TCP Sessions get disconnected at 6, 9 hours

Larry Ploetz lploetz at
Sat Mar 2 17:46:50 PST 2024

On 2024-02-27 18:31, Daniel Lenski wrote:
> On Tue, Feb 27, 2024 at 3:58 PM Larry Ploetz <lploetz at> wrote:
>> No indication of any packets in openconnect's stderr, only routing
>> changes being made (add host/add net), and those are on startup - the
>> timestamps on the redirected stdout/stderr files are when openconnect
>> was started + 11 seconds.
> You say you're collecting logs with maximum debugging verbosity
> (`--vvv --dump-http-traffic --timestamp`)… but you see *nothing at
> all* in the logs around 6 hours? 🤷🏻‍♂️
> That makes no sense.
> With either the ESP tunnel
> (
> or with the TLS tunnel
> (
> you should be getting a log message with every single packet sent or
> received over the tunnel, including keepalive/DPD packets.
> Your initial command line included `--syslog`, so the logs are
> certainly *not going to stderr* after the connection is established.
> Are you sure you're looking at the right logs, in the right place?
Doh, I'm an idiot - let me try again without --syslog.

More information about the openconnect-devel mailing list