I am utilizing ‘OpenConnect model v8.05’ on Pink Hat Enterprise Linux 8.1 (Ootpa) so as to hook up with a server.
The server solely accepts SSLv3, TLSv1.Zero ciphers and I haven’t got entry to the server for safety replace/improve.
When I attempt to join:
[root@RHEL8 ~]# openconnect –authenticate XXX.XXX.XXX.XXX:443 -status -msg -debug
MTU Zero too small
Linked to XXX.XXX.XXX.XXX:443
SSL negotiation with XXX.XXX.XXX.XXX
SSL connection failure: A packet with unlawful or unsupported model was acquired.
Did not open HTTPS connection to XXX.XXX.XXX.XXX
Did not get hold of WebVPN cookie
I’ve modified openssl Min SSL Protocol by altering:
/and so on/crypto-policies/back-ends/opensslcnf.config
MinProtocol = TLSv1.0
Now I will handshake the server utilizing ‘openssl s_client -connect’. However the openconnect shopper just isn’t but ready to connect with the server.
How can I pressure it to make use of TLS 1.0?