janhouse/always-on-openconnect-vpn
1
0
Fork 0
Code Issues Pull Requests Activity
2 Commits 1 Branch 0 Tags 133 KiB
Shell 100%
6bfd804427
Go to file
Jānis Jansons 6bfd804427 Added Linux workaround :)
2020-12-17 19:00:59 +00:00
hostscan-bypass.sh Initial commit 2020-12-17 20:22:15 +02:00
README.md Initial commit 2020-12-17 20:22:15 +02:00
routing.sh Initial commit 2020-12-17 20:22:15 +02:00
run-vpn.sh Added Linux workaround :) 2020-12-17 19:00:59 +00:00

README.md

Always on Openconnect VPN

This script uses Openconnect to automatically connect to Cisco Anyconnect VPN server.

Server address, username, password and 2fa seed is stored in macOS keychain. Feel free to remove them and ask for user input instead.

Additionaly routing for only specific subnets can be set up in routing.sh

Setup

git clone this repo
brew install openconnect

Add server address, username, password and 2fa seed in keychain with these names:

  • Openconnect VPN Server
  • Openconnect Username
  • Openconnect Account Password
  • Openconnect TOTP Seed

For ease of use you can allow automatic keychain access to some of the attributs, but do not allow automatic access to password and especially the 2fa seed. It will keep it in memory as long as the script is running.

Usage

sudo ./run-vpn.sh

In case of disconnect, it will try reconnecting after 3 seconds. You can stop it by pressing CTRL+C or killing the script.