Skip to content

eric15342335/openconnect

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4,824 Commits
.copr
.copr
 
 
.obs
.obs
 
 
android
android
 
 
bash
bash
 
 
java
java
 
 
json
json
 
 
lwip @ 0a0452b
lwip @ 0a0452b
 
 
m4
m4
 
 
po
po
 
 
tests
tests
 
 
trojans
trojans
 
 
www
www
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.gitlab-ci.yml
.gitlab-ci.yml
 
 
.gitmodules
.gitmodules
 
 
.mailmap
.mailmap
 
 
COPYING.LGPL
COPYING.LGPL
 
 
Makefile.am
Makefile.am
 
 
Makefile.dlldeps
Makefile.dlldeps
 
 
README.md
README.md
 
 
TODO
TODO
 
 
array.c
array.c
 
 
auth-common.c
auth-common.c
 
 
auth-globalprotect.c
auth-globalprotect.c
 
 
auth-html.c
auth-html.c
 
 
auth-juniper.c
auth-juniper.c
 
 
auth.c
auth.c
 
 
autogen.sh
autogen.sh
 
 
compat.c
compat.c
 
 
config.rpath
config.rpath
 
 
configure.ac
configure.ac
 
 
cstp.c
cstp.c
 
 
digest.c
digest.c
 
 
dtls.c
dtls.c
 
 
esp-seqno.c
esp-seqno.c
 
 
esp.c
esp.c
 
 
export-strings.sh
export-strings.sh
 
 
f5.c
f5.c
 
 
fortinet.c
fortinet.c
 
 
gensymbols.sed
gensymbols.sed
 
 
gnutls-dtls.c
gnutls-dtls.c
 
 
gnutls-esp.c
gnutls-esp.c
 
 
gnutls.c
gnutls.c
 
 
gnutls.h
gnutls.h
 
 
gnutls_tpm.c
gnutls_tpm.c
 
 
gnutls_tpm2.c
gnutls_tpm2.c
 
 
gnutls_tpm2_esys.c
gnutls_tpm2_esys.c
 
 
gnutls_tpm2_ibm.c
gnutls_tpm2_ibm.c
 
 
gpst.c
gpst.c
 
 
gssapi.c
gssapi.c
 
 
hpke.c
hpke.c
 
 
http-auth.c
http-auth.c
 
 
http.c
http.c
 
 
iconv.c
iconv.c
 
 
jni.c
jni.c
 
 
jsondump.c
jsondump.c
 
 
libopenconnect.map.in
libopenconnect.map.in
 
 
libopenconnect5.symbols
libopenconnect5.symbols
 
 
library.c
library.c
 
 
list-system-keys.c
list-system-keys.c
 
 
lwipopts.h
lwipopts.h
 
 
lzo.c
lzo.c
 
 
lzo.h
lzo.h
 
 
lzs.c
lzs.c
 
 
main.c
main.c
 
 
mainloop.c
mainloop.c
 
 
mingw-openconnect.spec.in
mingw-openconnect.spec.in
 
 
mkspec.sh
mkspec.sh
 
 
mtucalc.c
mtucalc.c
 
 
multicert.c
multicert.c
 
 
ntlm.c
ntlm.c
 
 
nullppp.c
nullppp.c
 
 
oath.c
oath.c
 
 
oidc.c
oidc.c
 
 
oncp.c
oncp.c
 
 
openconnect-internal.h
openconnect-internal.h
 
 
openconnect.8.in
openconnect.8.in
 
 
openconnect.h
openconnect.h
 
 
openconnect.ico
openconnect.ico
 
 
openconnect.nsi.in
openconnect.nsi.in
 
 
openconnect.pc.in
openconnect.pc.in
 
 
openconnect.rc
openconnect.rc
 
 
openconnect.spec.in
openconnect.spec.in
 
 
openssl-dtls.c
openssl-dtls.c
 
 
openssl-esp.c
openssl-esp.c
 
 
openssl-pkcs11.c
openssl-pkcs11.c
 
 
openssl.c
openssl.c
 
 
os-tcp-mtu.c
os-tcp-mtu.c
 
 
ppp.c
ppp.c
 
 
ppp.h
ppp.h
 
 
pulse.c
pulse.c
 
 
script.c
script.c
 
 
socks5-buf.c
socks5-buf.c
 
 
socks5-buf.h
socks5-buf.h
 
 
socks5-tun.c
socks5-tun.c
 
 
ssl.c
ssl.c
 
 
sspi.c
sspi.c
 
 
stoken.c
stoken.c
 
 
test-f5-login.py
test-f5-login.py
 
 

Repository files navigation

OpenConnect

OpenConnect is an SSL VPN client initially created to support Cisco's AnyConnect SSL VPN.

It has since been ported to support the Juniper SSL VPN (which is now known as Pulse Connect Secure), the Palo Alto Networks GlobalProtect SSL VPN the F5 Big-IP SSL VPN, and the Fortinet FortiGate SSL VPN.

An openconnect VPN server (ocserv), which implements an improved version of the Cisco AnyConnect protocol, has also been written. You can find it on Gitlab at https://gitlab.com/openconnect/ocserv.

If you're looking for the standard vpnc-script, which is invoked by OpenConnect for routing and DNS setup, you can find it on Gitlab at https://gitlab.com/openconnect/vpnc-scripts.

Licence

OpenConnect is released under the GNU Lesser Public License, version 2.1.

Documentation

Documentation for OpenConnect is built from the www/ directory in this repository, and lives in rendered form at https://www.infradead.org/openconnect.

Commonly-sought documentation:

Custom SOCKS5 Forward Proxy Integration

Windows 10/11 only.

Build instructions on MSYS2 UCRT64:

pacman -Syuu

pacman -S --needed \
  git \
  base-devel unzip \
  autoconf automake libtool make jq \
  mingw-w64-ucrt-x86_64-gcc \
  mingw-w64-ucrt-x86_64-pkgconf \
  mingw-w64-ucrt-x86_64-gnutls \
  mingw-w64-ucrt-x86_64-libxml2 \
  mingw-w64-ucrt-x86_64-zlib \
  mingw-w64-ucrt-x86_64-lz4 \
  mingw-w64-ucrt-x86_64-gettext \
  mingw-w64-ucrt-x86_64-libiconv \
  mingw-w64-ucrt-x86_64-p11-kit \
  mingw-w64-ucrt-x86_64-nsis

# git submodule update --init --recursive
make distclean
./autogen.sh
CFLAGS="-O3 -s -flto -mtune=native -march=x86-64-v3 -static -fstack-protector-strong -D_FORTIFY_SOURCE=3 -fstack-clash-protection -fcf-protection=full -fno-ident" \
LDFLAGS="-O3 -s -flto -static -Wl,--high-entropy-va -Wl,--nxcompat -Wl,--dynamicbase" \
./configure \
  --prefix=/ucrt64 \
  --enable-socks5-tun \
  --with-gnutls \
  --enable-static \
  --disable-shared \
  --without-libproxy \
  --without-stoken \
  --without-gssapi \
  --with-java=no \
  --disable-docs \
  --with-external-browser=no \
  --disable-nls \
  --with-gnutls-tss2=no \
  --without-libpskc \
  --without-libpcsclite \
  --disable-dsa-tests \
  --disable-flask-tests \
  --without-asan-broken-tests
make -j32

Then unzip the installer (as it automatically bundles DLLs for you) and run the openconnect CLI:

./openconnect --socks5-port 10807 vpn2fa.hku.hk --user uid@connect.hku.hk

About

Native Windows SOCKS5 forward proxy for connecting HKUVPN without TUN device. (This is a fork of openconnect)

gitlab.com/openconnect/openconnect

Topics

windows socks5 lwip openconnect cisco-secure-client

Resources

Readme

License

LGPL-2.1 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

Initial Support of SOCKS5 forward proxy on Windows Latest
Apr 17, 2026

Contributors

Languages