ocserv 0.1.2 anyconnect client expects client download
Larry Phillips
larrymp at yahoo.com
Thu May 30 11:29:36 EDT 2013
oc linux client works fine, cisco anyconnect client win/mac expects client download and can't seem to bypass with xml profile. Local login auth works then see gets from client for /1/<client-os> and client exits with error "The AnyConnect package on the secure gateway could not be located. You may be experiencing network connectivity issues. Please try connecting again."
debug below for win client, osx looks similar
ocserv -f --debug -c /usr/local/etc/ocserv.conflistening (TCP) on [0.0.0.0]:443...
listening (UDP) on [0.0.0.0]:443...
ocserv[31881]: sec-mod initialized (socket: /var/run/ocserv-socket.31880)
ocserv[31883]: [97.104.220.70]:54157 accepted connection
ocserv[31883]: GnuTLS error (at worker-vpn.c:526): The TLS connection was non-properly terminated.
ocserv[31884]: [97.104.220.70]:54158 accepted connection
ocserv[31884]: [97.104.220.70]:54158 TLS handshake completed
ocserv[31884]: [97.104.220.70]:54158 HTTP: Cache-Control: no-cache
ocserv[31884]: [97.104.220.70]:54158 HTTP: Connection: close
ocserv[31884]: [97.104.220.70]:54158 HTTP: Pragma: no-cache
ocserv[31884]: [97.104.220.70]:54158 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31884]: [97.104.220.70]:54158 HTTP: X-Transcend-Version: 1
ocserv[31884]: [97.104.220.70]:54158 HTTP: X-Aggregate-Auth: 1
ocserv[31884]: [97.104.220.70]:54158 HTTP: X-AnyConnect-Platform: win
ocserv[31884]: [97.104.220.70]:54158 HTTP: Content-Length: 209
ocserv[31884]: [97.104.220.70]:54158 HTTP: Host: x.x.x.x
ocserv[31884]: [97.104.220.70]:54158 HTTP POST /
ocserv[31884]: [97.104.220.70]:54158 POST body: '<?xml version="1.0" encoding="UTF-8"?>
<config-auth client="vpn" type="init">
<device-id>win</device-id>
<version who="vpn">3.0.4235</version>
<group-access>https://x.x.x.x</group-access>
</config-auth>
'
ocserv[31885]: [97.104.220.70]:54159 accepted connection
ocserv[31885]: [97.104.220.70]:54159 sending resumption request (fetch)
ocserv[31885]: [97.104.220.70]:54159 TLS handshake completed
ocserv[31885]: [97.104.220.70]:54159 HTTP: Cache-Control: no-cache
ocserv[31885]: [97.104.220.70]:54159 HTTP: Connection: Close
ocserv[31885]: [97.104.220.70]:54159 HTTP: Pragma: no-cache
ocserv[31885]: [97.104.220.70]:54159 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31885]: [97.104.220.70]:54159 HTTP: X-Transcend-Version: 1
ocserv[31885]: [97.104.220.70]:54159 HTTP: X-Aggregate-Auth: 1
ocserv[31885]: [97.104.220.70]:54159 HTTP: X-AnyConnect-Platform: win
ocserv[31885]: [97.104.220.70]:54159 HTTP: Content-Length: 30
ocserv[31885]: [97.104.220.70]:54159 HTTP: Host: x.x.x.x
ocserv[31885]: [97.104.220.70]:54159 HTTP POST /auth
ocserv[31885]: [97.104.220.70]:54159 sending authentication request
ocserv[31880]: [main] assigning tun device vpns0
ocserv[31880]: [97.104.220.70]:54159 user 'iopdric' of group 'ocserv-profile' authenticated
ocserv[31885]: [97.104.220.70]:54159 User 'iopdric' logged in
ocserv[31914]: [97.104.220.70]:54160 accepted connection
ocserv[31914]: [97.104.220.70]:54160 sending resumption request (fetch)
ocserv[31914]: [97.104.220.70]:54160 TLS handshake completed
ocserv[31914]: [97.104.220.70]:54160 HTTP: Cache-Control: no-cache
ocserv[31914]: [97.104.220.70]:54160 HTTP: Connection: Close
ocserv[31914]: [97.104.220.70]:54160 HTTP: Pragma: no-cache
ocserv[31914]: [97.104.220.70]:54160 HTTP: Cookie: webvpn=********;
ocserv[31914]: [97.104.220.70]:54160 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31914]: [97.104.220.70]:54160 HTTP: X-Transcend-Version: 1
ocserv[31914]: [97.104.220.70]:54160 HTTP: X-Aggregate-Auth: 1
ocserv[31914]: [97.104.220.70]:54160 HTTP: X-AnyConnect-Platform: win
ocserv[31914]: [97.104.220.70]:54160 HTTP: Host: x.x.x.x
ocserv[31914]: [97.104.220.70]:54160 HTTP GET /1/index.html
ocserv[31915]: [97.104.220.70]:54161 accepted connection
ocserv[31915]: [97.104.220.70]:54161 sending resumption request (fetch)
ocserv[31915]: [97.104.220.70]:54161 TLS handshake completed
ocserv[31915]: [97.104.220.70]:54161 HTTP: Cache-Control: no-cache
ocserv[31915]: [97.104.220.70]:54161 HTTP: Connection: Close
ocserv[31915]: [97.104.220.70]:54161 HTTP: Pragma: no-cache
ocserv[31915]: [97.104.220.70]:54161 HTTP: Cookie: webvpn=********
ocserv[31915]: [97.104.220.70]:54161 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31915]: [97.104.220.70]:54161 HTTP: X-Transcend-Version: 1
ocserv[31915]: [97.104.220.70]:54161 HTTP: X-Aggregate-Auth: 1
ocserv[31915]: [97.104.220.70]:54161 HTTP: X-AnyConnect-Platform: win
ocserv[31915]: [97.104.220.70]:54161 HTTP: Host: x.x.x.x
ocserv[31915]: [97.104.220.70]:54161 HTTP GET /1/Windows
ocserv[31915]: [97.104.220.70]:54161 unexpected URL /1/Windows
ocserv[31916]: [97.104.220.70]:54162 accepted connection
ocserv[31916]: [97.104.220.70]:54162 sending resumption request (fetch)
ocserv[31916]: [97.104.220.70]:54162 TLS handshake completed
ocserv[31916]: [97.104.220.70]:54162 HTTP: Cache-Control: no-cache
ocserv[31916]: [97.104.220.70]:54162 HTTP: Connection: Close
ocserv[31916]: [97.104.220.70]:54162 HTTP: Pragma: no-cache
ocserv[31916]: [97.104.220.70]:54162 HTTP: Cookie: webvpn=********
ocserv[31916]: [97.104.220.70]:54162 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31916]: [97.104.220.70]:54162 HTTP: X-Transcend-Version: 1
ocserv[31916]: [97.104.220.70]:54162 HTTP: X-Aggregate-Auth: 1
ocserv[31916]: [97.104.220.70]:54162 HTTP: X-AnyConnect-Platform: win
ocserv[31916]: [97.104.220.70]:54162 HTTP: Host: x.x.x.x
ocserv[31916]: [97.104.220.70]:54162 HTTP GET /2/index.html
ocserv[31916]: [97.104.220.70]:54162 unexpected URL /2/index.html
ocserv[31917]: [97.104.220.70]:54163 accepted connection
ocserv[31917]: [97.104.220.70]:54163 sending resumption request (fetch)
ocserv[31917]: [97.104.220.70]:54163 TLS handshake completed
ocserv[31917]: [97.104.220.70]:54163 HTTP: Cache-Control: no-cache
ocserv[31917]: [97.104.220.70]:54163 HTTP: Connection: Close
ocserv[31917]: [97.104.220.70]:54163 HTTP: Pragma: no-cache
ocserv[31917]: [97.104.220.70]:54163 HTTP: Cookie: webvpn=********
ocserv[31917]: [97.104.220.70]:54163 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31917]: [97.104.220.70]:54163 HTTP: X-Transcend-Version: 1
ocserv[31917]: [97.104.220.70]:54163 HTTP: X-Aggregate-Auth: 1
ocserv[31917]: [97.104.220.70]:54163 HTTP: X-AnyConnect-Platform: win
ocserv[31917]: [97.104.220.70]:54163 HTTP: Host: x.x.x.x
ocserv[31917]: [97.104.220.70]:54163 HTTP GET /1/index.html
ocserv[31918]: [97.104.220.70]:54164 accepted connection
ocserv[31918]: [97.104.220.70]:54164 sending resumption request (fetch)
ocserv[31918]: [97.104.220.70]:54164 TLS handshake completed
ocserv[31918]: [97.104.220.70]:54164 HTTP: Cache-Control: no-cache
ocserv[31918]: [97.104.220.70]:54164 HTTP: Connection: Close
ocserv[31918]: [97.104.220.70]:54164 HTTP: Pragma: no-cache
ocserv[31918]: [97.104.220.70]:54164 HTTP: Cookie: webvpn=********
ocserv[31918]: [97.104.220.70]:54164 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31918]: [97.104.220.70]:54164 HTTP: X-Transcend-Version: 1
ocserv[31918]: [97.104.220.70]:54164 HTTP: X-Aggregate-Auth: 1
ocserv[31918]: [97.104.220.70]:54164 HTTP: X-AnyConnect-Platform: win
ocserv[31918]: [97.104.220.70]:54164 HTTP: Host: x.x.x.x
ocserv[31918]: [97.104.220.70]:54164 HTTP GET /1/Windows
ocserv[31918]: [97.104.220.70]:54164 unexpected URL /1/Windows
ocserv[31920]: [97.104.220.70]:54165 accepted connection
ocserv[31920]: [97.104.220.70]:54165 sending resumption request (fetch)
ocserv[31920]: [97.104.220.70]:54165 TLS handshake completed
ocserv[31920]: [97.104.220.70]:54165 HTTP: Cache-Control: no-cache
ocserv[31920]: [97.104.220.70]:54165 HTTP: Connection: Close
ocserv[31920]: [97.104.220.70]:54165 HTTP: Pragma: no-cache
ocserv[31920]: [97.104.220.70]:54165 HTTP: Cookie: webvpn=********
ocserv[31920]: [97.104.220.70]:54165 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31920]: [97.104.220.70]:54165 HTTP: X-Transcend-Version: 1
ocserv[31920]: [97.104.220.70]:54165 HTTP: X-Aggregate-Auth: 1
ocserv[31920]: [97.104.220.70]:54165 HTTP: X-AnyConnect-Platform: win
ocserv[31920]: [97.104.220.70]:54165 HTTP: Host: x.x.x.x
ocserv[31920]: [97.104.220.70]:54165 HTTP GET /2/index.html
ocserv[31920]: [97.104.220.70]:54165 unexpected URL /2/index.html
ocserv[31921]: [97.104.220.70]:54178 accepted connection
ocserv[31921]: [97.104.220.70]:54178 sending resumption request (fetch)
ocserv[31921]: [97.104.220.70]:54178 TLS handshake completed
ocserv[31921]: [97.104.220.70]:54178 HTTP: Cache-Control: no-cache
ocserv[31921]: [97.104.220.70]:54178 HTTP: Connection: Close
ocserv[31921]: [97.104.220.70]:54178 HTTP: Pragma: no-cache
ocserv[31921]: [97.104.220.70]:54178 HTTP: Cookie: webvpn=********
ocserv[31921]: [97.104.220.70]:54178 HTTP: User-Agent: AnyConnect Windows 3.0.4235
ocserv[31921]: [97.104.220.70]:54178 HTTP: X-Transcend-Version: 1
ocserv[31921]: [97.104.220.70]:54178 HTTP: X-Aggregate-Auth: 1
ocserv[31921]: [97.104.220.70]:54178 HTTP: X-AnyConnect-Platform: win
ocserv[31921]: [97.104.220.70]:54178 HTTP: Host: x.x.x.x
ocserv[31921]: [97.104.220.70]:54178 HTTP GET //logout
More information about the openconnect-devel
mailing list