Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 6938 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN monitoring

LordHex
Hello,

I have few questions, and I think I'm not the only one who might be interested in the answer for these.
The Astaro is setup as regular VPN endpoint, authentication is made against an inside RADIUS server which is doing the authentication against an Active Directory Domain server checking to see if the user is part of VPN users, if the account is enabled and if the user is having the "Allow Access" enabled in the Dial-In properties tab.

Questions:
1. How can you tell who is connected and how many VPN connection you have at the moment in Astaro?
2. How can you 'clip' (disconnect) someone from the VPN?
3. How can you send a message to someone connected to your VPN? Via net send -- is not working?
4. Resolving by name a computer inside, once the VPN connection is established, is not working.
In "PPTP Roadwarrior Network Access" --> "Optional Parameters" I have setup the DNS and WINS servers to be applied to the VPN client.
5. Trying to "grep" the "PPTP Roadwarrior Access Logs" about a username in the current log (appending one) did not yield any results, although the user was there. It is working in all other logs. Does anyone know why?

Thank you

LordHex.
   


This thread was automatically locked due to age.
Parents
  • 0

    Task was to find out who is logged in by openvpn to our Sophos UTM.

    * this does not give results

    I could not find any hints in SNMP-output nor "cc get_objects" (this is
    for configuration not for monitoring).

    * this works

     

    ```

    ssh root@sophos-utm.local

    /usr/local/bin/openvpn_connections.sh

    OpenVPN CLIENT LIST
    Updated,Wed Mar 25 10:53:27 2020
    Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
    openvpn-myuser1,1.2.3.4:63969,4333648,11695199,Wed Mar 2 06:58:51 2020
    openvpn-myuser25,1.20.36.99:55371,9183690,57628351,Wed Mar 2 07:28:08 2020
    REF_AaaUse99,30.50.20.1:53100,16113267,48635679,Wed Mar 2 05:01:58 2020
    ...

    ```

     

    I am using this output to feed a webservice via a perl-script which gives me data for PRTG, my monitoring-tool. It looks like this:

    prtghelper.local/prtg-openvpn-utm

     

    ```
    {
    prtg: {
    text: "openvpn-sophos"
    result: [
    {
    value: 16,
    channel: "openvpn-connections-number"
    },
    {
    channel: "openvpn-myuser1"
    value: 1,
    },
    ...
    ],
    }
    ```

Reply
  • 0

    Task was to find out who is logged in by openvpn to our Sophos UTM.

    * this does not give results

    I could not find any hints in SNMP-output nor "cc get_objects" (this is
    for configuration not for monitoring).

    * this works

     

    ```

    ssh root@sophos-utm.local

    /usr/local/bin/openvpn_connections.sh

    OpenVPN CLIENT LIST
    Updated,Wed Mar 25 10:53:27 2020
    Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
    openvpn-myuser1,1.2.3.4:63969,4333648,11695199,Wed Mar 2 06:58:51 2020
    openvpn-myuser25,1.20.36.99:55371,9183690,57628351,Wed Mar 2 07:28:08 2020
    REF_AaaUse99,30.50.20.1:53100,16113267,48635679,Wed Mar 2 05:01:58 2020
    ...

    ```

     

    I am using this output to feed a webservice via a perl-script which gives me data for PRTG, my monitoring-tool. It looks like this:

    prtghelper.local/prtg-openvpn-utm

     

    ```
    {
    prtg: {
    text: "openvpn-sophos"
    result: [
    {
    value: 16,
    channel: "openvpn-connections-number"
    },
    {
    channel: "openvpn-myuser1"
    value: 1,
    },
    ...
    ],
    }
    ```

Children
No Data
Unfiltered HTML