This computer's apparent public ip address was not different

This forum is for admins who are looking to build or expand their OpenVPN setup.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Locked
bori
OpenVpn Newbie
Posts: 3
Joined: Fri Mar 13, 2015 2:52 pm

This computer's apparent public ip address was not different

Post by bori » Fri Mar 13, 2015 3:03 pm

I am receiving the subject error after connecting. Internet connectivity is good, but the IP address isn't changing. I've verified that the IP address doesn't change. I also added the redirect-gateway def1 line to the configuration file and relaunched Tunnelblick. It still didn't work so I removed that line. I've tried a variety of setting with WINS/DNS, as well as removing the DNS settings on the client and router and allowing the ISP to assign them. The message and error (not changing the IP) persists.

There are a couple curious messages:
2015-03-12 21:36:45 us=590666 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing

2015-03-12 21:36:45 us=591571 /sbin/route add -net 192.168.1.1 192.168.1.1 255.255.255.0
route: writing to routing socket: Can't assign requested address
add net 192.168.1.1: gateway 192.168.1.1: Can't assign requested address

Tunnelblick support thinks it might be an OPenVPN configuration issue. I am using Google's DNS settings on the router and the client.

Any help is very much appreciated.

*Tunnelblick: OS X 10.10.2; Tunnelblick 3.5beta06 (build 4211); prior version 3.5beta04 (build 4198); Admin user

Configuration NetgearVPN 7000

"Sanitized" condensed configuration file for /Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk:

client
dev tap
proto udp
remote mynet.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5


================================================================================

"Sanitized" full configuration file

client
dev tap
proto udp
remote mynet.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5


================================================================================

There are no unusual files in NetgearVPN.tblk

================================================================================

Configuration preferences:

-resetPrimaryInterfaceAfterDisconnect = 1
-routeAllTrafficThroughVpn = 1
-useRouteUpInsteadOfUp = 0
-notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
-lastConnectionSucceeded = 1

================================================================================

Wildcard preferences:


================================================================================

Program preferences:

launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.5beta06 (build 4211)",
"3.5beta04 (build 4198)"
)
lastLaunchTime = 447880899.819286
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = NetgearVPN
installationUID (not shown)
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
updateSendProfileInfo = 1
NSWindow Frame ConnectingWindow = 445 443 389 187 0 0 1280 777
detailsWindowFrameVersion = 4211
detailsWindowFrame = {{62, 244}, {908, 467}}
detailsWindowLeftFrame = {{0, 0}, {163, 350}}
leftNavSelectedDisplayName = NetgearVPN
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUFeedURL = https://www.tunnelblick.net/appcast-b.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 1
SULastCheckTime = 2015-03-13 01:06:46 +0000
SULastProfileSubmissionDate = 2015-03-12 19:21:39 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 11
WebKitStandardFont = .Helvetica Neue DeskInterface

================================================================================

Tunnelblick Log:

2015-03-12 21:36:20 *Tunnelblick: openvpnstart starting OpenVPN
2015-03-12 21:36:20 *Tunnelblick: OS X 10.10.2; Tunnelblick 3.5beta06 (build 4211); prior version 3.5beta04 (build 4198)
2015-03-12 21:36:20 *Tunnelblick: Attempting connection with NetgearVPN using shadow copy; Set nameserver = 1; monitoring connection
2015-03-12 21:36:20 *Tunnelblick: openvpnstart start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6
2015-03-12 21:36:21 *Tunnelblick: openvpnstart log:
Loading tap-signed.kext
OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):

/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.6/openvpn
--daemon
--log
/Library/Application Support/Tunnelblick/Logs/-SUsers-Smymac-SLibrary-SApplication Support-STunnelblick-SConfigurations-SNetgearVPN.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_18290.1337.openvpn.log
--cd
/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources
--config
/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/config.ovpn
--cd
/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources
--management
127.0.0.1
1337
--management-query-passwords
--management-hold
--redirect-gateway
def1
--script-security
2
--up
/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw
--down
/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw
--route-pre-down
/Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw

2015-03-12 21:36:21 *Tunnelblick: Established communication with OpenVPN
2015-03-12 21:36:21 us=502640 Current Parameter Settings:
2015-03-12 21:36:21 us=502829 config = '/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/config.ovpn'
2015-03-12 21:36:21 us=502837 mode = 0
2015-03-12 21:36:21 us=502842 show_ciphers = DISABLED
2015-03-12 21:36:21 us=502846 show_digests = DISABLED
2015-03-12 21:36:21 us=502850 show_engines = DISABLED
2015-03-12 21:36:21 us=502854 genkey = DISABLED
2015-03-12 21:36:21 us=502858 key_pass_file = '[UNDEF]'
2015-03-12 21:36:21 us=502862 show_tls_ciphers = DISABLED
2015-03-12 21:36:21 us=502866 Connection profiles [default]:
2015-03-12 21:36:21 us=502870 proto = udp
2015-03-12 21:36:21 us=502874 local = '[UNDEF]'
2015-03-12 21:36:21 us=502878 local_port = 0
2015-03-12 21:36:21 us=502882 remote = 'mynet.mynetgear.com'
2015-03-12 21:36:21 us=502886 remote_port = 12974
2015-03-12 21:36:21 us=502890 remote_float = DISABLED
2015-03-12 21:36:21 us=502894 bind_defined = DISABLED
2015-03-12 21:36:21 us=502898 bind_local = DISABLED
2015-03-12 21:36:21 us=502902 connect_retry_seconds = 5
2015-03-12 21:36:21 us=502906 connect_timeout = 10
2015-03-12 21:36:21 us=502910 connect_retry_max = 0
2015-03-12 21:36:21 us=502914 socks_proxy_server = '[UNDEF]'
2015-03-12 21:36:21 us=502918 socks_proxy_port = 0
2015-03-12 21:36:21 us=502922 socks_proxy_retry = DISABLED
2015-03-12 21:36:21 us=502926 tun_mtu = 1500
2015-03-12 21:36:21 us=502930 tun_mtu_defined = ENABLED
2015-03-12 21:36:21 us=502934 link_mtu = 1500
2015-03-12 21:36:21 us=502938 link_mtu_defined = DISABLED
2015-03-12 21:36:21 us=502942 tun_mtu_extra = 32
2015-03-12 21:36:21 us=502946 tun_mtu_extra_defined = ENABLED
2015-03-12 21:36:21 us=502950 mtu_discover_type = -1
2015-03-12 21:36:21 us=502954 fragment = 0
2015-03-12 21:36:21 us=502958 mssfix = 1450
2015-03-12 21:36:21 us=502962 explicit_exit_notification = 0
2015-03-12 21:36:21 us=502966 Connection profiles END
2015-03-12 21:36:21 us=502970 remote_random = DISABLED
2015-03-12 21:36:21 us=502974 ipchange = '[UNDEF]'
2015-03-12 21:36:21 us=502978 dev = 'tap'
2015-03-12 21:36:21 us=502982 dev_type = '[UNDEF]'
2015-03-12 21:36:21 us=502987 dev_node = '[UNDEF]'
2015-03-12 21:36:21 us=502992 lladdr = '[UNDEF]'
2015-03-12 21:36:21 us=502996 topology = 1
2015-03-12 21:36:21 us=503000 tun_ipv6 = DISABLED
2015-03-12 21:36:21 us=503003 ifconfig_local = '[UNDEF]'
2015-03-12 21:36:21 us=503007 ifconfig_remote_netmask = '[UNDEF]'
2015-03-12 21:36:21 us=503011 ifconfig_noexec = DISABLED
2015-03-12 21:36:21 us=503015 ifconfig_nowarn = DISABLED
2015-03-12 21:36:21 us=503019 ifconfig_ipv6_local = '[UNDEF]'
2015-03-12 21:36:21 us=503023 ifconfig_ipv6_netbits = 0
2015-03-12 21:36:21 us=503027 ifconfig_ipv6_remote = '[UNDEF]'
2015-03-12 21:36:21 us=503031 shaper = 0
2015-03-12 21:36:21 us=503035 mtu_test = 0
2015-03-12 21:36:21 us=503039 mlock = DISABLED
2015-03-12 21:36:21 us=503043 keepalive_ping = 0
2015-03-12 21:36:21 us=503047 keepalive_timeout = 0
2015-03-12 21:36:21 us=503051 inactivity_timeout = 0
2015-03-12 21:36:21 us=503054 ping_send_timeout = 0
2015-03-12 21:36:21 us=503058 ping_rec_timeout = 0
2015-03-12 21:36:21 us=503062 ping_rec_timeout_action = 0
2015-03-12 21:36:21 us=503066 ping_timer_remote = DISABLED
2015-03-12 21:36:21 us=503070 remap_sigusr1 = 0
2015-03-12 21:36:21 us=503074 persist_tun = ENABLED
2015-03-12 21:36:21 us=503078 persist_local_ip = DISABLED
2015-03-12 21:36:21 us=503082 persist_remote_ip = DISABLED
2015-03-12 21:36:21 us=503086 persist_key = ENABLED
2015-03-12 21:36:21 us=503090 passtos = DISABLED
2015-03-12 21:36:21 us=503094 resolve_retry_seconds = 1000000000
2015-03-12 21:36:21 us=503098 username = '[UNDEF]'
2015-03-12 21:36:21 us=503107 groupname = '[UNDEF]'
2015-03-12 21:36:21 us=503111 chroot_dir = '[UNDEF]'
2015-03-12 21:36:21 us=503116 cd_dir = '/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources'
2015-03-12 21:36:21 us=503119 writepid = '[UNDEF]'
2015-03-12 21:36:21 us=503124 up_script = '/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw'
2015-03-12 21:36:21 us=503128 down_script = '/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw'
2015-03-12 21:36:21 us=503132 down_pre = DISABLED
2015-03-12 21:36:21 us=503136 up_restart = DISABLED
2015-03-12 21:36:21 us=503139 up_delay = DISABLED
2015-03-12 21:36:21 us=503143 daemon = ENABLED
2015-03-12 21:36:21 us=503147 inetd = 0
2015-03-12 21:36:21 us=503151 log = ENABLED
2015-03-12 21:36:21 us=503155 suppress_timestamps = DISABLED
2015-03-12 21:36:21 us=503159 nice = 0
2015-03-12 21:36:21 us=503163 verbosity = 5
2015-03-12 21:36:21 us=503167 mute = 0
2015-03-12 21:36:21 us=503171 status_file = '[UNDEF]'
2015-03-12 21:36:21 us=503175 status_file_version = 1
2015-03-12 21:36:21 us=503179 status_file_update_freq = 60
2015-03-12 21:36:21 us=503183 occ = ENABLED
2015-03-12 21:36:21 us=503188 rcvbuf = 65536
2015-03-12 21:36:21 us=503193 sndbuf = 65536
2015-03-12 21:36:21 us=503197 sockflags = 0
2015-03-12 21:36:21 us=503200 fast_io = DISABLED
2015-03-12 21:36:21 us=503204 lzo = 7
2015-03-12 21:36:21 us=503208 route_script = '[UNDEF]'
2015-03-12 21:36:21 us=503212 route_default_gateway = '[UNDEF]'
2015-03-12 21:36:21 us=503216 route_default_metric = 0
2015-03-12 21:36:21 us=503220 route_noexec = DISABLED
2015-03-12 21:36:21 us=503224 route_delay = 0
2015-03-12 21:36:21 us=503228 route_delay_window = 30
2015-03-12 21:36:21 us=503232 route_delay_defined = DISABLED
2015-03-12 21:36:21 us=503236 route_nopull = DISABLED
2015-03-12 21:36:21 us=503242 route_gateway_via_dhcp = DISABLED
2015-03-12 21:36:21 us=503246 max_routes = 100
2015-03-12 21:36:21 us=503250 allow_pull_fqdn = DISABLED
2015-03-12 21:36:21 us=503256 [redirect_default_gateway local=0]
2015-03-12 21:36:21 us=503260 management_addr = '127.0.0.1'
2015-03-12 21:36:21 us=503264 management_port = 1337
2015-03-12 21:36:21 us=503269 management_user_pass = '[UNDEF]'
2015-03-12 21:36:21 us=503273 management_log_history_cache = 250
2015-03-12 21:36:21 us=503277 management_echo_buffer_size = 100
2015-03-12 21:36:21 us=503281 management_write_peer_info_file = '[UNDEF]'
2015-03-12 21:36:21 us=503286 management_client_user = '[UNDEF]'
2015-03-12 21:36:21 us=503290 management_client_group = '[UNDEF]'
2015-03-12 21:36:21 us=503294 management_flags = 6
2015-03-12 21:36:21 us=503298 shared_secret_file = '[UNDEF]'
2015-03-12 21:36:21 us=503302 key_direction = 0
2015-03-12 21:36:21 us=503306 ciphername_defined = ENABLED
2015-03-12 21:36:21 us=503310 ciphername = 'AES-128-CBC'
2015-03-12 21:36:21 us=503315 authname_defined = ENABLED
2015-03-12 21:36:21 us=503319 authname = 'SHA1'
2015-03-12 21:36:21 us=503323 prng_hash = 'SHA1'
2015-03-12 21:36:21 us=503327 prng_nonce_secret_len = 16
2015-03-12 21:36:21 us=503331 keysize = 0
2015-03-12 21:36:21 us=503335 engine = DISABLED
2015-03-12 21:36:21 us=503339 replay = ENABLED
2015-03-12 21:36:21 us=503343 mute_replay_warnings = DISABLED
2015-03-12 21:36:21 us=503347 replay_window = 64
2015-03-12 21:36:21 us=503351 replay_time = 15
2015-03-12 21:36:21 us=503355 packet_id_file = '[UNDEF]'
2015-03-12 21:36:21 us=503359 use_iv = ENABLED
2015-03-12 21:36:21 us=503364 test_crypto = DISABLED
2015-03-12 21:36:21 us=503372 tls_server = DISABLED
2015-03-12 21:36:21 us=503376 tls_client = ENABLED
2015-03-12 21:36:21 us=503380 key_method = 2
2015-03-12 21:36:21 us=503384 ca_file = 'ca.crt'
2015-03-12 21:36:21 us=503388 ca_path = '[UNDEF]'
2015-03-12 21:36:21 us=503392 dh_file = '[UNDEF]'
2015-03-12 21:36:21 us=503397 cert_file = 'client.crt'
2015-03-12 21:36:21 us=503401 priv_key_file = 'client.key'
2015-03-12 21:36:21 us=503405 pkcs12_file = '[UNDEF]'
2015-03-12 21:36:21 us=503409 cipher_list = '[UNDEF]'
2015-03-12 21:36:21 us=503413 tls_verify = '[UNDEF]'
2015-03-12 21:36:21 us=503417 tls_export_cert = '[UNDEF]'
2015-03-12 21:36:21 us=503421 verify_x509_type = 0
2015-03-12 21:36:21 us=503425 verify_x509_name = '[UNDEF]'
2015-03-12 21:36:21 us=503429 crl_file = '[UNDEF]'
2015-03-12 21:36:21 us=503433 ns_cert_type = 0
2015-03-12 21:36:21 us=503437 remote_cert_ku = 0
2015-03-12 21:36:21 us=503441 remote_cert_ku = 0
2015-03-12 21:36:21 us=503445 remote_cert_ku = 0
2015-03-12 21:36:21 us=503449 remote_cert_ku = 0
2015-03-12 21:36:21 us=503453 remote_cert_ku = 0
2015-03-12 21:36:21 us=503457 remote_cert_ku = 0
2015-03-12 21:36:21 us=503461 remote_cert_ku = 0
2015-03-12 21:36:21 us=503465 remote_cert_ku = 0
2015-03-12 21:36:21 us=503469 remote_cert_ku = 0
2015-03-12 21:36:21 us=503473 remote_cert_ku = 0
2015-03-12 21:36:21 us=503477 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503481 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503485 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503489 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503493 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503496 remote_cert_ku[i] = 0
2015-03-12 21:36:21 us=503501 remote_cert_eku = '[UNDEF]'
2015-03-12 21:36:21 us=503505 ssl_flags = 0
2015-03-12 21:36:21 us=503509 tls_timeout = 2
2015-03-12 21:36:21 us=503513 renegotiate_bytes = 0
2015-03-12 21:36:21 us=503517 renegotiate_packets = 0
2015-03-12 21:36:21 us=503521 renegotiate_seconds = 3600
2015-03-12 21:36:21 us=503525 handshake_window = 60
2015-03-12 21:36:21 us=503529 transition_window = 3600
2015-03-12 21:36:21 us=503533 single_session = DISABLED
2015-03-12 21:36:21 us=503537 push_peer_info = DISABLED
2015-03-12 21:36:21 us=503541 tls_exit = DISABLED
2015-03-12 21:36:21 us=503545 tls_auth_file = '[UNDEF]'
2015-03-12 21:36:21 us=503550 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503554 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503558 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503562 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503566 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503570 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503574 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503578 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503582 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503586 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503590 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503595 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503599 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503603 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503607 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503611 pkcs11_protected_authentication = DISABLED
2015-03-12 21:36:21 us=503617 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503621 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503625 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503633 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503638 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503642 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503646 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503650 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503654 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503658 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503662 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503666 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503670 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503674 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503678 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503683 pkcs11_private_mode = 00000000
2015-03-12 21:36:21 us=503687 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503691 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503695 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503699 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503703 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503706 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503710 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503714 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503719 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503723 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503727 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503731 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503735 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503739 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503743 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503747 pkcs11_cert_private = DISABLED
2015-03-12 21:36:21 us=503751 pkcs11_pin_cache_period = -1
2015-03-12 21:36:21 us=503755 pkcs11_id = '[UNDEF]'
2015-03-12 21:36:21 us=503759 pkcs11_id_management = DISABLED
2015-03-12 21:36:21 us=503767 server_network = 0.0.0.0
2015-03-12 21:36:21 us=503772 server_netmask = 0.0.0.0
2015-03-12 21:36:21 us=503779 server_network_ipv6 = ::
2015-03-12 21:36:21 us=503783 server_netbits_ipv6 = 0
2015-03-12 21:36:21 us=503788 server_bridge_ip = 0.0.0.0
2015-03-12 21:36:21 us=503793 server_bridge_netmask = 0.0.0.0
2015-03-12 21:36:21 us=503797 server_bridge_pool_start = 0.0.0.0
2015-03-12 21:36:21 us=503802 server_bridge_pool_end = 0.0.0.0
2015-03-12 21:36:21 us=503806 ifconfig_pool_defined = DISABLED
2015-03-12 21:36:21 us=503811 ifconfig_pool_start = 0.0.0.0
2015-03-12 21:36:21 us=503816 ifconfig_pool_end = 0.0.0.0
2015-03-12 21:36:21 us=503820 ifconfig_pool_netmask = 0.0.0.0
2015-03-12 21:36:21 us=503824 ifconfig_pool_persist_filename = '[UNDEF]'
2015-03-12 21:36:21 us=503829 ifconfig_pool_persist_refresh_freq = 600
2015-03-12 21:36:21 us=503833 ifconfig_ipv6_pool_defined = DISABLED
2015-03-12 21:36:21 us=503837 ifconfig_ipv6_pool_base = ::
2015-03-12 21:36:21 us=503841 ifconfig_ipv6_pool_netbits = 0
2015-03-12 21:36:21 us=503845 n_bcast_buf = 256
2015-03-12 21:36:21 us=503849 tcp_queue_limit = 64
2015-03-12 21:36:21 us=503854 real_hash_size = 256
2015-03-12 21:36:21 us=503858 virtual_hash_size = 256
2015-03-12 21:36:21 us=503862 client_connect_script = '[UNDEF]'
2015-03-12 21:36:21 us=503866 learn_address_script = '[UNDEF]'
2015-03-12 21:36:21 us=503870 client_disconnect_script = '[UNDEF]'
2015-03-12 21:36:21 us=503874 client_config_dir = '[UNDEF]'
2015-03-12 21:36:21 us=503878 ccd_exclusive = DISABLED
2015-03-12 21:36:21 us=503883 tmp_dir = '/var/folders/r5/zqcx92517z739d2tqgtgq07r0000gn/T/'
2015-03-12 21:36:21 us=503887 push_ifconfig_defined = DISABLED
2015-03-12 21:36:21 us=503891 push_ifconfig_local = 0.0.0.0
2015-03-12 21:36:21 us=503900 push_ifconfig_remote_netmask = 0.0.0.0
2015-03-12 21:36:21 us=503905 push_ifconfig_ipv6_defined = DISABLED
2015-03-12 21:36:21 us=503909 push_ifconfig_ipv6_local = ::/0
2015-03-12 21:36:21 us=503914 push_ifconfig_ipv6_remote = ::
2015-03-12 21:36:21 us=503918 enable_c2c = DISABLED
2015-03-12 21:36:21 us=503922 duplicate_cn = DISABLED
2015-03-12 21:36:21 us=503926 cf_max = 0
2015-03-12 21:36:21 us=503930 cf_per = 0
2015-03-12 21:36:21 us=503934 max_clients = 1024
2015-03-12 21:36:21 us=503938 max_routes_per_client = 256
2015-03-12 21:36:21 us=503943 auth_user_pass_verify_script = '[UNDEF]'
2015-03-12 21:36:21 us=503947 auth_user_pass_verify_script_via_file = DISABLED
2015-03-12 21:36:21 us=503951 port_share_host = '[UNDEF]'
2015-03-12 21:36:21 us=503955 port_share_port = 0
2015-03-12 21:36:21 us=503959 client = ENABLED
2015-03-12 21:36:21 us=503963 pull = ENABLED
2015-03-12 21:36:21 us=503967 auth_user_pass_file = '[UNDEF]'
2015-03-12 21:36:21 us=503975 OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 22 2015
2015-03-12 21:36:21 us=503984 library versions: OpenSSL 1.0.1k 8 Jan 2015, LZO 2.08
2015-03-12 21:36:21 us=504827 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2015-03-12 21:36:21 us=505234 Need hold release from management interface, waiting...
2015-03-12 21:36:21 us=866930 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2015-03-12 21:36:21 us=929835 MANAGEMENT: CMD 'pid'
2015-03-12 21:36:21 us=931518 MANAGEMENT: CMD 'state on'
2015-03-12 21:36:21 us=931798 MANAGEMENT: CMD 'state'
2015-03-12 21:36:21 us=931994 MANAGEMENT: CMD 'bytecount 1'
2015-03-12 21:36:21 us=932153 MANAGEMENT: CMD 'hold release'
2015-03-12 21:36:21 us=932528 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2015-03-12 21:36:21 us=932682 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2015-03-12 21:36:21 us=933538 LZO compression initialized
2015-03-12 21:36:21 us=933749 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
2015-03-12 21:36:21 us=933895 Socket Buffers: R=[196724->65536] S=[9216->65536]
2015-03-12 21:36:21 us=935059 MANAGEMENT: >STATE:1426214181,RESOLVE,,,
2015-03-12 21:36:22 us=354946 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
2015-03-12 21:36:22 us=355395 Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
2015-03-12 21:36:22 us=355746 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
2015-03-12 21:36:22 us=356317 Local Options hash (VER=V4): 'b498be7c'
2015-03-12 21:36:22 us=356591 Expected Remote Options hash (VER=V4): '26e19fc0'
2015-03-12 21:36:22 us=356829 UDPv4 link local: [undef]
2015-03-12 21:36:22 us=357060 UDPv4 link remote: [AF_INET]8.30.243.226:12974
2015-03-12 21:36:22 us=357316 MANAGEMENT: >STATE:1426214182,WAIT,,,
RThu Mar 12 21:36:22 2015 us=437606 MANAGEMENT: >STATE:1426214182,AUTH,,,
2015-03-12 21:36:22 us=438010 TLS: Initial packet from [AF_INET]8.30.243.226:12974, sid=05e2b078 a506082d
RRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRThu Mar 12 21:36:22 2015 us=827741 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=netgear, emailAddress=something@netgear.com
2015-03-12 21:36:22 us=828715 VERIFY OK: depth=0, C=TW, ST=TW, O=netgear, OU=netgear, CN=netgear, emailAddress=something@netgear.com
RWRRRRWWWWRRRRWRWRThu Mar 12 21:36:25 2015 us=961685 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-03-12 21:36:25 us=962587 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2015-03-12 21:36:25 us=963772 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-03-12 21:36:25 us=964142 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WThu Mar 12 21:36:25 2015 us=964457 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2015-03-12 21:36:25 us=964876 [netgear] Peer Connection Initiated with [AF_INET]8.30.243.226:12974
RThu Mar 12 21:36:26 2015 us=343214 MANAGEMENT: >STATE:1426214186,GET_CONFIG,,,
2015-03-12 21:36:27 us=502625 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
2015-03-12 21:36:32 us=821397 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
2015-03-12 21:36:37 us=117968 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
2015-03-12 21:36:42 us=513171 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
RRWRThu Mar 12 21:36:43 2015 us=548107 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.1 255.255.255.0 192.168.1.1,route-gateway dhcp,ping 10,ping-restart 120'
2015-03-12 21:36:43 us=548908 OPTIONS IMPORT: timers and/or timeouts modified
2015-03-12 21:36:43 us=549254 OPTIONS IMPORT: route options modified
2015-03-12 21:36:43 us=549446 OPTIONS IMPORT: route-related options modified
2015-03-12 21:36:43 us=550396 TUN/TAP device /dev/tap0 opened
2015-03-12 21:36:43 us=550719 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.up.tunnelblick.sh
Configuring tap DNS via DHCP asynchronously
End of output from client.up.tunnelblick.sh
**********************************************
2015-03-12 21:36:45 us=590666 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
2015-03-12 21:36:45 us=591170 MANAGEMENT: >STATE:1426214205,ADD_ROUTES,,,
2015-03-12 21:36:45 us=591571 /sbin/route add -net 192.168.1.1 192.168.1.1 255.255.255.0
route: writing to routing socket: Can't assign requested address
add net 192.168.1.1: gateway 192.168.1.1: Can't assign requested address
2015-03-12 21:36:45 us=593993 Initialization Sequence Completed
2015-03-12 21:36:45 us=594150 MANAGEMENT: >STATE:1426214205,CONNECTED,SUCCESS,,8.30.243.226
RwRwRThu Mar 12 21:36:47 2015 us=846399 Extracted DHCP router address: 192.168.1.1
Sleeping for 0 seconds to wait for DHCP to finish setup.
Sleeping for 1 seconds to wait for DHCP to finish setup.
Retrieved from DHCP/BOOTP packet: name server(s) [ 192.168.1.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Ignoring ServerAddresses '192.168.1.1' because ServerAddresses was set manually
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
RwRwRwrWRwSaved the DNS and SMB configurations so they can be restored
Did not change DNS ServerAddresses setting of '8.8.8.8 8.8.4.4' (but re-set it)
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from '' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '8.8.8.8 8.8.4.4' were set manually
DNS servers '8.8.8.8 8.8.4.4' will be used for DNS queries when the VPN is active
The DNS servers include only free public DNS servers known to Tunnelblick.
Flushed the DNS cache via dscacheutil
Flushed the DNS cache via discoveryutil udnsflushcaches
Flushed the DNS cache via discoveryutil mdnsflushcache
RwNo matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
2015-03-12 21:36:46 *Tunnelblick: No 'connected.sh' script to execute
2015-03-12 21:36:51 *Tunnelblick: This computer's apparent public IP address (70.194.140.112) was unchanged after the connection was made
2015-03-12 21:36:55 *Tunnelblick process-network-changes: A system configuration change was ignored
2015-03-12 21:37:13 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
2015-03-12 21:37:13 *Tunnelblick: Disconnecting using 'kill'
2015-03-12 21:37:13 us=836109 event_wait : Interrupted system call (code=4)
2015-03-12 21:37:13 us=836660 TCP/UDP: Closing socket
2015-03-12 21:37:13 us=837385 /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.route-pre-down.tunnelblick.sh
Cancelled monitoring of system configuration changes
Released the DHCP lease via ipconfig set "tap0" NONE.
End of output from client.route-pre-down.tunnelblick.sh
**********************************************
2015-03-12 21:37:13 us=918017 /sbin/route delete -net 192.168.1.1 192.168.1.1 255.255.255.0
route: writing to routing socket: not in table
delete net 192.168.1.1: gateway 192.168.1.1: not in table
2015-03-12 21:37:13 us=922225 Closing TUN/TAP interface
2015-03-12 21:37:13 us=922650 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -a -d -f -m -r -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.down.tunnelblick.sh
Restored the DNS and SMB configurations
Flushed the DNS cache via dscacheutil
Flushed the DNS cache via discoveryutil udnsflushcaches
Flushed the DNS cache via discoveryutil mdnsflushcache
No matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
Resetting primary interface 'en0' via networksetup -setairportpower en0 off/on...
End of output from client.down.tunnelblick.sh
**********************************************
2015-03-12 21:37:16 us=736733 SIGTERM[hard,] received, process exiting
2015-03-12 21:37:16 us=737795 MANAGEMENT: >STATE:1426214236,EXITING,SIGTERM,,
2015-03-12 21:37:17 *Tunnelblick: No 'post-disconnect.sh' script to execute
2015-03-12 21:37:17 *Tunnelblick: Expected disconnection occurred.

================================================================================

Console Log:

2015-03-12 19:22:52 tunnelblickd[981] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 19:22:53 tunnelblickd[981] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 19:24:06 tunnelblickd[994] Status = 0 from tunnelblick-helper command 'kill 987'
2015-03-12 19:24:07 tunnelblickd[994] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 19:24:07 tunnelblickd[994] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 19:25:56 tunnelblickd[1008] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 19:25:57 tunnelblickd[1008] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 19:26:28 tunnelblickd[1044] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 19:36:11 tunnelblickd[1302] Status = 0 from tunnelblick-helper command 'reconnecting NetgearVPN.tblk 1'
2015-03-12 19:37:01 tunnelblickd[1336] Status = 0 from tunnelblick-helper command 'kill 1014'
2015-03-12 19:37:03 Tunnelblick[352] startDisconnectingUserKnows: while already disconnecting 'NetgearVPN'; OpenVPN state = 'DISCONNECTING'
2015-03-12 19:37:04 tunnelblickd[1336] Status = 0 from tunnelblick-helper command 'kill 1014'
2015-03-12 19:37:05 tunnelblickd[1336] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 19:37:05 tunnelblickd[1336] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 19:38:03 tunnelblickd[1487] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 19:38:04 tunnelblickd[1487] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 19:38:31 tunnelblickd[1487] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 19:48:40 Tunnelblick[352] NSSoftLinking - The ShareKit framework's library couldn't be loaded from /System/Library/PrivateFrameworks/ShareKit.framework/Versions/A/ShareKit.
2015-03-12 19:48:49 tunnelblickd[1790] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 20:06:47 Tunnelblick[352] DEBUG: Updater: systemVersion 10.10.2 satisfies minimumSystemVersion 10.4.0
2015-03-12 20:06:47 Tunnelblick[352] DEBUG: Updater: systemVersion 10.10.2 satisfies minimumSystemVersion 10.4.0
2015-03-12 20:40:05 tunnelblickd[2255] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:41:24 tunnelblickd[2278] Status = 0 from tunnelblick-helper command 'kill 1493'
2015-03-12 20:41:27 tunnelblickd[2278] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 20:41:28 tunnelblickd[2278] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 20:41:34 tunnelblickd[2278] Status = 252 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:41:34 Tunnelblick[352] tunnelblickd status from compareShadowCopy: 252
2015-03-12 20:41:44 Tunnelblick[352] Authorization to create/update a secure (shadow) copy of the configuration file cancelled by user.
2015-03-12 20:41:51 tunnelblickd[2278] Status = 252 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:41:51 Tunnelblick[352] tunnelblickd status from compareShadowCopy: 252
2015-03-12 20:43:56 tunnelblickd[2446] Status = 252 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:43:57 Tunnelblick[352] tunnelblickd status from compareShadowCopy: 252
2015-03-12 20:44:05 Tunnelblick[352] Beginning installation or repair
2015-03-12 20:44:05 authexec[2451] executing /Applications/Tunnelblick.app/Contents/Resources/installer
2015-03-12 20:44:05 Tunnelblick[352] Installation or repair succeeded; Log:
Tunnelblick installer started 2015-03-12 20:44:05. 3 arguments: 0x0001
/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
/Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
Copied /Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
to /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk.temp
Renamed /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk.temp
to /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
Changed ownership of /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk and its contents from 501:80 to 0:0
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/ca.crt
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/client.crt
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/client.key
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/config.ovpn
Tunnelblick installer finished without error
2015-03-12 20:44:05 Tunnelblick[352] Created or updated secure (shadow) copy of configuration file /Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
2015-03-12 20:44:05 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 20:44:06 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 20:44:33 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 20:45:02 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 20:45:26 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'kill 2458'
2015-03-12 20:45:28 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:45:31 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 20:45:31 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 20:45:45 tunnelblickd[2446] Status = 252 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 20:45:45 Tunnelblick[352] tunnelblickd status from compareShadowCopy: 252
2015-03-12 20:45:51 Tunnelblick[352] Beginning installation or repair
2015-03-12 20:45:51 authexec[2807] executing /Applications/Tunnelblick.app/Contents/Resources/installer
2015-03-12 20:45:51 Tunnelblick[352] Installation or repair succeeded; Log:
Tunnelblick installer started 2015-03-12 20:45:51. 3 arguments: 0x0001
/Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
/Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
Copied /Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
to /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk.temp
Renamed /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk.temp
to /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
Changed ownership of /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk and its contents from 501:80 to 0:0
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents
Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/ca.crt
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/client.crt
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/client.key
Changed permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/mymac/NetgearVPN.tblk/Contents/Resources/config.ovpn
Tunnelblick installer finished without error
2015-03-12 20:45:51 Tunnelblick[352] Created or updated secure (shadow) copy of configuration file /Users/mymac/Library/Application Support/Tunnelblick/Configurations/NetgearVPN.tblk
2015-03-12 20:45:51 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 20:45:52 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1338 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 20:46:18 tunnelblickd[2446] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 20:55:29 tunnelblickd[3087] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 21:00:43 tunnelblickd[3139] Status = 0 from tunnelblick-helper command 'kill 2813'
2015-03-12 21:00:47 tunnelblickd[3139] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 21:00:48 tunnelblickd[3139] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 21:00:50 tunnelblickd[3139] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 21:00:51 tunnelblickd[3139] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 51058 -ptADGNWradsgnw 2.3.6'
2015-03-12 21:01:51 tunnelblickd[3292] Status = 0 from tunnelblick-helper command 'reconnecting NetgearVPN.tblk 1'
2015-03-12 21:02:32 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'kill 3286'
2015-03-12 21:02:33 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 21:02:34 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 21:02:35 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 21:02:36 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1338 1 0 1 0 51058 -ptADGNWradsgnw 2.3.6'
2015-03-12 21:02:56 tunnelblickd[3298] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 21:21:18 tunnelblickd[3660] Status = 0 from tunnelblick-helper command 'kill 3309'
2015-03-12 21:21:21 tunnelblickd[3660] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 21:21:23 tunnelblickd[3660] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 21:21:23 tunnelblickd[3660] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 21:21:28 tunnelblickd[3660] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'
2015-03-12 21:36:20 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'compareShadowCopy NetgearVPN'
2015-03-12 21:36:21 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'start NetgearVPN.tblk 1337 1 0 1 0 18290 -ptADGNWradsgnw 2.3.6'
2015-03-12 21:36:45 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'connected NetgearVPN.tblk 1'
2015-03-12 21:37:14 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'kill 3859'
2015-03-12 21:37:17 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'unloadKexts 2'
2015-03-12 21:37:17 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'postDisconnect NetgearVPN.tblk 1'
2015-03-12 21:37:27 tunnelblickd[3853] Status = 0 from tunnelblick-helper command 'printSanitizedConfigurationFile NetgearVPN.tblk 0'

================================================================================

Non-Apple kexts that are loaded:

Index Refs Address Size Wired Name (Version) <Linked Against>
114 0 0xffffff7f80a40000 0x7000 0x7000 com.sophos.nke.swi (9.2.50) <4 3 1>
129 0 0xffffff7f80a18000 0x5000 0x5000 com.sophos.kext.sav (9.2.50) <5 4 1>
Top
User avatar
maikcat
Forum Team
Posts: 4200
Joined: Wed Jan 12, 2011 9:23 am
Location: Athens,Greece
Contact:
Contact maikcat

Re: This computer's apparent public ip address was not diffe

Post by maikcat » Sun Mar 15, 2015 7:38 pm

can you please find and post the server config used from your netgear?

Michael.
Top
bori
OpenVpn Newbie
Posts: 3
Joined: Fri Mar 13, 2015 2:52 pm

Re: This computer's apparent public ip address was not diffe

Post by bori » Mon Mar 16, 2015 1:18 am

I'm a noob. I can't seem to find the server config file for the netgear 7000.

I did try a couple other things. I set the server to route all traffic through the VPN. On the netgear, this results in a push for redirect-gateway def1. When I connect, I establish a vpn connection, but am unable to access the internet (and receive this notification from the vpn client). At this point, Set DNS/WINS is set to "set name server". I verified this is not a DNS issue.

When I change Set DNS/WINS to "Set name server (3.1)", I am able to connect to the vpn server and have internet access, but the IP address does not change.

All of this anomalous behavior started with the upgrade to Yosemite 10.10.2. Prior to that, I was able to connect and the IP address changed.
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: This computer's apparent public ip address was not diffe

Post by Traffic » Mon Mar 16, 2015 12:32 pm

bori wrote:There are a couple curious messages:
2015-03-12 21:36:45 us=590666 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
Confirmed by your client log:
bori wrote:Thu Mar 12 21:36:43 2015 us=548107 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.1 255.255.255.0 192.168.1.1,route-gateway dhcp,ping 10,ping-restart 120'
Note: No ifconfig and so no ip address for the TAP adapter.

As a hunch .. have you defined a Network on your server to use as a VPN ? (Typically 10.8.0.0/24)
bori wrote:2015-03-12 21:36:45 us=591571 /sbin/route add -net 192.168.1.1 192.168.1.1 255.255.255.0
route: writing to routing socket: Can't assign requested address
add net 192.168.1.1: gateway 192.168.1.1: Can't assign requested address
Just to make sure:
  • NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Top
bori
OpenVpn Newbie
Posts: 3
Joined: Fri Mar 13, 2015 2:52 pm

Re: This computer's apparent public ip address was not diffe

Post by bori » Wed Mar 18, 2015 12:15 am

The router is setup to use as a VPN, but I don't have any other server setup to use as a VPN. I went ahead and changed the subnet. I've retested everything and still no joy. Posted below are the most current logs. Its quite odd. It looks like it still has the same issue. The router (netgear r7000) also has a setting to route all traffic through the vpn; however, when I set that switch, the VPN seems to connect but I have no internet connection.

By the way - Thanks a ton for taking so much time with this. I really appreciate it!

Here are the current logs:
*Tunnelblick: OS X 10.10.2; Tunnelblick 3.5beta06 (build 4211); Admin user

Configuration Netgear_Home

"Sanitized" condensed configuration file for /Library/Application Support/Tunnelblick/Shared/Netgear_Home.tblk:

client
dev tap
proto udp
remote myname.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5


================================================================================

"Sanitized" full configuration file

client
dev tap
proto udp
remote myname.mynetgear.com 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5



================================================================================

There are no unusual files in Netgear_Home.tblk

================================================================================

Configuration preferences:

-routeAllTrafficThroughVpn = 1
-keychainHasPrivateKey = 0
-keychainHasUsernameAndPassword = 0
-keychainHasUsername = 0
-lastConnectionSucceeded = 1

================================================================================

Wildcard preferences:


================================================================================

Program preferences:

launchAtNextLogin = 1
notOKToCheckThatIPAddressDidNotChangeAfterConnection = 0
askedUserIfOKToCheckThatIPAddressDidNotChangeAfterConnection = 1
tunnelblickVersionHistory = (
"3.5beta06 (build 4211)"
)
lastLaunchTime = 448328641.233075
connectionWindowDisplayCriteria = showWhenConnecting
maxLogDisplaySize = 102400
lastConnectedDisplayName = Netgear_Home
installationUID (not shown)
keyboardShortcutIndex = 1
updateCheckAutomatically = 1
updateSendProfileInfo = 1
NSWindow Frame ConnectingWindow = 445 443 389 187 0 0 1280 777
detailsWindowFrameVersion = 4211
detailsWindowFrame = {{182, 233}, {916, 467}}
detailsWindowLeftFrame = {{0, 0}, {163, 350}}
leftNavSelectedDisplayName = Netgear_Home
haveDealtWithSparkle1dot5b6 = 1
haveDealtWithOldTunTapPreferences = 1
haveDealtWithOldLoginItem = 1
SUEnableAutomaticChecks = 1
SUFeedURL = https://www.tunnelblick.net/appcast-b.rss
SUScheduledCheckInterval = 86400
SUSendProfileInfo = 1
SULastCheckTime = 2015-03-17 23:44:01 +0000
SULastProfileSubmissionDate = 2015-03-17 23:44:01 +0000
SUHasLaunchedBefore = 1
WebKitDefaultFontSize = 16
WebKitStandardFont = Times

================================================================================

Tunnelblick Log:

2015-03-17 18:59:29 us=595535 Current Parameter Settings:
2015-03-17 18:59:29 us=595780 config = '/Library/Application Support/Tunnelblick/Shared/Netgear_Home.tblk/Contents/Resources/config.ovpn'
2015-03-17 18:59:29 us=595788 mode = 0
2015-03-17 18:59:29 us=595793 show_ciphers = DISABLED
2015-03-17 18:59:29 us=595798 show_digests = DISABLED
2015-03-17 18:59:29 us=595802 show_engines = DISABLED
2015-03-17 18:59:29 us=595807 genkey = DISABLED
2015-03-17 18:59:29 us=595811 key_pass_file = '[UNDEF]'
2015-03-17 18:59:29 us=595816 show_tls_ciphers = DISABLED
2015-03-17 18:59:29 us=595820 Connection profiles [default]:
2015-03-17 18:59:29 us=595825 proto = udp
2015-03-17 18:59:29 us=595829 local = '[UNDEF]'
2015-03-17 18:59:29 us=595834 local_port = 0
2015-03-17 18:59:29 us=595838 remote = 'ragnar.mynetgear.com'
2015-03-17 18:59:29 us=595843 remote_port = 12974
2015-03-17 18:59:29 us=595847 remote_float = DISABLED
2015-03-17 18:59:29 us=595851 bind_defined = DISABLED
2015-03-17 18:59:29 us=595856 bind_local = DISABLED
2015-03-17 18:59:29 us=595860 connect_retry_seconds = 5
2015-03-17 18:59:29 us=595865 connect_timeout = 10
2015-03-17 18:59:29 us=595869 connect_retry_max = 0
2015-03-17 18:59:29 us=595874 socks_proxy_server = '[UNDEF]'
2015-03-17 18:59:29 us=595878 socks_proxy_port = 0
2015-03-17 18:59:29 us=595882 socks_proxy_retry = DISABLED
2015-03-17 18:59:29 us=595887 tun_mtu = 1500
2015-03-17 18:59:29 us=595891 tun_mtu_defined = ENABLED
2015-03-17 18:59:29 us=595896 link_mtu = 1500
2015-03-17 18:59:29 us=595900 link_mtu_defined = DISABLED
2015-03-17 18:59:29 us=595904 tun_mtu_extra = 32
2015-03-17 18:59:29 us=595909 tun_mtu_extra_defined = ENABLED
2015-03-17 18:59:29 us=595913 mtu_discover_type = -1
2015-03-17 18:59:29 us=595918 fragment = 0
2015-03-17 18:59:29 us=595922 mssfix = 1450
2015-03-17 18:59:29 us=595927 explicit_exit_notification = 0
2015-03-17 18:59:29 us=595931 Connection profiles END
2015-03-17 18:59:29 us=595935 remote_random = DISABLED
2015-03-17 18:59:29 us=595940 ipchange = '[UNDEF]'
2015-03-17 18:59:29 us=595944 dev = 'tap'
2015-03-17 18:59:29 us=595948 dev_type = '[UNDEF]'
2015-03-17 18:59:29 us=595955 dev_node = '[UNDEF]'
2015-03-17 18:59:29 us=595959 lladdr = '[UNDEF]'
2015-03-17 18:59:29 us=595963 topology = 1
2015-03-17 18:59:29 us=595968 tun_ipv6 = DISABLED
2015-03-17 18:59:29 us=595972 ifconfig_local = '[UNDEF]'
2015-03-17 18:59:29 us=595977 ifconfig_remote_netmask = '[UNDEF]'
2015-03-17 18:59:29 us=595981 ifconfig_noexec = DISABLED
2015-03-17 18:59:29 us=595985 ifconfig_nowarn = DISABLED
2015-03-17 18:59:29 us=595990 ifconfig_ipv6_local = '[UNDEF]'
2015-03-17 18:59:29 us=595994 ifconfig_ipv6_netbits = 0
2015-03-17 18:59:29 us=595999 ifconfig_ipv6_remote = '[UNDEF]'
2015-03-17 18:59:29 us=596003 shaper = 0
2015-03-17 18:59:29 us=596007 mtu_test = 0
2015-03-17 18:59:29 us=596012 mlock = DISABLED
2015-03-17 18:59:29 us=596016 keepalive_ping = 0
2015-03-17 18:59:29 us=596021 keepalive_timeout = 0
2015-03-17 18:59:29 us=596025 inactivity_timeout = 0
2015-03-17 18:59:29 us=596029 ping_send_timeout = 0
2015-03-17 18:59:29 us=596034 ping_rec_timeout = 0
2015-03-17 18:59:29 us=596038 ping_rec_timeout_action = 0
2015-03-17 18:59:29 us=596042 ping_timer_remote = DISABLED
2015-03-17 18:59:29 us=596047 remap_sigusr1 = 0
2015-03-17 18:59:29 us=596051 persist_tun = ENABLED
2015-03-17 18:59:29 us=596055 persist_local_ip = DISABLED
2015-03-17 18:59:29 us=596060 persist_remote_ip = DISABLED
2015-03-17 18:59:29 us=596064 persist_key = ENABLED
2015-03-17 18:59:29 us=596068 passtos = DISABLED
2015-03-17 18:59:29 us=596073 resolve_retry_seconds = 1000000000
2015-03-17 18:59:29 us=596077 username = '[UNDEF]'
2015-03-17 18:59:29 us=596087 groupname = '[UNDEF]'
2015-03-17 18:59:29 us=596092 chroot_dir = '[UNDEF]'
2015-03-17 18:59:29 us=596096 cd_dir = '/Library/Application Support/Tunnelblick/Shared/Netgear_Home.tblk/Contents/Resources'
2015-03-17 18:59:29 us=596101 writepid = '[UNDEF]'
2015-03-17 18:59:29 us=596105 up_script = '/Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw'
2015-03-17 18:59:29 us=596110 down_script = '/Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw'
2015-03-17 18:59:29 us=596114 down_pre = DISABLED
2015-03-17 18:59:29 us=596119 up_restart = DISABLED
2015-03-17 18:59:29 us=596123 up_delay = DISABLED
2015-03-17 18:59:29 us=596127 daemon = ENABLED
2015-03-17 18:59:29 us=596132 inetd = 0
2015-03-17 18:59:29 us=596136 log = ENABLED
2015-03-17 18:59:29 us=596140 suppress_timestamps = DISABLED
2015-03-17 18:59:29 us=596145 nice = 0
2015-03-17 18:59:29 us=596149 verbosity = 5
2015-03-17 18:59:29 us=596153 mute = 0
2015-03-17 18:59:29 us=596158 status_file = '[UNDEF]'
2015-03-17 18:59:29 us=596162 status_file_version = 1
2015-03-17 18:59:29 us=596167 status_file_update_freq = 60
2015-03-17 18:59:29 us=596171 occ = ENABLED
2015-03-17 18:59:29 us=596175 rcvbuf = 65536
2015-03-17 18:59:29 us=596180 sndbuf = 65536
2015-03-17 18:59:29 us=596184 sockflags = 0
2015-03-17 18:59:29 us=596188 fast_io = DISABLED
2015-03-17 18:59:29 us=596193 lzo = 7
2015-03-17 18:59:29 us=596197 route_script = '[UNDEF]'
2015-03-17 18:59:29 us=596201 route_default_gateway = '[UNDEF]'
2015-03-17 18:59:29 us=596206 route_default_metric = 0
2015-03-17 18:59:29 us=596210 route_noexec = DISABLED
2015-03-17 18:59:29 us=596214 route_delay = 0
2015-03-17 18:59:29 us=596219 route_delay_window = 30
2015-03-17 18:59:29 us=596223 route_delay_defined = DISABLED
2015-03-17 18:59:29 us=596228 route_nopull = DISABLED
2015-03-17 18:59:29 us=596234 route_gateway_via_dhcp = DISABLED
2015-03-17 18:59:29 us=596239 max_routes = 100
2015-03-17 18:59:29 us=596243 allow_pull_fqdn = DISABLED
2015-03-17 18:59:29 us=596250 [redirect_default_gateway local=0]
2015-03-17 18:59:29 us=596254 management_addr = '127.0.0.1'
2015-03-17 18:59:29 us=596259 management_port = 1337
2015-03-17 18:59:29 us=596263 management_user_pass = '[UNDEF]'
2015-03-17 18:59:29 us=596268 management_log_history_cache = 250
2015-03-17 18:59:29 us=596273 management_echo_buffer_size = 100
2015-03-17 18:59:29 us=596278 management_write_peer_info_file = '[UNDEF]'
2015-03-17 18:59:29 us=596282 management_client_user = '[UNDEF]'
2015-03-17 18:59:29 us=596290 management_client_group = '[UNDEF]'
2015-03-17 18:59:29 us=596295 management_flags = 6
2015-03-17 18:59:29 us=596299 shared_secret_file = '[UNDEF]'
2015-03-17 18:59:29 us=596304 key_direction = 0
2015-03-17 18:59:29 us=596309 ciphername_defined = ENABLED
2015-03-17 18:59:29 us=596313 ciphername = 'AES-128-CBC'
2015-03-17 18:59:29 us=596318 authname_defined = ENABLED
2015-03-17 18:59:29 us=596322 authname = 'SHA1'
2015-03-17 18:59:29 us=596327 prng_hash = 'SHA1'
2015-03-17 18:59:29 us=596331 prng_nonce_secret_len = 16
2015-03-17 18:59:29 us=596336 keysize = 0
2015-03-17 18:59:29 us=596340 engine = DISABLED
2015-03-17 18:59:29 us=596345 replay = ENABLED
2015-03-17 18:59:29 us=596349 mute_replay_warnings = DISABLED
2015-03-17 18:59:29 us=596354 replay_window = 64
2015-03-17 18:59:29 us=596359 replay_time = 15
2015-03-17 18:59:29 us=596363 packet_id_file = '[UNDEF]'
2015-03-17 18:59:29 us=596368 use_iv = ENABLED
2015-03-17 18:59:29 us=596372 test_crypto = DISABLED
2015-03-17 18:59:29 us=596381 tls_server = DISABLED
2015-03-17 18:59:29 us=596386 tls_client = ENABLED
2015-03-17 18:59:29 us=596391 key_method = 2
2015-03-17 18:59:29 us=596395 ca_file = 'ca.crt'
2015-03-17 18:59:29 us=596400 ca_path = '[UNDEF]'
2015-03-17 18:59:29 us=596404 dh_file = '[UNDEF]'
2015-03-17 18:59:29 us=596409 cert_file = 'client.crt'
2015-03-17 18:59:29 us=596413 priv_key_file = 'client.key'
2015-03-17 18:59:29 us=596418 pkcs12_file = '[UNDEF]'
2015-03-17 18:59:29 us=596422 cipher_list = '[UNDEF]'
2015-03-17 18:59:29 us=596427 tls_verify = '[UNDEF]'
2015-03-17 18:59:29 us=596432 tls_export_cert = '[UNDEF]'
2015-03-17 18:59:29 us=596436 verify_x509_type = 0
2015-03-17 18:59:29 us=596441 verify_x509_name = '[UNDEF]'
2015-03-17 18:59:29 us=596445 crl_file = '[UNDEF]'
2015-03-17 18:59:29 us=596450 ns_cert_type = 0
2015-03-17 18:59:29 us=596454 remote_cert_ku = 0
2015-03-17 18:59:29 us=596459 remote_cert_ku = 0
2015-03-17 18:59:29 us=596463 remote_cert_ku = 0
2015-03-17 18:59:29 us=596468 remote_cert_ku = 0
2015-03-17 18:59:29 us=596472 remote_cert_ku = 0
2015-03-17 18:59:29 us=596477 remote_cert_ku = 0
2015-03-17 18:59:29 us=596481 remote_cert_ku = 0
2015-03-17 18:59:29 us=596486 remote_cert_ku = 0
2015-03-17 18:59:29 us=596490 remote_cert_ku = 0
2015-03-17 18:59:29 us=596495 remote_cert_ku = 0
2015-03-17 18:59:29 us=596499 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596504 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596508 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596513 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596517 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596522 remote_cert_ku[i] = 0
2015-03-17 18:59:29 us=596526 remote_cert_eku = '[UNDEF]'
2015-03-17 18:59:29 us=596531 ssl_flags = 0
2015-03-17 18:59:29 us=596535 tls_timeout = 2
2015-03-17 18:59:29 us=596540 renegotiate_bytes = 0
2015-03-17 18:59:29 us=596544 renegotiate_packets = 0
2015-03-17 18:59:29 us=596549 renegotiate_seconds = 3600
2015-03-17 18:59:29 us=596554 handshake_window = 60
2015-03-17 18:59:29 us=596558 transition_window = 3600
2015-03-17 18:59:29 us=596563 single_session = DISABLED
2015-03-17 18:59:29 us=596567 push_peer_info = DISABLED
2015-03-17 18:59:29 us=596572 tls_exit = DISABLED
2015-03-17 18:59:29 us=596576 tls_auth_file = '[UNDEF]'
2015-03-17 18:59:29 us=596581 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596586 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596590 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596595 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596599 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596604 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596608 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596613 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596617 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596622 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596626 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596631 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596635 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596640 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596644 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596649 pkcs11_protected_authentication = DISABLED
2015-03-17 18:59:29 us=596655 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596660 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596665 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596674 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596679 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596683 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596688 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596692 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596697 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596701 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596706 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596710 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596715 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596720 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596724 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596729 pkcs11_private_mode = 00000000
2015-03-17 18:59:29 us=596733 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596738 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596742 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596747 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596751 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596756 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596760 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596765 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596769 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596773 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596778 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596782 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596787 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596792 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596796 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596801 pkcs11_cert_private = DISABLED
2015-03-17 18:59:29 us=596805 pkcs11_pin_cache_period = -1
2015-03-17 18:59:29 us=596810 pkcs11_id = '[UNDEF]'
2015-03-17 18:59:29 us=596814 pkcs11_id_management = DISABLED
2015-03-17 18:59:29 us=596823 server_network = 0.0.0.0
2015-03-17 18:59:29 us=596828 server_netmask = 0.0.0.0
2015-03-17 18:59:29 us=596836 server_network_ipv6 = ::
2015-03-17 18:59:29 us=596841 server_netbits_ipv6 = 0
2015-03-17 18:59:29 us=596846 server_bridge_ip = 0.0.0.0
2015-03-17 18:59:29 us=596851 server_bridge_netmask = 0.0.0.0
2015-03-17 18:59:29 us=596856 server_bridge_pool_start = 0.0.0.0
2015-03-17 18:59:29 us=596861 server_bridge_pool_end = 0.0.0.0
2015-03-17 18:59:29 us=596866 ifconfig_pool_defined = DISABLED
2015-03-17 18:59:29 us=596871 ifconfig_pool_start = 0.0.0.0
2015-03-17 18:59:29 us=596876 ifconfig_pool_end = 0.0.0.0
2015-03-17 18:59:29 us=596881 ifconfig_pool_netmask = 0.0.0.0
2015-03-17 18:59:29 us=596886 ifconfig_pool_persist_filename = '[UNDEF]'
2015-03-17 18:59:29 us=596891 ifconfig_pool_persist_refresh_freq = 600
2015-03-17 18:59:29 us=596895 ifconfig_ipv6_pool_defined = DISABLED
2015-03-17 18:59:29 us=596900 ifconfig_ipv6_pool_base = ::
2015-03-17 18:59:29 us=596905 ifconfig_ipv6_pool_netbits = 0
2015-03-17 18:59:29 us=596909 n_bcast_buf = 256
2015-03-17 18:59:29 us=596914 tcp_queue_limit = 64
2015-03-17 18:59:29 us=596918 real_hash_size = 256
2015-03-17 18:59:29 us=596923 virtual_hash_size = 256
2015-03-17 18:59:29 us=596927 client_connect_script = '[UNDEF]'
2015-03-17 18:59:29 us=596932 learn_address_script = '[UNDEF]'
2015-03-17 18:59:29 us=596936 client_disconnect_script = '[UNDEF]'
2015-03-17 18:59:29 us=596941 client_config_dir = '[UNDEF]'
2015-03-17 18:59:29 us=596945 ccd_exclusive = DISABLED
2015-03-17 18:59:29 us=596950 tmp_dir = '/var/folders/r5/zqcx92517z739d2tqgtgq07r0000gn/T/'
2015-03-17 18:59:29 us=596955 push_ifconfig_defined = DISABLED
2015-03-17 18:59:29 us=596960 push_ifconfig_local = 0.0.0.0
2015-03-17 18:59:29 us=596969 push_ifconfig_remote_netmask = 0.0.0.0
2015-03-17 18:59:29 us=596974 push_ifconfig_ipv6_defined = DISABLED
2015-03-17 18:59:29 us=596979 push_ifconfig_ipv6_local = ::/0
2015-03-17 18:59:29 us=596984 push_ifconfig_ipv6_remote = ::
2015-03-17 18:59:29 us=596988 enable_c2c = DISABLED
2015-03-17 18:59:29 us=596993 duplicate_cn = DISABLED
2015-03-17 18:59:29 us=596997 cf_max = 0
2015-03-17 18:59:29 us=597002 cf_per = 0
2015-03-17 18:59:29 us=597006 max_clients = 1024
2015-03-17 18:59:29 us=597011 max_routes_per_client = 256
2015-03-17 18:59:29 us=597015 auth_user_pass_verify_script = '[UNDEF]'
2015-03-17 18:59:29 us=597020 auth_user_pass_verify_script_via_file = DISABLED
2015-03-17 18:59:29 us=597025 port_share_host = '[UNDEF]'
2015-03-17 18:59:29 us=597029 port_share_port = 0
2015-03-17 18:59:29 us=597034 client = ENABLED
2015-03-17 18:59:29 us=597038 pull = ENABLED
2015-03-17 18:59:29 us=597043 auth_user_pass_file = '[UNDEF]'
2015-03-17 18:59:29 us=597051 OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Jan 22 2015
2015-03-17 18:59:29 us=597060 library versions: OpenSSL 1.0.1k 8 Jan 2015, LZO 2.08
2015-03-17 18:59:29 us=598029 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1337
2015-03-17 18:59:29 us=598453 Need hold release from management interface, waiting...
2015-03-17 18:59:29 *Tunnelblick: openvpnstart starting OpenVPN
2015-03-17 18:59:30 us=8945 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:1337
2015-03-17 18:59:30 us=39049 MANAGEMENT: CMD 'pid'
2015-03-17 18:59:30 us=39422 MANAGEMENT: CMD 'state on'
2015-03-17 18:59:30 us=39609 MANAGEMENT: CMD 'state'
2015-03-17 18:59:30 us=39813 MANAGEMENT: CMD 'bytecount 1'
2015-03-17 18:59:30 us=39954 MANAGEMENT: CMD 'hold release'
2015-03-17 18:59:30 us=40255 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 18:59:30 us=40397 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2015-03-17 18:59:30 *Tunnelblick: Established communication with OpenVPN
2015-03-17 18:59:30 us=45247 LZO compression initialized
2015-03-17 18:59:30 us=45484 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
2015-03-17 18:59:30 us=45739 Socket Buffers: R=[196724->65536] S=[9216->65536]
2015-03-17 18:59:30 us=47911 MANAGEMENT: >STATE:1426636770,RESOLVE,,,
2015-03-17 18:59:33 us=66439 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
2015-03-17 18:59:33 us=66890 Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
2015-03-17 18:59:33 us=67232 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
2015-03-17 18:59:33 us=67943 Local Options hash (VER=V4): 'b498be7c'
2015-03-17 18:59:33 us=69055 Expected Remote Options hash (VER=V4): '26e19fc0'
2015-03-17 18:59:33 us=69345 UDPv4 link local: [undef]
2015-03-17 18:59:33 us=69567 UDPv4 link remote: [AF_INET]x.x.x.x:12974
2015-03-17 18:59:33 us=69828 MANAGEMENT: >STATE:1426636773,WAIT,,,
RTue Mar 17 18:59:35 2015 us=783800 MANAGEMENT: >STATE:1426636775,AUTH,,,
2015-03-17 18:59:35 us=784248 TLS: Initial packet from [AF_INET]x.x.x.x:12974, sid=3c533f34 3d9f98c0
2015-03-17 18:59:47 us=995601 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=netgear, emailAddress=mail@netgear.com
2015-03-17 18:59:47 us=996446 VERIFY OK: depth=0, C=TW, ST=TW, O=netgear, OU=netgear, CN=netgear, emailAddress=mail@netgear.com
RWRTue Mar 17 19:00:23 2015 us=560596 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-03-17 19:00:23 us=562097 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2015-03-17 19:00:23 us=563251 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2015-03-17 19:00:23 us=563505 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WTue Mar 17 19:00:23 2015 us=563910 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2015-03-17 19:00:23 us=564419 [netgear] Peer Connection Initiated with [AF_INET]x.x.x.x:12974
2015-03-17 19:00:24 us=627469 MANAGEMENT: >STATE:1426636824,GET_CONFIG,,,
RTue Mar 17 19:00:25 2015 us=660451 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
2015-03-17 19:00:30 us=786540 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
2015-03-17 19:00:36 us=65588 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
RRWRTue Mar 17 19:00:39 2015 us=173266 PUSH: Received control message: 'PUSH_REPLY,route 192.168.10.1 255.255.255.0 192.168.10.1,route-gateway dhcp,ping 10,ping-restart 120'
2015-03-17 19:00:39 us=173850 OPTIONS IMPORT: timers and/or timeouts modified
2015-03-17 19:00:39 us=174614 OPTIONS IMPORT: route options modified
2015-03-17 19:00:39 us=175520 OPTIONS IMPORT: route-related options modified
2015-03-17 19:00:39 us=176461 TUN/TAP device /dev/tap0 opened
2015-03-17 19:00:39 us=176810 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.up.tunnelblick.sh
Configuring tap DNS via DHCP asynchronously
End of output from client.up.tunnelblick.sh
**********************************************
2015-03-17 19:00:41 us=218041 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
2015-03-17 19:00:41 us=219177 MANAGEMENT: >STATE:1426636841,ADD_ROUTES,,,
2015-03-17 19:00:41 us=219575 /sbin/route add -net 192.168.10.1 192.168.10.1 255.255.255.0
2015-03-17 19:00:41 *Tunnelblick: No 'connected.sh' script to execute
route: writing to routing socket: Can't assign requested address
add net 192.168.10.1: gateway 192.168.10.1: Can't assign requested address
2015-03-17 19:00:41 us=224001 Initialization Sequence Completed
2015-03-17 19:00:41 us=224399 MANAGEMENT: >STATE:1426636841,CONNECTED,SUCCESS,,x.x.x.x
RTue Mar 17 19:00:44 2015 us=114286 Extracted DHCP router address: 192.168.10.1
Sleeping for 0 seconds to wait for DHCP to finish setup.
Sleeping for 1 seconds to wait for DHCP to finish setup.
Sleeping for 2 seconds to wait for DHCP to finish setup.
Retrieved from DHCP/BOOTP packet: name server(s) [ 192.168.10.1 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
Ignoring ServerAddresses '192.168.10.1' because ServerAddresses was set manually
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
RwSaved the DNS and SMB configurations so they can be restored
Did not change DNS ServerAddresses setting of '8.8.8.8 8.8.4.4' (but re-set it)
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from '' to 'openvpn'
Did not change SMB NetBIOSName setting of ''
Did not change SMB Workgroup setting of ''
Did not change SMB WINSAddresses setting of ''
DNS servers '8.8.8.8 8.8.4.4' were set manually
DNS servers '8.8.8.8 8.8.4.4' will be used for DNS queries when the VPN is active
The DNS servers include only free public DNS servers known to Tunnelblick.
Flushed the DNS cache via dscacheutil
Flushed the DNS cache via discoveryutil udnsflushcaches
Flushed the DNS cache via discoveryutil mdnsflushcache
No matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
Setting up to monitor system configuration with process-network-changes
2015-03-17 19:00:53 *Tunnelblick process-network-changes: A system configuration change was ignored
2015-03-17 19:00:53 *Tunnelblick: This computer's apparent public IP address (y.y.y.y) was unchanged after the connection was made
2015-03-17 19:01:30 *Tunnelblick process-network-changes: A system configuration change was ignored
2015-03-17 19:01:58 *Tunnelblick: Disconnecting; notification window disconnect button pressed
2015-03-17 19:01:58 *Tunnelblick: Disconnecting using 'kill'
2015-03-17 19:01:58 us=614725 event_wait : Interrupted system call (code=4)
2015-03-17 19:01:58 us=615303 TCP/UDP: Closing socket
2015-03-17 19:01:58 us=616441 /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.route-pre-down.tunnelblick.sh
Cancelled monitoring of system configuration changes
Released the DHCP lease via ipconfig set "tap0" NONE.
End of output from client.route-pre-down.tunnelblick.sh
**********************************************
2015-03-17 19:01:58 us=703585 /sbin/route delete -net 192.168.10.1 192.168.10.1 255.255.255.0
route: writing to routing socket: not in table
delete net 192.168.10.1: gateway 192.168.10.1: not in table
2015-03-17 19:01:58 us=707528 Closing TUN/TAP interface
2015-03-17 19:01:58 us=707905 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.down.tunnelblick.sh
Restored the DNS and SMB configurations
Flushed the DNS cache via dscacheutil
Flushed the DNS cache via discoveryutil udnsflushcaches
Flushed the DNS cache via discoveryutil mdnsflushcache
No matching processes were found
mDNSResponder not running. Not notifying it that the DNS cache was flushed
End of output from client.down.tunnelblick.sh
**********************************************
2015-03-17 19:01:58 us=870755 SIGTERM[hard,] received, process exiting
2015-03-17 19:01:58 us=871586 MANAGEMENT: >STATE:1426636918,EXITING,SIGTERM,,
2015-03-17 19:02:00 *Tunnelblick: No 'post-disconnect.sh' script to execute
2015-03-17 19:02:00 *Tunnelblick: Expected disconnection occurred.


================================================================================

Non-Apple kexts that are loaded:

Index Refs Address Size Wired Name (Version) <Linked Against>
114 0 0xffffff7f80a40000 0x7000 0x7000 com.sophos.nke.swi (9.2.50) <4 3 1>
129 0 0xffffff7f80a18000 0x5000 0x5000 com.sophos.kext.sav (9.2.50) <5 4 1>
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: This computer's apparent public ip address was not diffe

Post by Traffic » Wed Mar 18, 2015 1:57 pm

bori wrote:Tue Mar 17 19:00:39 2015 us=173266 PUSH: Received control message: 'PUSH_REPLY,route 192.168.10.1 255.255.255.0 192.168.10.1,route-gateway dhcp,ping 10,ping-restart 120'
2015-03-17 19:00:39 us=173850 OPTIONS IMPORT: timers and/or timeouts modified
2015-03-17 19:00:39 us=174614 OPTIONS IMPORT: route options modified
2015-03-17 19:00:39 us=175520 OPTIONS IMPORT: route-related options modified
2015-03-17 19:00:39 us=176461 TUN/TAP device /dev/tap0 opened
2015-03-17 19:00:39 us=176810 /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -a -d -f -m -w -ptADGNWradsgnw tap0 1500 1590 init
**********************************************
Start of output from client.up.tunnelblick.sh
Configuring tap DNS via DHCP asynchronously
End of output from client.up.tunnelblick.sh
**********************************************
2015-03-17 19:00:41 us=218041 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
This is your router not sending your client an IP address for its TAP Adapter.

As you are running in TAP mode perhaps you must configure a DHCP IP Pool for VPN clients on the router .. Sorry but we do not support your router.

As a test I advise you to try running in mode TUN ..

Also:
bori wrote:I'm a noob. I can't seem to find the server config file for the netgear 7000.
Ask netgear support and consult your router manual.
Top
An-Droid
OpenVpn Newbie
Posts: 1
Joined: Thu Dec 31, 2015 5:56 am

Re: This computer's apparent public ip address was not diffe

Post by An-Droid » Fri Jan 01, 2016 6:47 pm

This is how I Fixed it

I know this is an old thread but I'll answer the question just in case anyone out-there runs into the same problem.

I too had the same problem, one thing I've learned as a software engineer when debugging code is not to rely 100% on vague log messages. Don't get me wrong depending on the problem logs can be very useful at times. If something is not working try to understand the underlying or the scope of the issue, you'll be better off that way.

Image

I found this issue didn't have anything to do with Netgear really but WiFi router configuration instead. User @Traffic provided the correct answer "NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet."

And that what's exactly my problem. All I did was to change my VPN's router subnet to an unlikely subnet any hotspot will use out there, by default lazy Admins will leave the subnets that comes pre-configured by the manufacturer, this very root cause of the problem is one of the reasons why many hotspots out there will have the same subnet. I hope this helps :ugeek:
Top
ae6dx
OpenVpn Newbie
Posts: 1
Joined: Sat Jan 06, 2018 12:51 am

Re: This computer's apparent public ip address was not different

Post by ae6dx » Tue Jan 16, 2018 1:53 am

I realize this thread is really old but I'm having the same issue. What did you exactly change? Are you referring to the Subnet setting in the router's LAN set up? What should it be changed to? Will this affect any devices currently connected?
Top
TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: This computer's apparent public ip address was not different

Post by TinCanTech » Wed Jan 17, 2018 2:53 pm

ae6dx wrote:
Tue Jan 16, 2018 1:53 am
 I realize this thread is really old
It is old and has been solved so now closed.
ae6dx wrote:
Tue Jan 16, 2018 1:53 am
 but I'm having the same issue
You may or may not be having the same issue, without details it is impossible to say ..

Please see:
HOWTO: Request Help !
ae6dx wrote:
Tue Jan 16, 2018 1:53 am
 What did you exactly change? Are you referring to the Subnet setting in the router's LAN set up?
Yes, the private LAN subnet.
ae6dx wrote:
Tue Jan 16, 2018 1:53 am
 What should it be changed to?
Any uncommon RFC1918 subnet ..eg: 192.168.171.0/24 (171 can be anything from say 21 to 254)
ae6dx wrote:
Tue Jan 16, 2018 1:53 am
 Will this affect any devices currently connected?
Of course it will.
Top
Locked

Return to “Server Administration”