Hi @MarkusMcNugen
I don't suppose you'd be able to help with this issue I'm facing with your OpenConnect/ocserv image?
Any and every connection I have disconnects after 240 seconds (which, coincidentally, is the auth-timeout period). I've tried connecting to my VPN server via OpenConnect on Android and via CLI on a Ubuntu machine but they both disconnect after 240 seconds and then reconnect all over again.
To rule out any errant config issues on my part, I tried setting up a "clean/default config" version of your image without any changes to the ocserv.conf file (i.e literally just running this:)
docker run --privileged -d -p 4443:4443 -p 4443:4443/udp markusmcnugen/openconnect
And yet despite this, my client devices will still disconnect after 240 seconds only to reconnect all over again.
On my Ubuntu box, this is the output when the 240 seconds lapse:
.....stuff beforehand elided for brevity
DTLS option X-DTLS-Content-Encoding : oc-lz4
DTLS initialised. DPD 90, Keepalive 32400
Connected as 192.168.1.182, using SSL + lz4
Established DTLS connection (using GnuTLS). Ciphersuite (DTLS1.2)-(PSK)-(AES-256-GCM).
DTLS connection compression using LZ4.
Initiating IPv4 MTU detection (min=717, max=1434)
No change in MTU after detection (was 1434)
Connect Banner:
| Welcome to {{$SERVER_NAME}}
Error: Invalid prefix for given prefix length.
SSL read error: The TLS connection was non-properly terminated.; reconnecting.
SSL negotiation with mydomain.tld
Server certificate verify failed: signer not found
Connected to HTTPS on mydomain.tld
TCP_INFO rcv mss 1428, snd mss 1448, adv mss 1448, pmtu 1500
Got CONNECT response: HTTP/1.1 200 CONNECTED
In particular, it's the line that says "SSL read error: The TLS connection was non-properly terminated.; reconnecting." which seems to be causing all of this I think?
Any thoughts would be appreciated.
And of course, happy new year :)