On 14/11/12 23:05, David Woodhouse wrote: > It's too early to tell. I think a tcpdump of an active connection has > indicated that IPSec was being used ? so it may well end up being a > wrapper around vpnc or an extension to vpnc to make it do the initial > HTTPS negotiation. Or it might *sometimes* negotiate to use IPSec, and > sometimes do something else over the SSL connection ? in which case > maybe we'd extend OpenConnect to do it, but to invoke vpnc where needed. > Or something like that. > > But work out what it's doing first, and then we can debate how best to > implement it. Yes, that makes perfect sense. I'll have a poke around and see... :) Cheers, -- Dave Koelmeyer http://www.davekoelmeyer.co.nz
