small daemon to control vpn connections via OpenConnect without need of root privileges
- latest [OpenConnect] (http://git.infradead.org/users/dwmw2/openconnect.git) built from source with patches from
openconnect-patchesapplied (at least until they are included) incronpackage installed
copy etc and usr contents to the root of your filesystem
create file describing your connection somewhere.
it is and OpenConnect config file (see --config), should be named like myconnection.vpn (.vpn ending is mandatory) and should contain options necessary for --authenticate, e.g.:
authgroup=CiscoGroup
cafile=../../certificates/cert151.pem
certificate=../../certificates/CiscoVPN.crt.pem
no-cert-check
sslkey=../../certificates/CiscoVPN.key.pem
user=CiscoUser
host=62.52.42.32:34443
password=MyCiscoPasswordplease notice password option -- its support added by script for your convinience
if you need to pass any options for tunnel, create config file with same name in /etc/openconnectd/, e.g. /etc/openconnectd/myconnection.vpn:
mtu=1400
reconnect-timeout=15run vpn-connect myconnection and wait for a few seconds. it will authenticate, establish a tunnel and create a file myconnection.info in /tmp/openconnectd.
you can specify multiple connections at the same time: vpn-connect myconnection myanotherconnection myonemoreconnection.
to disconnect run vpn-disconnect myconnection myanotherconnection myonemoreconnection, it will check for available tunnels and shut them down
I made this tool by myself and for myself. just to simplify my workflow. but it would be great if it will be useful for someone else