help debugging openconnect hang?

Kevan Rehm kfr at sgi.com
Fri Dec 19 00:07:46 PST 2014


On 12/17/2014 03:49 PM, David Woodhouse wrote:
> On Wed, 2014-12-17 at 15:40 -0600, Kevan Rehm wrote:
>> This happens 4-5 times a day.   The only choice at that point is to
>> Cntl-C out of the openconnect session, then reconnect to the work
>> server, then I'm good again for a few hours.   Prior to my workstation
>> upgrade (opensuse 12.1) I did not have these problems.
>>
>> I'm looking for help/advice on how best to debug this problem. Ideas?
> My first guess is that something is screwing with your routing. Perhaps
> a DHCP renew is resetting your routes to go via your local network
> instead of the VPN.
>
> Show 'ip route' output when you're first connected, and when it's
> broken.
>
> Try capturing traffic on the tun0 interface when it's not working. Are
> the packets even being *sent* that way?
>
Well done, it happens when the dhcp lease expires and has to be 
renewed.   Is there a way to get around that, or does everyone just use 
static IP addresses?

Thanks, Kevan



More information about the openconnect-devel mailing list