auth:howto:linux:vpnclient
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
auth:howto:linux:vpnclient [2010/08/30 17:12] – kohofer | auth:howto:linux:vpnclient [2012/09/11 09:05] – [Possible errors] kohofer | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== VPN (Virtual Private Network) at the Free University of Bolzano/ | + | ====== VPN (Virtual Private Network) at the Free University of Bolzano/ |
- | ==== Infos regarding the usage of VPN ==== | + | ===== Infos regarding the usage of VPN ===== |
http:// | http:// | ||
- | ==== Instructions for Windows 2000, XP and VISTA ==== | + | ==== Instructions for Windows 2000, XP, VISTA and 7 - 32bit and 64bit ==== |
http:// | http:// | ||
Line 11: | Line 12: | ||
http:// | http:// | ||
- | ==== Instructions for Linux VPNC Client (recommened) ==== | + | ==== Instructions for MacOS X 10.6 ==== |
+ | |||
+ | There is no need to install a Client, simply download and install (doubleclick) the\\ | ||
+ | following file: | ||
+ | |||
+ | {{: | ||
+ | |||
+ | ===== Instructions for Linux vpnc Client (recommended) ===== | ||
1. Install vpnc | 1. Install vpnc | ||
Line 17: | Line 25: | ||
sudo aptitude install vpnc | sudo aptitude install vpnc | ||
- | 2. Create configuration file unibz.conf. | + | 2. Create configuration file unibz.conf. |
- | Please Note: IPSec obfuscated secret | + | |
+ | <note important> | ||
+ | |||
+ | <note important> | ||
sudo vi / | sudo vi / | ||
Line 45: | Line 56: | ||
3. Start vpnc | 3. Start vpnc | ||
- | sudo vpnc-connect unibz | + | sudo vpnc-connect |
This will first ask for your sudo password and then | This will first ask for your sudo password and then | ||
- | you <windows-password> | + | your <unibz-password> |
4. Stop vpnc | 4. Stop vpnc | ||
Line 54: | Line 65: | ||
sudo vpnc-disconnect | sudo vpnc-disconnect | ||
+ | ==== Possible errors ==== | ||
- | ==== Instructions for Linux Cisco VPN Client ==== | + | If you get the following error: |
+ | try adding the line below to your configuration file (unibz.conf) | ||
- | 1. Download and install the kernel headers corresponding to the kernel in use. Some distributions name this package kernel-headers, others name it linux-headers: | + | **NAT Traversal Mode cisco-udp** |
- | # sudo apt-get install kernel-headers-`uname | + | ---- |
- | or | + | |
- | # sudo apt-get install linux-headers-`uname -r` | + | |
- | You can get the version of your kernel by issuing | + | When one attempts to connect to their VPN after installing and configuring vpnc on Ubuntu Oneiric, |
+ | the following | ||
- | | + | < |
+ | root@ubuntu: | ||
+ | Error: either " | ||
+ | </ | ||
- | A valid version | + | It appears that the Ubuntu package vpnc comes with an old version |
+ | This script is what sets up all the addresses and routes | ||
+ | provides an updated / revised release of this script. Download the latest copy from [[http:// | ||
+ | Replace the vpnc-script script that comes with the Ubuntu vpnc package: / | ||
- | 2. Download and install the vpnclient: | ||
- | If kernel > 2.6.24-xx then download: | + | ===== Instructions for Linux Cisco AnyConnect Client ===== |
- | https:// | + | === Installation === |
- | otherwise download: | + | 1. Open with your browser (tested with firefox 11.0) the following URL: |
- | https:// | + | https:// |
- | 3. Untar the source of vpnclient | + | 2. Enter your Username |
- | | + | |
- | + | ||
- | sudo apt-get install make gcc-3.4 | + | |
- | If kernel > 2.6.24-xx then | + | 3. A " |
+ | in /opt/cisco of your Platform. | ||
- | # tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9_2.6.24-xx.tar.gz | + | 4. Press **Run** on the " |
- | otherwise | + | {{: |
- | # tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz | + | 5. In order to install Cisco AnyConnect, Admin (sudo) rights are required; a Window opens,\\ |
+ | enter your local password. | ||
- | Next install/ | + | {{:auth: |
- | # cd vpnclient | + | 6. The Cisco AnyConnect is installed and running, you can close the URL. |
- | + | ||
- | # sudo ./ | + | |
- | You will get some messages and you will be requested to answer to some questions: | + | {{:auth: |
- | Directory where binaries will be installed [/ | + | === Launching Cisco AnyConnect GUI === |
- | + | ||
- | Automatically start the VPN service at boot time [yes] no | + | |
- | + | ||
- | Directory containing linux kernel source code [/ | + | |
- | + | This allows you to connect | |
- | You only have to modify the predefined answers if they do not correspond to your actual situation. | + | |
- | If everything works, you will see some compilation messages | + | |
- | 4. Download the unibz.pcf configuration file from the site of the university via web: | + | / |
- | https:// | + | Please note the vpnagentd must be running for this |
- | 5. Unzip the configuration file and copy it to the correct location: | + | * ps auxww | grep vpn |
+ | < | ||
+ | root 1759 0.0 0.3 17984 7644 ? S 12:58 0:00 / | ||
+ | </ | ||
- | # unzip "Free University of Bozen-Bolzano.zip" | + | === Launching Cisco AnyConnect NON-GUI === |
- | + | ||
- | # sudo cp "Free University of Bozen-Bolzano.pcf" | + | |
- | 6. Initialize | + | This allows you to connect and disconnect |
- | # sudo /etc/init.d/vpnclient_init start | + | * /opt/cisco/anyconnect/ |
- | 7. You can now start the vpnclient using sudo: | + | < |
+ | Cisco AnyConnect Secure Mobility Client (version 3.0.5080) | ||
- | $ sudo vpnclient connect unibz | + | Copyright (c) 2004 - 2011 Cisco Systems, Inc. |
+ | All Rights Reserved. | ||
- | You will see some messages and then you will be requested to insert your username and password: | ||
- | Cisco Systems | + | >> state: Disconnected |
- | | + | >> state: Disconnected |
- | | + | >> notice: Ready to connect. |
- | | + | >> registered with local VPN subsystem. |
- | | + | VPN> connect vpn.unibz.it |
+ | connect vpn.unibz.it | ||
+ | >> | ||
+ | >> | ||
+ | VPN> | ||
+ | >> Please enter your username and password. | ||
+ | | ||
+ | 1) scientificnetwork | ||
+ | Group: [clientless] | ||
- | Initializing the VPN connection. | + | Username: < |
- | | + | Password: |
- | User Authentication | + | >> state: Connecting |
+ | >> notice: Establishing | ||
+ | >> | ||
+ | >> | ||
+ | >> notice: Checking for customization updates... | ||
+ | >> notice: Performing any required updates... | ||
+ | >> state: Connecting | ||
+ | >> notice: Establishing VPN session... | ||
+ | >> notice: Establishing VPN - Initiating connection... | ||
+ | >> notice: Establishing VPN - Examining system... | ||
+ | >> notice: Establishing VPN - Activating VPN adapter... | ||
+ | >> notice: Establishing VPN - Configuring system... | ||
+ | >> notice: Establishing VPN... | ||
+ | >> state: Connected | ||
+ | >> notice: Connected to vpn.unibz.it. | ||
+ | VPN>exit | ||
- | Enter Username and Password. | ||
- | Username []: X | + | </ |
- | | + | |
- | | + | === Uninstalling the AnyConnect Client === |
- | | + | |
- | | + | The client comes with an uninstallation script |
+ | |||
+ | * sudo / | ||
+ | |||
+ | However it doesn' | ||
+ | You can clean up what it leaves behind by deleting the directory /opt/cisco/ and / | ||
+ | |||
+ | * sudo rm -r /opt/cisco / | ||
+ | |||
+ | Per-user configuration is stored in your home directory in a file called | ||
+ | |||
+ | ===== Shrew Soft VPN Client Instructions for 32 or 64 bit version of Windows 2000, XP, Vista and 7 (recommened) ===== | ||
+ | |||
+ | 1. Go to http:// | ||
+ | |||
+ | 2. Download unibz profile (need to login with unibz login& | ||
+ | https:// | ||
- | Your VPN connection is secure. | + | 3. Install Shrew Soft VPN Client for Windows |
- | | + | 4. Start Shrew Soft VPN Client, unzip unibz profile and Import in VPN client |
- | | + | |
- | Server address: 193.206.186.111 | + | |
- | Encryption: 128-bit AES | + | |
- | Authentication: | + | |
- | IP Compression: | + | |
- | NAT passthrough is active on port UDP 4500 | + | |
- | Local LAN Access is disabled | + | |
- | Please notice that you will have to leave the console open in order to have the VPN running. | ||
/data/www/wiki.inf.unibz.it/data/pages/auth/howto/linux/vpnclient.txt · Last modified: 2022/06/20 11:40 by kohofer