search

threerings / openvpn-auth-ldap

Implements username/password authentication via LDAP for OpenVPN 2.x.
Other
135 stars 63 forks source link

clients exit when LDAP is down instead of retry #39

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. stop the ldap server for a while
2. watch the reconnects of existing connections fail
3. wait until you see a line "TLS Error: local/remote TLS keys are out of sync"
4. the clients exit because of "wrong username/password" and thus are unable to 
retry

What is the expected output? What do you see instead?
i would expect the openvpn-ldap module to give a different status (if possible) 
to the openvpn server so that the client doesn't think that it has a wrong 
username and doesn't need to retry... (even with retry infinite)

What version of the product are you using? On what operating system?
deb6 amd64 openvpn-2.2.1-8+deb7u2  openvpn-auth-ldap-2.0.3-5.1

is there a workaround i can use to not have this issue?

Original issue reported on code.google.com by maar...@coloc.be on 30 Jun 2014 at 1:02