Skip to main content

Office of Information Technology (OIT)

UT Arlington
OIT: Office of Information Technology

helpdesk@uta.edu ·  Work Order · 817-272-2208 · System Status

We are your IT partner!

Configuring VPN for the Linux and Solaris

Description:

Configuring VPN for the Linux and Solaris

How to Get:

The Cisco VPN Client will run on computers using any of the following Operating Systems:

  • Linux for Intel - Red Hat Version 6.2 or later, or compatible libraries with glibs version 2.1.1-6 or later, using kernel versions 2.2.12 or later

  • Solaris UltraSparc - 32-bit Solaris kernel OS Version 2.6 or later

Installing the VPN client

  1. Download the following file: vpnclient-linux (for Solaris vpnclient-solaris).  You will be prompted to enter your NetID and password.

    • Note: If you are installing or upgrading the Cisco VPN client stop the existing VPN client service before proceeding.
    • Unpack the client installer by entering the following line at the command prompt:
    • zcat vpnclient-linux-x86_64-4.8.02.0030-k9.tar.gz | tar xvf -  (for Linux)
    • zcat vpnclient-solaris-4.6.02.0030-k9.tar.gz | tar xvf - (for Solaris)
    • This will create a new directory called vpnclient at the current directory
  2. Login as the superuser

  3. Type the following command from within the same directory:

    cd vpnclient

    ./vpn_install

  4. During the install process, the program creates several directories and prompts you for information. Each time this happens, press Enter to accept the default answer

    Directory where binaries will be installed - /lib/modules/<kernel version>/build/
    Automatically start the VPN service at boot time - Y
    Directory containing linux kernel source code - /usr/linux
    Is the above correct? - Y

    Note: If the installer cannot detect certain settings automatically, you may be prompted to enter the following information:

    Directory containing init scripts - often, this is /etc/init.d or /etc/rc.d/init.d
    Directory containing run level directories - often, this is /etc or /etc/rc.d
  5. Restart your machine to activate the VPN service, or enter the following command:

          /etc/rc.d/init.d/vpnclient_init start

How to Use:

. Configuring the VPN client

  1. You are ready now to configure your VPN client.  You can create your own user profile from scratch by using any text editing program.  At a minimum, you need the following keywords listed in your profile:

[main]
Host=vpn.uta.edu
AuthType=1
GroupName=default
GroupPwd=UTAsecret

    2.   Save your new profile in the following directory:       

         /etc/CiscoSystemsVPNClient/Profiles/

    3.   Save the configuration profile in the following file:    

         /etc/CiscoSystemsVPNClient/Profiles/uta.pcf

Note: If you plan to use VPN services over a dial-up connection, you need to edit this file and add more lines as shown below.  Replace the brackets and text in the last line with actual values:

EnableISPConnect=1
ISPConnectType=1
ISPConnect=
ISPPhonebook=
ISPCommand=<path and name of dialer executable file>

Starting the VPN Session

  1. In the previous task, you configured your VPN connection.  Whenever you want to start a new VPN session, you simply activate that connection.  Enter the following command replacing the brackets and text with your UT Arlington NetID and password:

    vpnclient connect uta user <your UT Arlington NetID in all lower case letters> pwd <your UT Arlington NetID password>

    Note: You can check the status of your connection at any time by typing

    vpnclient stat

Ending the VPN Session

Your VPN connection remains active until you close the VPN client or terminate your Internet connection.  If you use an always-on connection, be sure to close your VPN client and disconnect when you are finished working on the campus network. 

Enter the command vpnclient disconnect

Additional Information about your VPN client

If you are running kernels that came with their distribution you will need to install corresponding kernel-source rpm.   The vpn_install script should be able to automatically find the kernel source.

If you are running a custom-built kernel you must use the same copy of the kernel source that was used to build this kernel.

U npacking the source code for the version of the kernel you are using is insufficient. There are several files generated when the kernel is compiled that the VPN Client uses. These files must match exactly with the kernel you are running. Otherwise, the VPN Client installation might fail.

Once you have the kernel source files, the Cisco VPN Client installer should be able to detect the source files.  Note that if you later patch your system, you need to reinstall the Cisco VPN Client.

Cisco VPN Guide and Release Notes

To view the Cisco release notes for VPN client Release 4.0 through Release 4.6 click here.

Known Issues:

  • If you are experiencing problems with this version of the Cisco VPN Client, you may want to consider Cisco VPN AnyConnect.
  • You may need to put uta\ in front of your NetID.