On Sat, Nov 6, 2010 at 13:15, Jiri B. <ji...@live.com> wrote:
> On Thu, Nov 04, 2010 at 01:26:53PM +0100, David Coppa wrote:
>>On Thu, Nov 4, 2010 at 2:16 AM, Jiri B. <ji...@live.com> wrote:
>>> Hi,
>>>
>>> works for me for long time being connected to my employer network
>>> (on i386). Maybe vpnc script can be little more tuned. Not sure if
>>> I did stuff in PLIST correctly (@sample).
>>>
>>> As I do not use GNOME I haven't even tried to do anything with its
>>> network-manager hooks.
>>
>>NetworkManager does not exist on OpenBSD.
>
> Thanks for info. Has anybody tried this openconnect?
>
> jirib
>
>

I just tried this on my openbsd laptop (cvs build November 7th with
GENERIC.MP).

I initially had some issues trying to connect to the hostname, saying
it "failed to obtain WebVPN cookie".  So I did two things, not knowing
which one caused it to work:

1.  opened web browser (Firefox) and went to the webvpn location
"https://webvpn.foo.com"; and logged in and started the browser
interface.

2.  re-ran openconnect, but this time used the IP address:
openconnect -v --script /etc/openconnect/vpnc-script https://173.112.123.123

whichever caused it, I was able to login and succesfully made the
network connection and I was able to access intranet pages at home,
just like when I'm on a windows box at home using the Cisco client...

here is my ifconfig output:
$ ifconfig -a
rum0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        lladdr 00:0e:3b:1e:f0:14
        priority: 4
        groups: wlan egress
        media: IEEE802.11 autoselect (OFDM36 mode 11g)
        status: active
        ieee80211: nwid Triton chan 6 bssid 00:1d:7e:ba:5d:f0 81dB
wpakey <not displayed> wpaprotos wpa1,wpa2 wpaakms psk wpaciphers
tkip,ccmp wpagroupcipher tkip 100dBm
        inet6 fe80::20e:3bff:fe1e:f014%rum0 prefixlen 64 scopeid 0x5
        inet 192.168.1.17 netmask 0xffffff00 broadcast 192.168.1.255
tun0: flags=51<UP,POINTOPOINT,RUNNING> mtu 1406
        priority: 0
        groups: tun
        status: active
        inet 172.16.17.134 --> 172.16.17.134 netmask 0xffffffff

# route show
Routing tables

Internet:
Destination        Gateway            Flags   Refs      Use   Mtu  Prio Iface
default            192.168.1.1        UGS        5    22319     -    12 rum0
loopback           localhost          UGRS       0        0 33160     8 lo0
localhost          localhost          UH         1        0 33160     4 lo0
172.16/16          172.16.17.134     UGS        6      330     -     8 tun0
armstrong.ultra-at 172.16.17.134     UGS        0        0     -     8 tun0
atshqdc01.ultra-at 172.16.17.134     UGS        0       40     -     8 tun0
172.16.17/24      172.16.17.134     UGS        0        0     -     8 tun0
172.16.17.134     172.16.17.134     UH         5        0     -     4 tun0
172.17.104.10/32   172.16.17.134     UGS        0        0     -     8 tun0
173.227.65.2       192.168.1.1        UGHS       1      395     -    12 rum0
192.168.1/24       link#5             UC         1        0     -     4 rum0
192.168.1.1        00:1d:7e:ba:5d:ee  UHLc       2        0     -     4 rum0
192.168.1.17       localhost          UGHS       0        0 33160     8 lo0
BASE-ADDRESS.MCAST localhost          URS        0        0 33160     8 lo0

Internet6:
Destination        Gateway            Flags   Refs      Use   Mtu  Prio Iface
::/104             localhost          UGRS       0        0     -     8 lo0
::/96              localhost          UGRS       0        0     -     8 lo0
localhost          localhost          UH        14        0 33160     4 lo0
::127.0.0.0/104    localhost          UGRS       0        0     -     8 lo0
::224.0.0.0/100    localhost          UGRS       0        0     -     8 lo0
::255.0.0.0/104    localhost          UGRS       0        0     -     8 lo0
::ffff:0.0.0.0/96  localhost          UGRS       0        0     -     8 lo0
2002::/24          localhost          UGRS       0        0     -     8 lo0
2002:7f00::/24     localhost          UGRS       0        0     -     8 lo0
2002:e000::/20     localhost          UGRS       0        0     -     8 lo0
2002:ff00::/24     localhost          UGRS       0        0     -     8 lo0
fe80::/10          localhost          UGRS       0        0     -     8 lo0
fe80::%lo0/64      fe80::1%lo0        U          0        0     -     4 lo0
fe80::1%lo0        link#3             UHL        0        0     -     4 lo0
fe80::%rum0/64     link#5             UC         0        0     -     4 rum0
fe80::20e:3bff:fe1 00:0e:3b:1e:f0:14  UHL        0        0     -     4 lo0
fec0::/10          localhost          UGRS       0        0     -     8 lo0
ff01::/16          localhost          UGRS       0        0     -     8 lo0
ff01::%lo0/32      localhost          UC         0        0     -     4 lo0
ff01::%rum0/32     link#5             UC         0        0     -     4 rum0
ff02::/16          localhost          UGRS       1        0     -     8 lo0
ff02::%lo0/32      localhost          UC         0        0     -     4 lo0
ff02::%rum0/32     link#5             UC         0        0     -     4 rum0



But the main thing is that it works great...

Thanks again,
Bryan Brake

Reply via email to