On Wed, Jun 29, 2016 at 12:10 AM, Yick Xie <yick.xie at gmail.com> wrote: > Hello Nikos, > > As I tested the openconnect client can successfully tell them apart. > However in fact the openconnect clent does not care about the match of > the domain and the cert (no any warning poped-up), Which openconnect client is that, the command line or the gui? Could it be because you had already approved the certificate for this particular domain? > One more thing beyond this topic is, the openconnect client on PC > seems incompatible with AnyConnect, because the tap device always fail > to obtain correct IPV4 gateway, at least on my Windows 7. There are some known problems in internationalized versions of windows with the gui client and that may be one of them. There is a planned release to address them. regards, Nikos
