Minor bug in OpenConnect server with default route
Closed, ResolvedPublicBUG
Actions

Assigned To

Authored By

	klase
	Nov 29 2022, 7:48 AM

Description

If no push-route has been configured in the configuration it should default to setting route=default in the ocserv.conf file.

Right now it will set a number of route entries in ocserv.conf:
route=d
route=e
route=f
route=a
route=u
route=l
route=t

This will not affect connections done with openconnect server, but Cisco AnyConnect will report a missconfigured server and refuse to connect.
By using:

set vpn openconnect network-settings push-route '0.0.0.0/0'

The ocserv.conf file will have a correct setting of route = default

Details

Difficulty level: Unknown (require assessment)
Version: vyos-1.4-rolling-202211282019
Why the issue appeared?: Will be filled on close
Is it a breaking change?: Unspecified (possibly destroys the router)
Issue type: Bug (incorrect behavior)

Event Timeline

klase created this task.Nov 29 2022, 7:48 AM

pasik added a subscriber: pasik.Nov 29 2022, 8:26 AM

Viacheslav claimed this task.Dec 1 2022, 10:38 PM

PR https://github.com/vyos/vyos-1x/pull/1692

Viacheslav changed the task status from Open to In progress.Dec 4 2022, 11:12 AM

@klase will be fixed in the next rolling release

Viacheslav closed this task as Resolved.Jan 4 2023, 3:49 PM

Viacheslav moved this task from Need Triage to Finished on the VyOS 1.4 Sagitta board.

Minor bug in OpenConnect server with default routeClosed, ResolvedPublicBUGActions

Description

Details

Event Timeline

Minor bug in OpenConnect server with default route
Closed, ResolvedPublicBUG
Actions