Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- *Tunnelblick: OS X 10.14.2; Tunnelblick 3.7.6a (build 5080); prior version 3.6.5 (build 4566)
- 2019-01-17 22:12:05 *Tunnelblick: Attempting connection with okta-vpn using shadow copy; Set nameserver = 769; monitoring connection
- 2019-01-17 22:12:05 *Tunnelblick: openvpnstart start okta-vpn.tblk 57141 769 0 1 0 1065264 -ptADGNWradsgnw 2.4.6-openssl-1.0.2o
- 2019-01-17 22:12:05 *Tunnelblick: openvpnstart log:
- OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
- /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.6-openssl-1.0.2o/openvpn
- --daemon
- --log
- /Library/Application Support/Tunnelblick/Logs/-SUsers-Sebakaev-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sokta--vpn.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1065264.57141.openvpn.log
- --cd
- /Library/Application Support/Tunnelblick/Users/ebakaev/okta-vpn.tblk/Contents/Resources
- --setenv
- IV_GUI_VER
- "net.tunnelblick.tunnelblick 5080 3.7.6a (build 5080)"
- --verb
- 3
- --config
- /Library/Application Support/Tunnelblick/Users/ebakaev/okta-vpn.tblk/Contents/Resources/config.ovpn
- --verb
- 3
- --cd
- /Library/Application Support/Tunnelblick/Users/ebakaev/okta-vpn.tblk/Contents/Resources
- --management
- 127.0.0.1
- 57141
- /Library/Application Support/Tunnelblick/omjcokfalohmcbhboenjmofmebokfmeoedehjoll.mip
- --management-query-passwords
- --management-hold
- --script-security
- 2
- --up
- /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
- --down
- /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
- 2019-01-17 22:12:05 *Tunnelblick: Established communication with OpenVPN
- 2019-01-17 22:12:05 *Tunnelblick: Obtained passphrase from the Keychain
- 2019-01-17 22:12:05 Multiple --up scripts defined. The previously configured script is overridden.
- 2019-01-17 22:12:05 Multiple --down scripts defined. The previously configured script is overridden.
- 2019-01-17 22:12:05 OpenVPN 2.4.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Jun 25 2018
- 2019-01-17 22:12:05 library versions: OpenSSL 1.0.2o 27 Mar 2018, LZO 2.10
- 2019-01-17 22:12:05 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:57141
- 2019-01-17 22:12:05 Need hold release from management interface, waiting...
- 2019-01-17 22:12:05 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:57141
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'pid'
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'state on'
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'state'
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'bytecount 1'
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'hold release'
- 2019-01-17 22:12:05 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
- 2019-01-17 22:12:05 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
- 2019-01-17 22:12:05 MANAGEMENT: CMD 'password [...]'
- 2019-01-17 22:12:05 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
- 2019-01-17 22:12:05 MANAGEMENT: >STATE:1547755925,RESOLVE,,,,,,
- 2019-01-17 22:12:05 TCP/UDP: Preserving recently used remote address: [AF_INET]52.35.173.149:1194
- 2019-01-17 22:12:05 Socket Buffers: R=[786896->786896] S=[9216->9216]
- 2019-01-17 22:12:05 UDP link local: (not bound)
- 2019-01-17 22:12:05 UDP link remote: [AF_INET]52.35.173.149:1194
- 2019-01-17 22:12:05 MANAGEMENT: >STATE:1547755925,WAIT,,,,,,
- 2019-01-17 22:12:05 MANAGEMENT: >STATE:1547755925,AUTH,,,,,,
- 2019-01-17 22:12:05 TLS: Initial packet from [AF_INET]52.35.173.149:1194, sid=b95c9787 7db6ba71
- 2019-01-17 22:12:05 *Tunnelblick: openvpnstart starting OpenVPN
- 2019-01-17 22:12:06 VERIFY OK: depth=1, C=US, ST=California, L=San Francisco, O=Okta, Inc., OU=Operations, CN=Okta Internal Certification Authority
- 2019-01-17 22:12:06 VERIFY OK: depth=0, C=US, ST=CA, L=San Francisco, O=Okta, OU=Technical Operations, CN=winterfell.aue1d.saasure.com, emailAddress=ops@okta.com
- 2019-01-17 22:12:07 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
- 2019-01-17 22:12:07 [winterfell.aue1d.saasure.com] Peer Connection Initiated with [AF_INET]52.35.173.149:1194
- 2019-01-17 22:12:09 MANAGEMENT: >STATE:1547755929,GET_CONFIG,,,,,,
- 2019-01-17 22:12:09 SENT CONTROL [winterfell.aue1d.saasure.com]: 'PUSH_REQUEST' (status=1)
- 2019-01-17 22:12:09 PUSH: Received control message: 'PUSH_REPLY,route 10.0.0.0 255.0.0.0,route 172.16.0.0 255.240.0.0,dhcp-option DOMAIN auw2d.internal,dhcp-option DNS 10.11.0.2,route 10.63.187.0 255.255.255.0,topology net30,ping 10,ping-restart 120,ifconfig 10.63.187.190 10.63.187.189,peer-id 23,cipher AES-256-GCM'
- 2019-01-17 22:12:09 OPTIONS IMPORT: timers and/or timeouts modified
- 2019-01-17 22:12:09 OPTIONS IMPORT: --ifconfig/up options modified
- 2019-01-17 22:12:09 OPTIONS IMPORT: route options modified
- 2019-01-17 22:12:09 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
- 2019-01-17 22:12:09 OPTIONS IMPORT: peer-id set
- 2019-01-17 22:12:09 OPTIONS IMPORT: adjusting link_mtu to 1625
- 2019-01-17 22:12:09 OPTIONS IMPORT: data channel crypto options modified
- 2019-01-17 22:12:09 Data Channel: using negotiated cipher 'AES-256-GCM'
- 2019-01-17 22:12:09 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
- 2019-01-17 22:12:09 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
- 2019-01-17 22:12:09 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
- 2019-01-17 22:12:09 Opened utun device utun1
- 2019-01-17 22:12:09 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
- 2019-01-17 22:12:09 MANAGEMENT: >STATE:1547755929,ASSIGN_IP,,10.63.187.190,,,,
- 2019-01-17 22:12:09 /sbin/ifconfig utun1 delete
- ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
- 2019-01-17 22:12:09 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
- 2019-01-17 22:12:09 /sbin/ifconfig utun1 10.63.187.190 10.63.187.189 mtu 1500 netmask 255.255.255.255 up
- 2019-01-17 22:12:09 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun1 1500 1553 10.63.187.190 10.63.187.189 init
- **********************************************
- Start of output from client.up.tunnelblick.sh
- Retrieved from OpenVPN: name server(s) [ 10.11.0.2 ], domain name [ auw2d.internal ], search domain(s) [ ], and SMB server(s) [ ]
- Not aggregating ServerAddresses because running on OS X 10.6 or higher
- Setting search domains to 'auw2d.internal' because running under OS X 10.6 or higher and the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
- Saved the DNS and SMB configurations so they can be restored
- Changed DNS ServerAddresses setting from '192.168.1.1 0.0.0.0' to '10.11.0.2'
- Changed DNS SearchDomains setting from '' to 'auw2d.internal'
- Changed DNS DomainName setting from '' to 'auw2d.internal'
- Did not change SMB NetBIOSName setting of ''
- Did not change SMB Workgroup setting of ''
- Did not change SMB WINSAddresses setting of ''
- DNS servers '10.11.0.2' will be used for DNS queries when the VPN is active
- NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
- Flushed the DNS cache via dscacheutil
- /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
- Notified mDNSResponder that the DNS cache was flushed
- Setting up to monitor system configuration with process-network-changes
- End of output from client.up.tunnelblick.sh
- **********************************************
- 2019-01-17 22:12:13 *Tunnelblick: No 'connected.sh' script to execute
- 2019-01-17 22:12:13 MANAGEMENT: >STATE:1547755933,ADD_ROUTES,,,,,,
- 2019-01-17 22:12:13 /sbin/route add -net 10.0.0.0 10.63.187.189 255.0.0.0
- add net 10.0.0.0: gateway 10.63.187.189
- 2019-01-17 22:12:13 /sbin/route add -net 172.16.0.0 10.63.187.189 255.240.0.0
- add net 172.16.0.0: gateway 10.63.187.189
- 2019-01-17 22:12:13 /sbin/route add -net 10.63.187.0 10.63.187.189 255.255.255.0
- add net 10.63.187.0: gateway 10.63.187.189
- 2019-01-17 22:12:13 Initialization Sequence Completed
- 2019-01-17 22:12:13 MANAGEMENT: >STATE:1547755933,CONNECTED,SUCCESS,10.63.187.190,52.35.173.149,1194,,
- 2019-01-17 22:12:18 *Tunnelblick process-network-changes: A system configuration change was ignored
- 2019-01-17 22:12:19 *Tunnelblick: This computer's apparent public IP address (178.95.59.199) was unchanged after the connection was made
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement