[THIN] SOLUTION: Forcing a DOD VPN up

• From: "Sullivan, Glenn" <GSullivan@xxxxxxxxxxxxxx>
• To: "'thin@xxxxxxxxxxxxx'" <thin@xxxxxxxxxxxxx>
• Date: Tue, 28 Jan 2003 07:50:32 -0500

I've wrote a simple little VB program to solve a problem I was having, and
figured it might help the rest of you out.

PROBLEM:
I recently set up a remote office for a side client, with an identical VPN
capable firewall as a central site.  It was very easy to set up a
Dial-On-Demand IP-SEC based VPN between this site and the central site, and
once the VPN was up and running, terminal sessions went fine over the link.

The problem is, it takes close to 7 seconds from when the remote router
"hears" traffic bound for the central office to negotiate the connection.
Which means that the users get "Remote server unavailable" messages the
first three or four times that they try to connect (by running a shortcut to
a RDP 5.1 file).

Have you ever tried to tell a user how to ping, and then how to stop the
ping when they start getting replies?  It doesn't work well...

SOLUTION:
I wrote a quick little program in VB6 that allows you to specify (and save)
an IP address and ping that IP address, with very little user interaction.
It also has a Success and Failure threshold, which, when crossed, stop the
ping process and notify the user one way or the other.

I now set this up on user machines, pointed at an IP address on the other
side of the VPN, with a success threshold of 3 (3 successful ping replies
received) and a failure threshold of 20 (20 failed replies... that's about
20 seconds of no VPN, so there must be something wrong).  I set it to "Auto
start" so that, when the user click's the icon it automatically starts the
pings, and then notifies the user when done.

I have it bundled up into an MSI file, and it's about 1.2kb.  Fits on a
floppy if you need it to.

I call it "Get It Up!" since what it does is get the VPN up and running for
you.  My wife hates the name...

Email me OFFLIST, and I can send you a copy.  If I get too many requests,
maybe I'll convince Jim to put in in the Thin.net files area.

Hope it helps someone,

Glenn Sullivan, MCSE+I  MCDBA
David Clark Company Inc.
***************************************************************************
This Week's Sponsor: New Wyse(R) Expedian(TM)software maximizes your server 
capacity--cost-effectively. Now you can dramatically increase the number of 
users on a server by as much as 40%--and reduce the number of servers you have 
to manage. By optimizing memory usage, Wyse Expedian software allows the 
terminal server to support more applications and more concurrentusers. Download 
your 30-day free trial today at:
http://www.wyse.com/expedian/eval.cfm?promo=US-Ad-0103TheThinNetNewsletterEM
****************************************************************************


For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm

Other related posts:

• » [THIN] SOLUTION: Forcing a DOD VPN up

1. Home
2. thin
3. Archive
4. 01-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---