Skip to content

Instantly share code, notes, and snippets.

@shivanker

shivanker/gist:0f28d4fd471943642222907b4abeb009 Secret

Created April 22, 2021 08:59
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save shivanker/0f28d4fd471943642222907b4abeb009 to your computer and use it in GitHub Desktop.
Save shivanker/0f28d4fd471943642222907b4abeb009 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gistfile1.txt
2021-04-22 08:54:21.507079 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:59707
2021-04-22 08:54:21.543105 MANAGEMENT: CMD 'pid'
2021-04-22 08:54:21.543157 MANAGEMENT: CMD 'auth-retry interact'
2021-04-22 08:54:21.543187 MANAGEMENT: CMD 'state on'
2021-04-22 08:54:21.543206 MANAGEMENT: CMD 'state'
2021-04-22 08:54:21.543242 MANAGEMENT: CMD 'bytecount 1'
2021-04-22 08:54:21.543877 *Tunnelblick: Established communication with OpenVPN
2021-04-22 08:54:21.546365 *Tunnelblick: >INFO:OpenVPN Management Interface Version 1 -- type 'help' for more info
2021-04-22 08:54:21.547477 MANAGEMENT: CMD 'hold release'
2021-04-22 08:54:21.558651 *Tunnelblick: Obtained VPN username and password from the Keychain
2021-04-22 08:54:21.560056 MANAGEMENT: CMD 'username "Auth" "[...]"'
2021-04-22 08:54:21.560103 MANAGEMENT: CMD 'password [...]'
2021-04-22 08:54:21.560207 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2021-04-22 08:54:21.562373 TCP/UDP: Preserving recently used remote address: [AF_INET]123.0.456.789:1194
2021-04-22 08:54:21.562445 Socket Buffers: R=[786896->786896] S=[9216->9216]
2021-04-22 08:54:21.562459 UDP link local: (not bound)
2021-04-22 08:54:21.562470 UDP link remote: [AF_INET]123.0.456.789:1194
2021-04-22 08:54:21.562494 MANAGEMENT: >STATE:1619078061,WAIT,,,,,,
2021-04-22 08:54:21.719246 MANAGEMENT: >STATE:1619078061,AUTH,,,,,,
2021-04-22 08:54:21.719344 TLS: Initial packet from [AF_INET]123.0.456.789:1194, sid=b6abf33b 2f41ef84
2021-04-22 08:54:21.932297 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, OU=Home/Office, CN=RT-AC68U, emailAddress=me@asusrouter.lan
2021-04-22 08:54:21.932716 VERIFY KU OK
2021-04-22 08:54:21.932746 Validating certificate extended key usage
2021-04-22 08:54:21.932762 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2021-04-22 08:54:21.932776 VERIFY EKU OK
2021-04-22 08:54:21.932790 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, OU=Home/Office, CN=RT-AC68U, emailAddress=me@asusrouter.lan
2021-04-22 08:54:22.109942 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, 2048 bit RSA
2021-04-22 08:54:22.109984 [RT-AC68U] Peer Connection Initiated with [AF_INET]123.0.456.789:1194
2021-04-22 08:54:23.394952 MANAGEMENT: >STATE:1619078063,GET_CONFIG,,,,,,
2021-04-22 08:54:23.395099 SENT CONTROL [RT-AC68U]: 'PUSH_REQUEST' (status=1)
2021-04-22 08:54:23.558405 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0 vpn_gateway 500,dhcp-option DOMAIN oz,dhcp-option DNS 192.168.1.1,redirect-gateway def1,route-ipv6 2a01:4b00:abcd:1200::/56,route-ipv6 2000::/3,dhcp-option DNS6 2a01:4b00:abcd:1200::1,tun-ipv6,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig-ipv6 2a01:4b00:abcd:1200:123::1000/80 2a01:4b00:abcd:1200:123::1,ifconfig 10.8.0.2 255.255.255.0,peer-id 0,cipher AES-128-GCM'
2021-04-22 08:54:23.558769 OPTIONS IMPORT: timers and/or timeouts modified
2021-04-22 08:54:23.558811 OPTIONS IMPORT: --ifconfig/up options modified
2021-04-22 08:54:23.558834 OPTIONS IMPORT: route options modified
2021-04-22 08:54:23.558855 OPTIONS IMPORT: route-related options modified
2021-04-22 08:54:23.558875 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2021-04-22 08:54:23.558894 OPTIONS IMPORT: peer-id set
2021-04-22 08:54:23.558915 OPTIONS IMPORT: adjusting link_mtu to 1625
2021-04-22 08:54:23.558935 OPTIONS IMPORT: data channel crypto options modified
2021-04-22 08:54:23.558957 Data Channel: using negotiated cipher 'AES-128-GCM'
2021-04-22 08:54:23.559122 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
2021-04-22 08:54:23.559145 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
2021-04-22 08:54:23.559608 GDG6: remote_host_ipv6=n/a
2021-04-22 08:54:23.559777 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2021-04-22 08:54:23.559816 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2021-04-22 08:54:23.559843 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2021-04-22 08:54:23.559889 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2021-04-22 08:54:23.560042 Opened utun device utun4
2021-04-22 08:54:23.560090 MANAGEMENT: >STATE:1619078063,ASSIGN_IP,,10.8.0.2,,,,,2a01:4b00:abcd:1200:123::1000
2021-04-22 08:54:23.560117 /sbin/ifconfig utun4 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2021-04-22 08:54:23.563278 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2021-04-22 08:54:23.563344 /sbin/ifconfig utun4 10.8.0.2 10.8.0.2 netmask 255.255.255.0 mtu 1500 up
2021-04-22 08:54:23.566486 /sbin/route add -net 10.8.0.0 10.8.0.2 255.255.255.0
add net 10.8.0.0: gateway 10.8.0.2
2021-04-22 08:54:23.569663 /sbin/ifconfig utun4 inet6 2a01:4b00:abcd:1200:123::1000/80
2021-04-22 08:54:23.574006 add_route_ipv6(2a01:4b00:abcd:1200:123::/80 -> 2a01:4b00:abcd:1200:123::1000 metric 0) dev utun4
2021-04-22 08:54:23.574059 /sbin/route add -inet6 2a01:4b00:abcd:1200:123:: -prefixlen 80 -iface utun4
route: writing to routing socket: File exists
add net 2a01:4b00:abcd:1200:123::: gateway utun4: File exists
2021-04-22 08:54:23.576971 /sbin/route add -net 123.0.456.789 192.168.29.1 255.255.255.255
add net 123.0.456.789: gateway 192.168.29.1
2021-04-22 08:54:23.579413 /sbin/route add -net 0.0.0.0 10.8.0.1 128.0.0.0
add net 0.0.0.0: gateway 10.8.0.1
2021-04-22 08:54:23.581667 /sbin/route add -net 128.0.0.0 10.8.0.1 128.0.0.0
add net 128.0.0.0: gateway 10.8.0.1
2021-04-22 08:54:23.584027 MANAGEMENT: >STATE:1619078063,ADD_ROUTES,,,,,,
2021-04-22 08:54:23.584156 /sbin/route add -net 192.168.1.0 10.8.0.1 255.255.255.0
add net 192.168.1.0: gateway 10.8.0.1
2021-04-22 08:54:23.586362 add_route_ipv6(2a01:4b00:abcd:1200::/56 -> 2a01:4b00:abcd:1200:123::1 metric -1) dev utun4
2021-04-22 08:54:23.586402 /sbin/route add -inet6 2a01:4b00:abcd:1200:: -prefixlen 56 -iface utun4
add net 2a01:4b00:abcd:1200::: gateway utun4
2021-04-22 08:54:23.588976 add_route_ipv6(2000::/3 -> 2a01:4b00:abcd:1200:123::1 metric -1) dev utun4
2021-04-22 08:54:23.589018 /sbin/route add -inet6 2000:: -prefixlen 3 -iface utun4
add net 2000::: gateway utun4
08:54:23 *Tunnelblick: **********************************************
08:54:23 *Tunnelblick: Start of output from client.up.tunnelblick.sh
08:54:25 *Tunnelblick: Disabled IPv6 for 'USB 10/100/1000 LAN'
08:54:25 *Tunnelblick: Disabled IPv6 for 'Wi-Fi'
08:54:25 *Tunnelblick: Disabled IPv6 for 'Bluetooth PAN'
08:54:25 *Tunnelblick: Disabled IPv6 for 'Thunderbolt Bridge'
08:54:25 *Tunnelblick: Retrieved from OpenVPN: name server(s) [ 192.168.1.1 2a01:4b00:abcd:1200::1 ], domain name [ oz ], search domain(s) [ ], and SMB server(s) [ ]
08:54:26 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher
08:54:26 *Tunnelblick: Setting search domains to 'oz' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
08:54:27 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored
08:54:27 *Tunnelblick: Changed DNS ServerAddresses setting from '192.168.29.1' to '192.168.1.1 2a01:4b00:abcd:1200::1'
08:54:27 *Tunnelblick: Changed DNS SearchDomains setting from '' to 'oz'
08:54:27 *Tunnelblick: Changed DNS DomainName setting from '' to 'oz'
08:54:27 *Tunnelblick: Did not change SMB NetBIOSName setting of ''
08:54:27 *Tunnelblick: Did not change SMB Workgroup setting of ''
08:54:27 *Tunnelblick: Did not change SMB WINSAddresses setting of ''
08:54:27 *Tunnelblick: DNS servers '192.168.1.1 2a01:4b00:abcd:1200::1' will be used for DNS queries when the VPN is active
08:54:27 *Tunnelblick: NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.
08:54:27 *Tunnelblick: Flushed the DNS cache via dscacheutil
08:54:27 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
08:54:27 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
08:54:27 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running
08:54:27 *Tunnelblick: Setting up to monitor system configuration with process-network-changes
08:54:27 *Tunnelblick: End of output from client.up.tunnelblick.sh
08:54:27 *Tunnelblick: **********************************************
2021-04-22 08:54:27.496317 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-04-22 08:54:27.496348 Initialization Sequence Completed
2021-04-22 08:54:27.496394 MANAGEMENT: >STATE:1619078067,CONNECTED,SUCCESS,10.8.0.2,123.0.456.789,1194,,,2a01:4b00:abcd:1200:123::1000
2021-04-22 08:54:28.713434 *Tunnelblick: DNS address 192.168.1.1 is being routed through the VPN
2021-04-22 08:54:34.613140 *Tunnelblick: This computer's apparent public IP address changed from [...] before connection to 123.0.456.789 after connection
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment