On Fri, Apr 18, 2014 at 10:39 AM, Niclau Liu <titanium98118 at gmail.com> wrote: > Dear openconnect-devel team: > I am running ocserv-3.3 in my ubuntu 13.04 x86(openvz vps). > In my phone(lg f160l android 4.1.2) use cisco anyconnect ics+ client > to connect to server. > Very often when phone back form sleep ,VPN connection seem alive,but > couldn't reach the VPN gateway,unless reconncet the VPN. [...] > ocserv[24557]: main: could not determine the owner of received UDP packet > ocserv[24557]: main: DTLS record version: 1.0 > ocserv[24557]: main: DTLS hello version: 95.250 That means that the session (TCP/TLS) has timed out, but the phone continues sending DTLS UDP packets and expecting the server to reply. There is not much the server can do, as the session's credentials no longer exist. What you could do is try to play with the various timeout values in the server's configuration and see which one fits your mobile better. In that case let us know. > Any suggestion? I think the best suggestion is to use the openconnect android application. regards, Nikos
