Ubuntu
openconnect package

Bug #1229195
Comment #13

Comment 13 for bug 1229195

Revision history for this message

Mike Stucka (mstucka) wrote on 2013-11-03: Re: [Bug 1229195] Re: Openconnect will not connect under Saucy -- openssl problem?

#13

Steve, I can confirm that my problem does not require anything more than
the FQDN -- it's a straight shot to somethingvpn.something.com, not
somethingvpn.something.com/something. I also tried a connect via IP address
and that didn't work.

Dumb question, and (presumably) not directly related to this bug -- should
apt-get be checking to see whether network-manager is installed? I just
installed openconnect on an Xubuntu VM and network-manager-openconnect
wasn't even a recommendation.

Mike

On Sun, Nov 3, 2013 at 1:31 AM, Steve Ringley <email address hidden> wrote:

> Running openconnect --no-xmlpost <myvpnserver.com/vpn> in the terminal
> works for me too. So for me the ones that work in Saucy/5.01 allow you
> to land on the FQDN or IP address. The ones that require a true URL
> (vpn.com/vpn) fail unless the --no-xmlpost option is used.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1229195
>
> Title:
> Openconnect will not connect under Saucy -- openssl problem?
>
> Status in “openconnect” package in Ubuntu:
> Incomplete
>
> Bug description:
> I'd been stable under 13.04, but the installed version of openconnect
> 5.01 is broken under 13.10.
>
> Under 13.10, I've confirmed openconnect works on an older version
> (4.08) that I compiled from source.
>
> With the stock 5.01, I get "Login failed: Your account does not have
> VPN rights" under commandline and under network manager.
>
> I'm wondering if part of the problem comes from an error message if I
> try to compile 5.01 from source:
> checking for known-broken versions of OpenSSL... yes
> configure: error: This version of OpenSSL is known to be broken with
> Cisco DTLS.
> See
> http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest
> Add --without-openssl-version-check to configure args to avoid this
> check, or
> perhaps consider building with GnuTLS instead.
>
> Unfortunately, the packaged openssl (1.0.1e) of February 2013 is the
> most recent version, so there's nothing newer to test against.
>
>
> Mike
>
> ProblemType: Bug
> DistroRelease: Ubuntu 13.10
> Package: openconnect 5.01-1
> ProcVersionSignature: Ubuntu 3.11.0-8.15-generic 3.11.1
> Uname: Linux 3.11.0-8-generic i686
> ApportVersion: 2.12.4-0ubuntu1
> Architecture: i386
> Date: Mon Sep 23 09:28:14 2013
> InstallationDate: Installed on 2013-05-22 (123 days ago)
> InstallationMedia: Xubuntu 12.04.2 LTS "Precise Pangolin" - Release i386
> (20130213)
> MarkForUpload: True
> SourcePackage: openconnect
> UpgradeStatus: Upgraded to saucy on 2013-09-20 (2 days ago)
>
> To manage notifications about this bug go to:
>
> https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1229195/+subscriptions
>

Mike Stucka
Staff Writer
The Telegraph
(478) 744-4251 office
(478) 213-4742 cell
(478) 744-4385 fax

Mike

On Sun, Nov 3, 2013 at 1:31 AM, Steve Ringley <gringley@gmail.com> wrote:

> Running openconnect --no-xmlpost <myvpnserver.com/vpn> in the terminal
> works for me too.  So for me the ones that work in Saucy/5.01 allow you
> to land on the FQDN or IP address.  The ones that require a true URL
> (vpn.com/vpn) fail unless the --no-xmlpost option is used.
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1229195
>
> Title:
>   Openconnect will not connect under Saucy -- openssl problem?
>
> Status in “openconnect” package in Ubuntu:
>   Incomplete
>
> Bug description:
>   I'd been stable under 13.04, but the installed version of openconnect
>   5.01 is broken under 13.10.
>
>   Under 13.10, I've confirmed openconnect works on an older version
>   (4.08) that I compiled from source.
>
>   With the stock 5.01, I get "Login failed: Your account does not have
>   VPN rights" under commandline and under network manager.
>
>   I'm wondering if part of the problem comes from an error message if I
> try to compile 5.01 from source:
>   checking for known-broken versions of OpenSSL... yes
>   configure: error: This version of OpenSSL is known to be broken with
> Cisco DTLS.
>   See
> http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest
>   Add --without-openssl-version-check to configure args to avoid this
> check, or
>   perhaps consider building with GnuTLS instead.
>
>   Unfortunately, the packaged openssl (1.0.1e) of February 2013 is the
>   most recent version, so there's nothing newer to test against.
>
>
>   Mike
>
>   ProblemType: Bug
>   DistroRelease: Ubuntu 13.10
>   Package: openconnect 5.01-1
>   ProcVersionSignature: Ubuntu 3.11.0-8.15-generic 3.11.1
>   Uname: Linux 3.11.0-8-generic i686
>   ApportVersion: 2.12.4-0ubuntu1
>   Architecture: i386
>   Date: Mon Sep 23 09:28:14 2013
>   InstallationDate: Installed on 2013-05-22 (123 days ago)
>   InstallationMedia: Xubuntu 12.04.2 LTS "Precise Pangolin" - Release i386
> (20130213)
>   MarkForUpload: True
>   SourcePackage: openconnect
>   UpgradeStatus: Upgraded to saucy on 2013-09-20 (2 days ago)
>
> To manage notifications about this bug go to:
>
> https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1229195/+subscriptions
>

Mike Stucka
Staff Writer
The Telegraph
(478) 744-4251 office
(478) 213-4742 cell
(478) 744-4385 fax

Ubuntuopenconnect package

Comment 13 for bug 1229195

Ubuntu
openconnect package