If it's SSL, I guess that Squid has nothing to do with it - it simply tunnels traffic through. There may be causes for issues if you were load-balancing a cluster, and that caused the source-ip seen by the vpn changing, but it doesn't seem to be the case here.
Does the VPNSSL explain why it's disconnecting users? A forced disconnection should be logged.. On Mon, Oct 22, 2012 at 9:57 AM, Dal Bo Valter <[email protected]> wrote: > Hello, > > Has anybody got any idea on how I can solve the problem ? > > Thank you > Valter > > -----Messaggio originale----- > Da: Dal Bo Valter > Inviato: mercoledì 17 ottobre 2012 16.37 > A: '[email protected]' > Oggetto: I: VPN SSL logging off randomly > Priorità: Alta > > > Hi all, > > I have a number of users that have to connect to a customer via VPN SSL > (fortinet) in order to use the customer’s resources while in my company > premises. > In order to connect to the internet, for a too long story to explain, ( ☺ ) > they have to go through the proxy. > That’s when I start having the odd behaviour that the connection to the > customer’s VPN takes place allright going through the proxy but then, > randomly, just disconnects without any apparent reason. > > I’ve just updated both server (now ubuntu 12.04 LTS) and Squid to version > 3.1.19 leaving all defaults from the squid.conf and just adding an ACL rule > to allow the access to the VPN address. > > acl passvpn dstdom_regex -i vpnssl.customer.com vpnssl.customer.com:443 > http_access deny all !passvpn > > Unfortunately the problem persists. > > Anybody has any idea how to solve this problem ? > Thank you > > Valter > > Questo messaggio, con gli eventuali allegati, contiene informazioni > riservate. Chiunque lo ricevesse pur non essendone il destinatario è pregato > di avvisare al più presto il mittente, di cancellarlo dal proprio sistema e > di non copiarlo, diffonderne il contenuto o utilizzarlo in alcun modo. > > This message and any files transmitted with it are confidential. If you are > not the intended recipient of this email, please notify the sender and > delete it from your system: you should not copy, disclose or use either it > or its attachments in any way whatsoever. -- /kinkie
