These scripts can be used to kill existing openconnect VPN sessions at a specified time. This may be particularly helpful in scenarios where you occasionally need to be able to access your office workstation remotely but, if you forget to sign out of VPN at the end of the workday, you cannot access your workstation using its assigned IP because the VPN session prevents it.
The scripts are designed for use on Linux workstations where GNOME 3.x is the desktop environment.
When executed, the main kill-openconnect.sh script will notify all authenticated users that it will kill any existing openconnect sessions in 10 minutes. Users who have sudo permissions can prevent the OpenConnect sessions from ending by terminating the kill script.
- Download both scripts (
kill-openconnect.shandnotify-send-all.sh) and place them in/usr/local/bin. - Ensure that both scripts are executable by the
rootuser only.$ sudo chown root:root /usr/local/bin/kill-openconnect.sh /usr/local/bin/notify-send-all.sh $ sudo chmod 0700 /usr/local/bin/kill-openconnect.sh /usr/local/bin/notify-send-all.sh
- Schedule the
/usr/local/bin/kill-openconnect.shscript to run from therootuser's crontab on a schedule that makes sense. For instance, if your normal work hours are 8:00am-4:30pm, you may wish the script to run hourly from 5pm until 7am.00 17-23,00-07 * * * /usr/local/bin/kill-openconnect.sh
- When the script runs, it will send a GNOME Shell notification 10 minutes before it attempts to kill any OpenConnect sessions, and every 2 minutes thereafter until the OpenConnect session is terminated.