auth:howto:linux:vpnclient
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
auth:howto:linux:vpnclient [2007/08/22 11:17] – kohofer | auth:howto:linux:vpnclient [2012/04/05 12:05] – [Instructions for Linux Cisco AnyConnect Client (recommened)] kohofer | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== VPN (Virtual Private Network) at the Free University of Bolzano/ | + | ====== VPN (Virtual Private Network) at the Free University of Bolzano/ |
- | ==== Infos regarding the usage of VPN ==== | + | ===== Infos regarding the usage of VPN ===== |
- | http:// | + | http:// |
+ | ==== Instructions for Windows 2000, XP, VISTA and 7 - 32bit and 64bit ==== | ||
- | ==== Instructions for Windows 98, ME, NT 4.0, 2000 and XP ==== | + | http:// |
- | http:// | + | |
- | ==== Instructions for MacOS X 10.2-10.4 ==== | + | ==== Instructions for MacOS X 10.4 ==== |
- | http:// | + | http:// |
+ | ==== Instructions for MacOS X 10.6 ==== | ||
- | ==== Instructions for Linux ==== | + | There is no need to install a Client, simply install (doubleclick) the\\ |
+ | following file: | ||
- | 1. Download and install the kernel headers corresponding to the kernel in use. Some distributions name this package kernel-headers, | + | {{: |
- | # sudo apt-get install kernel-headers-`uname -r` | + | ===== Instructions for Linux Cisco AnyConnect Client (recommened) ===== |
- | or | + | |
- | # sudo apt-get install linux-headers-`uname -r` | + | |
- | You can get the version of your kernel by issuing the following command: | + | === Installation === |
- | # uname -a | + | 1. Open with your browser (tested with firefox 11.0) the following URL: |
- | A valid version number could be, for example, 2.6.12-9-386. | + | https://vpn.scientificnet.org |
- | 2. Download | + | 2. Enter your Username |
- | https://pro.unibz.it/ | + | 3. A " |
+ | | ||
- | 2.1 Download and install the vpnclient via wget: | + | 4. Press **Run** |
- | Substitute the notation X Z with your university network' | + | 5. In order to install Cisco AnyConnect, Admin (sudo) rights are required; a Window opens,\\ |
+ | | ||
- | wget --no-check-certificate --http-user=X --http-password=Z https://pro.unibz.it/ | + | 6. The Cisco AnyConnect is installed and running, you can close the URL. |
- | 3. Untar the source of vpnclient and install it. | + | === Launching Cisco AnyConnect GUI === |
- | | + | |
- | | + | |
- | # tar xfz vpnclient-linux-x86_64-4.8.00.0490-k9.tar.gz | + | This allows you to connect and disconnect the VPN service. |
- | + | ||
- | # cd vpnclient | + | |
- | + | ||
- | # ./ | + | |
- | You will get some messages and you will be requested to answer to some questions: | + | / |
- | Directory where binaries will be installed [/ | + | === Uninstalling |
- | + | ||
- | Automatically start the VPN service at boot time [yes] | + | |
- | + | ||
- | Directory containing linux kernel source code [/ | + | |
- | You only have to modify the predefined answers if they do not correspond to your actual situation. | + | The client comes with an uninstallation script |
- | If everything works, you will see some compilation messages and then the installation program will stop. | + | |
- | 4. Download the unibz.pcf configuration file from the site of the university via web: | + | * $ sudo / |
- | https:// | + | However it doesn' |
+ | You can clean up what it leaves behind by deleting the directory | ||
- | 4.1 Download the unibz.pcf configuration file from the site of the university via wget: | + | * $ sudo rm -r /opt/cisco |
- | Substitute the notation XXX ZZZ with your university network' | + | Per-user configuration is stored in your home directory in a file called .anyconnect |
- | wget --no-check-certificate --http-user=XXX --http-password=ZZZ https:// | ||
- | 5. Unzip the configuration file and copy it to the correct location: | + | More infos to come like using OpenConnect... |
- | # unzip "Free University of Bozen-Bolzano.zip" | ||
- | | ||
- | # cp "Free University of Bozen-Bolzano.pcf" | ||
- | 6. Initialize the vpnclient: | + | ===== Instructions for Linux vpnc Client (fails to work since update to Cisco ASA) ===== |
- | # sudo /etc/init.d/ | + | 1. Install vpnc |
- | 7. You can now start the vpnclient using sudo: | + | |
- | $ sudo vpnclient connect | + | 2. Create configuration file unibz.conf. |
+ | | ||
- | You will see some messages and then you will be requested to insert your username and password: | + | sudo vi / |
- | Cisco Systems VPN Client Version 4.8.00 (0490) | + | < |
- | | + | ####################################### |
- | | + | IPSec gateway vpn.unibz.it |
- | | + | IPSec ID Unibz |
- | | + | IPSec obfuscated secret 06294C134E0BEBDA4B449B56BFD305D35D12DABF4044EDB6794926C2CA6D5AEDFE6342DF190E566EB11215DDC1591D5CB6ABEBEB593693C6D0B2077D78034B6AFEEA3221E77F4 |
+ | C9858DD711AA8DE58F6 | ||
+ | Xauth username <your-windows-login> | ||
+ | ###################################### | ||
+ | </code> | ||
- | Initializing the VPN connection. | + | apply this rights: |
- | Contacting the gateway at 193.206.186.111 | + | |
- | User Authentication for unibz... | + | |
- | Enter Username and Password. | + | sudo chmod 600 / |
+ | |||
+ | sudo chown root.root / | ||
- | Username []: X | + | < |
- | | + | sudo ls -l / |
- | | + | -rw------- 1 root root 250 2009-05-02 15:54 / |
- | | + | </ |
- | | + | |
+ | 3. Start vpnc | ||
+ | |||
+ | sudo vpnc-connect unibz | ||
+ | |||
+ | This will first ask for your sudo password and then | ||
+ | you < | ||
+ | |||
+ | 4. Stop vpnc | ||
+ | |||
+ | sudo vpnc-disconnect | ||
+ | |||
+ | ===== Shrew Soft VPN Client Instructions for 32 or 64 bit version of Windows 2000, XP, Vista and 7 (recommened) ===== | ||
+ | |||
+ | 1. Go to http:// | ||
+ | |||
+ | 2. Download unibz profile (need to login with unibz login& | ||
+ | https:// | ||
- | Your VPN connection is secure. | + | 3. Install Shrew Soft VPN Client for Windows |
- | | + | 4. Start Shrew Soft VPN Client, unzip unibz profile and Import in VPN client |
- | | + | |
- | Server address: 193.206.186.111 | + | |
- | Encryption: 128-bit AES | + | |
- | Authentication: | + | |
- | IP Compression: | + | |
- | NAT passthrough is active on port UDP 4500 | + | |
- | Local LAN Access is disabled | + | |
- | Please notice that you will have to leave the console open in order to have the VPN running. | ||
/data/www/wiki.inf.unibz.it/data/pages/auth/howto/linux/vpnclient.txt · Last modified: 2022/06/20 11:40 by kohofer