Package: vpnc
Version: 0.5.3r449-2.1
Followup-For: Bug #624203
Since the previous report did not contain any details, I'll use this for the
connection issue I just encountered and found a fix for. I'm not really sure
if this is the identical problem Pedro found, but perhaps.. :-)
'ip route get ...' now adds a few more extra morsels of data that
vpnc-script does not take into account. The credit for the sed fix goes to
Alessandro Suardi and was found at: https://lkml.org/lkml/2011/3/24/645
The error when using vpnc-script (I'm actually using openconnect) was:
<...>
Got CONNECT response: HTTP/1.1 200 OK
CSTP connected. DPD 30, Keepalive 20
Error: either "to" is duplicate, or "ipid" is a garbage.
Connected cscotun0 as 192.168.101.178, using SSL
Continuing in background; pid 1328
Established DTLS connection
The routes pushed from the concentrator are set up fine, but the static route
for the concentrator IP address was not set, due to the extra data not being
correct for 'ip route add ...'
After the attached sed line fix, I get a static route for the concentrator
again.
Kind regards,
Michael Shuler
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (400, 'testing'), (300, 'unstable'), (100, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.39-1-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages vpnc depends on:
ii libc6 2.13-4 Embedded GNU C Library: Shared lib
ii libgcrypt11 1.4.6-5 LGPL Crypto library - runtime libr
ii libgnutls26 2.10.5-1+b1 the GNU TLS library - runtime libr
Versions of packages vpnc recommends:
ii iproute 20110315-1 networking and traffic control too
Versions of packages vpnc suggests:
ii resolvconf 1.48 name server information handler
-- Configuration Files:
/etc/vpnc/example.conf [Errno 13] Permission denied: u'/etc/vpnc/example.conf'
/etc/vpnc/vpnc-script [Errno 13] Permission denied: u'/etc/vpnc/vpnc-script'
-- no debconf information
--- /etc/vpnc/vpnc-script.orig 2010-03-20 23:08:13.000000000 -0500
+++ /etc/vpnc/vpnc-script 2011-06-07 19:09:22.000000000 -0500
@@ -116,7 +116,7 @@
if [ -n "$IPROUTE" ]; then
fix_ip_get_output () {
- sed 's/cache//;s/metric \?[0-9]\+ [0-9]\+//g;s/hoplimit
[0-9]\+//g'
+ sed 's/cache//;s/metric \?[0-9]\+ [0-9]\+//g;s/hoplimit
[0-9]\+//g;s/ipid 0x....//g'
}
set_vpngateway_route() {