| Port details on branch 2025Q3 |
- ocserv Server implementing the AnyConnect SSL VPN protocol
- 1.3.0_3 net
 =0      1.3.0_3Version of this port present on the latest quarterly branch. - Maintainer: otis@FreeBSD.org
- Port Added: 2025-07-09 10:54:09
- Last Update: 2025-07-09 10:50:07
- Commit Hash: 71cd095
- Also Listed In: net-vpn security
- License: GPLv2+
- WWW:
- https://ocserv.gitlab.io/www/index.html
- Description:
- OpenConnect server (ocserv) is an SSL VPN server. Its purpose is
to be a secure, small, fast and configurable VPN server. It implements
the OpenConnect SSL VPN protocol, and has also (currently experimental)
compatibility with clients using the AnyConnect SSL VPN protocol.
The OpenConnect protocol provides a dual TCP/UDP VPN channel, and
uses the standard IETF security protocols to secure it. Both IPv4
and IPv6 are supported.
Ocserv's main features are security through privilege separation
and sandboxing, accounting, and resilience due to a combined use
of TCP and UDP. Authentication occurs in an isolated security
module process, and each user is assigned an unprivileged worker
process, and a networking (tun) device. That not only eases the
control of the resources of each user or group of users, but also
prevents data leak (e.g., heartbleed-style attacks), and privilege
escalation due to any bug on the VPN handling (worker) process. A
management interface allows for viewing and querying logged-in
users.
  ¦  ¦  ¦  ¦ 
- Manual pages:
-
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- To install the port:
- cd /usr/ports/net/ocserv/ && make install clean
- To add the package, run one of these commands:
- pkg install net/ocserv
- pkg install ocserv
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: ocserv
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1716360083
SHA256 (ocserv-1.3.0.tar.xz) = 5c562c3ea1032065ef43d6075e5722f94ce6a7a780d6a2b4c6d54c1ce3921965
SIZE (ocserv-1.3.0.tar.xz) = 770596
No package information for this port in our database- Sometimes this happens. Not all ports have packages. Perhaps there is a build error. Check the fallout link:
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- bash : shells/bash
- gsed : textproc/gsed
- ipcalc : net-mgmt/ipcalc
- msgfmt : devel/gettext-tools
- gperf : devel/gperf
- pkgconf>=1.3.0_1 : devel/pkgconf
- autoconf>=2.72 : devel/autoconf
- automake>=1.17 : devel/automake
- libtoolize : devel/libtool
- Library dependencies:
-
- libev.so : devel/libev
- libgnutls.so : security/gnutls
- libiconv.so : converters/libiconv
- liblz4.so : archivers/liblz4
- libnettle.so : security/nettle
- liboath.so : security/oath-toolkit
- libpcl.so : devel/pcl
- libprotobuf-c.so : devel/protobuf-c
- libtalloc.so : devel/talloc
- libtasn1.so : security/libtasn1
- libreadline.so.8 : devel/readline
- There are no ports dependent upon this port
Configuration Options:- ===> The following configuration options are available for ocserv-1.3.0_3:
DOCS=on: Build and/or install documentation
EXAMPLES=on: Build and/or install examples
GSSAPI=off: GSSAPI Security API support
MAXMIND=off: Use Maxmind GeoIP library
RADIUS=off: RADIUS protocol support
===> Use 'make config' to modify these settings
- Options name:
- net_ocserv
- USES:
- autoreconf cpe gettext-tools gperf libtool localbase ncurses pathfix pkgconfig readline tar:xz
- pkg-message:
- SECURITY NOTE: ocserv cannot isolate workers processes on FreeBSD,
it only supports Linux's seccomp, but not FreeBSD's capsicum.
- Master Sites:
|
As an Amazon Associate I earn from qualifying purchases.
