Solved

OpenBSD and vpnc - force disconnect on exit

Posted on 2011-09-15
7
580 Views
Last Modified: 2012-05-12
Hi Guys,

My question: Is there a way to force vpnc to disconnect when I log out (Cisco VPN Client has this option - for Windows).

I have an OpenBSD 4.9 server with vpnc.

I ssh into the OpenBSD server (from my Windows laptop) and then run vpnc to connect to another network (so far so good).

[1] As soon as I connect the vpnc connection, I'm unable to establish a 2nd connection to the OpenBSD server from my laptop.
[2] Also, when I log out from the OpenBSD server, the vpnc connection remains active, preventing me from logging into the OpenBSD server again.

I then have to go to the OpenBSD server, and run "pkill vpnc" from the console.

Thereafter I can ssh into the OpenBSD server again.

Thank you,

J

0
Comment
Question by:m0nk3yza
  • 4
  • 2
7 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 36549590
[1] do you see anything in vpnc logs (or messages) why 2ns connection does not connect.
[2] It is designed to work like this. It suns a background daemon which does not disappear with session. There is a "screen" utility if it does not run in background well. Probably there is no remedy.
0
 
LVL 9

Expert Comment

by:parparov
ID: 36550226
You can simply create a logout script that would kill the vpnc job.
More on logout scripts here:
http://webmaster.iu.edu/tool_guide_info/logout_script.shtml
0
 
LVL 61

Assisted Solution

by:gheist
gheist earned 250 total points
ID: 36550370
vpnc runs as root, logout script will not help.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 9

Accepted Solution

by:
parparov earned 250 total points
ID: 36550391
If the user would set passwordless sudo privileges, that may help.
0
 
LVL 61

Expert Comment

by:gheist
ID: 36550554
If there ais any other user they can run a portscan and exploits over that vpn connection while it is connected, it will not start ringing and whistling...
0
 
LVL 61

Expert Comment

by:gheist
ID: 36563127
Normally you give B grade  for simple pointers that lead to solution...
0
 
LVL 1

Author Comment

by:m0nk3yza
ID: 36564762
Point taken.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Unix/bash: scripted arithmetic 13 96
MarkLogic 1 70
AnyConnect - VPN server list 2 50
Is it possible to use 1 DNS server for Site to Site VPN and 1 for Internet traffic? 8 22
Using Windows 2008 RRAS, I was able to successfully VPN into the network, but I was having problems restricting my test user from accessing certain things on the network.  I used Google in order to try to find out how to stop people from accessing c…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now