Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    States killed when VPN user disconnects

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 338 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      funkypenguin
      last edited by

      Hi all,

      I recently upgraded from 2.5.2 to 2.6.0, and have noticed a change..

      We use static client IP on the VPN, so the my VPN connection always receives the same IP. Prior to the upgrade, I could disconnect from the VPN (my laptop goes to sleep, for example), reconnect within (x) minutes, and my SSH sessions to hosts behind the VPN would resume.

      Under 2.6.0, this no longer happens.

      I've diagnosed this a little by examining the state table - when my client is connected, I see the state for my SSH session through the VPN/firewall. When my client disconnects, all the states for my client IP are removed.

      I can't roll back to prove it exactly, but I've repeated the test on a similar firewall running 21.05.1-RELEASE - in this case, my state remains in the state table even after my VPN client disconnects.

      Was this conveniently broken and now fixed, or is there a way to restore the previous behavior?

      Thanks!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.