API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 29th, 2017
84
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 17.07 KB | None | 0 0
raw download clone embed print report
  1. *Tunnelblick: OS X 10.12.3; Tunnelblick 3.7.0 (build 4790); Admin user
  2. git commit 8c2e63a08fd49c4b4881925fea8282547bf2de25
  3.  
  4.  
  5. Configuration foo@foo
  6.  
  7. "Sanitized" condensed configuration file for /Users/foo/Library/Application Support/Tunnelblick/Configurations/foo@foo.tblk:
  8.  
  9. resolv-retry infinite
  10. ca ca.crt
  11. persist-tun
  12. verb 3
  13. dev tun
  14. key client.key
  15. persist-key
  16. comp-lzo
  17. remote foo.foo.eu 1194
  18. ns-cert-type server
  19. proto udp
  20. nobind
  21. cert client.crt
  22. client
  23.  
  24.  
  25. ================================================================================
  26.  
  27. Non-Apple kexts that are loaded:
  28.  
  29. Index Refs Address Size Wired Name (Version) UUID <Linked Against>
  30. 145 3 0xffffff7f84605000 0x61000 0x61000 org.virtualbox.kext.VBoxDrv (5.1.14) 08D6FFCF-2BDF-305C-8824-89E69602C30D <7 5 4 3 1>
  31. 148 0 0xffffff7f84666000 0x8000 0x8000 org.virtualbox.kext.VBoxUSB (5.1.14) BF0B350D-C893-37DF-82F0-BE86ABA49D26 <147 145 39 7 5 4 3 1>
  32. 149 0 0xffffff7f8466e000 0x5000 0x5000 org.virtualbox.kext.VBoxNetFlt (5.1.14) 0291FFCC-8E46-3FFD-B674-BFA42D4E67E4 <145 7 5 4 3 1>
  33. 150 0 0xffffff7f84673000 0x6000 0x6000 org.virtualbox.kext.VBoxNetAdp (5.1.14) EFBEE858-A3D7-3C61-86C0-F6AFDCA48229 <145 5 4 1>
  34.  
  35. ================================================================================
  36.  
  37. There are no unusual files in foo@foo.tblk
  38.  
  39. ================================================================================
  40.  
  41. Configuration preferences:
  42.  
  43. -notMonitoringConnection = 0
  44. -useRouteUpInsteadOfUp = 0
  45. -keepConnected = 0
  46. -doNotDisableIpv6onTun = 0
  47. -lastConnectionSucceeded = 1
  48.  
  49. ================================================================================
  50.  
  51. Wildcard preferences:
  52.  
  53.  
  54. ================================================================================
  55.  
  56. Program preferences:
  57.  
  58. skipWarningThatIPAddressDidNotChangeAfterConnection = 1
  59. launchAtNextLogin = 1
  60. notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
  61. askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
  62. tunnelblickVersionHistory = (
  63. "3.7.0 (build 4790)"
  64. )
  65. lastLaunchTime = 512330036.831424
  66. lastLanguageAtLaunchWasRTL = 0
  67. connectionWindowDisplayCriteria = showWhenConnecting
  68. maxLogDisplaySize = 102400
  69. lastConnectedDisplayName = foo@foo
  70. keyboardShortcutIndex = 1
  71. updateCheckAutomatically = 1
  72. updateSendProfileInfo = 1
  73. NSWindow Frame SettingsSheetWindow = 576 504 829 524 0 0 1680 1028
  74. NSWindow Frame ConnectingWindow = 643 630 389 187 0 0 1680 1028
  75. detailsWindowFrameVersion = 4790
  76. detailsWindowFrame = {{64, 530}, {920, 468}}
  77. detailsWindowLeftFrame = {{0, 0}, {165, 350}}
  78. detailsWindowViewIndex = 0
  79. detailsWindowConfigurationsTabIdentifier = log
  80. leftNavSelectedDisplayName = foo@foo
  81. AdvancedWindowTabIdentifier = whileConnected
  82. haveDealtWithSparkle1dot5b6 = 1
  83. haveDealtWithOldTunTapPreferences = 1
  84. haveDealtWithOldLoginItem = 1
  85. SUEnableAutomaticChecks = 1
  86. SUScheduledCheckInterval = 86400
  87. SUSendProfileInfo = 1
  88. SULastCheckTime = 2017-03-27 17:53:58 +0000
  89. SULastProfileSubmissionDate = 2017-03-27 06:33:54 +0000
  90. SUHasLaunchedBefore = 1
  91. WebKitDefaultFontSize = 16
  92. WebKitStandardFont = Times
  93.  
  94. ================================================================================
  95.  
  96. Tunnelblick Log:
  97.  
  98. *Tunnelblick: OS X 10.12.3; Tunnelblick 3.7.0 (build 4790)
  99. 2017-03-29 10:46:15 *Tunnelblick: Attempting connection with foo@foo using shadow copy; Set nameserver = 769; monitoring connection
  100. 2017-03-29 10:46:15 *Tunnelblick: openvpnstart start foo@foo.tblk 1338 769 0 1 0 1065264 -ptADGNWradsgnw 2.3.14-openssl-1.0.2k
  101. 2017-03-29 10:46:15 *Tunnelblick: openvpnstart log:
  102. OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
  103.  
  104. /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.14-openssl-1.0.2k/openvpn
  105. --daemon
  106. --log
  107. /Library/Application Support/Tunnelblick/Logs/-SUsers-Sfoo-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sfoo@foo.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1065264.1338.openvpn.log
  108. --cd
  109. /Library/Application Support/Tunnelblick/Users/foo/foo@foo.tblk/Contents/Resources
  110. --verb
  111. 3
  112. --config
  113. /Library/Application Support/Tunnelblick/Users/foo/foo@foo.tblk/Contents/Resources/config.ovpn
  114. --verb
  115. 3
  116. --cd
  117. /Library/Application Support/Tunnelblick/Users/foo/foo@foo.tblk/Contents/Resources
  118. --management
  119. 127.0.0.1
  120. 1338
  121. --management-query-passwords
  122. --management-hold
  123. --script-security
  124. 2
  125. --up
  126. /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
  127. --down
  128. /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
  129.  
  130. 2017-03-29 10:46:15 *Tunnelblick: Established communication with OpenVPN
  131. 2017-03-29 10:46:15 OpenVPN 2.3.14 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 28 2017
  132. 2017-03-29 10:46:15 library versions: OpenSSL 1.0.2k 26 Jan 2017, LZO 2.09
  133. 2017-03-29 10:46:15 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1338
  134. 2017-03-29 10:46:15 Need hold release from management interface, waiting...
  135. 2017-03-29 10:46:15 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1338
  136. 2017-03-29 10:46:15 MANAGEMENT: CMD 'pid'
  137. 2017-03-29 10:46:15 MANAGEMENT: CMD 'state on'
  138. 2017-03-29 10:46:15 MANAGEMENT: CMD 'state'
  139. 2017-03-29 10:46:15 MANAGEMENT: CMD 'bytecount 1'
  140. 2017-03-29 10:46:15 MANAGEMENT: CMD 'hold release'
  141. 2017-03-29 10:46:15 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
  142. 2017-03-29 10:46:15 Socket Buffers: R=[196724->196724] S=[9216->9216]
  143. 2017-03-29 10:46:15 MANAGEMENT: >STATE:1490773575,RESOLVE,,,
  144. 2017-03-29 10:46:15 *Tunnelblick: openvpnstart starting OpenVPN
  145. 2017-03-29 10:46:16 UDPv4 link local: [undef]
  146. 2017-03-29 10:46:16 UDPv4 link remote: [AF_INET]x.x.x.x:1194
  147. 2017-03-29 10:46:16 MANAGEMENT: >STATE:1490773576,WAIT,,,
  148. 2017-03-29 10:46:16 MANAGEMENT: >STATE:1490773576,AUTH,,,
  149. 2017-03-29 10:46:16 TLS: Initial packet from [AF_INET]x.x.x.x:1194, sid=2cff2b9a 302f874a
  150. 2017-03-29 10:46:16 VERIFY OK: depth=1, CN=RootCA, C=IS, L=Wilno, O=showaround, OU=Root
  151. 2017-03-29 10:46:16 VERIFY OK: nsCertType=SERVER
  152. 2017-03-29 10:46:16 VERIFY OK: depth=0, CN=SuperRouter, C=IS, L=Wilno, O=showaround, OU=server
  153. 2017-03-29 10:46:16 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
  154. 2017-03-29 10:46:16 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
  155. 2017-03-29 10:46:16 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  156. 2017-03-29 10:46:16 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
  157. 2017-03-29 10:46:16 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
  158. 2017-03-29 10:46:16 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  159. 2017-03-29 10:46:16 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
  160. 2017-03-29 10:46:16 [SuperRouter] Peer Connection Initiated with [AF_INET]52.212.66.65:1194
  161. 2017-03-29 10:46:18 MANAGEMENT: >STATE:1490773578,GET_CONFIG,,,
  162. 2017-03-29 10:46:19 SENT CONTROL [SuperRouter]: 'PUSH_REQUEST' (status=1)
  163. 2017-03-29 10:46:19 PUSH: Received control message: 'PUSH_REPLY,route 172.31.0.0 255.255.0.0,dhcp-option DNS 10.8.0.1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.26 10.8.0.25'
  164. 2017-03-29 10:46:19 OPTIONS IMPORT: timers and/or timeouts modified
  165. 2017-03-29 10:46:19 OPTIONS IMPORT: --ifconfig/up options modified
  166. 2017-03-29 10:46:19 OPTIONS IMPORT: route options modified
  167. 2017-03-29 10:46:19 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
  168. 2017-03-29 10:46:19 Opening utun (connect(AF_SYS_CONTROL)): Resource busy
  169. 2017-03-29 10:46:19 Opened utun device utun1
  170. 2017-03-29 10:46:19 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
  171. 2017-03-29 10:46:19 MANAGEMENT: >STATE:1490773579,ASSIGN_IP,,10.8.0.26,
  172. 2017-03-29 10:46:19 /sbin/ifconfig utun1 delete
  173. ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
  174. 2017-03-29 10:46:19 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
  175. 2017-03-29 10:46:19 /sbin/ifconfig utun1 10.8.0.26 10.8.0.25 mtu 1500 netmask 255.255.255.255 up
  176. 2017-03-29 10:46:19 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun1 1500 1542 10.8.0.26 10.8.0.25 init
  177. **********************************************
  178. Start of output from client.up.tunnelblick.sh
  179. Retrieved from OpenVPN: name server(s) [ 10.8.0.1 8.8.8.8 8.8.4.4 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
  180. Not aggregating ServerAddresses because running on OS X 10.6 or higher
  181. Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
  182. Saved the DNS and SMB configurations so they can be restored
  183. Changed DNS ServerAddresses setting from '192.168.102.254' to '10.8.0.1 8.8.8.8 8.8.4.4'
  184. Changed DNS SearchDomains setting from '' to 'openvpn'
  185. Changed DNS DomainName setting from '' to 'openvpn'
  186. Did not change SMB NetBIOSName setting of ''
  187. Did not change SMB Workgroup setting of ''
  188. Did not change SMB WINSAddresses setting of ''
  189. DNS servers '10.8.0.1 8.8.8.8 8.8.4.4' will be used for DNS queries when the VPN is active
  190. NOTE: The DNS servers include one or more free public DNS servers known to Tunnelblick and one or more DNS servers not known to Tunnelblick. If used, the DNS servers not known to Tunnelblick may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
  191. Flushed the DNS cache via dscacheutil
  192. /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
  193. Notified mDNSResponder that the DNS cache was flushed
  194. Setting up to monitor system configuration with process-network-changes
  195. End of output from client.up.tunnelblick.sh
  196. **********************************************
  197. 2017-03-29 10:46:23 *Tunnelblick: No 'connected.sh' script to execute
  198. 2017-03-29 10:46:23 MANAGEMENT: >STATE:1490773583,ADD_ROUTES,,,
  199. 2017-03-29 10:46:23 /sbin/route add -net 172.31.0.0 10.8.0.25 255.255.0.0
  200. add net 172.31.0.0: gateway 10.8.0.25
  201. 2017-03-29 10:46:23 /sbin/route add -net 10.8.0.1 10.8.0.25 255.255.255.255
  202. add net 10.8.0.1: gateway 10.8.0.25
  203. 2017-03-29 10:46:23 Initialization Sequence Completed
  204. 2017-03-29 10:46:23 MANAGEMENT: >STATE:1490773583,CONNECTED,SUCCESS,10.8.0.26,x.x.x.x
  205. 2017-03-29 10:46:27 *Tunnelblick process-network-changes: A system configuration change was ignored
  206. 2017-03-29 10:46:28 *Tunnelblick: This computer's apparent public IP address (x.x.x.x) was unchanged after the connection was made
  207. 2017-03-29 10:53:05 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
  208. 2017-03-29 10:53:05 *Tunnelblick: No 'pre-disconnect.sh' script to execute
  209. 2017-03-29 10:53:05 *Tunnelblick: Disconnecting using 'kill'
  210. 2017-03-29 10:53:05 event_wait : Interrupted system call (code=4)
  211. 2017-03-29 10:53:05 /sbin/route delete -net 10.8.0.1 10.8.0.25 255.255.255.255
  212. delete net 10.8.0.1: gateway 10.8.0.25
  213. 2017-03-29 10:53:05 /sbin/route delete -net 172.31.0.0 10.8.0.25 255.255.0.0
  214. delete net 172.31.0.0: gateway 10.8.0.25
  215. 2017-03-29 10:53:05 Closing TUN/TAP interface
  216. 2017-03-29 10:53:05 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun1 1500 1542 10.8.0.26 10.8.0.25 init
  217. **********************************************
  218. Start of output from client.down.tunnelblick.sh
  219. Cancelled monitoring of system configuration changes
  220. Restored the DNS and SMB configurations
  221. Flushed the DNS cache via dscacheutil
  222. /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
  223. Notified mDNSResponder that the DNS cache was flushed
  224. End of output from client.down.tunnelblick.sh
  225. **********************************************
  226. 2017-03-29 10:53:06 SIGTERM[hard,] received, process exiting
  227. 2017-03-29 10:53:06 MANAGEMENT: >STATE:1490773986,EXITING,SIGTERM,,
  228. 2017-03-29 10:53:06 *Tunnelblick: No 'post-disconnect.sh' script to execute
  229. 2017-03-29 10:53:06 *Tunnelblick: Expected disconnection occurred.
  230.  
  231. ================================================================================
  232.  
  233. "Sanitized" full configuration file
  234.  
  235. resolv-retry infinite
  236. ca ca.crt
  237. persist-tun
  238. verb 3
  239. dev tun
  240. key client.key
  241. persist-key
  242. comp-lzo
  243. remote bar.foo.eu 1194
  244. ns-cert-type server
  245. proto udp
  246. nobind
  247. cert client.crt
  248. client
  249.  
  250.  
  251.  
  252. ================================================================================
  253.  
  254. ifconfig output:
  255.  
  256. lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
  257. options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
  258. inet 127.0.0.1 netmask 0xff000000
  259. inet6 ::1 prefixlen 128
  260. inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
  261. nd6 options=201<PERFORMNUD,DAD>
  262. gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
  263. stf0: flags=0<> mtu 1280
  264. en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
  265. ether 78:4f:43:61:88:0f
  266. inet 192.168.102.52 netmask 0xffffff00 broadcast 192.168.102.255
  267. media: autoselect
  268. status: active
  269. en1: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
  270. options=60<TSO4,TSO6>
  271. ether d2:00:5c:c8:2f:00
  272. media: autoselect <full-duplex>
  273. status: inactive
  274. en3: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
  275. options=60<TSO4,TSO6>
  276. ether d2:00:5c:c8:2f:01
  277. media: autoselect <full-duplex>
  278. status: inactive
  279. en2: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
  280. options=60<TSO4,TSO6>
  281. ether d2:00:5c:c8:2f:04
  282. media: autoselect <full-duplex>
  283. status: inactive
  284. en4: flags=963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX> mtu 1500
  285. options=60<TSO4,TSO6>
  286. ether d2:00:5c:c8:2f:05
  287. media: autoselect <full-duplex>
  288. status: inactive
  289. bridge0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
  290. options=63<RXCSUM,TXCSUM,TSO4,TSO6>
  291. ether d2:00:5c:c8:2f:00
  292. Configuration:
  293. id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
  294. maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
  295. root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
  296. ipfilter disabled flags 0x2
  297. member: en1 flags=3<LEARNING,DISCOVER>
  298. ifmaxaddr 0 port 6 priority 0 path cost 0
  299. member: en2 flags=3<LEARNING,DISCOVER>
  300. ifmaxaddr 0 port 8 priority 0 path cost 0
  301. member: en3 flags=3<LEARNING,DISCOVER>
  302. ifmaxaddr 0 port 7 priority 0 path cost 0
  303. member: en4 flags=3<LEARNING,DISCOVER>
  304. ifmaxaddr 0 port 9 priority 0 path cost 0
  305. media: <unknown type>
  306. status: inactive
  307. p2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304
  308. ether 0a:4f:43:61:88:0f
  309. media: autoselect
  310. status: inactive
  311. awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1484
  312. ether d6:22:6b:75:28:2f
  313. inet6 fe80::d422:6bff:fe75:282f%awdl0 prefixlen 64 scopeid 0xc
  314. nd6 options=201<PERFORMNUD,DAD>
  315. media: autoselect
  316. status: active
  317. utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
  318. inet6 fe80::2449:3c8e:b03b:b2f1%utun0 prefixlen 64 scopeid 0xd
  319. nd6 options=201<PERFORMNUD,DAD>
  320. utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
  321. inet6 fe80::380:da29:e390:5958%utun2 prefixlen 64 scopeid 0xf
  322. nd6 options=201<PERFORMNUD,DAD>
  323. en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
  324. ether ac:de:48:00:11:22
  325. inet6 fe80::aede:48ff:fe00:1122%en5 prefixlen 64 scopeid 0x4
  326. nd6 options=281<PERFORMNUD,INSECURE,DAD>
  327. media: autoselect
  328. status: active
  329.  
  330. ================================================================================
  331.  
  332. Console Log:
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!