Skip to Content

Changes for page VPN Access

Last modified by Thomas Coelho (local) on 2024/09/03 14:41
From version 3.1
edited by Thomas Coelho
on 2022/10/18 14:57
Change comment: There is no comment for this version
To version 3.2
edited by Thomas Coelho (local)
on 2024/09/03 14:30
Change comment: There is no comment for this version

Summary

Details

Page properties
Author
... ... @@ -1,1 +1,1 @@
1 -XWiki.thw
1 +XWiki.coelho
Content
... ... @@ -24,7 +24,8 @@
24 24  This configuration routes all traffic trough ITP. This is useful if you want to download papers, which are restricted to the university network.
25 25  The second examples only routes the traffic going directly to the ITP trough the VPN and leaves your default gateway untouched. The only difference is the missing 'redirect-gateway' statement [http://th.physik.uni-frankfurt.de/~thw/vpn/all-via-itp.ovpn]
26 26  
27 -{{{client
27 +{{code language="none"}}
28 +client
28 28  dev tun
29 29  proto udp
30 30  nobind
... ... @@ -35,14 +35,14 @@
35 35  auth-user-pass
36 36  ca private-ca-itp.crt
37 37  # Comment this, if you don't want to redirect the default gateway
38 -redirect-gateway def1
39 -}}}
39 +redirect-gateway def1
40 +{{/code}}
40 40  
41 41  Download our CA (Certificate of Authority) [http://th.physik.uni-frankfurt.de/~thw/vpn/private-ca-itp.crt] and store it in the same place. This file is needed for the verification of the authenticity of the server.
42 42  
43 43  For only accessing internal services and routing your the normal traffic to your normal uplink use the following configuration: [http://th.physik.uni-frankfurt.de/~thw/vpn/itp.ovpn]
44 44  
45 -<pre>
46 +{{code language="none"}}
46 46  client
47 47  dev tun
48 48  proto udp
... ... @@ -53,32 +53,30 @@
53 53  resolv-retry infinite
54 54  auth-user-pass
55 55  ca private-ca-itp.crt
56 -</pre>
57 +{{/code}}
57 57  
58 58  
59 59  === Start the VPN connection ===
60 60  
61 61  Open a terminal and change to the path where the vpn config file is stored. Start the connection with
62 -
63 - sudo openvpn itp.ovpn
63 +\\ sudo openvpn itp.ovpn
64 64  
65 65  where itp.ovpn is the name of the config file. openvpn needs root access, therefore you must enter your local password for sudo. After this you have to enter your ITP credentials (Username and Password).
66 66  
67 67  If everything went fine the output will look like:
68 68  
69 -<pre>
70 -Fri Dec 7 15:03:00 2012 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
71 -Fri Dec 7 15:03:00 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
69 +{{{Fri Dec 7 15:03:00 2012 WARNING: Make sure you understand the semantics of tls-remote before using it (see the man page).
70 +Fri Dec 7 15:03:00 2012 NOTE: OpenVPN 2.1 requires 'script-security 2' or higher to call user-defined scripts or executables
72 72  Fri Dec 7 15:03:00 2012 UDPv4 link local: [undef]
73 73  Fri Dec 7 15:03:00 2012 UDPv4 link remote: [AF_INET]141.2.246.2:1194
74 -Fri Dec 7 15:03:00 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
73 +Fri Dec 7 15:03:00 2012 WARNING: this configuration may cache passwords in memory use the auth-nocache option to prevent this
75 75  Fri Dec 7 15:03:00 2012 [FIAS-ITP_Generic_VPN_Service] Peer Connection Initiated with [AF_INET]141.2.246.2:1194
76 76  Fri Dec 7 15:03:02 2012 TUN/TAP device tap0 opened
77 77  Fri Dec 7 15:03:02 2012 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
78 78  Fri Dec 7 15:03:02 2012 /sbin/ifconfig tap0 10.63.131.1 netmask 255.255.0.0 mtu 1500 broadcast 10.63.255.255
79 -Fri Dec 7 15:03:02 2012 Initialization Sequence Completed
80 -</pre>--
78 +Fri Dec 7 15:03:02 2012 Initialization Sequence Completed}}}
81 81  
80 +
82 82  Termiate the session by pressing Ctrl-C in this terminal.
83 83  
84 84  == OpenVPN for Windows 10 ==