[ale] PPP/SSH VPN dies randomly

Dow Hurst dhurst at kennesaw.edu
Tue Mar 5 12:55:15 EST 2002 

We are using Bob's VPN setup for SSH/PPP tunnels.  We have uptime of
around 2-5months at a time and is only increasing as he discovers new
ways to overcome PPP and SSH snafu's.  I would recommend looking at
turning off PPP compression and also making sure SSH doesn't quit on a
"~." character pair.  I believe Bob could fix that for you with some
switches on SSH and PPP.  You don't have to accept downtime on your
SSH/PPP VPN tunnel.  We regularly have no glitches at all.  I also know
that Bob has developed as part of his product an autorestart VPN.  We
will be testing that out in the next couple of weeks.  I have had
dropouts on the VPN when a switch is recycled by our ITS without my
knowledge.  With the autorestart function based around SSH passphrase
authentication, I won't have to worry about the VPN anymore.  In fact,
since we started using Fly-by-Day, I haven't had to worry about security
very much at all.  Really has made a difference in my productivity as a
researcher/sysadmin.  Hope this helps,
Dow


Christopher Bergeron wrote:
> 
> Does anyone have any idea why my VPN connection dies periodically?  It seems
> to be okay for a few days and then one of the procees goes defunct and the
> connection goes down.  I'm tunneling ssh over ppp over a T1 connection to
> the 'net on both sides.
> 
> Any clues are greatly appreciated...
> -CB
> 
> ---
> This message has been sent through the ALE general discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
> sent to listmaster at ale dot org.

-- 
__________________________________________________________
Dow Hurst                   Office: 770-499-3428
Systems Support Specialist  Fax:    770-423-6744
1000 Chastain Rd.
Chemistry Department SC428  Email:dhurst at kennesaw.edu
Kennesaw State University         Dow.Hurst at mindspring.com
Kennesaw, GA 30144
*********************************
*Computational Chemistry is fun!*
*********************************

---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

More information about the Ale mailing list