From 30485449c332178e45fbff7a8fe8798b73e0587d Mon Sep 17 00:00:00 2001 From: kev Date: Wed, 29 Jun 2016 17:24:13 +0800 Subject: [PATCH] ocserv: no-route=192.168/16 --- ocserv/Dockerfile | 2 +- ocserv/README.md | 11 +++++++++-- 2 files changed, 10 insertions(+), 3 deletions(-) diff --git a/ocserv/Dockerfile b/ocserv/Dockerfile index 3d351e3..f8cda6d 100644 --- a/ocserv/Dockerfile +++ b/ocserv/Dockerfile @@ -61,7 +61,7 @@ RUN set -xe \ -e 's@^try-mtu-discovery = false$@try-mtu-discovery = true@' \ -e 's@^dns =.*$@dns = 8.8.8.8@' \ -e 's@^route@#&@' \ - -e 's@^no-route@#&@' \ + -e 's@^no-route =.*$@no-route = 192.168.0.0/255.255.0.0@' \ /etc/ocserv/ocserv.conf \ && cd .. \ && apt-get purge --auto-remove -y autogen \ diff --git a/ocserv/README.md b/ocserv/README.md index 6309811..933ccb7 100644 --- a/ocserv/README.md +++ b/ocserv/README.md @@ -44,7 +44,7 @@ $ docker cp ocserv_ocserv_1:/etc/ocserv/certs/client.p12 . $ docker-compose logs -f ``` -## android client +## mobile client There are two auth types: @@ -58,9 +58,16 @@ AnyConnect -> Advanced Preferences... -> Certificate -> Import -> - File System + File System: client.p12 ``` +## desktop client + +[download](https://www.cellsystech.com/software/anyconnect/) + +`client.p12` can be imported into keychain. + + [1]: http://www.infradead.org/ocserv/ [2]: http://www.gnutls.org/manual/html_node/certtool-Invocation.html [3]: http://www.infradead.org/ocserv/manual.html