What version of OpenConnect are you running? What version of vpnc-script? (If it's the standard one provided by a Linux distribution, what distribution and version?) OpenConnect logs various specific messages when it loses a connection, which you should see if you're running with `-vvv`. Are you sure the connection is being dropped? Do `ip addr` and `ip route` show the VPN network device (by default tun0) and the routes to it disappear? It appears more likely to me that *something other than OpenConnect* is overwriting your /etc/resolv.conf… possibly NetworkManager, possibly dhcpcd… not 100% sure. On Mon, Apr 27, 2020 at 3:47 PM John Hendy <jw.hendy@xxxxxxxxx> wrote: > > Greetings, > > For some time, I've been getting an automatic, silent disconnection. > My bash session with openconnect appears fine, but /etc/resolv.conf > will show that it's not on my VPN anymore. > > I'm pretty ignorant to network technology; I've done everything to > leverage my corporate VPN with openconnect via the posts/instructions > of others. Just adding that as I'll need some assistance with tracking > down exactly what's going on. I can post the full log if you'd like, > but after the initial connection stuff, there were only three unique > messages (with various values for bytes and ms): > > Sending uncompressed data packet of 40 bytes > No work to do; sleeping for 18000 ms... > Received uncompressed data packet of 524 bytes > > When I used a regex to remove those (thinking I'd see some message of > interest when it disconnected), there was nothing else left in the > file! > > The symptom is corporate addresses will start to hang and ultimately > give a "Hmmm. We're having trouble finding that site." My > /etc/resolv.conf will go from having an mmm search domain and 10.x.x.x > address to: > > $ cat /etc/resolv.conf > # Generated by dhcpcd from wlp3s0.dhcp > # /etc/resolv.conf.head can replace this line > nameserver 8.8.8.8 > nameserver 37.235.1.177 > # /etc/resolv.conf.tail can replace this line > > My openconnect command appears not to know this, though. > > This is the command I'm using: > > $ sudo openconnect -vvv --csd-wrapper /usr/lib/openconnect/csd-post.sh > gra.3m.com > > I'd estimate the connection lasts for ~10min or so. I can verify if > that would be helpful. > > > Many thanks for any suggestions, > John > _______________________________________________ > openconnect-devel mailing list > openconnect-devel@xxxxxxxxxxxxxxxxxxx > http://lists.infradead.org/mailman/listinfo/openconnect-devel _______________________________________________ openconnect-devel mailing list openconnect-devel@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/openconnect-devel
