Als Client verwende ich ein MacBook mit der OpenVPN App. In dieser App gibt es zwar die Möglichkeit, Log-Files anzuzeigen, jedoch meldet mit die App "You don't have any logs yet" zurück. Mit der Tunnelblick-App habe ich allerdings das gleiche Problem.
Anbei die Tunnelblick-Logs:
2020-04-12 22:38:28.481935 *Tunnelblick: macOS 10.15.4 (19E266); Tunnelblick 3.8.2 (build 5480)
2020-04-12 22:38:28.777164 *Tunnelblick: Attempting connection with client using shadow copy; Set nameserver = 769; monitoring connection
2020-04-12 22:38:28.777855 *Tunnelblick: openvpnstart start client.tblk 52007 769 0 1 0 1098032 -ptADGNWradsgnw 2.4.8-openssl-1.1.1e
2020-04-12 22:38:28.797891 *Tunnelblick: openvpnstart starting OpenVPN
2020-04-12 22:38:28.963623 OpenVPN 2.4.8 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Mar 22 2020
2020-04-12 22:38:28.963705 library versions: OpenSSL 1.1.1e 17 Mar 2020, LZO 2.10
2020-04-12 22:38:28.965025 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:52007
2020-04-12 22:38:28.965051 Need hold release from management interface, waiting...
2020-04-12 22:38:29.402065 *Tunnelblick: openvpnstart log:
OpenVPN started successfully.
Command used to start OpenVPN (one argument per displayed line):
/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.8-openssl-1.1.1e/openvpn
--daemon
--log /Library/Application Support/Tunnelblick/Logs/-SUsers-Sbenutzer-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sclient.tblk-SContents-SResources-Sconfig.ovpn.769_0_1_0_1098032.52007.openvpn.log
--cd /Library/Application Support/Tunnelblick/Users/benutzer/client.tblk/Contents/Resources
--machine-readable-output
--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5480 3.8.2 (build 5480)"
--verb 3
--config /Library/Application Support/Tunnelblick/Users/benutzer/client.tblk/Contents/Resources/config.ovpn
--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Users/benutzer/client.tblk/Contents/Resources
--verb 3
--cd /Library/Application Support/Tunnelblick/Users/benutzer/client.tblk/Contents/Resources
--management 127.0.0.1 52007 /Library/Application Support/Tunnelblick/gdlabmfeaabeejcfjoedgachpgpifhblplmioidm.mip
--management-query-passwords
--management-hold
--script-security 2
--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw
2020-04-12 22:38:29.411033 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:52007
2020-04-12 22:38:29.432663 MANAGEMENT: CMD 'pid'
2020-04-12 22:38:29.432731 MANAGEMENT: CMD 'auth-retry interact'
2020-04-12 22:38:29.432764 MANAGEMENT: CMD 'state on'
2020-04-12 22:38:29.432783 MANAGEMENT: CMD 'state'
2020-04-12 22:38:29.432810 MANAGEMENT: CMD 'bytecount 1'
2020-04-12 22:38:29.433539 *Tunnelblick: Established communication with OpenVPN
2020-04-12 22:38:29.500176 *Tunnelblick: >INFO:OpenVPN Management Interface Version 1 -- type 'help' for more info
2020-04-12 22:38:29.503081 MANAGEMENT: CMD 'hold release'
2020-04-12 22:38:29.503304 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2020-04-12 22:38:29.503340 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2020-04-12 22:38:29.507406 MANAGEMENT: >STATE:1586723909,RESOLVE,,,,,,
2020-04-12 22:38:29.547870 TCP/UDP: Preserving recently used remote address: [AF_INET]{globale IP-Adresse VPN-Server}:1194
2020-04-12 22:38:29.547967 Socket Buffers: R=[786896->786896] S=[9216->9216]
2020-04-12 22:38:29.547987 UDP link local: (not bound)
2020-04-12 22:38:29.548004 UDP link remote: [AF_INET]{globale IP-Adresse VPN-Server}:1194
2020-04-12 22:38:29.548036 MANAGEMENT: >STATE:1586723909,WAIT,,,,,,
2020-04-12 22:38:29.588025 MANAGEMENT: >STATE:1586723909,AUTH,,,,,,
2020-04-12 22:38:29.588103 TLS: Initial packet from [AF_INET]{globale IP-Adresse VPN-Server}:1194, sid=53345f39 39e14885
2020-04-12 22:38:29.657775 VERIFY OK: depth=1, CN=benutzer
2020-04-12 22:38:29.658477 VERIFY OK: depth=0, CN=benutzer
2020-04-12 22:38:29.721612 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 2048 bit RSA
2020-04-12 22:38:29.721675 [benutzer] Peer Connection Initiated with [AF_INET]{globale IP-Adresse VPN-Server}:1194
2020-04-12 22:38:30.893086 MANAGEMENT: >STATE:1586723910,GET_CONFIG,,,,,,
2020-04-12 22:38:30.893204 SENT CONTROL [benutzer]: 'PUSH_REQUEST' (status=1)
2020-04-12 22:38:30.926689 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 84.200.69.80,dhcp-option DNS 84.200.70.40,route 10.5.0.1,topology net30,ping 20,ping-restart 60,ifconfig 10.5.0.10 10.5.0.9,peer-id 1,cipher AES-256-GCM'
2020-04-12 22:38:30.926879 OPTIONS IMPORT: timers and/or timeouts modified
2020-04-12 22:38:30.926904 OPTIONS IMPORT: --ifconfig/up options modified
2020-04-12 22:38:30.926919 OPTIONS IMPORT: route options modified
2020-04-12 22:38:30.926933 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2020-04-12 22:38:30.926946 OPTIONS IMPORT: peer-id set
2020-04-12 22:38:30.926984 OPTIONS IMPORT: adjusting link_mtu to 1625
2020-04-12 22:38:30.927079 OPTIONS IMPORT: data channel crypto options modified
2020-04-12 22:38:30.927123 Data Channel: using negotiated cipher 'AES-256-GCM'
2020-04-12 22:38:30.927367 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2020-04-12 22:38:30.927416 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2020-04-12 22:38:30.928142 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928191 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928217 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928240 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928296 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928349 Opening utun (connect(AF_SYS_CONTROL)): Resource busy (errno=16)
2020-04-12 22:38:30.928751 Opened utun device utun6
2020-04-12 22:38:30.928985 MANAGEMENT: >STATE:1586723910,ASSIGN_IP,,10.5.0.10,,,,
2020-04-12 22:38:30.929039 /sbin/ifconfig utun6 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2020-04-12 22:38:30.934952 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2020-04-12 22:38:30.935079 /sbin/ifconfig utun6 10.5.0.10 10.5.0.9 mtu 1500 netmask 255.255.255.255 up
2020-04-12 22:38:30.938370 /sbin/route add -net {globale IP-Adresse VPN-Server} {lokale IP} 255.255.255.255
add net {globale IP-Adresse VPN-Server}: gateway {lokale IP}
2020-04-12 22:38:30.941854 /sbin/route add -net 0.0.0.0 10.5.0.9 128.0.0.0
add net 0.0.0.0: gateway 10.5.0.9
2020-04-12 22:38:30.944532 /sbin/route add -net 128.0.0.0 10.5.0.9 128.0.0.0
add net 128.0.0.0: gateway 10.5.0.9
2020-04-12 22:38:30.947352 MANAGEMENT: >STATE:1586723910,ADD_ROUTES,,,,,,
2020-04-12 22:38:30.947431 /sbin/route add -net 10.5.0.1 10.5.0.9 255.255.255.255
add net 10.5.0.1: gateway 10.5.0.9
22:38:30 *Tunnelblick: **********************************************
22:38:30 *Tunnelblick: Start of output from client.up.tunnelblick.sh
22:38:33 *Tunnelblick: Disabled IPv6 for 'USB Ethernet'
22:38:33 *Tunnelblick: Disabled IPv6 for 'Wi-Fi'
22:38:33 *Tunnelblick: Disabled IPv6 for 'Thunderbolt Bridge'
22:38:33 *Tunnelblick: Disabled IPv6 for 'USB 10/100/1000 LAN'
22:38:33 *Tunnelblick: Disabled IPv6 for 'Bluetooth PAN'
22:38:33 *Tunnelblick: Disabled IPv6 for 'IPSecVPN'
22:38:33 *Tunnelblick: Retrieved from OpenVPN: name server(s) [ 84.200.69.80 84.200.70.40 ], search domain(s) [ ] and SMB server(s) [ ] and using default domain name [ openvpn ]
22:38:33 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher
22:38:33 *Tunnelblick: Setting search domains to 'openvpn' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected
22:38:35 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored
22:38:35 *Tunnelblick: Changed DNS ServerAddresses setting from '{lokale IP}' to '84.200.69.80 84.200.70.40'
22:38:35 *Tunnelblick: Changed DNS SearchDomains setting from '' to 'openvpn'
22:38:35 *Tunnelblick: Changed DNS DomainName setting from 'fritz.box' to 'openvpn'
22:38:35 *Tunnelblick: Did not change SMB NetBIOSName setting of ''
22:38:35 *Tunnelblick: Did not change SMB Workgroup setting of ''
22:38:35 *Tunnelblick: Did not change SMB WINSAddresses setting of ''
22:38:35 *Tunnelblick: DNS servers '84.200.69.80 84.200.70.40' will be used for DNS queries when the VPN is active
22:38:35 *Tunnelblick: The DNS servers include only free public DNS servers known to Tunnelblick.
22:38:35 *Tunnelblick: Flushed the DNS cache via dscacheutil
22:38:35 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil
22:38:35 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
22:38:35 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running
22:38:35 *Tunnelblick: Setting up to monitor system configuration with process-network-changes
22:38:35 *Tunnelblick: End of output from client.up.tunnelblick.sh
22:38:35 *Tunnelblick: **********************************************
2020-04-12 22:38:35.401571 Initialization Sequence Completed
2020-04-12 22:38:35.401653 MANAGEMENT: >STATE:1586723915,CONNECTED,SUCCESS,10.5.0.10,{globale IP-Adresse VPN-Server},1194,,
2020-04-12 22:38:35.631999 *Tunnelblick: DNS address 84.200.69.80 is being routed through the VPN
2020-04-12 22:38:35.736979 *Tunnelblick: DNS address 84.200.70.40 is being routed through the VPN
2020-04-12 22:38:47.717170 *Tunnelblick: Disconnecting; VPN Details… window disconnect button pressed
2020-04-12 22:38:47.863365 *Tunnelblick: Disconnecting using 'kill'
2020-04-12 22:38:48.027446 event_wait : Interrupted system call (code=4)
2020-04-12 22:38:48.028071 /sbin/route delete -net 10.5.0.1 10.5.0.9 255.255.255.255
delete net 10.5.0.1: gateway 10.5.0.9
2020-04-12 22:38:48.031457 /sbin/route delete -net {globale IP-Adresse VPN-Server} {lokale IP} 255.255.255.255
delete net {globale IP-Adresse VPN-Server}: gateway {lokale IP}
2020-04-12 22:38:48.033768 /sbin/route delete -net 0.0.0.0 10.5.0.9 128.0.0.0
delete net 0.0.0.0: gateway 10.5.0.9
2020-04-12 22:38:48.036025 /sbin/route delete -net 128.0.0.0 10.5.0.9 128.0.0.0
delete net 128.0.0.0: gateway 10.5.0.9
2020-04-12 22:38:48.038496 Closing TUN/TAP interface
2020-04-12 22:38:48.039047 /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -d -f -m -w -ptADGNWradsgnw utun6 1500 1553 10.5.0.10 10.5.0.9 init
22:38:48 *Tunnelblick: **********************************************
22:38:48 *Tunnelblick: Start of output from client.down.tunnelblick.sh
22:38:48 *Tunnelblick: Cancelled monitoring system configuration changes
22:38:48 *Tunnelblick: Restored State:DNS
22:38:48 *Tunnelblick: Removed Setup:DNS
22:38:48 *Tunnelblick: Restored DNS and SMB settings
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "USB Ethernet"
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "Wi-Fi"
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "Thunderbolt Bridge"
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "USB 10/100/1000 LAN"
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "Bluetooth PAN"
22:38:48 *Tunnelblick: Re-enabled IPv6 (automatic) for "IPSecVPN"
22:38:48 *Tunnelblick: Flushed the DNS cache with dscacheutil -flushcache
22:38:48 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed
22:38:48 *Tunnelblick: End of output from client.down.tunnelblick.sh
22:38:48 *Tunnelblick: **********************************************
2020-04-12 22:38:48.577266 SIGTERM[hard,] received, process exiting
2020-04-12 22:38:48.577306 MANAGEMENT: >STATE:1586723928,EXITING,SIGTERM,,,,,
2020-04-12 22:38:48.836074 *Tunnelblick: Expected disconnection occurred.
Bist du dir wirklich sicher, dass das Problem Clientseitig besteht? Ich würde jetzt in Richtung iptables tendieren.