Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openconnect]

OpenConnect is a client for Cisco's AnyConnect SSL VPN.

OpenConnect is a client for Cisco's AnyConnect SSL VPN, which is supported by the ASA5500 Series, by IOS 12.4(9)T or later on Cisco SR500, 870, 880, 1800, 2800, 3800, 7200 Series and Cisco 7301 Routers, and probably others.

OpenConnect is released under the GNU Lesser Public License, version 2.1.

34 questions
1
vote
1 answer

Writing an upstart file which allows the user to input username and password

I'm trying to write an upstart file for OpenConnect. The task is pretty simple, but I'm stuck because I don't want to provide the username and password in a config file, but prompt the user to provide them each time. The upstart file, placed in…
Robert Munteanu
  • 1,644
  • 5
  • 23
  • 41
1
vote
2 answers

redirect all traffic from server A (Linux) to another server B (Linux) without intercepting ssh to server A

I would like to forward all traffic from a server (Linux) to another server (Linux) without losing ssh access to first server. Authorities (government) have been shutting down the Internet, we have a hard time accessing outside of the country's…
Shakiba Moshiri
  • 231
  • 2
  • 7
1
vote
0 answers

forward openconnect to internal proxy port by iptables

In my country sometimes government decides to limit access to the international internet. we only have access to sites and IPs inside the country, but data centers have more access to the internet. I need to, at first, make a VPN connection from my…
HosSeinM
  • 111
  • 4
1
vote
0 answers

Best way to connect to L2TP VPN from container running in GCP

I've built an ubuntu container locally that uses OpenConnect to establish a connection to a customer's AnyConnect VPN server. They also have an L2TP connection available as well. After OpenConnect establishes a connection, some python code is…
FaultyJuggler
  • 123
  • 6
0
votes
0 answers

OpenConnect causing problems with httpd service

My httpd service was working properly, however whenever using OpenConnect through the box I can no longer connect to the box's webserver, it's giving me a 522 timeout error. Maybe I'm going about this wrong but I plan on accessing a page (that…
sunshinekitty
  • 101
  • 3
0
votes
1 answer

How to run nginx and ocserv on the same IP:Port using the same domain name?

How to run nginx and ocserv on the same IP:Port using the same domain name? Just like how a similar thing is possible by using SSTP protocol, if I am not mistaken. I am using Ubuntu 20.04.
Masood Lapeh
  • 48
  • 1
  • 5
0
votes
0 answers

Ocserv static tun device name for each user

Ocserv assigns dynamic interface names based on TUN device name. For example if tun device name is vpns, users connect via vpns0, vpns1 , vpns2 and ... Everytime a user opens a new session, a new interface name is assigned and because most tracking…
Hamed Zargar
  • 1
0
votes
2 answers

How to view total traffic usage of each user in ocserv

I'm using ocserv as VPN server in my company on ubuntu, and I want to view how much traffic each user is using. Users are set in ocpsswd file. Do ocserv have this feature or any library I can use? As I search Google and I'm confused. Anybody can…
Hamed Zargar
  • 1
0
votes
1 answer

VPN started with Network Manager doesn't configure routing table correctly

I have a Debian 11 system that has been configured to connect to a remote network via VPN. This has been functioning fine for a long time (since Debian 9). Recently, the remote network made some changes that broke my access to some sites when I was…
BrianD
  • 1
  • 2
0
votes
0 answers

openconnect client hello dropped by DPI

I've installed openconnect server (ocserv) and works perfectly when I tunnel (SSH) to the server through another server that is inside country. But when I try to connect directly, the "client hello" message doesn't deliver to the server and…
Fardin Dadashi
  • 1
0
votes
3 answers

how to make an installed package as a service in ubuntu?

I've installed ocserv package using these commands on Ubuntu22: mkdir /usr/local/src/ocserv cd /usr/local/src/ocserv wget ftp://ftp.infradead.org/pub/ocserv/ocserv-0.10.9.tar.xz unxz ocserv-0.10.9.tar.xz tar xvf ocserv-0.10.9.tar cd…
Ethan_m
  • 11
  • 4
0
votes
0 answers

Self hosted ocserv reject clients

I deployed an ocserv on my VPS but my android client raise below error: AnyConnect Connection attempt has timed out. Please verify Internet connectivity. I stop ocserv service on the VPS and run as debug mode, output messages of ocserv when this…
M.J
  • 97
  • 4
0
votes
1 answer

Prevent VPN client from network scanning on ocserv

I have a ocserv server for VPN on a debian11 server. One of my clients did a network scanning and service provider blocked my IP for terms of service violation. This is 2nd time that this happened and I don't know who did this. I want to ban the…
AminMZ
  • 3
  • 2
0
votes
1 answer

OpenConnect force clients to use special cipher

I use ocserv on Centos as Openconnect VPN and I use config file for setting up the server I need to force clients to use special cipher like AES-256-GCM because it seems that VPN blocks on some 4G net by a strange firewall and I need to bypass that…
Farhad Sakhaei
  • 131
  • 2
  • 10
0
votes
0 answers

Authentication using a script in openconnect OCSERV like auth-user-pass-verify in OpenVPN

I'm wondering if openconnect OCSERV, in any way, can support authentication using a script like OpenVPN auth-user-pass-verify configuration?
raitech
  • 91
  • 6
1
2
3