Re: [Openvpn-users] OpenVPN with auth-user-pass disconnects after 1hr

On 13/10/13 21:23, Davide Brini wrote: > On Sun, 13 Oct 2013 16:17:00 +1300, Michael Ludvig > wrote: > >> I want it stay connected and don't drop in the first place. >> Reauthenticating every hour is not an option. > Then don't use "auth-nocache", I

Re: [Openvpn-users] OpenVPN with auth-user-pass disconnects after 1hr

On 13/10/13 16:17, Michael Ludvig wrote: > I don't want it stay connected and don't drop in the first place. I _want_ it stay connected, of course ;) M. -- October Webinars: Code for Performance Free Intel

Re: [Openvpn-users] OpenVPN with auth-user-pass disconnects after 1hr

On 13/10/13 06:03, Davide Brini wrote: > On Wed, 09 Oct 2013 00:26:45 +1300, Michael Ludvig > wrote: > >> Tue Oct 8 23:08:40 2013 Initialization Sequence Completed >> Wed Oct 9 00:08:38 2013 TLS: soft reset sec=0 bytes=38258/0 pkts=718/0 >> Enter Auth Username:^C &

Re: [Openvpn-users] OpenVPN with auth-user-pass disconnects after 1hr

On 10/10/13 22:34, Jan Just Keijser wrote: > Hi, > > Michael Ludvig wrote: >> Hi >> >> we use OpenVPN 2.3.2 without client certificate and with >> auth-user-pass instead. What we observe is that the connection always >> drops pretty much exactly after 1 hou

[Openvpn-users] OpenVPN with auth-user-pass disconnects after 1hr

Hi we use OpenVPN 2.3.2 without client certificate and with auth-user-pass instead. What we observe is that the connection always drops pretty much exactly after 1 hour, regardless of whether any traffic flows through or not. It's perfectly reproducible - I've just set up a test server and test cl

Re: [Openvpn-users] OTP re-auth solution?

On 11/09/13 13:17, Jason Haar wrote: > On 11/09/13 12:34, Michael Ludvig wrote: >> We used to do cert-based authentication which was good because on >> connection drop it re-authenticated without any user interaction and >> often users didn't even notice. Now

[Openvpn-users] OTP config settings

Once again about our OTP / YubiKey setup... What parameters should I set on both the client and the server to achieve the best user experience? Which sadly means two contradictory aspects: 1) If it should drop do it quick so that the user isn't left with a stale tunnel that must be killed manuall

[Openvpn-users] OTP re-auth solution?

Hi guys We use OpenVPN 2.3 with UserName + One-Time-Password authentication (YubiKey, to be specific). It works well but the problem is when the connection drops for any reason the client process can't re-authenticate to the server without the user entering a new OTP. Sadly they're not immediatel