Solved

OpenBSD and vpnc - force disconnect on exit

Posted on 2011-09-15
7
593 Views
Last Modified: 2012-05-12
Hi Guys,

My question: Is there a way to force vpnc to disconnect when I log out (Cisco VPN Client has this option - for Windows).

I have an OpenBSD 4.9 server with vpnc.

I ssh into the OpenBSD server (from my Windows laptop) and then run vpnc to connect to another network (so far so good).

[1] As soon as I connect the vpnc connection, I'm unable to establish a 2nd connection to the OpenBSD server from my laptop.
[2] Also, when I log out from the OpenBSD server, the vpnc connection remains active, preventing me from logging into the OpenBSD server again.

I then have to go to the OpenBSD server, and run "pkill vpnc" from the console.

Thereafter I can ssh into the OpenBSD server again.

Thank you,

J

0
Comment
Question by:m0nk3yza
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 36549590
[1] do you see anything in vpnc logs (or messages) why 2ns connection does not connect.
[2] It is designed to work like this. It suns a background daemon which does not disappear with session. There is a "screen" utility if it does not run in background well. Probably there is no remedy.
0
 
LVL 9

Expert Comment

by:parparov
ID: 36550226
You can simply create a logout script that would kill the vpnc job.
More on logout scripts here:
http://webmaster.iu.edu/tool_guide_info/logout_script.shtml
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 250 total points
ID: 36550370
vpnc runs as root, logout script will not help.
0
Turn your laptop into a mobile console!

The CV211 Laptop USB Console Adapter provides a direct Laptop-to-Computer connection for fast and easy remote desktop access with no software to install.

 
LVL 9

Accepted Solution

by:
parparov earned 250 total points
ID: 36550391
If the user would set passwordless sudo privileges, that may help.
0
 
LVL 62

Expert Comment

by:gheist
ID: 36550554
If there ais any other user they can run a portscan and exploits over that vpn connection while it is connected, it will not start ringing and whistling...
0
 
LVL 62

Expert Comment

by:gheist
ID: 36563127
Normally you give B grade  for simple pointers that lead to solution...
0
 
LVL 1

Author Comment

by:m0nk3yza
ID: 36564762
Point taken.
0

Featured Post

Enroll in June's Course of the Month

June's Course of the Month is now available! Every 10 seconds, a consumer gets hit with ransomware. Refresh your knowledge of ransomware best practices by enrolling in this month's complimentary course for Premium Members, Team Accounts, and Qualified Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question