This is an old revision of the document!
Table of Contents
VPN (Virtual Private Network) at the Free University of Bolzano/Bozen
Infos regarding the usage of VPN
Instructions for Windows 2000, XP and VISTA
Instructions for MacOS X 10.4
Instructions for Linux Cisco VPN Client
1. Download and install the kernel headers corresponding to the kernel in use. Some distributions name this package kernel-headers, others name it linux-headers:
# sudo apt-get install kernel-headers-`uname -r`
or
# sudo apt-get install linux-headers-`uname -r`
You can get the version of your kernel by issuing the following command:
# uname -a
A valid version number could be, for example, 2.6.12-9-386.
2. Download and install the vpnclient:
If kernel > 2.6.24-xx then download:
https://pro.unibz.it/vpn/client/common/linux/vpnclient-linux-x86_64-4.8.01.0640-k9_2.6.24-xx.tar.gz
otherwise download:
https://pro.unibz.it/vpn/client/common/linux/vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz
3. Untar the source of vpnclient and install it.
Depending on the Linux Distribution you might need to install ''make'' and ''gcc-3.4'' sudo apt-get install make gcc-3.4
If kernel > 2.6.24-xx then
# tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9_2.6.24-xx.tar.gz
otherwise
# tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz
Next install/compile software:
# cd vpnclient # sudo ./vpn_install
You will get some messages and you will be requested to answer to some questions:
Directory where binaries will be installed [/usr/local/bin] <ENTER> Automatically start the VPN service at boot time [yes] no Directory containing linux kernel source code [/lib/modules/X.X.XX-X-XXX/build] <ENTER>
You only have to modify the predefined answers if they do not correspond to your actual situation. If everything works, you will see some compilation messages and then the installation program will stop.
4. Download the unibz.pcf configuration file from the site of the university via web:
https://pro.unibz.it/vpn/profiles/unibz/Free%20University%20of%20Bozen-Bolzano.zip
5. Unzip the configuration file and copy it to the correct location:
# unzip "Free University of Bozen-Bolzano.zip" # sudo cp "Free University of Bozen-Bolzano.pcf" /etc/opt/cisco-vpnclient/Profiles/unibz.pcf
6. Initialize the vpnclient:
# sudo /etc/init.d/vpnclient_init start
7. You can now start the vpnclient using sudo:
$ sudo vpnclient connect unibz
You will see some messages and then you will be requested to insert your username and password:
Cisco Systems VPN Client Version 4.8.01 (0640) Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved. Client Type(s): Linux Running on: Linux 2.6.22-14-generic #1 SMP Tue Dec 18 08:02:57 UTC 2007 i686 Config file directory: /etc/opt/cisco-vpnclient
Initializing the VPN connection. Contacting the gateway at 193.206.186.111 User Authentication for unibz...
Enter Username and Password.
Username []: X Password []: Z Authenticating user. Negotiating security policies. Securing communication channel.
Your VPN connection is secure.
VPN tunnel information. Client address: 172.21.204.1 Server address: 193.206.186.111 Encryption: 128-bit AES Authentication: HMAC-SHA IP Compression: None NAT passthrough is active on port UDP 4500 Local LAN Access is disabled
Please notice that you will have to leave the console open in order to have the VPN running.
Instructions for Linux VPNC Client
1. Install vpnc
sudo aptitude install vpnc
2. Config; create file unibz.conf
sudo vi /etc/vpnc/unibz.conf
####################################### IPSec gateway vpn.unibz.it IPSec ID Unibz IPSec obfuscated secret 06294C134E0BEBDA4B449B56BFD305D35D12DABF4044EDB6794926C2CA6D5AEDFE6342DF190E566EB11215DDC1591D5CB6ABEBEB593693C6D0B2077D78034B6AFEEA3221E77F4 C9858DD711AA8DE58F6 Xauth username <your-windows-login> #######################################
apply this rights:
sudo chmod 600 /etc/vpnc/unibz.conf sudo chown root.root /etc/vpnc/unibz.conf
sudo ls -l /etc/vpnc/unibz.conf -rw------- 1 root root 250 2009-05-02 15:54 /etc/vpnc/unibz.conf
3. Start vpnc
sudo vpnc-connect unibz
This will first ask for your sudo password and then you <windows-password>
4. Stop vpnc
sudo vpnc-disconnect
— kohofer 2009/10/19 11:43