VPN Instructions for Linux

Revision as of 14:43, 1 June 2015 by Dlf29 (Talk | contribs)



The IKEv2 and Clientless SSL VPN options are supported on Linux. The following instructions will help you create and use the VPN option of your choice. For more information on the VPN types, see VPN.

Using the IKEv2 VPN Option on Linux

Instructions are provided for Ubuntu, but are similar for other Linux distributions. Most distributions have StrongSwan packages in their package repositories (specifically Debian, Fedora, and OpenSUSE). Red Hat Enterprise Linux, however, is the notable exception and will require adding either a trusted third-party repository and installing with yum, manually downloading the RPM from a trusted third-party repository and installing with rpm, or downloading the source code from strongswan.org and compiling from source. More information is available at strongswan.org.

For these instructions, it is assumed you are using NetworkManager to manage your network connections. Other methods are also available, but configuration of such is left as an exercise for the reader. https://wiki.strongswan.org is the best place for advanced configuration information.

Setup the CAEDM IKEv2 VPN on Linux (Ubuntu)

  1. Open the Package Manager and install the strongswan-nm Network Manager plug-in and the strongswan-plugin-eap-mschapv2 packages.
  2. Restart Network Manager with sudo stop NetworkManager, then sudo start NetworkManager. You could reboot instead if you find that easier.
  3. Open the network connections menu from the top right and select 'Edit Connections'.
  4. Choose the VPN tab and click 'Add'.
  5. Select IPsec/IKEv2 (strongswan) and click "Create".
  6. Name the connection "CAEDM IKEv2 VPN".
  7. In the 'VPN (strongswan)' tab
    1. Set 'Gateway' to vpn.et.byu.edu
    2. For Authentication select "EAP"
    3. For Username enter your CAEDM username.
    4. Select both "Request an inner IP address" and "Enforce UDP encapsulation"
    5. Click 'Save'
  8. Click 'Close'

To connect to the CAEDM IKEv2 VPN:

  1. Go back to the network connections menu from before
  2. Hover your mouse over the 'VPN Connections' menu item
  3. Click on the CAEDM IKEv2 VPN connection
  4. Wait a few seconds and a network message should pop up to inform you that the VPN successfully connected. A small lock will also appear next to the network icon in the top right of the menu bar.

You are now connected to the CAEDM IKEv2 VPN.

To disconnect:

  1. Select network connection menu
  2. Point to VPN connections
  3. Click disconnect

You are now disconnected to the CAEDM IKEv2 VPN.

Using the Clientless SSL VPN Option on Linux

Go to https://vpn.et.byu.edu with the browser of your choice.

Retrieved from "https://caedm.et.byu.edu/wiki/index.php?title=VPN_Instructions_for_Linux&oldid=5726"