On Wed, Feb 20, 2013 at 09:56:10PM +0100, Nikos Mavrogiannopoulos wrote:
> Hello,
> This is the first public release of ocserv, a small VPN server that
> implements the AnyConnect SSL VPN protocol. The server targets small
> embedded Linux devices.
Hi Nikos, just wanted to say I tried this out and it works for me, at
least to the point of connecting and setting up a tunnel. A couple
points that don't work:
Cannot connect with openconnect < 4.00. The error is reported at
worker-vpn.c:563. I bisected openconnect down to a change to send the
CSTP connection in one burst [1]. Perhaps ocserv is expecting the
connection headers all at once and failing if the first recv doesn't
have everything it needs? I have not dug into ocserv to work this yet,
only guessing.
Out-of-source-tree build fails, the following trivial diff fixes it for
me:
-- >8 --
diff --git a/src/Makefile.am b/src/Makefile.am
index 99301e8..9e06622 100644
--- a/src/Makefile.am
+++ b/src/Makefile.am
@@ -28,5 +28,5 @@ ocserv_LDADD += $(LIBGNUTLS_LIBS) $(GDBM_LIBS) $(PAM_LIBS) $(LIB
$(LIBSECCOMP)
ocserv-args.c ocserv-args.h: $(srcdir)/ocserv-args.def
- -autogen ocserv-args.def
+ -autogen $<
-- >8 --
[1] http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/7d974cd01f11f7eed3c75b5803129e75fbcf83a1
Thanks,
--
mike
