Re: [Announce] OpenConnect (-GUI) VPN client
 

Works perfectly with my university's SSLVPN. Good job :)

One little nitpick:
my university doesn't use DTLS, so Openconnect use SSL instead. However this creates a rather verbose error message which might confuse people.

Re: [Announce] OpenConnect (-GUI) VPN client
 

Thank you mate,

I was confused with error message that I got... I haven't even tried to check connectivity... Silly:) Thank you, it works fine...

Re: [Announce] OpenConnect (-GUI) VPN client
 

Yes, I will pass to openconnect the required option to not use DTLS, so that the ugly error message will disappear. Unfortunately I cannot proceed differently, since the problem is tied to the OpenSSL library, which is pre-compiled by Nokia...

Re: [Announce] OpenConnect (-GUI) VPN client
 

Looking forward for this. is there any plan to include the group ID on the new release ?
Since currentyly i received a message
GROUP: [XXX|YYYY|ZZZ]: Invalid Inputs
Failed to obtain WebVPN cookir

XXX YYY ZZZ -> real group name

or anyone knows how to do this from command line ?

Re: [Announce] OpenConnect (-GUI) VPN client
 

i also face the same problem as my company require "group" for authentication.

any plan to support for group option in the next update?

Re: [Announce] OpenConnect (-GUI) VPN client
 

I wished someone would make a client like this for PPTP VPN.

Re: [Announce] OpenConnect (-GUI) VPN client
 

Hmm I manage to find a workaround, a little bit manual though.

1. Install rootsh
2. go to terminal
3. sudo gainroot
4. openconnect <servername>
when using this command line interface, the group name is visible and i am able to connect by typing the group name, user id and password.

the problem is the DNS and the routing is not configured yet, so I need to add that manually by creating 2 scripts
1. company.sh --> for all the routing and dns
2. normal.sh -> back to use the default routing and dns

For now its sufficient since I am able to vpn to my company using this workaround.

Re: [Announce] OpenConnect (-GUI) VPN client
 

thanks. by the way, can you share on how to create the scripts for DNS and routing?

Re: [Announce] OpenConnect (-GUI) VPN client
 

Dont laugh. this is really a quick hack.


You will need to find all the IP Address that you need to access example: 10.80.3.3 , 10.80.3.1, 10.80.3.2, etc.

You will also need to know the DNS of your company (you can find it when you connecting using your windows/linux machine)


Example:
company.sh
-----------------------
cd /home/user/company
route add 10.80.3.3 dev tun0
route add 10.80.3.2 dev tun0
route add 10.80.3.1 dev tun0
cp ./resolv.conf.company /etc/resolv.conf


resolv.conf.company
---------------------------------
nameserver 10.80.3.1

resolv.conf.normal
--------------------------
nameserver 127.0.0.1


normal.sh
---------------
cd /home/user/company
route add default gw 192.168.2.1 ---> change this to your default gw
cp resolv.conf.normal /etc/resolv.conf


Once you are connected using the openconnect, (put openconnect on background),

then execute the company.sh

try microb -> you should be able to access the intranet (i will assume you have stored the ip address in the router table above)

when you are done, close your openconnect.

revert back your normal gateway and DNS.

Its a quick and dirty but it works.


I am sure there is a better way to do this. I am open for suggestion.

Re: [Announce] OpenConnect (-GUI) VPN client
 

Hey..I am just a beginner...So can anyone help me with setting this...I am using..Open connect GUI to set things up....It asks for a VPN server, username and password....Do I have to register somewhere for all these?? Would really appreciate the reply...thanks :)