User Tools

Site Tools


auth:howto:linux:vpnclient

This is an old revision of the document!


VPN (Virtual Private Network) at the Free University of Bolzano/Bozen

Infos regarding the usage of VPN

Instructions for Windows 2000, XP and VISTA

Instructions for MacOS X 10.4

Instructions for Linux Cisco VPN Client

1. Download and install the kernel headers corresponding to the kernel in use. Some distributions name this package kernel-headers, others name it linux-headers:

  # sudo apt-get install kernel-headers-`uname -r`

or

  # sudo apt-get install linux-headers-`uname -r`

You can get the version of your kernel by issuing the following command:

  # uname -a

A valid version number could be, for example, 2.6.12-9-386.

2. Download and install the vpnclient:

If kernel > 2.6.24-xx then download:

https://pro.unibz.it/vpn/client/common/linux/vpnclient-linux-x86_64-4.8.01.0640-k9_2.6.24-xx.tar.gz

otherwise download:

https://pro.unibz.it/vpn/client/common/linux/vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz

3. Untar the source of vpnclient and install it.

 Depending on the Linux Distribution you might need to install ''make'' and ''gcc-3.4''
 
 sudo apt-get install make gcc-3.4

If kernel > 2.6.24-xx then

 # tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9_2.6.24-xx.tar.gz

otherwise

 # tar xfz vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz

Next install/compile software:

 # cd vpnclient
  
 # sudo ./vpn_install

You will get some messages and you will be requested to answer to some questions:

  Directory where binaries will be installed [/usr/local/bin] <ENTER>
  
  Automatically start the VPN service at boot time [yes] no
  
  Directory containing linux kernel source code [/lib/modules/X.X.XX-X-XXX/build] <ENTER>

You only have to modify the predefined answers if they do not correspond to your actual situation. If everything works, you will see some compilation messages and then the installation program will stop.

4. Download the unibz.pcf configuration file from the site of the university via web:

https://pro.unibz.it/vpn/profiles/unibz/Free%20University%20of%20Bozen-Bolzano.zip

5. Unzip the configuration file and copy it to the correct location:

  # unzip "Free University of Bozen-Bolzano.zip"
  
  # sudo cp "Free University of Bozen-Bolzano.pcf" /etc/opt/cisco-vpnclient/Profiles/unibz.pcf

6. Initialize the vpnclient:

  # sudo /etc/init.d/vpnclient_init start

7. You can now start the vpnclient using sudo:

  $ sudo vpnclient connect unibz

You will see some messages and then you will be requested to insert your username and password:

  Cisco Systems VPN Client Version 4.8.01 (0640)
  Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
  Client Type(s): Linux
  Running on: Linux 2.6.22-14-generic #1 SMP Tue Dec 18 08:02:57 UTC 2007 i686
  Config file directory: /etc/opt/cisco-vpnclient
  Initializing the VPN connection.
  Contacting the gateway at 193.206.186.111
  User Authentication for unibz...
  Enter Username and Password.
  Username []: X
  Password []: Z
  Authenticating user.
  Negotiating security policies.
  Securing communication channel.
  Your VPN connection is secure.
  VPN tunnel information.
  Client address: 172.21.204.1
  Server address: 193.206.186.111
  Encryption: 128-bit AES
  Authentication: HMAC-SHA
  IP Compression: None
  NAT passthrough is active on port UDP 4500
  Local LAN Access is disabled

Please notice that you will have to leave the console open in order to have the VPN running.

Instructions for Linux VPNC Client

1. Install vpnc

sudo aptitude install vpnc

2. Config; create file unibz.conf

sudo vi /etc/vpnc/unibz.conf
#######################################
IPSec gateway vpn.unibz.it
IPSec ID Unibz
IPSec obfuscated secret 06294C134E0BEBDA4B449B56BFD305D35D12DABF4044EDB6794926C2CA6D5AEDFE6342DF190E566EB11215DDC1591D5CB6ABEBEB593693C6D0B2077D78034B6AFEEA3221E77F4
C9858DD711AA8DE58F6
Xauth username <your-windows-login>
#######################################

apply this rights:

sudo chmod 600 /etc/vpnc/unibz.conf

sudo chown root.root /etc/vpnc/unibz.conf
sudo ls -l /etc/vpnc/unibz.conf
-rw------- 1 root root 250 2009-05-02 15:54 /etc/vpnc/unibz.conf

3. Start vpnc

sudo vpnc-connect unibz

This will first ask for your sudo password and then you <windows-password>

4. Stop vpnc

sudo vpnc-disconnect

kohofer 2009/10/19 11:43

/data/www/wiki.inf.unibz.it/data/attic/auth/howto/linux/vpnclient.1255945697.txt.gz · Last modified: 2019/01/16 10:03 (external edit)