Difference between revisions of "VPN"

From FachschaftSprachwissenschaft
Jump to: navigation, search
(How to do it on the command line)
m
 
(61 intermediate revisions by 38 users not shown)
Line 1: Line 1:
===How to use the wireless internet inside the University?===
+
VPN stands for ''Virtual private network'' (see also [http://en.wikipedia.org/wiki/VPN Wikipedia]). It enables you to connect to the internal University network without having to be in a physical location near the University. If you are inside the internal University network, you can access a wide range of University webpages and services that are not accessible from outside, e.g. free scholarly articles in journals which the University holds a subscription to.
  
First of all you need to get an account from ZDV, which every new student gets automatically after enrolment. Once you have an account follow the procedure for your favourite operating system.
+
Once you enter the Uni network, your computer's IP address will change to one that starts with <code>134.2.</code>, so other computers or web servers can easily see that you're inside the Uni network. Please note that this may cause problems if you're logged into a web account while establishing a VPN connection. So, make sure to sign out of your email account, chat, or other accounts before using VPN.
  
====Ubuntu 8.10 (for GNOME users)====
+
'''Important:''' The ZDV is switching to a new VPN service. The old service will no longer be available after '''September 30, 2013'''. For more information, please read
 +
* the [http://www.zdv.uni-tuebingen.de/dienstleistungen/newsfullview-aktuelles/article/abschaltung-alter-vpn-dienst.html official announcement]
 +
* the [http://www.zdv.uni-tuebingen.de/dienstleistungen/netzzugang/vpn.html new instructions] on setting up a VPN client and connecting to the Uni network
  
=====Install VPN Software=====
+
== Do I need a VPN connection? ==
Make sure that you have the following package installed:
+
  
''network-manager-vpnc''
+
Please note that if you are already inside the university network, you do not need a VPN connection. This is automatically the case if you
 +
* are working on any computer of the university
 +
* are using the wireless internet connection provided by the university
 +
* are using the Internet connection of a dormitory which uses the university network.
  
=====Connect to the wireless network=====
+
== How do I know whether I am inside the uni network? ==
  
Left-click on the Network Manager icon and choose ''BELWUE'' from the list of available wireless networks
+
Look at your public IP address. If (and only if) it starts with <code>134.2.</code>, then you are inside the university network. To look up your public IP address, google for 'my IP address'.
  
[[Image:vpn_config0.png]]
+
== Setting up a VPN client ==
  
=====Configure VPN=====
+
The ''Fachschaft Informatik'' provides thorough [http://www.fsi.uni-tuebingen.de/studium/tipps/vpnc instructions in German].
  
Left-click on the Network Manager icon, go to ''VPN Connections -> Configure VPN...''
+
First of all you need to get an account from the ZDV, which every new student gets automatically after enrollment. The ZDV username usually starts with ''zx...''. Once you have an account, follow the procedure for your favorite operating system.
 +
 
 +
=== Ubuntu 8.10 and higher with the Gnome desktop environment ===
 +
 
 +
See also the instructions on [http://mirko.windhoff.net/how_to/vpn-zugang_mit_ubuntu_linux_fuer_die_universitaet_tuebingen_einrichten Mirko Windhoff's website].
 +
 
 +
==== Installation ====
 +
 
 +
Make sure that you have the following package installed: <code>network-manager-vpnc</code>. You can either install it from your favorite package manager or open a terminal and type <code>sudo apt-get install network-manager-vpnc</code>. The password you are prompted for is your own Ubuntu login password. Confirm all other prompts.
 +
 
 +
==== Configuration ====
 +
 
 +
Left-click on the Network Manager icon, go to ''VPN Connections -> Configure VPN...''.
  
 
[[Image:vpn_config1.png]]
 
[[Image:vpn_config1.png]]
  
It should open the ''VPN'' tab of the ''Network Connections'' preferences. In this window press the ''Add'' button
+
It should open the ''VPN'' tab of the ''Network Connections'' preferences. In this window press the ''Add'' button.
  
 
[[Image:vpn_config2.png]]
 
[[Image:vpn_config2.png]]
  
Which will prompt for a VPN Connection Type, where you should choose ''Cisco Compatible VPN(vpnc)'' and press ''Create...''
+
Which will prompt for a VPN Connection Type, where you should choose ''Cisco Compatible VPN (vpnc)'' and press ''Create...''. If the option ''Cisco Compatible VPN (vpnc)'' is not available, don't choose anything else! This means you haven't installed the package <code>network-manager-vpnc</code>.
  
 
[[Image:vpn_config3.png]]
 
[[Image:vpn_config3.png]]
Line 32: Line 48:
 
In the next window you should fill the connection settings as following:
 
In the next window you should fill the connection settings as following:
  
'''Connection Name:''' anything you like
+
'''Connection Name:''' anything you like, e.g. ''Uni-VPN''
  
'''Gateway:''' ''vpn.uni-tuebingen.de.''
+
'''Gateway:''' <code>vpn-i.uni-tuebingen.de</code>
  
'''Group Name:''' ''belwue''
+
'''Group Name:''' <code>belwue</code>
  
'''User Password:''' your password from ZDV
+
'''Group Password:''' <code>WLANdle</code>
 
+
'''Group Password:''' ''WLANdle''
+
  
 
'''User Name:''' your user name from ZDV
 
'''User Name:''' your user name from ZDV
  
Leave the other fields at their default values. Press ''OK'' to save
+
'''User Password:''' your password from ZDV (or disable the ''save'' option to be prompted for your password every time you connect)
  
 
[[Image:vpn_config4.png]]
 
[[Image:vpn_config4.png]]
  
=====Connect to VPN=====
+
Leave the other fields at their default values, but consider whether you want to uncheck the box ''available to all users''. Press ''OK'' to save.
  
Left-click on the Network Manager icon, go to ''VPN Connections'' and click on the name of the newly created VPN connection
+
=== Linux using the command line ===
  
[[Image:vpn_config5.png]]
+
You need to install the packages <code>network-manager-vpnc</code> and <code>vpnc</code>. To do so, type <code>sudo apt-get install <package name></code>.
  
Notice that the icon of the Network Manager changes once you are connected to VPN
+
The settings are made by putting configuration files into an appropriate directory (<code>/etc/vpnc</code> on Ubuntu). This needs superuser rights! Call your configuration file something that's easy to memorize, e.g. ''uni-vpn.conf''. Put this text into it:
 +
<pre>Interface name vpn
 +
IKE DH Group dh2
 +
Perfect Forward Secrecy nopfs
 +
IPSec gateway vpn-i.uni-tuebingen.de
 +
IPSec ID belwue
 +
IPSec secret WLANdle
 +
Xauth username <your ZDV username></pre>
  
[[Image:vpn_config6.png]]
+
Depending on your internet service provider, the configuration of your home network, and the position of Jupiter relative to the constellation of Orion, you might need to add the following line to connect successfully:
  
Congratulations! Now you can use the Internet
+
<code>NAT Traversal Mode cisco-udp</code>
  
'''Note:''' Next time you want to use the Internet inside the university just repeat the steps 2 and 4.
+
Do not put your password into the configuration file in clear text!
  
===How to connect to the VPN from home?===
+
== Connecting to VPN ==
  
Connecting from home requires an existing internet connection (i.e. DSL or cable) that you use to connect to the VPN gateway. Otherwise,
+
=== Ubuntu 8.10 and higher with the Gnome desktop environment ===
the procedure is very similar: Follow the steps above (except for the wireless connection in section 1.1.2) and for VPN configuration, enter:
+
  
'''Connection Name:''' anything you like (but different from above)
+
Left-click on the Network Manager icon, go to ''VPN Connections'' and click on the name of the VPN connection you set up earlier.
  
'''Gateway:''' ''vpn.uni-tuebingen.de.''
+
[[Image:vpn_config5.png]]
  
'''Group Name:''' ''extern''
+
Notice that the icon of the Network Manager changes once you are connected to VPN.
  
'''User Password:''' your password from ZDV
+
[[Image:vpn_config6.png]]
  
'''Group Password:''' ''xtern03''
+
Congratulations! Now you can use the Internet
 
+
'''User Name:''' your user name from ZDV
+
 
+
=== How to do it on the command line ===
+
 
+
If the solution above fails, things may still work out by using the <code>vpnc</code> command line program, provided by the package <code>vpnc</code> in Linux distributions like Ubuntu. The settings are made by putting configuration files into an appropriate directory (<code>/etc/vpnc</code> on Ubuntu). This needs superuser rights!
+
 
+
'''For WiFi access (also works from home):'''
+
 
+
<code>Interface name vpn<br/>
+
IKE DH Group dh2<br/>
+
Perfect Forward Secrecy nopfs<br/>
+
IPSec gateway vpn-i.uni-tuebingen.de<br/>
+
IPSec ID belwue<br/>
+
IPSec secret WLANdle<br/>
+
Xauth *******</code><br/>
+
File '''wlan.conf'''
+
 
+
'''For home access (also works for WiFi):'''
+
 
+
<code>Interface name vpn<br/>
+
IKE DH Group dh2<br/>
+
Perfect Forward Secrecy nopfs<br/>
+
IPSec gateway vpn-x.uni-tuebingen.de<br/>
+
IPSec ID extern<br/>
+
IPSec secret xtern03<br/>
+
Xauth username *******</code><br/>
+
File '''extern.conf'''
+
 
+
Depending on your internet service provider, the configuration of your home network, and the position of Jupiter relative to the constellation of Orion, you might need to add the following line to connect successfully:
+
 
+
<code>NAT Traversal Mode cisco-udp</code>
+
 
+
Don't forget to fill in your ZDV user name for the asterisks.
+
  
To connect, issue the following (again, <code>sudo</code> is specific to Ubuntu &ndash; if you use another distribution, you probably know how to get superuser rights):
+
=== Linux using the command line ===
  
<code>sudo vpnc wlan</code>
+
Gain super user rights and type <code>vpnc <name of your configuration file></code> to connect, or <code>vpnc-disconnect</code> to disconnect.
  
viz.
+
== Windows and Mac ==
  
<code>sudo vpnc extern</code>
+
Users of Windows and MacOS(X) please refer to [http://www.uni-tuebingen.de/einrichtungen/zentrum-fuer-datenverarbeitung/dienstleistungen/netzzugang/vpn.html the official instructions from the ZDV].
  
To disconnect:
+
== How to use the wireless internet inside the University? ==
  
<code>sudo vpnc-disconnect</code>
+
A VPN connection is not necessary any more to use the wireless internet at the University. Please see our [[Frequently_Asked_Questions#How_can_I_connect_to_the_wireless_Internet_inside_the_University_with_my_own_Notebook.3F|FAQ]] for details.

Latest revision as of 18:21, 3 April 2014

VPN stands for Virtual private network (see also Wikipedia). It enables you to connect to the internal University network without having to be in a physical location near the University. If you are inside the internal University network, you can access a wide range of University webpages and services that are not accessible from outside, e.g. free scholarly articles in journals which the University holds a subscription to.

Once you enter the Uni network, your computer's IP address will change to one that starts with 134.2., so other computers or web servers can easily see that you're inside the Uni network. Please note that this may cause problems if you're logged into a web account while establishing a VPN connection. So, make sure to sign out of your email account, chat, or other accounts before using VPN.

Important: The ZDV is switching to a new VPN service. The old service will no longer be available after September 30, 2013. For more information, please read

Do I need a VPN connection?

Please note that if you are already inside the university network, you do not need a VPN connection. This is automatically the case if you

  • are working on any computer of the university
  • are using the wireless internet connection provided by the university
  • are using the Internet connection of a dormitory which uses the university network.

How do I know whether I am inside the uni network?

Look at your public IP address. If (and only if) it starts with 134.2., then you are inside the university network. To look up your public IP address, google for 'my IP address'.

Setting up a VPN client

The Fachschaft Informatik provides thorough instructions in German.

First of all you need to get an account from the ZDV, which every new student gets automatically after enrollment. The ZDV username usually starts with zx.... Once you have an account, follow the procedure for your favorite operating system.

Ubuntu 8.10 and higher with the Gnome desktop environment

See also the instructions on Mirko Windhoff's website.

Installation

Make sure that you have the following package installed: network-manager-vpnc. You can either install it from your favorite package manager or open a terminal and type sudo apt-get install network-manager-vpnc. The password you are prompted for is your own Ubuntu login password. Confirm all other prompts.

Configuration

Left-click on the Network Manager icon, go to VPN Connections -> Configure VPN....

Vpn config1.png

It should open the VPN tab of the Network Connections preferences. In this window press the Add button.

Vpn config2.png

Which will prompt for a VPN Connection Type, where you should choose Cisco Compatible VPN (vpnc) and press Create.... If the option Cisco Compatible VPN (vpnc) is not available, don't choose anything else! This means you haven't installed the package network-manager-vpnc.

Vpn config3.png

In the next window you should fill the connection settings as following:

Connection Name: anything you like, e.g. Uni-VPN

Gateway: vpn-i.uni-tuebingen.de

Group Name: belwue

Group Password: WLANdle

User Name: your user name from ZDV

User Password: your password from ZDV (or disable the save option to be prompted for your password every time you connect)

Vpn config4.png

Leave the other fields at their default values, but consider whether you want to uncheck the box available to all users. Press OK to save.

Linux using the command line

You need to install the packages network-manager-vpnc and vpnc. To do so, type sudo apt-get install <package name>.

The settings are made by putting configuration files into an appropriate directory (/etc/vpnc on Ubuntu). This needs superuser rights! Call your configuration file something that's easy to memorize, e.g. uni-vpn.conf. Put this text into it:

Interface name vpn
IKE DH Group dh2
Perfect Forward Secrecy nopfs
IPSec gateway vpn-i.uni-tuebingen.de
IPSec ID belwue
IPSec secret WLANdle
Xauth username <your ZDV username>

Depending on your internet service provider, the configuration of your home network, and the position of Jupiter relative to the constellation of Orion, you might need to add the following line to connect successfully:

NAT Traversal Mode cisco-udp

Do not put your password into the configuration file in clear text!

Connecting to VPN

Ubuntu 8.10 and higher with the Gnome desktop environment

Left-click on the Network Manager icon, go to VPN Connections and click on the name of the VPN connection you set up earlier.

Vpn config5.png

Notice that the icon of the Network Manager changes once you are connected to VPN.

Vpn config6.png

Congratulations! Now you can use the Internet

Linux using the command line

Gain super user rights and type vpnc <name of your configuration file> to connect, or vpnc-disconnect to disconnect.

Windows and Mac

Users of Windows and MacOS(X) please refer to the official instructions from the ZDV.

How to use the wireless internet inside the University?

A VPN connection is not necessary any more to use the wireless internet at the University. Please see our FAQ for details.