Features

  • Connection through HTTP proxy, including libproxy support for automatic proxy configuration.
  • Connection through SOCKS5 proxy.
  • Automatic detection of IPv4 and IPv6 address, routes.
  • Authentication via HTTP forms.
  • Authentication using SSL certificates — from local file, Trusted Platform Module and PKCS#11 smartcards.
  • Authentication using SecurID software tokens (when built with libstoken)
  • Authentication using OATH TOTP or HOTP software tokens.
  • Authentication using Yubikey OATH tokens (when built with libpcsclite)
  • UserGroup support for selecting between multiple configurations on a single VPN server.
  • Data transport over TCP (HTTPS) or UDP (DTLS or ESP).
  • Keepalive and Dead Peer Detection on both HTTPS and DTLS.
  • Automatic update of VPN server list / configuration.
  • Roaming support, allowing reconnection when the local IP address changes.
  • Run without root privileges (see here).
  • Support for "Cisco Secure Desktop" (see here), Juniper TNCC (see here), and "GlobalProtect HIP report" (see here).
  • Graphical connection tools for various environments (see here).