Page 1 of 1

Local DNS not working, disconnects

Posted: Fri Apr 23, 2021 3:20 am
by super_kev
Hi crew,
Well, my OpenVPN certificates expired after 10 years (man I'm getting old) and after digging around I finally stumbled across the tutorial here about using openvpn-generate to make new ones (https://www.sparklabs.com/support/kb/ar ... pn-server/) and succesfully got new certificates made. I can connect to my OpenVPN router (TomatoUSB) but I get some funny logs I don't remember seeing, as well as I can't connect to local IP range computers even though I see them in the Finder window. I didn't change any other settings that I'm aware of in either Viscosity or TomatoUSB VPN (still kept Direct clients to redirect Internet traffic, Respond to DNS, Advertise DNS to clients, Allow client<->client on Tomato - just changed certificates and keys) - can you guys give me some ideas?
Code: Select all
2021-04-22 09:27:26: Viscosity Mac 1.8.4 (1528)
2021-04-22 09:27:26: Viscosity OpenVPN Engine Started
2021-04-22 09:27:26: Running on macOS 10.11.6
2021-04-22 09:27:26: ---------
2021-04-22 09:27:26: State changed to Connecting
2021-04-22 09:27:26: Checking reachability status of connection...
2021-04-22 09:27:26: Connection is reachable. Starting connection attempt.
2021-04-22 09:27:26: OpenVPN 2.4.8 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Dec 21 2019
2021-04-22 09:27:26: library versions: OpenSSL 1.1.1d  10 Sep 2019, LZO 2.10
2021-04-22 09:27:27: Resolving address: website.net
2021-04-22 09:27:27: Valid endpoint found: xx.xxx.xxx.xxx:443:udp
2021-04-22 09:27:27: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-04-22 09:27:27: TCP/UDP: Preserving recently used remote address: [AF_INET]38.147.35.167:443
2021-04-22 09:27:27: UDP link local: (not bound)
2021-04-22 09:27:27: UDP link remote: [AF_INET]xx.xxx.xxx.xxx:443
2021-04-22 09:27:27: State changed to Authenticating
2021-04-22 09:27:27: [server] Peer Connection Initiated with [AF_INET]xx.xxx.xxx.xxx:443
2021-04-22 09:27:27: GDG6: problem writing to routing socket
2021-04-22 09:27:27: OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig-ipv6 options
2021-04-22 09:27:27: OpenVPN ROUTE: failed to parse/resolve route for host/network: fc00::/7
2021-04-22 09:27:27: OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig-ipv6 options
2021-04-22 09:27:27: OpenVPN ROUTE: failed to parse/resolve route for host/network: 3000::/4
2021-04-22 09:27:27: OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig-ipv6 options
2021-04-22 09:27:27: OpenVPN ROUTE: failed to parse/resolve route for host/network: 2000::/4
2021-04-22 09:27:27: OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig-ipv6 options
2021-04-22 09:27:27: OpenVPN ROUTE: failed to parse/resolve route for host/network: ::/3
2021-04-22 09:27:27: DHCP enabled on tap interface vtap0
2021-04-22 09:27:28: TUN/TAP device vtap0 opened
2021-04-22 09:27:28: /sbin/ifconfig vtap0 delete
2021-04-22 09:27:28: NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2021-04-22 09:27:28: /sbin/ifconfig vtap0 10.157.203.50 netmask 255.255.255.0 mtu 1500 up
2021-04-22 09:27:28: WARNING: OpenVPN was configured to add an IPv6 route over vtap0. However, no IPv6 has been configured for this interface, therefore the route installation may fail or may not work as expected.
2021-04-22 09:27:28: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-04-22 09:27:28: Initialization Sequence Completed
2021-04-22 09:27:28: DNS mode set to Full
2021-04-22 09:27:28: State changed to Connected
2021-04-22 09:27:29: DNS change detected, restoring DNS settings
2021-04-22 09:30:09: State changed to Disconnecting
2021-04-22 09:30:09: SIGTERM[hard,] received, process exiting
2021-04-22 09:30:09: State changed to Disconnected
The "DNS change detected, restoring DNS settings" is what's got me wondering what's up. It'll also disconnect and reconnect to the VPN router after a few minutes.

Re: Local DNS not working, disconnects

Posted: Wed Apr 28, 2021 6:00 pm
by James
Hi super_kev,

I'm afraid we can't offer technical support for legacy version of Viscosity or macOS. It's possible you may be running into a bug with an old version of either. I highly recommend updating to the latest version of Viscosity, which will likely mean needing to update your version of macOS as well.

That said, as you're using a TAP connection, I recommend taking a look at whether your DNS settings (and/or IP settings) may be getting updated by a remote DHCP server.

Cheers,
James