PDA

View Full Version : Mountain Lion Server-VPN Status




dazey
Oct 30, 2012, 09:07 AM
Hi, this may be a dumb question but how do you see the VPN status in mountain lion server? By this I mean, number of clients connected, their IP addresses and usernames. In 10.5 server (from which I am transitioning) the VPN page of the server app gave this information but it is completely gone in the 10.8 server app with only config remaining. Hopefully I am being blind but I can't find the info anywhere??!



switon
Oct 30, 2012, 03:40 PM
Hi dazey,

Yeah, it is sad that Mac OS X Server has eliminated the GUI interface to serveradmin...but, with that, it means that we must now get used to using the commandline more. The following command returns the variables associated with VPN and you will note that one of the variables is the current connections. If you need to check this often, you could write an alias that runs this command and greps for the CurrentConnections:

sudo serveradmin fullstatus vpn

Regards,
Switon

P.S. For example, to see the current L2TP and PPTP connections, run the following Terminal command:

sudo serveradmin fullstatus vpn | grep -i currentconnections

dazey
Oct 31, 2012, 10:52 AM
And not to mention that the new server app crashes at least once a day...

Thanks, very useful, gets me closer at least (not giving me the user names and allocated IPs but I can find that out other routes)

switon
Nov 2, 2012, 04:28 AM
And not to mention that the new server app crashes at least once a day...

Thanks, very useful, gets me closer at least (not giving me the user names and allocated IPs but I can find that out other routes)

Hi dazey,

I just thought I'd add a few more serveradmin commands that you might find useful. For instance, say you wish to disconnect users who have mounted shared disks via AFP, then you could do the following (the lines beginning with # are comments): [execute as root or under sudo]


#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
# To turn on AFP Activity Logging:
serveradmin settings afp:activityLog = "yes"
# To disconnect a specific user from AFP:
# Find the user's sessionID:
serveradmin command afp:command = getConnectedUsers
afp:state = "RUNNING"
afp:usersArray:_array_index:0:lastUseElapsedTime = 22
afp:usersArray:_array_index:0:minsToDisconnect = 0
afp:usersArray:_array_index:0:sessionType = "tcp"
afp:usersArray:_array_index:0:state = 1
afp:usersArray:_array_index:0:serviceType = "afp"
afp:usersArray:_array_index:0:ipAddress = "10.0.0.100"
afp:usersArray:_array_index:0:sessionID = 124
afp:usersArray:_array_index:0:loginElapsedTime = 792
afp:usersArray:_array_index:0:disconnectID = 0
afp:usersArray:_array_index:0:name = "switon"
afp:usersArray:_array_index:0:flags = 1
afp:timeStamp = "2012-11-01 09:52:20 -0600"
# Disconnect user in 1 minute:
serveradmin command
afp:command = disconnectUsers
afp:message = "You are doomed, too"
afp:minutes = 1
afp:sessionIDsArray:_array_index:0 = 124
<Cntl-D>
#----------------------------------------------------------------------------


The above commands turn on AFP logging, determine the sessionID of a connected user, and then disconnects that user from AFP. This is just an example of the use of the serveradmin commandline.

Switon