On Sat, Nov 6, 2010 at 13:15, Jiri B. <ji...@live.com> wrote: > On Thu, Nov 04, 2010 at 01:26:53PM +0100, David Coppa wrote: >>On Thu, Nov 4, 2010 at 2:16 AM, Jiri B. <ji...@live.com> wrote: >>> Hi, >>> >>> works for me for long time being connected to my employer network >>> (on i386). Maybe vpnc script can be little more tuned. Not sure if >>> I did stuff in PLIST correctly (@sample). >>> >>> As I do not use GNOME I haven't even tried to do anything with its >>> network-manager hooks. >> >>NetworkManager does not exist on OpenBSD. > > Thanks for info. Has anybody tried this openconnect? > > jirib > >
I just tried this on my openbsd laptop (cvs build November 7th with GENERIC.MP). I initially had some issues trying to connect to the hostname, saying it "failed to obtain WebVPN cookie". So I did two things, not knowing which one caused it to work: 1. opened web browser (Firefox) and went to the webvpn location "https://webvpn.foo.com" and logged in and started the browser interface. 2. re-ran openconnect, but this time used the IP address: openconnect -v --script /etc/openconnect/vpnc-script https://173.112.123.123 whichever caused it, I was able to login and succesfully made the network connection and I was able to access intranet pages at home, just like when I'm on a windows box at home using the Cisco client... here is my ifconfig output: $ ifconfig -a rum0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 lladdr 00:0e:3b:1e:f0:14 priority: 4 groups: wlan egress media: IEEE802.11 autoselect (OFDM36 mode 11g) status: active ieee80211: nwid Triton chan 6 bssid 00:1d:7e:ba:5d:f0 81dB wpakey <not displayed> wpaprotos wpa1,wpa2 wpaakms psk wpaciphers tkip,ccmp wpagroupcipher tkip 100dBm inet6 fe80::20e:3bff:fe1e:f014%rum0 prefixlen 64 scopeid 0x5 inet 192.168.1.17 netmask 0xffffff00 broadcast 192.168.1.255 tun0: flags=51<UP,POINTOPOINT,RUNNING> mtu 1406 priority: 0 groups: tun status: active inet 172.16.17.134 --> 172.16.17.134 netmask 0xffffffff # route show Routing tables Internet: Destination Gateway Flags Refs Use Mtu Prio Iface default 192.168.1.1 UGS 5 22319 - 12 rum0 loopback localhost UGRS 0 0 33160 8 lo0 localhost localhost UH 1 0 33160 4 lo0 172.16/16 172.16.17.134 UGS 6 330 - 8 tun0 armstrong.ultra-at 172.16.17.134 UGS 0 0 - 8 tun0 atshqdc01.ultra-at 172.16.17.134 UGS 0 40 - 8 tun0 172.16.17/24 172.16.17.134 UGS 0 0 - 8 tun0 172.16.17.134 172.16.17.134 UH 5 0 - 4 tun0 172.17.104.10/32 172.16.17.134 UGS 0 0 - 8 tun0 173.227.65.2 192.168.1.1 UGHS 1 395 - 12 rum0 192.168.1/24 link#5 UC 1 0 - 4 rum0 192.168.1.1 00:1d:7e:ba:5d:ee UHLc 2 0 - 4 rum0 192.168.1.17 localhost UGHS 0 0 33160 8 lo0 BASE-ADDRESS.MCAST localhost URS 0 0 33160 8 lo0 Internet6: Destination Gateway Flags Refs Use Mtu Prio Iface ::/104 localhost UGRS 0 0 - 8 lo0 ::/96 localhost UGRS 0 0 - 8 lo0 localhost localhost UH 14 0 33160 4 lo0 ::127.0.0.0/104 localhost UGRS 0 0 - 8 lo0 ::224.0.0.0/100 localhost UGRS 0 0 - 8 lo0 ::255.0.0.0/104 localhost UGRS 0 0 - 8 lo0 ::ffff:0.0.0.0/96 localhost UGRS 0 0 - 8 lo0 2002::/24 localhost UGRS 0 0 - 8 lo0 2002:7f00::/24 localhost UGRS 0 0 - 8 lo0 2002:e000::/20 localhost UGRS 0 0 - 8 lo0 2002:ff00::/24 localhost UGRS 0 0 - 8 lo0 fe80::/10 localhost UGRS 0 0 - 8 lo0 fe80::%lo0/64 fe80::1%lo0 U 0 0 - 4 lo0 fe80::1%lo0 link#3 UHL 0 0 - 4 lo0 fe80::%rum0/64 link#5 UC 0 0 - 4 rum0 fe80::20e:3bff:fe1 00:0e:3b:1e:f0:14 UHL 0 0 - 4 lo0 fec0::/10 localhost UGRS 0 0 - 8 lo0 ff01::/16 localhost UGRS 0 0 - 8 lo0 ff01::%lo0/32 localhost UC 0 0 - 4 lo0 ff01::%rum0/32 link#5 UC 0 0 - 4 rum0 ff02::/16 localhost UGRS 1 0 - 8 lo0 ff02::%lo0/32 localhost UC 0 0 - 4 lo0 ff02::%rum0/32 link#5 UC 0 0 - 4 rum0 But the main thing is that it works great... Thanks again, Bryan Brake