Jump to content
Not connected, Your IP: 54.210.83.20
cooperz

NetworkLock does not allow local traffic on OS.X Yosemite (10.10)

Recommended Posts

Hi there,

 

I'm running Eddie AirVpn Client software version 2.8.

 

I configured airvpn with some local traffic white listed (both Outside the VPN tunnel - 192.168.0.0/16 and manually in network lock).

 

However, I cannot get any local traffic to pass through..

 

Upon inspecting the pf rules, I see the following:

 

sh-3.2# sudo pfctl -sr

No ALTQ support in kernel

ALTQ related functions disabled

block drop out inet all

pass out quick inet from 10.0.0.0/8 to 10.0.0.0/8 flags S/SA keep state

pass out quick on utun0 inet from 10.0.0.0/8 to any flags S/SA keep state

pass out quick inet from any to <__automatic_bb554c31_0> flags S/SA keep state

pass out quick inet from 172.16.0.0/12 to 172.16.0.0/12 flags S/SA keep state

pass quick on utun0 inet from any to 10.0.0.0/8 flags S/SA keep state

pass quick on lo0 all flags S/SA keep state

 

It does not look like the 192.168.0.0 rule is there...

 

However,

The generated temp file in ~/.airvpn/1c1d81cef74e0d65fd179c59ad525579da19fc6d5e4142dbed5a8efd55b1041d.tmp.pf.conf

correctly generates the rules:

...

....

# Private networks

pass out quick inet from 192.168.0.0/16 to 192.168.0.0/16 flags S/SA keep state

pass out quick inet from 172.16.0.0/12 to 172.16.0.0/12 flags S/SA keep state

pass out quick inet from 10.0.0.0/8 to 10.0.0.0/8 flags S/SA keep state

# Allow all on lo0

pass quick on lo0 all

# Everything tunneled

pass out quick on utun0 inet from 10.0.0.0/8 to any flags S/SA keep state

pass quick on utun0 inet from any to 10.0.0.0/8 flags S/SA keep state

 
Any help will be appreciated.
Thanks

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...