Hi,
On Dec/28/2019, Carles Pina i Estany wrote: > Any experience compiling openconnect (I might try this anyway) instead > of using the Debian precompiled version? Any parameters that could be > used, faster cyphering, etc.? I've compiled, used the vpnc-script pointed from the documentation ( this one: http://git.infradead.org/users/dwmw2/vpnc-scripts.git/blob_plain/HEAD:/vpnc-script ). The output is: Got CONNECT response: HTTP/1.1 200 OK CSTP connected. DPD 30, Keepalive 30 Connected as xxxxxxxx, using SSL, with DTLS in progress Established DTLS connection (using GnuTLS). Ciphersuite (DTLS0.9)-(RSA)-(AES-256-CBC)-(SHA1). Error: any valid prefix is expected rather than "dev". The connection works, the speed is similar. DTLS seems enabled. I'll play with some settings (e.g. disabling compression, dtls-ciphers, etc.). If I get anything better I'll pass it here. This is a connection from a home network to a server. I'm reading about the DTLS and UDP, if it helps to have NAT in the router and specify the --dtls-local-port I would do it as well... I don't see any recommendation for this so not doing it yet. Cheers, -- Carles Pina i Estany _______________________________________________ openconnect-devel mailing list [email protected] http://lists.infradead.org/mailman/listinfo/openconnect-devel
