Categories
VPN

OpenConnect DNS Only + Google Only

I’m using 4G by China Mobile, but the DNS it provides really sucks. Changing DNS from Cellular Data on a not-jailbroken iPhone is impossible so far as I know (I tried mobileconfig but can find any working options). The first idea is pushing DNS from a PPTP server, which I wrote: Notes: PPTP/L2TP Server on […]

Categories
iOS Linux VPN 操作系统相关

OpenConnect Public Key Authentication

Here are old articles about OpenConnect, the open source AnyConnect server: OpenConnect on Ubuntu Open Connect Server Configuration (Working for iOS) Cisco AnyConnect Client for OS X/Windows/Linux (Version 3.1.05160) This time, OCServ 0.80 on Ubuntu 14.04. And still doesn’t work for OS X. I was using password based authentication, but clients on iOS can not […]

Categories
iOS OS X VPN 操作系统相关 杂七杂八

Open Connect Server Configuration (Working for iOS)

Working for iOS only, but for OSX, (Cisco AnyConnect Client for OS X 3.1.05160), captive portal is detected. ‘Web Authentication Required’ and error log like

OpenConnect on Ubuntu Generate Certificate with GnuTLS and Sign with OpenSSL Incoming search terms:ROUTETABLE_ERROR_GETBESTROUTE_FAILED192 168 1 99;29001ANyConnect No valid certificates available for authenticationcisco ROUTETABLE_ERROR_GETBESTROUTE_FAILEDfailed to open certificate ciscoNo valid […]

Categories
OS X PKI 学习研究 笔记

Generate Certificate with GnuTLS and Sign with OpenSSL

In iOS IPSec VPN Server on Ubuntu, I create a local CA with openssl. I’m setting up an OpenConnect VPN, which uses GnuTLS’s certtool generating ca and sign certificates. I want to use share the same Root CA for both OpenSSL and GnuTLS, so I’m generating request from GnuTLS and signing with OpenSSL. Apple has […]

Categories
Linux VPN 学习研究 操作系统相关 笔记

OpenConnect on Ubuntu

This post is not yet finished OpenConnect is an open source implementation of Cisco’s AnyConnect SSL VPN which is natively supported by iOS(You can create profile with Apple Configurator like iOS IPSec VPN Server on Ubuntu). OpenConnect VPN Server can be found on http://www.infradead.org/ocserv/ and downloaded from ftp://ftp.infradead.org/pub/ocserv/, manual http://www.infradead.org/ocserv/manual.html Let’s build it on Ubuntu […]