search

vlaci / openconnect-sso

Wrapper script for OpenConnect supporting Azure AD (SAMLv2) authentication to Cisco SSL-VPNs
GNU General Public License v3.0
280 stars 119 forks source link

RTNETLINK answers: File exists #54

Closed govind-varadar closed 2 years ago

govind-varadar commented 3 years ago

Repeated "RTNETLINK answers: File exists" message after connection.

[govind@fedora-workstation ~]$ openconnect-sso 
[info     ] Authenticating to VPN endpoint [openconnect_sso.app] address=https://sjc05-vpn-cluster-1.cisco.com/ name=
[info     ] Response received              [openconnect_sso.authenticator] id=main message=Please complete the authentication process in the AnyConnect Login window. title=Login
Warning: Ignoring XDG_SESSION_TYPE=wayland on Gnome. Use QT_QPA_PLATFORM=wayland to run on Wayland anyway.
[info     ] Browser started                [webengine] startup_info=StartupInfo(url='https://sjc05-vpn-cluster-1.cisco.com/+CSCOE+/saml/sp/login?tgname=IPSec_Profile&acsamlcap=v2', credentials=None)
[info     ] Loading page                   [webengine] url=https://sjc05-vpn-cluster-1.cisco.com/+CSCOE+/saml/sp/login?tgname=IPSec_Profile&acsamlcap=v2
js: WARNING: `getUserProfile` does not support requests for  dsc .
js: Refused to load the image 'https://duo.com/' because it violates the following Content Security Policy directive: "img-src 'self'  ".

js: Refused to load the image 'https://duo.com/' because it violates the following Content Security Policy directive: "img-src 'self'  ".

[info     ] Terminate requested.           [webengine] 
[info     ] Exiting browser                [webengine] 
[info     ] Browser exited                 [openconnect_sso.browser.browser] 
[info     ] Response received              [openconnect_sso.authenticator] id=success message=
[sudo] password for govind: 
Connected to 171.70.192.88:443
SSL negotiation with sjc05-vpn-cluster-1.cisco.com
Server certificate verify failed: signer not found
Connected to HTTPS on sjc05-vpn-cluster-1.cisco.com with ciphersuite (TLS1.2)-(ECDHE-SECP256R1)-(RSA-SHA512)-(AES-256-GCM)
Got CONNECT response: HTTP/1.1 200 OK
CSTP connected. DPD 30, Keepalive 20
Connected as 10.24.7.81 + 2001:420:c0c8:1001::7e6/64, using SSL, with DTLS in progress
Established DTLS connection (using GnuTLS). Ciphersuite (DTLS1.2)-(ECDHE-RSA)-(AES-256-GCM).
Connect Banner:
| sjc05-vpn-cluster-1.cisco.com
| NOTE: DO NOT dial emergency response numbers (e.g. 911,112) from software telephony clients.
| Your exact location and the appropriate emergency response agency may not be easily identified.
| The following countries restrict use of VoIP software via VPN over the Internet:
| UAE, Saudi Arabia, Pakistan, Lebanon, Jordan, Egypt, Oman, Qatar, Yemen, Algeria and Kuwait.
| 

RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists
RTNETLINK answers: File exists

This goes on for a while.

Please let me know if you need any more details.

vlaci commented 3 years ago

The issue comes after openconnect itself is started. I suspect the issues is with vpnc-scripts doesn't behaving well on your system. It may very well be an issue with openconnect/vpnc-scripts in your Linux distribution.

I can do little about it, besides giving some general pointers. What is the distribution you use? If it an arch linux variant, have you restarted it after the lest kernel update? Have you installed openconenct through your distribution-s package manager? Do you use your distribution's default networking helper software? (e.g. networkmanager and co.)

govind-varadar commented 3 years ago

Thanks for your reply. I am running fedora. openconnect was installed through distros package manager. openconnect-sso through pipx. All the settings are default. Any pointers to where I should look at would help. Thanks.

dead10ck commented 3 years ago

This started happening to me on Fedora as well, same setup as @govind-varadar.

vlaci commented 3 years ago

Does this issue affect VPN functionality or is it just an annoying?

govind-varadar commented 3 years ago

VPN connection seems to work fine.

marekdedic commented 2 years ago

This happens to me on Debian as well. VPN works fine, it's just annoying...

vlaci commented 2 years ago

Sorry I don't have any way to fix this issue.