Connection dies frequently, is restored after dead peer detection
Bernhard Schmidt
berni at birkenwald.de
Wed Sep 7 07:15:50 PDT 2016
Hi Matti,
> A couple of weeks back, my openconnect VPN connection started to freeze
> frequently. I'm not sure what changed at the time. The connection comes
> back after a while and I noticed from the logs that it is restored
> after a "DTLS Dead Peer Detection detected dead peer!" message. So I
> found the --force-dpd option and the situation is bearable, if I set
> the value to 2 or 3. What might be the problem? Is it a bug or a
> configuration issue? On client or server?
Your bugreport in Debian shows the cause
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835587
I have just rebuilt GnuTLS with the necessary patches (unfortunately you
need four patches on top of GnuTLS 3.5.3 to apply cleanly) and will
submit the patch to the BTS asap.
Downgrading gnutls to
http://snapshot.debian.org/package/gnutls28/3.5.2-3/ should fix your
problem if that bug is correct.
Bernhard
More information about the openconnect-devel
mailing list