packages

History

Nikos Mavrogiannopoulos b87de0a4fa ocserv: added default_domain config option Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>		2015-01-18 22:06:55 +01:00
..
files	ocserv: added default_domain config option	2015-01-18 22:06:55 +01:00
Config.in	ocserv: updated to 0.8.8 and added dependency on libhttp-parser	2014-11-29 19:36:29 +01:00
Makefile	ocserv: depend on kmod-tun	2015-01-18 12:14:40 +01:00
README	ocserv: added default_domain config option	2015-01-18 22:06:55 +01:00

README

The openconnect server expects to be configured using the uci interface.

To setup a server the provides access to LAN with network address
10.100.2.0/255.255.255.0 using the VPN address range
10.100.3.0/255.255.255.0 add the following to /etc/config/ocserv:

-----------------------------------------------------------------
config ocserv 'config'
	option port '4443'
	option dpd '120'
	option max_clients '8'
	option max_same '2'
	option netmask '255.255.255.0'
	option ipaddr '10.100.3.0'
	option auth 'plain'
	option zone 'lan'
	option default_domain 'lan'
	option enable '1'

config dns
	option ip '10.100.2.1'

config routes
	option ip '10.100.2.0'
	option netmask '255.255.255.0'

config ocservusers
	option name 'test'
	option password '$5$unl8uKAGNsdTh9zm$PnUHEGhDc5VHbFE2EfWwW38Bub6Y6EZ5hrFwZE1r2F1'

-----------------------------------------------------------------

This configuration also adds the user "test" with password "test". The
password is specified in the crypt(3) format.

The server can be enabled and started using:
# /etc/init.d/ocserv enable
# /etc/init.d/ocserv start



There is a luci plugin to allow configuring the server from
the web environment; see the package luci-app-ocserv.