gofman.mike at gmail
Nov 16, 2009, 10:36 AM
Post #6 of 12
(2149 views)
Permalink
|
|
Re: connection hangs inside virtual machines
[In reply to]
|
|
The issue was reported here:
http://lists.unix-ag.uni-kl.de/pipermail/vpnc-devel/2009-October/003285.html
On Mon, Nov 16, 2009 at 1:04 PM, Lonni J Friedman <netllama [at] gmail>wrote:
> I'm confident its not an idle connection problem. I can be actively
> pinging a system across the VPN, and have the connection spontaneously
> die.
>
> Which rekeying problem are you referring to?
>
> thanks.
>
> On Mon, Nov 16, 2009 at 9:59 AM, Michael Gofman <gofman.mike [at] gmail>
> wrote:
> > Just FYI many firewalls automatically close idle connections.
> > It's either that or the rekeying problem that was reported previously.
> >
> > On Mon, Nov 16, 2009 at 12:54 PM, Lonni J Friedman <netllama [at] gmail>
> > wrote:
> >>
> >> On Sun, Nov 15, 2009 at 10:17 PM, Dan Williams <dcbw [at] redhat> wrote:
> >> > On Sun, 2009-11-15 at 18:06 -0800, Lonni J Friedman wrote:
> >> >> Greetings,
> >> >> I've been using vpnc on Linux to connect to a Cisco VPN for several
> >> >> years, and its great (certainly much better than Cisco's crappy Linux
> >> >> client). One long standing problem that I've experienced only
> >> >> reproduces when running vpnc inside of a virtual machine environment
> >> >> (VMWare, VirtualBox, etc) in which both the VM and the host OS are
> >> >> Linux. Namely, the VPN connection appears to silently die after some
> >> >> random period of time. vpnc is still running, but all network
> traffic
> >> >> to and from the remote VPN end dies completely. The only fix is to
> >> >> stop vpnc (vpnc-disconnect) and then re-connect again. The problem
> is
> >> >> present up to and including version 0.5.3.
> >> >
> >> > Is the VM NAT-ed to the host adapter, or is the host machine behind a
> >> > NAT somewhere? If so, try changing the NAT traversal mode, or if that
> >> > doesn't work try setting a specific local port.
> >>
> >> Thanks for the reply. The VM is NAT-ed to the host, and the host is
> >> also NAT'ed (its all sitting behind my home's DSL connection, which is
> >> behind a firewall).
> >>
> >> I'll try playing with the different --natt-mode options tonight and
> >> see if any have an impact.
> >>
> >> As for setting a specific local port (with --local-port ), does it
> >> matter what number i select, or is the goal simply to just select one
> >> rather than getting a random port?
> >>
>
>
>
> --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> L. Friedman netllama [at] gmail
> LlamaLand https://netllama.linux-sxs.org
>
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel [at] unix-ag
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/<http://www.unix-ag.uni-kl.de/%7Emassar/vpnc/>
>
|
