You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

44 lines
1.2 KiB

  1. The openconnect server expects to be configured using the uci interface.
  2. To setup a server the provides access to LAN with network address
  3. 10.100.2.0/255.255.255.0 using the VPN address range
  4. 10.100.3.0/255.255.255.0 add the following to /etc/config/ocserv:
  5. -----------------------------------------------------------------
  6. config ocserv 'config'
  7. option port '4443'
  8. option dpd '120'
  9. option max_clients '8'
  10. option max_same '2'
  11. option netmask '255.255.255.0'
  12. option ipaddr '10.100.3.0'
  13. option auth 'plain'
  14. option zone 'lan'
  15. option fwport '4443'
  16. option enable '1'
  17. config dns
  18. option ip '10.100.2.1'
  19. config routes
  20. option ip '10.100.2.0'
  21. option netmask '255.255.255.0'
  22. config ocservusers
  23. option name 'test'
  24. option password '$5$unl8uKAGNsdTh9zm$PnUHEGhDc5VHbFE2EfWwW38Bub6Y6EZ5hrFwZE1r2F1'
  25. -----------------------------------------------------------------
  26. This configuration also adds the user "test" with password "test". The
  27. password is specified in the crypt(3) format.
  28. The server can be enabled and started using:
  29. # /etc/init.d/ocserv enable
  30. # /etc/init.d/ocserv start
  31. There is a luci plugin to allow configuring the server from
  32. the web environment, available as patch over luci at
  33. https://github.com/nmav/luci-openconnect/tree/openconnect