[Users] Freeswan and cron job

From: Segree, Gareth (Gareth.Segree_at_gleanerjm.com)
Date: Fri Aug 16 2002 - 16:45:24 CEST

• Previous message: Henry Spencer: "RE: [Users] FreeSwan RPM"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I have created a cron job to check every minute to see if my VPN link is up
(see below)
but it only works some times? Why?

crontab file
0-59 * * * * /opt/scripts/test_vpn.sh

test_vpn.sh
#!/bin/sh
down() {
      echo "Shutting down VPN interface ..."
      /usr/sbin/ipsec auto --down mobay-to-sii-x509
      /usr/sbin/ipsec auto --down mbyfw-to-kgn
      /usr/sbin/ipsec auto --down mbyfw-to-kgnfw
      /usr/sbin/ipsec auto --down general-config
}

delete() {
      echo "Deleting VPN interface ..."
      /usr/sbin/ipsec auto --delete mobay-to-sii-x509
      /usr/sbin/ipsec auto --delete mbyfw-to-kgn
      /usr/sbin/ipsec auto --delete mbyfw-to-kgnfw
      /usr/sbin/ipsec auto --delete general-config
}

add() {
      echo "Adding VPN interface ..."
      /usr/sbin/ipsec auto --add mobay-to-sii-x509
      /usr/sbin/ipsec auto --add mbyfw-to-kgn
      /usr/sbin/ipsec auto --add mbyfw-to-kgnfw
      /usr/sbin/ipsec auto --add general-config
}

start() {
      echo "Starting VPN interface ..."
      /usr/sbin/ipsec auto --start general-config
      /usr/sbin/ipsec auto --start mbyfw-to-kgnfw
      /usr/sbin/ipsec auto --start mobay-to-sii-x509
      /usr/sbin/ipsec auto --start mbyfw-to-kgn
}

up()
{
      echo "Bringing up VPN interface ..."
      /usr/sbin/ipsec auto --up general-config
      /usr/sbin/ipsec auto --up mbyfw-to-kgnfw
      /usr/sbin/ipsec auto --up mobay-to-sii-x509
      /usr/sbin/ipsec auto --up mbyfw-to-kgn
}

ret_val=0
vpn_msg="VPN seem to be up ..."
kgn_fw="89.0.93.6"
kgn_dns="89.0.170.5"
echo `date`
ping_check1=`ping -s 1 -c 1 $kgn_dns > /dev/null; echo $?`
ping_check2=`ping -s 1 -c 1 $kgn_fw > /dev/null; echo $?`
#if [ $? != 0 ]; then
#try_up("test")
if [ $ping_check1 -ne 0 ]; then
   down
   up
   sleep 25
   if [ $ping_check2 -ne 0 ]; then
      down
      delete
      add
      up
      sleep 25
      if [ $ping_check1 -ne 0 ]; then
         service ipsec restart
      fi
      vpn_msg="VPN had to be restarted ..."
      ret_val=1
   fi
fi

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Previous message: Henry Spencer: "RE: [Users] FreeSwan RPM"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Aug 16 2002 - 19:19:44 CEST