On Fri, Mar 21, 2014 at 7:08 AM, Rankjie <rankjie at gmail.com> wrote: > Hi, > I installed ocserv 0.3.2, and use anyconnect.app on iPhone to connect to it. > The connection goes well, but I can not get data through the server. > I also tried with no route defined, which equals 0.0.0.0/0.0.0.0 . This time, I can't access any website on my phone... [...] > ocserv[16766]: GnuTLS error (at worker-vpn.c:691): A TLS fatal alert has been received.: CA is unknown Hello Rankjie, I think the line above summarizes the issue. Your phone doesn't trust the CA of your VPN. Unfortunately I have no iphone, so I have no idea how you can set that up. regards, Nikos