Mac OpenVPN connect issues with Vigor switch while TunnelBlick works

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
metahome
OpenVpn Newbie
Posts: 2
Joined: Sat Sep 29, 2018 8:59 pm

Mac OpenVPN connect issues with Vigor switch while TunnelBlick works

Post by metahome » Tue Apr 05, 2022 10:42 am

I support a local organisation who have a Draytec Vigor 2865 firewall/switch running the latest firmware (4.3.2.1_BT).

I have setup OpenVPN on the switch. There are very limited options that can be set.

The switch generates a pretty simple .ovpn file:

Switch generated client config
#
client
dev tun
proto udp
remote XXX.XXX.XXX.XXX 1194
auth sha256
cipher aes-256-cbc
resolv-retry infinite
nobind

auth-user-pass

persist-key
persist-tun
reneg-sec 3600
ping 10
ping-exit 60
auth-nocache
#verb 5

<ca>
</ca>
<cert>
</cert>
<key>
</key>


When I try to connect with OpenVPN connect on MacOS, iPad or Windows the connection fails with a NEGOTIATION TIMEOUT error. Log from MacOS OpenVPN connect below.

Switch gives very limited diagnostics. These are also below.

When I install the same .ovpn file in TunnelBlick on Mac, the TunnelBlick VPN connects immediately without any problems and remains rock solid stable for hours on end. Logs from TunnelBlick connection are also below.

I am really puzzled why one client handles the VPN OK while another does not.

Can anyone give me any advice to help understand and fix the issue? I need this to work with OpenVPN connect as I have a couple of colleagues who use Windows, so Tunnelblick is not an option for them.

Here are the logs:

OpenVPN connect failure:

[olog]
[Apr 5, 2022, 10:49:31] OpenVPN core 3.git::d3f8b18b mac x86_64 64-bit built on Mar 25 2022 06:19:21
⏎[Apr 5, 2022, 10:49:31] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Apr 5, 2022, 10:49:31] UNUSED OPTIONS
6 [resolv-retry] [infinite]
7 [nobind]
9 [persist-key]
10 [persist-tun]
13 [ping-exit] [60]
14 [auth-nocache]
⏎[Apr 5, 2022, 10:49:31] EVENT: RESOLVE ⏎[Apr 5, 2022, 10:49:31] Contacting XXX.XXX.XXX.XXX:1194 via UDP
⏎[Apr 5, 2022, 10:49:31] EVENT: WAIT ⏎[Apr 5, 2022, 10:49:31] UnixCommandAgent: transmitting bypass route to /var/run/agent_ovpnconnect.sock
{
"host" : "XXX.XXX.XXX.XXX",
"ipv6" : false,
"pid" : 33868
}

⏎[Apr 5, 2022, 10:49:31] Connecting to [XXX.XXX.XXX.XXX]:1194 (XXX.XXX.XXX.XXX) via UDPv4
⏎[Apr 5, 2022, 10:49:31] EVENT: CONNECTING ⏎[Apr 5, 2022, 10:49:31] Tunnel Options:V4,dev-type tun,link-mtu 1569,tun-mtu 1500,proto UDPv4,cipher AES-256-CBC,auth SHA256,keysize 256,key-method 2,tls-client
⏎[Apr 5, 2022, 10:49:31] Creds: Username/Password
⏎[Apr 5, 2022, 10:49:31] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=mac
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305:AES-256-CBC
IV_GUI_VER=OCmacOS_3.3.5-4310
IV_SSO=webauth,openurl,crtext

⏎[Apr 5, 2022, 10:50:01] EVENT: CONNECTION_TIMEOUT BYTES_IN : 23474
BYTES_OUT : 4178
PACKETS_IN : 20
PACKETS_OUT : 21
CONNECTION_TIMEOUT : 1
⏎[Apr 5, 2022, 10:50:01] EVENT: DISCONNECTED ⏎[Apr 5, 2022, 10:50:04] Raw stats on disconnect:
BYTES_IN : 23474
BYTES_OUT : 4178
PACKETS_IN : 20
PACKETS_OUT : 21
CONNECTION_TIMEOUT : 1

⏎[Apr 5, 2022, 10:50:04] Performance stats on disconnect:
CPU usage (microseconds): 55902928
Network bytes per CPU second: 494
Tunnel bytes per CPU second: 0
[/olog]

TunnelBlick connect success log:
[olog]
2022-04-05 10:51:07.496600 *Tunnelblick: macOS 12.2.1 (21D62); Tunnelblick 3.8.7a (build 5770); prior version 3.8.6beta05 (build 5706)
2022-04-05 10:51:07.955288 *Tunnelblick: Attempting connection with CAR using shadow copy; Set nameserver = 769; monitoring connection
2022-04-05 10:51:07.955840 *Tunnelblick: openvpnstart startCAR.tblk6021776901034652464-ptADGNWradsgnw2.5.4-openssl-1.1.1l <password>
2022-04-05 10:51:07.973720 *Tunnelblick: openvpnstart starting OpenVPN
2022-04-05 10:51:08.460260 DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2022-04-05 10:51:08.460856 OpenVPN 2.5.4 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Nov 29 2021
2022-04-05 10:51:08.461169 library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
2022-04-05 10:51:08.462452 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:60217
2022-04-05 10:51:08.462508 Need hold release from management interface, waiting...
2022-04-05 10:51:08.580013 *Tunnelblick: openvpnstart log:
OpenVPN started successfully.
Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.5.4-openssl-1.1.1l/openvpn
--daemon
--log /Library/Application Support/Tunnelblick/Logs/-SUsers-Susername-SLibrary-SApplication Support-STunnelblick-SConfigurations-SCAR.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_34652464.60217.openvpn.log
--cd /Library/Application Support/Tunnelblick/Users/username/CAR.tblk/Contents/Resources
--machine-readable-output
--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5770 3.8.7a (build 5770)"
--verb 3
--config /Library/Application Support/Tunnelblick/Users/username/CAR.tblk/Contents/Resources/config.ovpn
--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Users/username/CAR.tblk/Contents/Resources
--verb 3
--cd /Library/Application Support/Tunnelblick/Users/username/CAR.tblk/Contents/Resources
--management 127.0.0.1 60217 /Library/Application Support/Tunnelblick/Mips/CAR.tblk.mip
--management-query-passwords
--management-hold
--script-security 2
--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2022-04-05 10:51:08.584182 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:60217
2022-04-05 10:51:08.616406 MANAGEMENT: CMD 'pid'
2022-04-05 10:51:08.616487 MANAGEMENT: CMD 'auth-retry interact'
2022-04-05 10:51:08.616538 MANAGEMENT: CMD 'state on'
2022-04-05 10:51:08.616562 MANAGEMENT: CMD 'state'
2022-04-05 10:51:08.616622 MANAGEMENT: CMD 'bytecount 1'
2022-04-05 10:51:08.628801 *Tunnelblick: Established communication with OpenVPN
2022-04-05 10:51:08.635788 *Tunnelblick: >INFO:OpenVPN Management Interface Version 3 -- type 'help' for more info
2022-04-05 10:51:08.637728 MANAGEMENT: CMD 'hold release'
2022-04-05 10:51:08.645874 *Tunnelblick: Obtained VPN username and password from the Keychain
2022-04-05 10:51:08.647167 MANAGEMENT: CMD 'username "Auth" "username"'
2022-04-05 10:51:08.647227 MANAGEMENT: CMD 'password [...]'
2022-04-05 10:51:08.648154 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2022-04-05 10:51:08.648184 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2022-04-05 10:51:08.661074 *Tunnelblick: Obtained passphrase from the Keychain
2022-04-05 10:51:08.662017 MANAGEMENT: CMD 'password [...]'
2022-04-05 10:51:08.665276 TCP/UDP: Preserving recently used remote address: [AF_INET]XXX.XXX.XXX.XXX:1194
2022-04-05 10:51:08.665349 Socket Buffers: R=[786896->786896] S=[9216->9216]
2022-04-05 10:51:08.665363 UDP link local: (not bound)
2022-04-05 10:51:08.665374 UDP link remote: [AF_INET]XXX.XXX.XXX.XXX:1194
2022-04-05 10:51:08.665513 MANAGEMENT: >STATE:1649152268,WAIT,,,,,,
2022-04-05 10:51:08.687520 MANAGEMENT: >STATE:1649152268,AUTH,,,,,,
2022-04-05 10:51:08.687580 TLS: Initial packet from [AF_INET]XXX.XXX.XXX.XXX:1194, sid=ed508c3f a8208364
2022-04-05 10:51:08.840554 VERIFY OK: depth=1, C=GB, ST=Berkshire, L=Reading, O=Organisation, OU=IT, CN=CAR CA, emailAddress=p************@*********************.org
2022-04-05 10:51:08.841620 VERIFY OK: depth=0, C=GB, ST=Berkshire, L=Reading, O=Organisation, OU=IT, CN=vigor, emailAddress= p************@*********************.org
2022-04-05 10:51:08.889284 peer info: IV_VER=2.2.0
2022-04-05 10:51:08.889369 peer info: IV_PLAT=win
2022-04-05 10:51:08.889404 peer info: IV_HWADDR=11:22:33:44:55:66
2022-04-05 10:51:08.889524 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1569', remote='link-mtu 1172'
2022-04-05 10:51:08.889593 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1103'
2022-04-05 10:51:08.890006 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2022-04-05 10:51:08.890469 [vigor] Peer Connection Initiated with [AF_INET]XXX.XXX.XXX.XXX:1194
2022-04-05 10:51:10.011726 MANAGEMENT: >STATE:1649152270,GET_CONFIG,,,,,,
2022-04-05 10:51:10.011961 SENT CONTROL [vigor]: 'PUSH_REQUEST' (status=1)
2022-04-05 10:51:10.033975 PUSH: Received control message: 'PUSH_REPLY,route-gateway 172.16.2.1,ping 10,ping-restart 300,topology subnet,ifconfig 172.16.2.6 255.255.255.0,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4'
2022-04-05 10:51:10.034193 OPTIONS IMPORT: timers and/or timeouts modified
2022-04-05 10:51:10.034237 OPTIONS IMPORT: --ifconfig/up options modified
2022-04-05 10:51:10.034262 OPTIONS IMPORT: route-related options modified
2022-04-05 10:51:10.034285 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2022-04-05 10:51:10.034311 Using peer cipher 'AES-256-CBC'
2022-04-05 10:51:10.034335 Data Channel: using negotiated cipher 'AES-256-CBC'
2022-04-05 10:51:10.034728 Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2022-04-05 10:51:10.035324 Outgoing Data Channel: Using 256 bit message hash 'SHA256' for HMAC authentication
2022-04-05 10:51:10.035561 Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2022-04-05 10:51:10.035615 Incoming Data Channel: Using 256 bit message hash 'SHA256' for HMAC authentication
2022-04-05 10:51:10.036760 Opened utun device utun3
2022-04-05 10:51:10.036872 MANAGEMENT: >STATE:1649152270,ASSIGN_IP,,172.16.2.6,,,,
2022-04-05 10:51:10.036938 /sbin/ifconfig utun3 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2022-04-05 10:51:10.051158 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2022-04-05 10:51:10.051193 /sbin/ifconfig utun3 172.16.2.6 172.16.2.6 netmask 255.255.255.0 mtu 1500 up
2022-04-05 10:51:10.054838 /sbin/route add -net 172.16.2.0 172.16.2.6 255.255.255.0
add net 172.16.2.0: gateway 172.16.2.6
10:51:10 *Tunnelblick: **********************************************
10:51:10 *Tunnelblick: Start of output from client.up.tunnelblick.sh
WARNING: $route_vpn_gateway is empty
10:51:12 *Tunnelblick: Disabled IPv6 for 'Display Ethernet'
10:51:12 *Tunnelblick: Disabled IPv6 for 'Apple USB Ethernet Adapter'
10:51:12 *Tunnelblick: Disabled IPv6 for 'Bluetooth PAN'
10:51:12 *Tunnelblick: Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
10:51:12 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher
10:51:12 *Tunnelblick: Setting search domains to 'openvpn' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
10:51:14 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored
10:51:14 *Tunnelblick: Changed DNS ServerAddresses setting from '208.67.222.222 192.168.74.1' to '8.8.8.8 8.8.4.4'
10:51:14 *Tunnelblick: Changed DNS SearchDomains setting from '' to 'openvpn'
10:51:14 *Tunnelblick: Changed DNS DomainName setting from '' to 'openvpn'
10:51:14 *Tunnelblick: Did not change SMB NetBIOSName setting of ''
10:51:14 *Tunnelblick: Did not change SMB Workgroup setting of ''
10:51:14 *Tunnelblick: Did not change SMB WINSAddresses setting of ''
10:51:14 *Tunnelblick: DNS servers '8.8.8.8 8.8.4.4' will be used for DNS queries when the VPN is active
10:51:14 *Tunnelblick: The DNS servers include only free public DNS servers known to Tunnelblick.
10:51:14 *Tunnelblick: Flushed the DNS cache via dscacheutil
10:51:14 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
10:51:14 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:51:14 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running
10:51:14 *Tunnelblick: Setting up to monitor system configuration with process-network-changes
10:51:14 *Tunnelblick: End of output from client.up.tunnelblick.sh
10:51:14 *Tunnelblick: **********************************************
2022-04-05 10:51:14.155399 Initialization Sequence Completed
2022-04-05 10:51:14.155478 MANAGEMENT: >STATE:1649152274,CONNECTED,SUCCESS,172.16.2.6,XXX.XXX.XXX.XXX,1194,,
2022-04-05 10:51:15.368134 *Tunnelblick: Routing info stdout:
route to: 208.67.220.220
destination: default
mask: default
gateway: 192.168.74.1
interface: en6
flags: <UP,GATEWAY,DONE,STATIC,PRCLONING,GLOBAL>
recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire
0 0 0 0 0 0 1500 0
stderr:

2022-04-05 10:51:15.374918 *Tunnelblick: Warning: DNS server Address 208.67.220.220 is a known public DNS server but is not being routed through the VPN
2022-04-05 10:51:15.473131 *Tunnelblick: Routing info stdout:
route to: 208.67.222.222
destination: 208.67.222.222
gateway: 192.168.74.1
interface: en6
flags: <UP,GATEWAY,HOST,DONE,WASCLONED,IFSCOPE,IFREF,GLOBAL>
recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire
0 0 0 0 0 0 1500 0
stderr:

2022-04-05 10:51:15.478249 *Tunnelblick: Warning: DNS server Address 208.67.222.222 is a known public DNS server but is not being routed through the VPN
2022-04-05 10:51:15.575886 *Tunnelblick: Routing info stdout:
route to: 8.8.4.4
destination: 8.8.4.4
gateway: 192.168.74.1
interface: en6
flags: <UP,GATEWAY,HOST,DONE,WASCLONED,IFSCOPE,IFREF,GLOBAL>
recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire
0 0 0 0 0 0 1500 0
stderr:

2022-04-05 10:51:15.581601 *Tunnelblick: Warning: DNS server Address 8.8.4.4 is a known public DNS server but is not being routed through the VPN
2022-04-05 10:51:15.679238 *Tunnelblick: Routing info stdout:
route to: 8.8.8.8
destination: 8.8.8.8
gateway: 192.168.74.1
interface: en6
flags: <UP,GATEWAY,HOST,DONE,WASCLONED,IFSCOPE,IFREF,GLOBAL>
recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire
0 0 0 0 0 0 1500 0
stderr:

2022-04-05 10:51:15.685015 *Tunnelblick: Warning: DNS server Address 8.8.8.8 is a known public DNS server but is not being routed through the VPN

================================================================================

Down log:

10:48:04 *Tunnelblick: **********************************************
10:48:04 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:48:04 *Tunnelblick: Cancelled monitoring system configuration changes
10:48:04 *Tunnelblick: Restored State:DNS
10:48:04 *Tunnelblick: Removed Setup:DNS
10:48:04 *Tunnelblick: Removed State:SMB
10:48:04 *Tunnelblick: Restored DNS and SMB settings
10:48:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Display Ethernet"
10:48:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Apple USB Ethernet Adapter"
10:48:04 *Tunnelblick: Re-enabled IPv6 (automatic) for "Bluetooth PAN"
10:48:04 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:48:04 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:48:04 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:48:04 *Tunnelblick: **********************************************

================================================================================

Previous down log:

10:16:25 *Tunnelblick: **********************************************
10:16:25 *Tunnelblick: Start of output from client.down.tunnelblick.sh
10:16:25 *Tunnelblick: Cancelled monitoring system configuration changes
10:16:25 *Tunnelblick: Restored State:DNS
10:16:25 *Tunnelblick: Removed Setup:DNS
10:16:25 *Tunnelblick: Removed State:SMB
10:16:25 *Tunnelblick: Restored DNS and SMB settings
10:16:25 *Tunnelblick: Re-enabled IPv6 (automatic) for "Display Ethernet"
10:16:25 *Tunnelblick: Re-enabled IPv6 (automatic) for "Apple USB Ethernet Adapter"
10:16:25 *Tunnelblick: Re-enabled IPv6 (automatic) for "Bluetooth PAN"
10:16:25 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
10:16:25 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
10:16:25 *Tunnelblick: End of output from client.down.tunnelblick.sh
10:16:25 *Tunnelblick: **********************************************

================================================================================

Network services:

An asterisk (*) denotes that a network service is disabled.
Thunderbolt Ethernet Slot 1, Port 2
Display Ethernet
Wi-Fi
Apple USB Ethernet Adapter
Bluetooth PAN

Wi-Fi Power (en0): On

================================================================================

ifconfig output:

lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
options=1203<RXCSUM,TXCSUM,TXSTATUS,SW_TIMESTAMP>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
inet 127.94.0.1 netmask 0xff000000
nd6 options=201<PERFORMNUD,DAD>
gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280
stf0: flags=0<> mtu 1280
en5: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=50b<RXCSUM,TXCSUM,VLAN_HWTAGGING,AV,CHANNEL_IO>
ether a8:20:66:1e:e1:e3
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (none)
status: inactive
en3: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether ac:de:48:00:11:22
inet6 fe80::aede:48ff:fe00:1122%en3 prefixlen 64 scopeid 0x5
nd6 options=201<PERFORMNUD,DAD>
media: autoselect (100baseTX <full-duplex>)
status: active
ap1: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether a6:83:e7:6c:69:e1
media: autoselect
status: inactive
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6463<RXCSUM,TXCSUM,TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether a4:83:e7:6c:69:e1
inet 192.168.74.102 netmask 0xffffff00 broadcast 192.168.74.255
media: autoselect
status: active
en2: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 82:46:ea:e4:38:00
media: autoselect <full-duplex>
status: inactive
en1: flags=8963<UP,BROADCAST,SMART,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=460<TSO4,TSO6,CHANNEL_IO>
ether 82:46:ea:e4:38:01
media: autoselect <full-duplex>
status: inactive
en6: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=6467<RXCSUM,TXCSUM,VLAN_MTU,TSO4,TSO6,CHANNEL_IO,PARTIAL_CSUM,ZEROINVERT_CSUM>
ether 64:4b:f0:1a:11:a8
inet 192.168.74.101 netmask 0xffffff00 broadcast 192.168.74.255
media: autoselect (1000baseT <full-duplex,flow-control>)
status: active
bridge0: flags=8822<BROADCAST,SMART,SIMPLEX,MULTICAST> mtu 1500
options=63<RXCSUM,TXCSUM,TSO4,TSO6>
ether 82:46:ea:e4:38:01
Configuration:
id 0:0:0:0:0:0 priority 0 hellotime 0 fwddelay 0
maxage 0 holdcnt 0 proto stp maxaddr 100 timeout 1200
root id 0:0:0:0:0:0 priority 0 ifcost 0 port 0
ipfilter disabled flags 0x0
member: en1 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 9 priority 0 path cost 0
member: en2 flags=3<LEARNING,DISCOVER>
ifmaxaddr 0 port 8 priority 0 path cost 0
media: <unknown type>
status: inactive
awdl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 32:b8:68:5b:db:92
inet6 fe80::30b8:68ff:fe5b:db92%awdl0 prefixlen 64 scopeid 0xc
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
llw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
options=400<CHANNEL_IO>
ether 32:b8:68:5b:db:92
inet6 fe80::30b8:68ff:fe5b:db92%llw0 prefixlen 64 scopeid 0xd
nd6 options=201<PERFORMNUD,DAD>
media: autoselect
status: active
utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
inet6 fe80::1b85:b637:3fa6:4a72%utun0 prefixlen 64 scopeid 0xe
nd6 options=201<PERFORMNUD,DAD>
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
inet6 fe80::90bc:c33:fcde:d83e%utun1 prefixlen 64 scopeid 0xf
nd6 options=201<PERFORMNUD,DAD>
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
inet6 fe80::ce81:b1c:bd2c:69e%utun2 prefixlen 64 scopeid 0x10
nd6 options=201<PERFORMNUD,DAD>
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 172.16.2.6 --> 172.16.2.6 netmask 0xffffff00

================================================================================

Non-Apple kexts that are loaded:

Index Refs Address Size Wired Name (Version) UUID <Linked Against>

================================================================================

Quit Log:

2022-04-01 17:40:02.544884 applicationShouldTerminate: termination because of shutdown; delayed until 'shutdownTunnelblick' finishes)
2022-04-01 17:40:02.594433 shutDownTunnelblick: started.
2022-04-01 17:40:02.596922 shutDownTunnelblick: Starting cleanup.
2022-04-01 17:40:02.599067 cleanup: Entering cleanup
2022-04-01 17:40:02.600775 synchronized user defaults
2022-04-01 17:40:03.711122 Set up flag files for shutting down the computer and expecting all configurations to be disconnected
2022-04-01 17:40:03.712591 doDisconnectionsForShuttingDownComputer: Set 'expect disconnect 1 ALL'
2022-04-01 17:40:03.714122 Started disconnecting all configurations
2022-04-01 17:40:03.715110 Skipping cleanup because computer is shutting down or restarting
2022-04-01 17:40:03.715968 shutDownTunnelblick: Cleanup finished.
2022-04-01 17:40:03.717112 Finished shutting down Tunnelblick; allowing termination
[/olog]

Vigor VPN log:

[olog]
"2022-04-05 10:52:03", "cgiWebLogin ssl_group_idx -1"

"2022-04-05 10:51:09", "[H2L][UP][OpenVPN][@1:username from YYY.YYY.YYY.YYY]"

"2022-04-05 10:51:09", "OpenVPN (VPN-1, YYY.YYY.YYY.YYY) PUSH_REPLY,route-gateway 172.16.2.1,ping 10,ping-restart 300,topology subnet,ifconfig 172.16.2.6 255.255.255.0,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4"

"2022-04-05 10:51:08", "OpenVPN (VPN-1, YYY.YYY.YYY.YYY) Remote option is not matched"

"2022-04-05 10:51:07", "OpenVPN (VPN-1, YYY.YYY.YYY.YYY) HARD RESET V2, start negotiation"

"2022-04-05 10:50:10", "[Unknown][UP][OpenVPN]"

"2022-04-05 10:50:10", "OpenVPN (VPN-1) Negotiation timeout"

"2022-04-05 10:49:31", "OpenVPN (VPN-1, YYY.YYY.YYY.YYY) Remote option is not matched"

"2022-04-05 10:49:31", "OpenVPN (VPN-1, YYY.YYY.YYY.YYY) HARD RESET V2, start negotiation"
[/olog]

Post Reply