auth:howto:linux:vpnclient
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
auth:howto:linux:vpnclient [2011/08/04 08:27] – kohofer | auth:howto:linux:vpnclient [2014/08/07 15:40] – kohofer | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== VPN (Virtual Private Network) at the Free University of Bolzano/ | + | ====== VPN (Virtual Private Network) at the Free University of Bolzano/ |
- | ==== Infos regarding the usage of VPN ==== | + | ===== Infos regarding the usage of VPN ===== |
http:// | http:// | ||
- | ==== Instructions for Windows 2000, XP and VISTA ==== | + | ==== Instructions for Windows 2000, XP, VISTA and 7 - 32bit and 64bit ==== |
http:// | http:// | ||
Line 13: | Line 14: | ||
==== Instructions for MacOS X 10.6 ==== | ==== Instructions for MacOS X 10.6 ==== | ||
- | There is no need to install a Client, simply install (doubleclick) the\\ | + | There is no need to install a Client, simply |
following file: | following file: | ||
{{: | {{: | ||
- | ==== Instructions for Linux vpnc Client (recommened) ==== | + | ===== Instructions for Linux vpnc Client (recommended) ===== |
1. Install vpnc | 1. Install vpnc | ||
Line 24: | Line 25: | ||
sudo aptitude install vpnc | sudo aptitude install vpnc | ||
- | 2. Create configuration file unibz.conf. | + | 2. For Unibz: |
- | Please Note: IPSec obfuscated secret | + | |
+ | * Create configuration file unibz.conf. | ||
+ | |||
+ | 2.a For Eurac: | ||
+ | |||
+ | * Create configuration file eurac.conf. Download from here: {{: | ||
+ | |||
+ | <note important> | ||
+ | |||
+ | <note important> | ||
+ | |||
+ | |||
+ | For Unibz: | ||
sudo vi / | sudo vi / | ||
Line 48: | Line 61: | ||
sudo ls -l / | sudo ls -l / | ||
-rw------- 1 root root 250 2009-05-02 15:54 / | -rw------- 1 root root 250 2009-05-02 15:54 / | ||
+ | </ | ||
+ | |||
+ | For Eurac: | ||
+ | |||
+ | sudo vi / | ||
+ | |||
+ | < | ||
+ | ####################################### | ||
+ | IPSec gateway vpn.scientificnet.org | ||
+ | IPSec ID Eurac | ||
+ | IPSec obfuscated secret 56A1CD68CC3AD33B48DB0F727ADDBC0A354DE3287D15C8526ED4CEDE4BC2ACDD1BB2460BC2354671A405F6150EA7C294C4DBC4CF9FFE45873BECAD3A2A738C5053BE34F709D592B50AD5BC472CDFF350 | ||
+ | Xauth username < | ||
+ | ####################################### | ||
+ | </ | ||
+ | |||
+ | apply this rights: | ||
+ | |||
+ | sudo chmod 600 / | ||
+ | | ||
+ | sudo chown root.root / | ||
+ | |||
+ | < | ||
+ | sudo ls -l / | ||
+ | -rw------- 1 root root 250 2009-05-02 15:54 / | ||
</ | </ | ||
3. Start vpnc | 3. Start vpnc | ||
- | | + | For Unibz: |
+ | |||
+ | | ||
This will first ask for your sudo password and then | This will first ask for your sudo password and then | ||
- | you <windows-password> | + | your <unibz-password> |
+ | |||
+ | For Eurac: | ||
+ | |||
+ | sudo vpnc-connect --domain eurac eurac | ||
+ | |||
+ | This will first ask for your sudo password and then | ||
+ | your < | ||
4. Stop vpnc | 4. Stop vpnc | ||
Line 61: | Line 108: | ||
sudo vpnc-disconnect | sudo vpnc-disconnect | ||
- | ==== Shrew Soft VPN Client Instructions for 32 or 64 bit version of Windows 2000, XP, Vista and 7 (recommened) ==== | + | |
+ | ==== Possible errors ==== | ||
+ | |||
+ | If you get the following error: | ||
+ | try adding the line below to your configuration file (unibz.conf) | ||
+ | |||
+ | **NAT Traversal Mode cisco-udp** | ||
+ | |||
+ | ---- | ||
+ | |||
+ | When one attempts to connect to their VPN after installing and configuring vpnc on Ubuntu Oneiric, | ||
+ | the following error occurs: | ||
+ | |||
+ | < | ||
+ | root@ubuntu: | ||
+ | Error: either " | ||
+ | </ | ||
+ | |||
+ | It appears that the Ubuntu package vpnc comes with an old version of vpnc-script.\\ | ||
+ | This script is what sets up all the addresses and routes for you. The OpenConnect project\\ | ||
+ | provides an updated / revised release of this script. Download the latest copy from [[http:// | ||
+ | Replace the vpnc-script script that comes with the Ubuntu vpnc package: / | ||
+ | |||
+ | ==== Decode Group Password ==== | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | |||
+ | ===== Instructions for Linux Cisco AnyConnect Client ===== | ||
+ | |||
+ | === Installation === | ||
+ | |||
+ | 1. Open with your browser (tested with firefox 11.0) the following URL: | ||
+ | |||
+ | https:// | ||
+ | |||
+ | 2. Enter your Username and password, then press **Login** | ||
+ | |||
+ | 3. A " | ||
+ | in /opt/cisco of your Platform. | ||
+ | |||
+ | 4. Press **Run** on the " | ||
+ | |||
+ | {{: | ||
+ | |||
+ | 5. In order to install Cisco AnyConnect, Admin (sudo) rights are required; a Window opens,\\ | ||
+ | enter your local password. | ||
+ | |||
+ | {{: | ||
+ | |||
+ | 6. The Cisco AnyConnect is installed and running, you can close the URL. | ||
+ | |||
+ | {{: | ||
+ | |||
+ | === Launching Cisco AnyConnect GUI === | ||
+ | |||
+ | This allows you to connect and disconnect the VPN service. | ||
+ | |||
+ | / | ||
+ | |||
+ | Please note the vpnagentd must be running for this | ||
+ | |||
+ | * ps auxww | grep vpn | ||
+ | < | ||
+ | root 1759 0.0 0.3 17984 7644 ? S 12:58 0:00 / | ||
+ | </ | ||
+ | |||
+ | === Launching Cisco AnyConnect NON-GUI === | ||
+ | |||
+ | This allows you to connect and disconnect the VPN service. | ||
+ | |||
+ | * / | ||
+ | |||
+ | < | ||
+ | Cisco AnyConnect Secure Mobility Client (version 3.0.5080) . | ||
+ | |||
+ | Copyright (c) 2004 - 2011 Cisco Systems, Inc. | ||
+ | All Rights Reserved. | ||
+ | |||
+ | |||
+ | >> state: Disconnected | ||
+ | >> state: Disconnected | ||
+ | >> notice: Ready to connect. | ||
+ | >> registered with local VPN subsystem. | ||
+ | VPN> connect vpn.unibz.it | ||
+ | connect vpn.unibz.it | ||
+ | >> contacting host (vpn.unibz.it) for login information... | ||
+ | >> notice: Contacting vpn.unibz.it. | ||
+ | VPN> | ||
+ | >> Please enter your username and password. | ||
+ | 0) clientless | ||
+ | 1) scientificnetwork | ||
+ | Group: [clientless] | ||
+ | |||
+ | Username: < | ||
+ | Password: | ||
+ | >> state: Connecting | ||
+ | >> notice: Establishing VPN session... | ||
+ | >> notice: Checking for profile updates... | ||
+ | >> notice: Checking for product updates... | ||
+ | >> notice: Checking for customization updates... | ||
+ | >> notice: Performing any required updates... | ||
+ | >> state: Connecting | ||
+ | >> notice: Establishing VPN session... | ||
+ | >> notice: Establishing VPN - Initiating connection... | ||
+ | >> notice: Establishing VPN - Examining system... | ||
+ | >> notice: Establishing VPN - Activating VPN adapter... | ||
+ | >> notice: Establishing VPN - Configuring system... | ||
+ | >> notice: Establishing VPN... | ||
+ | >> state: Connected | ||
+ | >> notice: Connected to vpn.unibz.it. | ||
+ | VPN> | ||
+ | |||
+ | |||
+ | </ | ||
+ | |||
+ | === Uninstalling the AnyConnect Client === | ||
+ | |||
+ | The client comes with an uninstallation script | ||
+ | |||
+ | * sudo / | ||
+ | |||
+ | However it doesn' | ||
+ | You can clean up what it leaves behind by deleting the directory /opt/cisco/ and / | ||
+ | |||
+ | * sudo rm -r /opt/cisco / | ||
+ | |||
+ | Per-user configuration is stored in your home directory in a file called .anyconnect | ||
+ | |||
+ | ===== Shrew Soft VPN Client Instructions for 32 or 64 bit version of Windows 2000, XP, Vista and 7 (recommened) | ||
1. Go to http:// | 1. Go to http:// |
/data/www/wiki.inf.unibz.it/data/pages/auth/howto/linux/vpnclient.txt · Last modified: 2022/06/20 11:40 by kohofer