Juniper VPN: Unexpected response of size 3 after hostname packet
mathieu.maugetbilbao at orange.com
mathieu.maugetbilbao at orange.com
Tue Sep 20 02:05:13 PDT 2016
Hello,
I'm using openconnect to connect to Juniper VPN but most of the time I
get this error:
Unexpected response of size 3 after hostname packet.
Could you help me to fix this issue ?
Regards
Mathieu
./openconnect -V
Version v7.07-158-g5060a8c-dirty de OpenConnect
Using OpenSSL. Features present: TPM (OpenSSL ENGINE not present), RSA software token, HOTP software token, TOTP software token, DTLS
root at mat-laptop:/home/mat/GIT/ext/openconnect# /opt/openconnect/sbin/openconnect --os=linux-64 --user myuser --juniper iveb.cvf.fr
WARNING: Juniper Network Connect support is experimental.
It will probably be superseded by Junos Pulse support.
GET https://iveb.cvf.fr/
Connected to 94.124.135.159:443
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Certificate from VPN server "iveb.cvf.fr" failed verification.
Reason: unable to get local issuer certificate
To trust this server in future, perhaps add this to your command line:
--servercert sha1:efce459e9d1b5db0f838f6db23682e2d17848d3d
Enter 'oui' to accept, 'non' to abort; anything else to view: oui
Connected to HTTPS on iveb.cvf.fr
Got HTTP response: HTTP/1.1 302 Found
GET https://iveb.cvf.fr/dana-na/auth/url_default/welcome.cgi
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
frmLogin
password:
POST https://iveb.cvf.fr/dana-na/auth/url_default/login.cgi
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
Got HTTP response: HTTP/1.1 302 Moved
GET https://iveb.cvf.fr/dana-na/auth/url_default/welcome.cgi?p=user-confirm&id=state_e1fae705e846fe07f82a7eaaed0c074c
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
POST https://iveb.cvf.fr/dana-na/auth/url_default/login.cgi
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
Got HTTP response: HTTP/1.1 302 Moved
GET https://iveb.cvf.fr/dana/home/starter0.cgi?check=yes
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
Négociation SSL avec iveb.cvf.fr
Server certificate verify failed: unable to get local issuer certificate
Connected to HTTPS on iveb.cvf.fr
Unexpected response of size 3 after hostname packet
Creating SSL connection failed
byte_0: 97 byte_1: 1
ldd /opt/openconnect/sbin/openconnect
linux-vdso.so.1 (0x00007ffe8d25f000)
libopenconnect.so.5 => /opt/openconnect/lib/libopenconnect.so.5 (0x00007fcbf8411000)
libssl.so.1.0.2 => /usr/lib/x86_64-linux-gnu/libssl.so.1.0.2 (0x00007fcbf8183000)
libcrypto.so.1.0.2 => /usr/lib/x86_64-linux-gnu/libcrypto.so.1.0.2 (0x00007fcbf7d1f000)
libxml2.so.2 => /usr/lib/x86_64-linux-gnu/libxml2.so.2 (0x00007fcbf7964000)
libc.so.6 => /lib/x86_64-linux-gnu/libc.so.6 (0x00007fcbf75c3000)
libz.so.1 => /lib/x86_64-linux-gnu/libz.so.1 (0x00007fcbf73a7000)
libstoken.so.1 => /usr/lib/x86_64-linux-gnu/libstoken.so.1 (0x00007fcbf7199000)
libdl.so.2 => /lib/x86_64-linux-gnu/libdl.so.2 (0x00007fcbf6f95000)
libicui18n.so.57 => /usr/lib/x86_64-linux-gnu/libicui18n.so.57 (0x00007fcbf6b1a000)
libicuuc.so.57 => /usr/lib/x86_64-linux-gnu/libicuuc.so.57 (0x00007fcbf6772000)
libicudata.so.57 => /usr/lib/x86_64-linux-gnu/libicudata.so.57 (0x00007fcbf4cf5000)
liblzma.so.5 => /lib/x86_64-linux-gnu/liblzma.so.5 (0x00007fcbf4ad1000)
libm.so.6 => /lib/x86_64-linux-gnu/libm.so.6 (0x00007fcbf47cc000)
/lib64/ld-linux-x86-64.so.2 (0x000055837eabb000)
libtomcrypt.so.0 => /usr/lib/x86_64-linux-gnu/libtomcrypt.so.0 (0x00007fcbf4515000)
libpthread.so.0 => /lib/x86_64-linux-gnu/libpthread.so.0 (0x00007fcbf42f7000)
libstdc++.so.6 => /usr/lib/x86_64-linux-gnu/libstdc++.so.6 (0x00007fcbf3f76000)
libgcc_s.so.1 => /lib/x86_64-linux-gnu/libgcc_s.so.1 (0x00007fcbf3d60000)
libgmp.so.10 => /usr/lib/x86_64-linux-gnu/libgmp.so.10 (0x00007fcbf3adc000)
libtommath.so.1 => /usr/lib/libtommath.so.1 (0x00007fcbf38c3000)
_________________________________________________________________________________________________________________________
Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.
More information about the openconnect-devel
mailing list