Hi all,
anyone with working vpnc against Cisco VPN concentratos after last change
http://marc.info/?l=openbsd-ports&m=139634144615435&w=2 ?
It does seems to be connecting, but no IP assigned, no routes created and
there's not /etc/vpnc-script
$ sudo vpnc user.conf
Password:
Enter password for user@X.X.X.X:
sh: /etc/vpnc-script: not found
sh: /etc/vpnc-script: not found
VPNC started in background (pid: 14661)...
$
$ pkg_info -L vpnc
Information for inst:vpnc-0.5.3p3
Files:
/usr/local/man/man8/vpnc.8
/usr/local/sbin/vpnc
/usr/local/sbin/vpnc-disconnect
/usr/local/share/doc/vpnc/README
/usr/local/share/examples/vpnc/split.sh
/usr/local/share/examples/vpnc/vpnc.conf
/usr/local/share/examples/vpnc/vpnc.sh
/etc/rc.d/vpnc
$
$ sysctl kern.version
kern.version=OpenBSD 5.5-current (GENERIC.MP) #72: Tue Apr 15 10:51:03 MDT
2014
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
$
$ ifconfig
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33136
priority: 0
groups: lo
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
inet 127.0.0.1 netmask 0xff000000
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:0c:29:26:c8:52
priority: 0
groups: egress
media: Ethernet autoselect (1000baseT full-duplex,master)
status: active
inet6 fe80::20c:29ff:fe26:c852%em0 prefixlen 64 scopeid 0x1
inet X.X.X.X netmask 0xffffff00 broadcast 192.168.40.255 <-----
here still 192... from ESX
enc0: flags=0<>
priority: 0
groups: enc
status: active
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33136
priority: 0
groups: pflog
tun0: flags=50<POINTOPOINT,RUNNING> mtu 1500
priority: 0
groups: tun
status: active
$
Nothing in routing table from 10..... which is supposed to be here
And same case with use of /etc/rc.d/vpnc
$ sudo sh -x /etc/rc.d/vpnc
start
[106/220]
+ daemon=/usr/local/sbin/vpnc
+ . /etc/rc.d/rc.subr
+ . /etc/rc.conf
+ ldpd_flags=NO
+ ripd_flags=NO
+ mrouted_flags=NO
+ dvmrpd_flags=NO
+ ospfd_flags=NO
+ ospf6d_flags=NO
+ bgpd_flags=NO
+ rarpd_flags=NO
+ bootparamd_flags=NO
+ rbootd_flags=NO
+ sshd_flags=
+ named_flags=NO
+ nsd_flags=NO
+ unbound_flags=NO
+ ldattach_flags=NO
+ ntpd_flags=NO
+ isakmpd_flags=NO
+ iked_flags=NO
+ sasyncd_flags=NO
+ mopd_flags=NO
+ apmd_flags=NO
+ dhcpd_flags=NO
+ dhcrelay_flags=NO
+ rtadvd_flags=NO
+ route6d_flags=NO
+ rtsold_flags=NO
+ lpd_flags=NO
+ sensorsd_flags=NO
+ hotplugd_flags=NO
+ watchdogd_flags=NO
+ ftpproxy_flags=NO
+ hostapd_flags=NO
+ ifstated_flags=NO
+ relayd_flags=NO
+ snmpd_flags=NO
+ smtpd_flags=
+ sndiod_flags=
+ ldapd_flags=NO
+ npppd_flags=NO
+ inetd_flags=NO
+ rwhod_flags=NO
+ portmap_flags=NO
+ kdc_flags=NO
+ kadmind_flags=NO
+ kpasswdd_flags=NO
+ ipropd_master_flags=NO
+ ipropd_slave_flags=NO
+ amd_flags=NO
+ tftpd_flags=NO
+ tftpproxy_flags=NO
+ ldomd_flags=NO
+ identd_flags=NO
+ nginx_flags=NO
+ slowcgi_flags=NO
+ sendmail_flags=NO
+ spamd_flags=NO
+ spamd_black=NO
+ spamlogd_flags=
+ ftpd_flags=NO
+ xdm_flags=NO
+ wsmoused_flags=NO
+ pf=YES
+ ipsec=NO
+ bt=NO
+ check_quotas=YES
+ accounting=NO
+ multicast_host=NO
+ multicast_router=NO
+ savecore_flags=
+ ypbind_flags=NO
+ ypserv_flags=NO
+ ypldap_flags=NO
+ yppasswdd_flags=NO
+ nfsd_flags=NO
+ mountd_flags=NO
+ lockd_flags=NO
+ statd_flags=NO
+ amd_master=/etc/amd/master
+ syslogd_flags=
+ pf_rules=/etc/pf.conf
+ ipsec_rules=/etc/ipsec.conf
+ bt_rules=/etc/bt.conf
+ pflogd_flags=
+ shlib_dirs=
+ pkg_scripts=
+ unset kadmind_flags kdc_flags kpasswdd_flags mountd_flags nfsd_flags
ypbind_flags
+ [ -f /etc/rc.conf.local ]
+ . /etc/rc.conf.local
+ apmd_flags=-C
+ ntpd_flags=
+ [ XNO = XNO -o XNO != XNO ]
+ spamlogd_flags=NO
+ [ XYES = XNO ]
+ [ XNO = XYES ]
+ echo NO
+ : NO
+ [ XNO = XYES -o XNO = XYES ]
+ echo NO
+ : NO
+ [ XNO = XYES ]
+ echo NO
+ : NO
+ [ XNO = XYES ]
+ echo NO
+ : NO
+ domainname
+ [ X != X -a -d /var/yp/binding ]
+ echo NO
+ : NO
+ [ -n /usr/local/sbin/vpnc ]
+ unset _RC_DEBUG _RC_FORCE
+ getopts df c
+ shift 0
+ basename /etc/rc.d/vpnc
+ _name=vpnc
+ _RC_RUNDIR=/var/run/rc.d
+ _RC_RUNFILE=/var/run/rc.d/vpnc
+ eval _rcflags=${vpnc_flags}
+ _rcflags=
+ eval _rcuser=${vpnc_user}
+ _rcuser=
+ getcap -f /etc/login.conf vpnc
+ > /dev/null
+ 2>&1
+ [ -z ]
+ daemon_class=daemon
+ [ -z ]
+ daemon_user=root
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ printf %s
+ daemon_flags=
+ daemon_flags=
+ readonly daemon_class
+ unset _rcflags _rcuser
+ pexp=/usr/local/sbin/vpnc
+ rcexec=su -l -c daemon -s /bin/sh root -c
+ rc_reload=NO
+ rc_cmd start
vpnc
Password for VPN username@X.X.X.X:
(ok)
$
No IP, nor route provided.
$ sudo cat /etc/vpnc/default.conf
## generated by pcf2vpnc
IPSec ID VPN-name
IPSec gateway X.X.X.X
IPSec secret VPN-password
Xauth username myID
IKE Authmode psk
IKE DH Group dh2
# run script to manipulate dns and routing settings
#Script /etc/vpnc/split.sh
$
