491. ================================================================================
  492.  
  493. There are no unusual files in client2.tblk
  494.  
  495. ================================================================================
  496.  
  497. Configuration preferences:
  498.  
  499. useDNS = 1
  500. -resetPrimaryInterfaceAfterDisconnect = 1
  501. -routeAllTrafficThroughVpn = 1
  502. -useRouteUpInsteadOfUp = 1
  503. -useDownRootPlugin = 1
  504. -loggingLevel = 3
  505. -lastConnectionSucceeded = 1
  506. -prependDomainNameToSearchDomains = 0
  507.  
  508. ================================================================================
  509.  
  510. Wildcard preferences:
  511.  
  512.  
  513. ================================================================================
  514.  
  515. Program preferences:
  516.  
  517. launchAtNextLogin = 1
  518. notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
  519. tunnelblickVersionHistory = (
  520. "3.7.4b (build 4921)",
  521. "3.7.1b (build 4813)",
  522. "3.7.1a (build 4812)",
  523. "3.7.0 (build 4790)"
  524. )
  525. lastLaunchTime = 534974552.135567
  526. lastLanguageAtLaunchWasRTL = 0
  527. connectionWindowDisplayCriteria = showWhenConnecting
  528. maxLogDisplaySize = 102400
  529. lastConnectedDisplayName = client2
  530. keyboardShortcutIndex = 1
  531. updateCheckAutomatically = 1
  532. NSWindow Frame SettingsSheetWindow = 429 192 829 524 0 0 1280 777
  533. NSWindow Frame ConnectingWindow = 445 442 389 187 0 0 1280 777
  534. NSWindow Frame SUStatusFrame = 786 359 400 129 0 0 1280 777
  535. NSWindow Frame SUUpdateAlert = 330 288 620 392 0 0 1280 777
  536. detailsWindowFrameVersion = 4921
  537. detailsWindowFrame = {{301, 197}, {920, 468}}
  538. detailsWindowLeftFrame = {{0, 0}, {165, 350}}
  539. detailsWindowViewIndex = 0
  540. detailsWindowConfigurationsTabIdentifier = log
  541. leftNavSelectedDisplayName = client2
  542. AdvancedWindowTabIdentifier = connectingAndDisconnecting
  543. haveDealtWithOldTunTapPreferences = 1
  544. haveDealtWithOldLoginItem = 1
  545. SUEnableAutomaticChecks = 1
  546. SUScheduledCheckInterval = 86400
  547. SUSendProfileInfo = 1
  548. SULastCheckTime = 2017-12-14 20:02:35 +0000
  549. SULastProfileSubmissionDate = 2017-12-11 22:34:33 +0000
  550. SUHasLaunchedBefore = 1
  551. WebKitDefaultFontSize = 16
  552. WebKitStandardFont = Times
  553. askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
  554. haveDealtWithSparkle1dot5b6 = 1
  555. updateSendProfileInfo = 1
  556.  
  557. ================================================================================
  558.  
  559. Tunnelblick Log:
  560.  
  561. *Tunnelblick: OS X 10.13.1; Tunnelblick 3.7.4b (build 4921); prior version 3.7.1b (build 4813)
  562. 2017-12-14 22:22:11 *Tunnelblick: Attempting connection with client2; Set nameserver = 771; monitoring connection
  563. 2017-12-14 22:22:11 *Tunnelblick: openvpnstart start client2.tblk 1337 771 0 3 0 1099568 -ptADGNWradsgnw 2.3.18-openssl-1.0.2n
  564. 2017-12-14 22:22:11 *Tunnelblick: openvpnstart log:
  565. Warning: Tunnelblick is using 'openvpn-down-root.so', so the route-pre-down script will not be used. You can override this by providing a custom route-pre-down script (which may be a copy of Tunnelblick's standard route-pre-down script) in a Tunnelblick VPN Configuration. However, that script will not be executed as root unless the 'user' and 'group' options are removed from the OpenVPN configuration file. If the 'user' and 'group' options are removed, then you don't need to use a custom route-pre-down script.OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
  566.  
  567. /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn
  568. --daemon
  569. --log
  570. /Library/Application Support/Tunnelblick/Logs/-SLibrary-SApplication Support-STunnelblick-SShared-Sclient2.tblk-SContents-SResources-Sconfig.ovpn.771_0_3_0_1099568.1337.openvpn.log
  571. --cd
  572. /Library/Application Support/Tunnelblick/Shared/client2.tblk/Contents/Resources
  573. --setenv
  574. IV_GUI_VER
  575. "net.tunnelblick.tunnelblick 4921 3.7.4b (build 4921)"
  576. --verb
  577. 3
  578. --config
  579. /Library/Application Support/Tunnelblick/Shared/client2.tblk/Contents/Resources/config.ovpn
  580. --verb
  581. 3
  582. --cd
  583. /Library/Application Support/Tunnelblick/Shared/client2.tblk/Contents/Resources
  584. --management
  585. 127.0.0.1
  586. 1337
  587. --management-query-passwords
  588. --management-hold
  589. --redirect-gateway
  590. def1
  591. --script-security
  592. 2
  593. --route-up
  594. /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -r -w -ptADGNWradsgnw
  595. --plugin
  596. /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so
  597. /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -r -w -ptADGNWradsgnw
  598.  
  599. 2017-12-14 22:22:11 OpenVPN 2.3.18 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Dec 7 2017
  600. 2017-12-14 22:22:11 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.10
  601. 2017-12-14 22:22:11 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
  602. 2017-12-14 22:22:11 Need hold release from management interface, waiting...
  603. 2017-12-14 22:22:11 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
  604. 2017-12-14 22:22:11 MANAGEMENT: CMD 'pid'
  605. 2017-12-14 22:22:11 MANAGEMENT: CMD 'state on'
  606. 2017-12-14 22:22:11 MANAGEMENT: CMD 'state'
  607. 2017-12-14 22:22:11 MANAGEMENT: CMD 'bytecount 1'
  608. 2017-12-14 22:22:11 MANAGEMENT: CMD 'hold release'
  609. 2017-12-14 22:22:11 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
  610. 2017-12-14 22:22:11 PLUGIN_INIT: POST /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so '[/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so] [/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh] [-9] [-d] [-f] [-m] [-r] [-w] [-ptADGNWradsgnw]' intercepted=PLUGIN_UP|PLUGIN_DOWN
  611. 2017-12-14 22:22:11 *Tunnelblick: openvpnstart starting OpenVPN
  612. 2017-12-14 22:22:11 *Tunnelblick: Established communication with OpenVPN
  613. 2017-12-14 22:22:11 Control Channel Authentication: tls-auth using INLINE static key file
  614. 2017-12-14 22:22:11 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
  615. 2017-12-14 22:22:11 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
  616. 2017-12-14 22:22:11 Socket Buffers: R=[196724->196724] S=[9216->9216]
  617. 2017-12-14 22:22:11 MANAGEMENT: >STATE:1513286531,RESOLVE,,,
  618. 2017-12-14 22:22:11 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
  619. 2017-12-14 22:22:11 UDPv4 link local: [undef]
  620. 2017-12-14 22:22:11 UDPv4 link remote: [AF_INET]194.1.247.196:1194
  621. 2017-12-14 22:22:11 MANAGEMENT: >STATE:1513286531,WAIT,,,
  622. 2017-12-14 22:22:11 MANAGEMENT: >STATE:1513286531,AUTH,,,
  623. 2017-12-14 22:22:11 TLS: Initial packet from [AF_INET]194.1.247.196:1194, sid=7ce6612a f17f242f
  624. 2017-12-14 22:22:11 VERIFY OK: depth=1, C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=Fort-Pond CA, name=server, emailAddress=myuser@myservername.net
  625. 2017-12-14 22:22:11 Validating certificate key usage
  626. 2017-12-14 22:22:11 ++ Certificate has key usage 00a0, expects 00a0
  627. 2017-12-14 22:22:11 VERIFY KU OK
  628. 2017-12-14 22:22:11 Validating certificate extended key usage
  629. 2017-12-14 22:22:11 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
  630. 2017-12-14 22:22:12 VERIFY EKU OK
  631. 2017-12-14 22:22:12 VERIFY OK: depth=0, C=SE, ST=SV, L=Stockholm, O=Fort-Pond, OU=Community, CN=server, name=server, emailAddress=myuser@myservername.net
  632. 2017-12-14 22:22:12 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  633. 2017-12-14 22:22:12 Data Channel Encrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
  634. 2017-12-14 22:22:12 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  635. 2017-12-14 22:22:12 Data Channel Decrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
  636. 2017-12-14 22:22:12 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
  637. 2017-12-14 22:22:12 [server] Peer Connection Initiated with [AF_INET]194.1.247.196:1194
  638. 2017-12-14 22:22:13 MANAGEMENT: >STATE:1513286533,GET_CONFIG,,,
  639. 2017-12-14 22:22:14 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
  640. 2017-12-14 22:22:14 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.4.4,dhcp-option DNS 8.8.8.8,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5'
  641. 2017-12-14 22:22:14 OPTIONS IMPORT: timers and/or timeouts modified
  642. 2017-12-14 22:22:14 OPTIONS IMPORT: --ifconfig/up options modified
  643. 2017-12-14 22:22:14 OPTIONS IMPORT: route options modified
  644. 2017-12-14 22:22:14 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
  645. 2017-12-14 22:22:14 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
  646. 2017-12-14 22:22:14 Opened utun device utun1
  647. 2017-12-14 22:22:14 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
  648. 2017-12-14 22:22:14 MANAGEMENT: >STATE:1513286534,ASSIGN_IP,,10.8.0.6,
  649. 2017-12-14 22:22:14 /sbin/ifconfig utun1 delete
  650. ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
  651. 2017-12-14 22:22:14 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
  652. 2017-12-14 22:22:14 /sbin/ifconfig utun1 10.8.0.6 10.8.0.5 mtu 1500 netmask 255.255.255.255 up
  653. 2017-12-14 22:22:14 PLUGIN_CALL: POST /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so/PLUGIN_UP status=0
  654. 2017-12-14 22:22:14 /sbin/route add -net 194.1.247.196 192.168.10.1 255.255.255.255
  655. route: writing to routing socket: File exists
  656. add net 194.1.247.196: gateway 192.168.10.1: File exists
  657. 2017-12-14 22:22:14 /sbin/route add -net 0.0.0.0 10.8.0.5 128.0.0.0
  658. add net 0.0.0.0: gateway 10.8.0.5
  659. 2017-12-14 22:22:14 /sbin/route add -net 128.0.0.0 10.8.0.5 128.0.0.0
  660. add net 128.0.0.0: gateway 10.8.0.5
  661. 2017-12-14 22:22:14 MANAGEMENT: >STATE:1513286534,ADD_ROUTES,,,
  662. 2017-12-14 22:22:14 /sbin/route add -net 10.8.0.1 10.8.0.5 255.255.255.255
  663. add net 10.8.0.1: gateway 10.8.0.5
  664. **********************************************
  665. Start of output from client.up.tunnelblick.sh
  666. Disabled IPv6 for 'Ethernet'
  667. Disabled IPv6 for 'FireWire'
  668. Disabled IPv6 for 'Wi-Fi'
  669. Disabled IPv6 for 'iPhone USB'
  670. Disabled IPv6 for 'Bluetooth PAN'
  671. Retrieved from OpenVPN: name server(s) [ 8.8.4.4 8.8.8.8 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
  672. Not aggregating ServerAddresses because running on OS X 10.6 or higher
  673. Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
  674. Saved the DNS and SMB configurations so they can be restored
  675. Changed DNS ServerAddresses setting from '192.168.10.1' to '8.8.4.4 8.8.8.8'
  676. Changed DNS SearchDomains setting from '' to 'openvpn'
  677. Changed DNS DomainName setting from 'lan' to 'openvpn'
  678. Did not change SMB NetBIOSName setting of ''
  679. Did not change SMB Workgroup setting of 'pondlife'
  680. Did not change SMB WINSAddresses setting of ''
  681. DNS servers '8.8.4.4 8.8.8.8' will be used for DNS queries when the VPN is active
  682. The DNS servers include only free public DNS servers known to Tunnelblick.
  683. Flushed the DNS cache via dscacheutil
  684. /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
  685. Notified mDNSResponder that the DNS cache was flushed
  686. Setting up to monitor system configuration with process-network-changes
  687. End of output from client.up.tunnelblick.sh
  688. **********************************************
  689. 2017-12-14 22:22:19 *Tunnelblick: No 'connected.sh' script to execute
  690. 2017-12-14 22:22:19 GID set to nogroup
  691. 2017-12-14 22:22:19 UID set to nobody
  692. 2017-12-14 22:22:19 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
  693. 2017-12-14 22:22:19 Initialization Sequence Completed
  694. 2017-12-14 22:22:19 MANAGEMENT: >STATE:1513286539,CONNECTED,SUCCESS,10.8.0.6,194.1.247.196
  695. 2017-12-14 22:22:23 *Tunnelblick process-network-changes: A system configuration change was ignored
  696. 2017-12-14 22:22:59 *Tunnelblick: After 30.0 seconds, gave up trying to fetch IP address information using the ipInfo host's name after connecting.
  697. 2017-12-14 22:23:00 *Tunnelblick: fetched IP address information using the ipInfo host's IP address after connecting.
  698. 2017-12-14 22:23:11 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
  699. 2017-12-14 22:23:12 *Tunnelblick: No 'pre-disconnect.sh' script to execute
  700. 2017-12-14 22:23:12 *Tunnelblick: Disconnecting using 'kill'
  701. 2017-12-14 22:23:12 event_wait : Interrupted system call (code=4)
  702. 2017-12-14 22:23:12 /sbin/route delete -net 10.8.0.1 10.8.0.5 255.255.255.255
  703. route: must be root to alter routing table
  704. 2017-12-14 22:23:12 ERROR: OS X route delete command failed: external program exited with error status: 77
  705. 2017-12-14 22:23:12 /sbin/route delete -net 194.1.247.196 192.168.10.1 255.255.255.255
  706. route: must be root to alter routing table
  707. 2017-12-14 22:23:12 ERROR: OS X route delete command failed: external program exited with error status: 77
  708. 2017-12-14 22:23:12 /sbin/route delete -net 0.0.0.0 10.8.0.5 128.0.0.0
  709. route: must be root to alter routing table
  710. 2017-12-14 22:23:12 ERROR: OS X route delete command failed: external program exited with error status: 77
  711. 2017-12-14 22:23:12 /sbin/route delete -net 128.0.0.0 10.8.0.5 128.0.0.0
  712. route: must be root to alter routing table
  713. 2017-12-14 22:23:12 ERROR: OS X route delete command failed: external program exited with error status: 77
  714. 2017-12-14 22:23:12 Closing TUN/TAP interface
  715. 2017-12-14 22:23:16 PLUGIN_CALL: POST /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so/PLUGIN_DOWN status=0
  716. 2017-12-14 22:23:16 PLUGIN_CLOSE: /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.18-openssl-1.0.2n/openvpn-down-root.so
  717. 2017-12-14 22:23:16 SIGTERM[hard,] received, process exiting
  718. 2017-12-14 22:23:16 MANAGEMENT: >STATE:1513286596,EXITING,SIGTERM,,
  719. 2017-12-14 22:23:17 *Tunnelblick: No 'post-disconnect.sh' script to execute
  720. 2017-12-14 22:23:17 *Tunnelblick: Expected disconnection occurred.
  721.  
  722. ================================================================================
  723.  
  724. "Sanitized" full configuration file
  725.  
  726. ##############################################
  727. # Sample client-side OpenVPN 2.0 config file #
  728. # for connecting to multi-client server. #
  729. # #
  730. # This configuration can be used by multiple #
  731. # clients, however each client should have #
  732. # its own cert and key files. #
  733. # #
  734. # On Windows, you might want to rename this #
  735. # file so it has a .ovpn extension #
  736. ##############################################
  737.  
  738. # Specify that we are a client and that we
  739. # will be pulling certain config file directives
  740. # from the server.
  741. client
  742.  
  743. # Use the same setting as you are using on
  744. # the server.
  745. # On most systems, the VPN will not function
  746. # unless you partially or fully disable
  747. # the firewall for the TUN/TAP interface.
  748. ;dev tap
  749. dev tun
  750.  
  751. # Windows needs the TAP-Win32 adapter name
  752. # from the Network Connections panel
  753. # if you have more than one. On XP SP2,
  754. # you may need to disable the firewall
  755. # for the TAP adapter.
  756. ;dev-node MyTap
  757.  
  758. # Are we connecting to a TCP or
  759. # UDP server? Use the same setting as
  760. # on the server.
  761. ;proto tcp
  762. proto udp
  763.  
  764. # The hostname/IP and port of the server.
  765. # You can have multiple remote entries
  766. # to load balance between the servers.
  767. remote www.myservername.net 1194
  768. ;remote my-server-2 1194
  769.  
  770. # Choose a random host from the remote
  771. # list for load-balancing. Otherwise
  772. # try hosts in the order specified.
  773. ;remote-random
  774.  
  775. # Keep trying indefinitely to resolve the
  776. # host name of the OpenVPN server. Very useful
  777. # on machines which are not permanently connected
  778. # to the internet such as laptops.
  779. resolv-retry infinite
  780.  
  781. # Most clients don't need to bind to
  782. # a specific local port number.
  783. nobind
  784.  
  785. # Downgrade privileges after initialization (non-Windows only)
  786. user nobody
  787. group nogroup
  788.  
  789. # Try to preserve some state across restarts.
  790. persist-key
  791. persist-tun
  792.  
  793. # If you are connecting through an
  794. # HTTP proxy to reach the actual OpenVPN
  795. # server, put the proxy server/IP and
  796. # port number here. See the man page
  797. # if your proxy server requires
  798. # authentication.
  799. ;http-proxy-retry # retry on connection failures
  800. ;http-proxy [proxy server] [proxy port #]
  801.  
  802. # Wireless networks often produce a lot
  803. # of duplicate packets. Set this flag
  804. # to silence duplicate packet warnings.
  805. ;mute-replay-warnings
  806.  
  807. # SSL/TLS parms.
  808. # See the server config file for more
  809. # description. It's best to use
  810. # a separate .crt/.key file pair
  811. # for each client. A single ca
  812. # file can be used for all clients.
  813. #ca ca.crt
  814. #cert client.crt
  815. #key client.key
  816.  
  817. # Verify server certificate by checking that the
  818. # certicate has the correct key usage set.
  819. # This is an important precaution to protect against
  820. # a potential attack discussed here:
  821. # http://openvpn.net/howto.html#mitm
  822. #
  823. # To use this feature, you will need to generate
  824. # your server certificates with the keyUsage set to
  825. # digitalSignature, keyEncipherment
  826. # and the extendedKeyUsage to
  827. # serverAuth
  828. # EasyRSA can do this for you.
  829. remote-cert-tls server
  830.  
  831. # If a tls-auth key is used on the server
  832. # then every client must also have the key.
  833. ;tls-auth ta.key 1
  834.  
  835. # Select a cryptographic cipher.
  836. # If the cipher option is used on the server
  837. # then you must also specify it here.
  838. cipher AES-128-CBC
  839. # Added this myself since i am note sure of need of tls or not
  840. auth SHA256
  841.  
  842. # Enable compression on the VPN link.
  843. # Don't enable this unless it is also
  844. # enabled in the server config file.
  845. comp-lzo
  846.  
  847. # Set log file verbosity.
  848. verb 3
  849.  
  850. # Silence repeating messages
  851. ;mute 20
  852.  
  853. key-direction 1
  854.  
  855. <ca>
  856. [Security-related line(s) omitted]
  857. </ca>
  858. <cert>
  859. [Security-related line(s) omitted]
  860. </cert>
  861. <key>
  862. [Security-related line(s) omitted]
  863. </key>
  864. <tls-auth>
  865. [Security-related line(s) omitted]
  866. </tls-auth>
  867.  
  868.  
  869.  
  870. ================================================================================
  871.  
  872. ifconfig output:
  873.  
  874. lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
  875. options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
  876. inet 127.0.0.1 netmask 0xff000000
  877. inet6 ::1 prefixlen 128
  878. inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
  879. inet 127.51.68.120 netmask 0xff000000
  880. nd6 options=201<PERFORMNUD,DAD>
  881. gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
  882. stf0: flags=0<> mtu 1280
  883. EHC36: flags=0<> mtu 0
  884. OHC6: flags=0<> mtu 0
  885. EHC38: flags=0<> mtu 0
  886. OHC4: flags=0<> mtu 0
  887. en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
  888. options=b<RXCSUM,TXCSUM,VLAN_HWTAGGING>
  889. ether c8:bc:c8:91:36:3c
  890. nd6 options=201<PERFORMNUD,DAD>
  891. media: autoselect (none)
  892. status: inactive
  893. en1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
  894. ether 78:ca:39:bb:3e:b1
  895. inet6 fe80::8cc:c83b:5031:9f85%en1 prefixlen 64 secured scopeid 0x9
  896. inet 192.168.10.235 netmask 0xffffff00 broadcast 192.168.10.255
  897. nd6 options=201<PERFORMNUD,DAD>
  898. media: autoselect
  899. status: active
  900. p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
  901. ether 0a:ca:39:bb:3e:b1
  902. media: autoselect
  903. status: inactive
  904. fw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 4078
  905. lladdr 78:ca:39:ff:fe:28:67:d4
  906. nd6 options=201<PERFORMNUD,DAD>
  907. media: autoselect <full-duplex>
  908. status: inactive
  909. utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
  910. options=6403<RXCSUM,TXCSUM,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
  911. inet6 fe80::93fa:de43:6967:9d49%utun0 prefixlen 64 scopeid 0xc
  912. nd6 options=201<PERFORMNUD,DAD>
  913.  
  914. ================================================================================
  915.  
  916. Console Log:
  917.  
  918. 2017-12-14 18:59:47 ksinstall[14927] 2017-12-14 18:59:47.431 ksinstall[14927/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer started.
  919. 2017-12-14 18:59:47 ksinstall[14927] 2017-12-14 18:59:47.454 ksinstall[14927/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer starting Installation.
  920. 2017-12-14 18:59:54 ksinstall[14927] 2017-12-14 18:59:54.288 ksinstall[14927/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer ran successfully.
  921. 2017-12-14 19:02:54 ksinstall[14978] 2017-12-14 19:02:54.587 ksinstall[14978/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer started.
  922. 2017-12-14 19:02:54 ksinstall[14978] 2017-12-14 19:02:54.597 ksinstall[14978/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer starting Installation.
  923. 2017-12-14 19:03:00 ksinstall[14978] 2017-12-14 19:03:00.553 ksinstall[14978/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer ran successfully.
  924. 2017-12-14 19:05:04 ksinstall[15043] 2017-12-14 19:05:04.215 ksinstall[15043/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer started.
  925. 2017-12-14 19:05:04 ksinstall[15043] 2017-12-14 19:05:04.236 ksinstall[15043/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer starting Installation.
  926. 2017-12-14 19:05:07 ksinstall[15043] 2017-12-14 19:05:07.722 ksinstall[15043/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer ran successfully.
  927. 2017-12-14 19:54:21 Tunnelblick[3834] currentIPInfo(Name): IP address info could not be fetched within 35.1 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x6040006429d0 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  928. 2017-12-14 20:17:10 Tunnelblick[3834] applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes
  929. 2017-12-14 20:17:10 Tunnelblick[3834] Finished shutting down Tunnelblick; allowing termination
  930. 2017-12-14 20:32:27 Tunnelblick[572] Tunnelblick: OS X 10.13.1; Tunnelblick 3.7.4b (build 4921)
  931. 2017-12-14 20:32:39 Tunnelblick[572] Warning: preferences contain unknown preference 'client2-allowChangesToManuallySetNetworkSettings'
  932. 2017-12-14 20:35:01 Tunnelblick[572] Sparkle: ===== Tunnelblick =====
  933. 2017-12-14 20:35:01 Tunnelblick[572] Sparkle: Verified appcast signature
  934. 2017-12-14 20:35:30 Tunnelblick[572] runTunnelblickd: no data available from tunnelblickd socket; sleeping 5.000000 seconds...
  935. 2017-12-14 20:35:35 Tunnelblick[572] runTunnelblickd: no data available from tunnelblickd socket; sleeping 5.000000 seconds...
  936. 2017-12-14 20:36:59 Tunnelblick[572] currentIPInfo(Name): IP address info could not be fetched within 35.8 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x604000245340 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  937. 2017-12-14 20:37:36 Tunnelblick[572] startDisconnectingUserKnows: while already disconnecting 'client2'; OpenVPN state = 'DISCONNECTING'
  938. 2017-12-14 20:37:38 tunnelblickd[829] Status = 248 from tunnelblick-helper command 'kill 606'
  939. 2017-12-14 20:37:38 Tunnelblick[572] tunnelblickd status from kill: 248
  940. tunnelblickd stderr:
  941. 'killOneOpenvpn(606): Process does not exist
  942. '
  943. 2017-12-14 20:39:39 Tunnelblick[572] currentIPInfo(Name): IP address info could not be fetched within 35.1 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x600000455f00 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  944. 2017-12-14 20:42:30 ksinstall[1349] 2017-12-14 20:42:30.677 ksinstall[1349/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer started.
  945. 2017-12-14 20:42:31 ksinstall[1349] 2017-12-14 20:42:30.994 ksinstall[1349/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer starting Installation.
  946. 2017-12-14 20:42:35 ksinstall[1349] 2017-12-14 20:42:35.305 ksinstall[1349/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer ran successfully.
  947. 2017-12-14 20:47:18 Tunnelblick[572] applicationShouldTerminate: termination because of restart; delayed until 'shutdownTunnelblick' finishes
  948. 2017-12-14 20:47:18 Tunnelblick[572] Finished shutting down Tunnelblick; allowing termination
  949. 2017-12-14 20:54:31 ksinstall[373] 2017-12-14 20:54:31.068 ksinstall[373/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer started.
  950. 2017-12-14 20:54:33 ksinstall[373] 2017-12-14 20:54:33.530 ksinstall[373/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer starting Installation.
  951. 2017-12-14 20:55:14 ksinstall[373] 2017-12-14 20:55:14.122 ksinstall[373/0xa9a9a1c0] [lvl=2] -[KeystoneInstallTool main] Google Software Update installer ran successfully.
  952. 2017-12-14 21:02:04 Tunnelblick[564] Tunnelblick: OS X 10.13.1; Tunnelblick 3.7.4b (build 4921)
  953. 2017-12-14 21:02:08 Tunnelblick[564] Warning: preferences contain unknown preference 'client2-allowChangesToManuallySetNetworkSettings'
  954. 2017-12-14 21:02:34 Tunnelblick[564] Sparkle: ===== Tunnelblick =====
  955. 2017-12-14 21:02:34 Tunnelblick[564] Sparkle: Verified appcast signature
  956. 2017-12-14 21:04:56 Tunnelblick[564] currentIPInfo(Name): IP address info could not be fetched within 35.5 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x600000259bc0 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  957. 2017-12-14 21:05:04 Tunnelblick[564] startDisconnectingUserKnows: while already disconnecting 'client2'; OpenVPN state = 'DISCONNECTING'
  958. 2017-12-14 21:06:22 Tunnelblick[564] currentIPInfo(Name): IP address info could not be fetched within 35.4 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x60400024edc0 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  959. 2017-12-14 21:06:50 Tunnelblick[564] startDisconnectingUserKnows: while already disconnecting 'client2'; OpenVPN state = 'DISCONNECTING'
  960. 2017-12-14 21:22:10 Tunnelblick[564] currentIPInfo(Name): IP address info could not be fetched within 35.1 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x604000255c00 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
  961. 2017-12-14 22:22:59 Tunnelblick[564] currentIPInfo(Name): IP address info could not be fetched within 35.1 seconds; the error was 'Error Domain=NSURLErrorDomain Code=-1001 "The request timed out." UserInfo={NSUnderlyingError=0x600000440720 {Error Domain=kCFErrorDomainCFNetwork Code=-1001 "The request timed out." UserInfo={NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorCodeKey=-2102, _kCFStreamErrorDomainKey=4, NSLocalizedDescription=The request timed out.}}, NSErrorFailingURLStringKey=https://tunnelblick.net/ipinfo, NSErrorFailingURLKey=https://tunnelblick.net/ipinfo, _kCFStreamErrorDomainKey=4, _kCFStreamErrorCodeKey=-2102, NSLocalizedDescription=The request timed out.}'; the response was '(null)'
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!