Your VPN is likely using split-excludes, which tell the client that certain Internet-bound traffic should *not* be routed via the VPN, and you're running into a bug in vpnc-script. The bug in handling of split-excludes has existed for a long time, but wasn't obvious until recent versions of iproute2 started giving this error: https://gitlab.com/openconnect/vpnc-scripts/-/merge_requests/5 https://gitlab.com/openconnect/vpnc-scripts/-/merge_requests/6 Upgrade to the last to fix it: https://gitlab.com/openconnect/vpnc-scripts/blob/master/vpnc-script -Dan On Sun, Apr 26, 2020 at 5:30 PM Mike Forsberg <bigmike.f@xxxxxxxxx> wrote: > > First, thank you for the great project. I was very happy with the > version on my old 18.04, but this weekend I upgraded to Ubuntu 20.04; > while I'm able to connect, I do see errors??!?!?! > > I'm connecting with the command > openconnect -b -q --juniper ${GATEWAY} --cafile=${CAFILE} > --user=${USER} --authgroup='OATH Passcode' --passwd-on-stdin > > And see several messages like the following (they are much longer but > appear to be the help text). > > Error: ipv4: Invalid values in header for route get request. > Usage: ip route { list | flush } SELECTOR > ip route save SELECTOR > ip route restore > ip route showdump > ip route get [ ROUTE_GET_FLAGS ] ADDRESS > > Is there some modifications I need to make to use a newer ip route command? > > Again, this is a fresh 20.04 install. > > $ openconnect -V > OpenConnect version v8.05-1 > Using GnuTLS. Features present: TPMv2, PKCS#11, RSA software token, > HOTP software token, TOTP software token, Yubikey OATH, System keys, > DTLS, ESP > Supported protocols: anyconnect (default), nc, gp, pulse > > I do have connection to my work's VPN but it might be slow?? > > Please let me know if you need any more information, > > Mike > > _______________________________________________ > openconnect-devel mailing list > openconnect-devel@xxxxxxxxxxxxxxxxxxx > http://lists.infradead.org/mailman/listinfo/openconnect-devel _______________________________________________ openconnect-devel mailing list openconnect-devel@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/openconnect-devel
