[Openswan Users] MySQL over Openswan VPN tunnel

Christopher Slagel chris at noxsolutions.com
Wed Feb 12 17:20:33 EST 2014 

Simon, seems this actually worked! But then how do we make it persistent
through reboot?  Apparently adding it to
/etc/sysconfig/network-scripts/ifcfg-eth0 by adding a line reading
MTU=“1400” and restarting the network service didn’t work…

Also, is it worth trying different MTU settings to reduce latency?  Or is
1400 a pretty standard place to leave it?





On 2/12/14, 12:56 PM, "Simon Deziel" <simon at xelerance.com> wrote:

>You can first try with running "sudo ifconfig eth0 mtu 1400" directly on
>the console. This setting will not survive a reboot of course.
>
>On 14-02-12 03:53 PM, Christopher Slagel wrote:
>> Thanks Simon.  Through some research I found that that might be the
>>issue,
>> and I¹ve tried editing our /etc/sysconfig/network-scripts/ifcfg-eth0
>>files
>> and messing with the MTU (adding MTU=³xyz²), but don¹t seem to be having
>> any success.  Is there another way I should try messing with the MTU?
>> 
>> 
>> 
>> On 2/12/14, 12:50 PM, "Simon Deziel" <simon at xelerance.com> wrote:
>> 
>>> Hi Christopher,
>>>
>>> The problem you describe could well be related to a MTU issue. I'd try
>>> setting a MTU of say 1400 and see if things start working.
>>>
>>> HTH,
>>> Simon
>>>
>>> On 14-02-12 03:38 PM, Christopher Slagel wrote:
>>>> We have a VPN tunnel with Openswan between two AWS regions and our
>>>>colo
>>>> facility (Used AWS¹s
>>>> guide: http://aws.amazon.com/articles/5472675506466066).  Regular
>>>>usage
>>>> works OK, but we are having some MySQL issues over the tunnel between
>>>> all areas.  Using mysql command line client on a linux server works,
>>>>but
>>>> trying to connect using the MySQL Connector J it basically stallsŠ it
>>>> seems to open the connection, but then gets stuck.  It doesn't get
>>>> denied or anything, just hangs there.  Logging isn¹t picking up
>>>>anything
>>>> at all and usually very verbose about errors.  Any input as to what we
>>>> can do to fix this/improve the connections would be appreciated.
>>>>Thanks.
>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> Users at lists.openswan.org
>>>> https://lists.openswan.org/mailman/listinfo/users
>>>> Micropayments:
>>>>https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>>>> Building and Integrating Virtual Private Networks with Openswan:
>>>> 
>>>>http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=28315
>>>>5
>>>>
>>>
>>> _______________________________________________
>>> Users at lists.openswan.org
>>> https://lists.openswan.org/mailman/listinfo/users
>>> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>>> Building and Integrating Virtual Private Networks with Openswan:
>>> 
>>>http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>> 
>> 
>

More information about the Users mailing list