Solved

OpenBSD and vpnc - force disconnect on exit

Posted on 2011-09-15
7
591 Views
Last Modified: 2012-05-12
Hi Guys,

My question: Is there a way to force vpnc to disconnect when I log out (Cisco VPN Client has this option - for Windows).

I have an OpenBSD 4.9 server with vpnc.

I ssh into the OpenBSD server (from my Windows laptop) and then run vpnc to connect to another network (so far so good).

[1] As soon as I connect the vpnc connection, I'm unable to establish a 2nd connection to the OpenBSD server from my laptop.
[2] Also, when I log out from the OpenBSD server, the vpnc connection remains active, preventing me from logging into the OpenBSD server again.

I then have to go to the OpenBSD server, and run "pkill vpnc" from the console.

Thereafter I can ssh into the OpenBSD server again.

Thank you,

J

0
Comment
Question by:m0nk3yza
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 36549590
[1] do you see anything in vpnc logs (or messages) why 2ns connection does not connect.
[2] It is designed to work like this. It suns a background daemon which does not disappear with session. There is a "screen" utility if it does not run in background well. Probably there is no remedy.
0
 
LVL 9

Expert Comment

by:parparov
ID: 36550226
You can simply create a logout script that would kill the vpnc job.
More on logout scripts here:
http://webmaster.iu.edu/tool_guide_info/logout_script.shtml
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 250 total points
ID: 36550370
vpnc runs as root, logout script will not help.
0
Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

 
LVL 9

Accepted Solution

by:
parparov earned 250 total points
ID: 36550391
If the user would set passwordless sudo privileges, that may help.
0
 
LVL 62

Expert Comment

by:gheist
ID: 36550554
If there ais any other user they can run a portscan and exploits over that vpn connection while it is connected, it will not start ringing and whistling...
0
 
LVL 62

Expert Comment

by:gheist
ID: 36563127
Normally you give B grade  for simple pointers that lead to solution...
0
 
LVL 1

Author Comment

by:m0nk3yza
ID: 36564762
Point taken.
0

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Unix process listing into CSV format 3 81
Trouble with VPN DENY rules on sonicwall 1 54
RDP through VPN in firewall vs remote desktop gateway service 13 100
auto connect vpn 17 70
Using Windows 2008 RRAS, I was able to successfully VPN into the network, but I was having problems restricting my test user from accessing certain things on the network.  I used Google in order to try to find out how to stop people from accessing c…
Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question