Package: openconnect Version: 9.01-2 Severity: normal Hello and thanks for maintaining this package in Debian!
I tried it to connect to a Fortinet SSL VPN. I used the following command: # openconnect --prot=fortinet -u $VPNUSER $VPNSERVER It worked, in the sense that I was able to connect to the VPN. However, when I decided to disconnect, I used [Ctrl+C] to end the session: the session ended as expected (good!), but I was left with a non-working network configuration (outside of the VPN). In other words, openconnect failed to restore the network configuration that was in place before its invocation! Even pinging a remote host resulted in "Network unreachable" errors. I had to bring my Ethernet network interface down: # ifdown $INTERFACE and then up again: # ifup $INTERFACE in order to get back to a working network configuration (this resulted in obtaining the network parameters back from the DHCP server and everything was working fine again). At the end of the session, I expected openconnect to automatically restore the network configuration as it had found it at the beginning of the session. Please note that another VPN client (package 'openfortivpn', which is specific for Fortinet VPNs) transparently restores the previous network configuration, when the user hits [Ctrl+C] to disconnect from the VPN... I acknowledge that this misbehavior by openconnect is not a big flaw, but having to manually issue an ifdown/ifup command is anyway annoying. Please fix this issue and/or forward this bug report upstream, as appropriate. Thanks for your time! -- System Information: Debian Release: bookworm/sid APT prefers testing APT policy: (800, 'testing'), (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 6.0.0-6-amd64 (SMP w/4 CPU threads; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages openconnect depends on: ii libc6 2.36-6 ii libgnutls30 3.7.8-4 ii libopenconnect5 9.01-2 ii libproxy1v5 0.4.18-1 ii libxml2 2.9.14+dfsg-1.1+b2 ii vpnc-scripts 0.1~git20220510-1 Versions of packages openconnect recommends: ii python3 3.10.6-1 ii python3-asn1crypto 1.5.1-2 ii python3-mechanize 1:0.4.8+pypi-4 ii python3-netifaces 0.11.0-2 Versions of packages openconnect suggests: ii bash-completion 1:2.11-6 ii xdg-utils 1.1.3-4.1 -- no debconf information