OpenConnect & Firefox in Ubuntu Linux
Ben Kietzman
ben at kietzman.org
Wed Jan 18 20:32:26 EST 2012
David,
Thank you for the quick response. I will run the connection in split
tunnel mode tomorrow and see how it goes. I use the GUI in Ubuntu to
manage OpenConnect. I assume I enable the split tunnel using the
following steps (please correct me if I am wrong):
Network Icon --> VPN Connections --> Configure VPN... --> Edit... -->
IPv4 Settings --> Routes... --> "Use this connection only for
resources on its network"
If that doesn't help, I will follow your next step of monitoring
Firefox configuration storage. Thanks again for providing some
guidance with this issue even though it's technically is outside the
realm of your application.
Ben Kietzman
ben at kietzman.org
On Wed, Jan 18, 2012 at 6:16 PM, David Woodhouse <dwmw2 at infradead.org> wrote:
> On Wed, 2012-01-18 at 17:51 -0600, Ben Kietzman wrote:
>> I use your OpenConnect 3.02 client on three of those computers.
>> Firefox consistently loses its settings and add-ons on all three
>> computers using OpenConnect.
>
> Hm, that's odd. Cisco's client does use Firefox's NSS library and even
> the Firefox NSS *database* (stupidly) for its SSL key storage, but
> OpenConnect does not. OpenConnect uses OpenSSL instead.
>
> I cannot imagine any direct interaction between Firefox and OpenConnect
> which would do this.
>
> Do you have Firefox sync enabled? Does something weird happen when it
> tries to sync through your company network instead of directly through
> the Internet to the Mozilla servers?
>
> Can you reproduce this if you run in 'split tunnel' mode so that only
> packets for your company network are routed to the VPN?
>
> My next step in debugging would be to monitor Firefox's configuration
> storage to see *exactly* when the change happens, and capture the
> network traffic around that time to see what's going on.
>
> --
> dwmw2
More information about the openconnect-devel
mailing list