Bug 564196 – OpenVpn Missing options result in VPN disconnections

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 564196 - OpenVpn Missing options result in VPN disconnections


Summary:	OpenVpn Missing options result in VPN disconnections


Status:	RESOLVED DUPLICATE of bug 484315

Product:	NetworkManager
Classification:	Platform
Component:	VPN: openvpn
Version:	unspecified
Hardware:	Other Linux

Importance:	Normal normal
Target Milestone:	---
Assigned To:	Dan Williams
QA Contact:	Dan Williams

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2008-12-12 00:11 UTC by Matthieu Loll
Modified:	2009-02-24 00:18 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description Matthieu Loll 2008-12-12 00:11:55 UTC

The default value used by OpenVPN for "reneg-sec" is 3600 seconds.
Currently there is no way to change this value in the OpenVPN plugin for NetworkManager.
Also, the option "auth-retry" should be possible to be set to "interact".
These 2 settings are needed in case of OpenVPN used with an RSA token, for proper renewal of authentication.
With these 2 options missing, the result is that the openvpn daemon tries to renegotiate authentication after 3600 seconds without prompting the user for new credentials, which fails and ends in the VPN being disconnected.
Setting "reneg-sec" to a much higher value would also avoid re-entering the credentials too often (a sane default would be 43200)

Comment 1 Dan Williams 2009-02-24 00:18:07 UTC

Duping to 484315

*** This bug has been marked as a duplicate of 484315 ***