Peter Makholm

I tend to over-engineer my setup.

I am not quite happy with networking in #WSL2, so now I am considering rebuilding my wsl2 setup as a #HyperV virtual machine with an external virtual switch. But I also have at least one customer with a VPN I can't get to work on Linux (Cisco AnyConnect), so I also need an internal virtual switch and then some #Linux #netns magic to us the right network.

Feb 13, 2025 at 8:44amWeb
Show threadPeter MakholmFeb 13, 2025

And yes, I have looked at #openconnect.

I just end up with an 'Please upgrade your AnyConnect Client. Failed to complete authentication" and I have no tuits to debug it.

Show threadkasperdFeb 13, 2025
Have you tried adding --useragent=AnyConnect to the openconnect command line?
Show threadPeter MakholmFeb 13, 2025

@kasperd I might have tried that in the past and stumbled into another roadblock.

But setting the useragent and gnutls-priority seems to be the winning combination.

# openconnect --useragent=AnyConnect --gnutls-priority="NORMAL:-VERS-ALL:+VERS-TLS1.2:+RSA:+AES-128-CBC:+SHA1" <server>