GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-09 08:16:58 +08:00
Code Issues Packages Projects Releases Wiki Activity
940 Commits 19 Branches 88 Tags
66d66ba1c528008b69d859bc4cdf86993d5dde39
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Nikos Mavrogiannopoulos 66d66ba1c5 Added options to explicitly disable checking for certain libraries
2014-02-24 19:13:05 +01:00
build-aux
updated gnulib
2014-01-19 09:31:46 +01:00
doc
updated sample
2014-02-22 12:54:40 +01:00
gl
Added gnulib's missing files
2014-01-19 12:17:14 +01:00
libopts
the generation of makefile isn't conditional
2013-12-13 17:24:20 +01:00
src
use remove_proc() instead of user_disconnected() when killing children.
2014-02-23 11:50:01 +01:00
tests
distribute test-stress
2014-02-16 10:13:06 +01:00
.gitignore
more files to ignore
2014-01-12 18:30:03 +01:00
AUTHORS
updated license information and authors
2013-11-05 19:38:30 +01:00
autogen.sh
Added autogen file.
2013-02-25 21:18:22 +01:00
ChangeLog
Added automake/autoconf system
2013-01-13 11:25:05 +01:00
configure.ac
Added options to explicitly disable checking for certain libraries
2014-02-24 19:13:05 +01:00
COPYING
updated license information and authors
2013-11-05 19:38:30 +01:00
INSTALL
Added options to explicitly disable checking for certain libraries
2014-02-24 19:13:05 +01:00
LICENSE
mentioned the libopts license
2013-11-08 18:09:14 +01:00
Makefile.am
corrected args file generation
2014-01-11 14:46:34 +01:00
NEWS
doc update
2014-02-22 12:54:55 +01:00
README
corrected typo
2014-02-15 15:25:00 +01:00
TODO
doc update
2014-02-17 15:46:35 +01:00

README 

=== About ===

This program is openconnect VPN server (ocserv), a server compatible with the
openconnect VPN client [0]. It is believed to be compatible with the protocol
used by CISCO's AnyConnect SSL VPN. 

[0]. http://www.infradead.org/openconnect/


=== Build dependencies ===

Required dependencies:
libgnutls-dev      / gnutls-devel

Optional dependencies that enable specific functionality:
* TCP wrappers: libwrap0-dev       / tcp_wrappers-devel
* PAM:          libpam0g-dev       / pam-devel
* seccomp:      libseccomp-dev     / libseccomp-devel
* occtl:        libdbus-1-dev      / dbus-devel
                libreadline-dev    / readline-devel
                libnl-route-3-dev  / libnl3-devel

Dependencies that can be skipped in an embedded system:
(a replacement library is included)

libprotobuf-c0-dev / protobuf-c-devel
libhttp-parser-dev / http-parser-devel
libpcl1-dev        / pcllib-devel
libopts25-dev      / autogen-libopts-devel
autogen            / autogen



=== Build instructions ===

To build from a distributed release use:

$ ./configure && make

When cross compiling it may be useful to add the --enable-local-libopts
option to configure.

To prevent ocserv's worker process from executing non authorized system 
calls you may compile ocserv with the --enable-seccomp option. That is 
currently experimental and not enabled by default.


To build from the git repository use:

$ autoreconf -fvi
$ ./configure && make

In addition to the prerequisites listed above, building from git requires
the following packages: autoconf, automake, autogen, git2cl, and xz.

Note that the system's autogen version must match the included libopts
version on the development system, if the included libopts library is to
be used.


=== Installation instructions ===

Now you need to generate a certificate. E.g.
$ certtool --generate-privkey > ./test-key.pem
$ certtool --generate-self-signed --load-privkey test-key.pem --outfile test-cert.pem
(make sure you enable encryption or signing)

To run the server on the foreground edit the doc/sample.config and then run:
# src/ocserv -f -c src/sample.config


=== How the VPN works ===

Please see:
http://www.infradead.org/ocserv/technical.html
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 7.8 MiB
Languages
C 76.8%
Shell 16.5%
M4 4.5%
Roff 1.1%
Makefile 0.8%
Other 0.3%