openconnect-installer icon indicating copy to clipboard operation
openconnect-installer copied to clipboard
verified publisher icon xhdix

Debian port?

Open mfat opened this issue 4 years ago • 4 comments

Can I run this in debian? If no, are you planning a port? Thanks.

mfat avatar Feb 08 '21 20:02 mfat

I had it before: https://github.com/xhdix/openconnect-installer/blob/master/alpha/ocserv-debian-letsencrypt.sh

But Debian package updates were very slow: https://tracker.debian.org/pkg/ocserv

So I decided to just support CentOS and reduce the complexity.

However, the installation commands are the same as the above file, and probably only the sed commands are different (and will be like https://github.com/xhdix/openconnect-installer/blob/master/install.sh sed commands). If doing so confuses you, let me know so I can create a temporary script for you.

xhdix avatar Feb 09 '21 09:02 xhdix

I'd appreciated if you do, I am no expert with these stuff. Just want a server up and running.

mfat avatar Feb 16 '21 09:02 mfat

Also got this after installing with the debian script:

root@host:~# systemctl status ocserv.service 
● ocserv.service - OpenConnect SSL VPN server
   Loaded: loaded (/etc/systemd/system/ocserv.service; enabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Tue 2021-02-16 09:32:12 GMT; 1s ago
     Docs: man:ocserv(8)
  Process: 22097 ExecStart=/usr/sbin/ocserv --foreground --pid-file /var/run/ocserv.pid --config /etc/ocserv/ocserv.conf (code=exited, status=1/FAILURE)
 Main PID: 22097 (code=exited, status=1/FAILURE)

Feb 16 09:32:12 mfat.ir ocserv[22097]: listening (UDP) on [::]:3210...
Feb 16 09:32:12 mfat.ir ocserv[22097]: main: initialized ocserv 0.11.6
Feb 16 09:32:12 mfat.ir ocserv[22098]: sec-mod: reading supplemental config from files
Feb 16 09:32:12 mfat.ir ocserv[22098]: sec-mod: error loading file '/etc/letsencrypt/live//privkey.pem'
Feb 16 09:32:12 mfat.ir ocserv[22098]: GnuTLS error (at sec-mod.c:691): Error while reading file.
Feb 16 09:32:12 mfat.ir ocserv[22097]: main: tlslib.c:731: error loading file '/etc/letsencrypt/live//fullchain.pem'
Feb 16 09:32:12 mfat.ir ocserv[22097]: main: tlslib.c:870: error loading the certificate or key file
Feb 16 09:32:12 mfat.ir systemd[1]: ocserv.service: Main process exited, code=exited, status=1/FAILURE
Feb 16 09:32:12 mfat.ir systemd[1]: ocserv.service: Unit entered failed state.
Feb 16 09:32:12 mfat.ir systemd[1]: ocserv.service: Failed with result 'exit-code'.

mfat avatar Feb 16 '21 09:02 mfat

I hope new commit will fix that problem: https://github.com/xhdix/openconnect-installer/blob/master/alpha/ocserv-debian-letsencrypt.sh (Not tested yet)

xhdix avatar Feb 17 '21 11:02 xhdix