Just in case anyone else sets up sip2 + Stunnel for auth with CloudLibrary. We ran into an issue where the CloudLibrary authentication would work for a while, and then fail for several minutes at a time.
(Making some assumptions here since my questions to OCLC support never get responses about specifics) CloudLibrary/OCLC setup a service on their end that serializes all authentication requests they get through a single sip2/stunnel connection. So it keeps a single sip2 connection open for as long as possible, with a long idle timeout time. I don't think our other sip2/stunnel using vendors do it that way, I think they open a new connection for each authentication request. So the CloudLibrary auth service is sensitive to timeouts. I had the stunnel TIMEOUTidle setting unset, so the default setting which is 12 hours. And our sipserver was setup with a 60 second timeout. So I think what was happening was that sipserver timed out after 60 seconds, but stunnel kept the connection open, so their application couldn't detect the connection closing. So setting the stunnel TIMEOUTidle to 59 seconds seems to have fixed it. Probably lengthening the sipserver timeout to something longer in this case would also help the situation. Josh [image: Company logo] *Josh Stompro* *IT Director * [email protected] | 218-233-3757 ext. 139 *Lake Agassiz Regional Library* 118 5th ST S Moorhead MN 56560 www.larl.org *Our mission is to enrich lives and strengthen communities.*
_______________________________________________ Evergreen-general mailing list -- [email protected] To unsubscribe send an email to [email protected]
