ocserv 0.2.0
Nikos Mavrogiannopoulos
nmav at gnutls.org
Thu Oct 31 09:15:56 EDT 2013
Hello,
I've just released ocserv 0.2.0. ocserv is a VPN server that implements
the AnyConnect SSL VPN protocol and targets small embedded Linux
devices.
This release is a significant rewrite of the previous ocserv code base,
as it adds support for per user or group configuration, and also
includes the ability of a client to push (pre-configured) routes on the
server (in an office-to-office setup).
* Version 0.2.0 (released 2013-10-31)
- Added configuration directives 'config-per-user' and
'config-per-group'. They allow loading an additional configuration
client per user or per group from the setup directory.
- Added the ipv6-prefix configuration option to replace ipv6-netmask.
The new option accepts IPv6 subnet prefixes.
- Added the 'iroute' configuration directive, applicable only to group
or user configuration files. It allows setting routes on the server
based on the connected client.
- Corrected authentication using only certificates.
- The UDP file descriptor from main to workers is forwarded once per
minute to avoid a duplicate DTLS client hello message tearing the
worker's session.
- Corrected client disconnection issues when connect-script was specified.
The current release is available at:
ftp://ftp.infradead.org/pub/ocserv/ocserv-0.2.0.tar.xz
ftp://ftp.infradead.org/pub/ocserv/ocserv-0.2.0.tar.xz.sig
The VPN server's web-site is at:
http://www.infradead.org/ocserv
regards,
Nikos
More information about the openconnect-devel
mailing list