Changes for page VPN

Last modified by Aysegül Omus on 2025/01/31 12:25
From version 1.1
edited by wikibot
on 2023/02/05 20:30
Change comment: Imported from foswiki
To version 4.1
edited by Aysegül Omus
on 2024/01/08 14:57
Change comment: There is no comment for this version

Summary

Details

Page properties
Title
... ... @@ -1,1 +1,1 @@
1 -Vpn
1 +VPN
Author
... ... @@ -1,1 +1,1 @@
1 -XWiki.wikibot
1 +XWiki.kahraman
Content
... ... @@ -1,4 +1,4 @@
1 -= Setting up a VPN connection to a Chair in the Informatics /Mathematics Department =
1 += Setting up a VPN connection to a Chair in the CIT Departments =
2 2  
3 3  
4 4  
... ... @@ -6,19 +6,21 @@
6 6  
7 7  
8 8  == 1. General ==
9 +
9 9  === 1.1 Activation and configuration file ===
10 10  
11 -A VPN is available for each chair (as well as service offices etc.). However, the VPN must first be set up with the cooperation of the Chair admin or IT supervisor. If you want to get VPN access, please contact your Chair admin or IT supervisor. These are ultimately also responsible for the configuration, RBG only takes over the operation and consultation.
12 +A VPN is available for each chair (as well as service offices etc.). However, the VPN must first be set up with the cooperation of the Chair admin or IT supervisor. If you want to get VPN access, please get in touch with your Chair admin or IT supervisor. These are ultimately also responsible for the configuration, RBG only takes over the operation and consultation.
12 12  
13 -The Access must be activated for each user by the chair admin, the configuration file will be find [[here>>https://vpn.in.tum.de]].
14 +The Access must be activated for each user by the chair admin, the configuration file will be found [[here>>https://vpn.in.tum.de]].
14 14  
15 -**Please note**: A connection to the VPN can only be established from **outside** the respective chair network (for example the networks which are configured in the VPN). On the one hand, since a connection would create double routes, and the VPN usually uses a UDP connection and UDP is completely blocked in most networks.
16 +**Please note**: A connection to the VPN can only be established from **outside** the respective chair network (for example, the networks configured in the VPN). On the one hand, since a connection would create double routes, the VPN usually uses a UDP connection and UDP is completely blocked in most networks.
16 16  
17 17  The VPN does not allow a direct connection to the Internet. Under Windows, access to the Internet should be possible via the direct network connection of the computer; under Linux, either the web proxy (proxy.in.tum.de) can be used or the routing table must be set so that the VPN is only used for routes provided by the VPN (no default route to the VPN).
19 +
18 18  === 1.2 Login and password ===
19 19  
20 -**Login**: RBG account (e.g. musterma)
21 - **password**: RBG password
22 +**Login**: CIT account (e.g. musterma)
23 +**password**: CIT password
22 22  
23 23  === 1.3 Required Software ===
24 24  
... ... @@ -26,7 +26,7 @@
26 26  
27 27  macOS: [[Tunnelblick>>https://tunnelblick.net/]]
28 28  
29 -Otherwise the software openvpn-client must be downloaded and installed:
31 +Otherwise, the software openvpn-client must be downloaded and installed:
30 30  
31 31  Windows: [[OpenVPN for Windows>>https://openvpn.net/index.php/open-source/downloads.html]]
32 32  
... ... @@ -38,31 +38,32 @@
38 38  
39 39  Start the installer:
40 40  
41 -[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNinstallWindows.png|| width="1426" height="1008" alt=""]]
43 +[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNinstallWindows.png||height="1008" width="1426"]]
42 42  
43 -Copy the OVPN-file (as described [[here>>Informatik.Helpdesk.Vpn||anchor="A_1.1._Freischaltung_und_Konfigurationsdatei"]]) ito the config folder. Usually ist is to be found here: C:\Program Files\OpenVPN\config
45 +Copy the OVPN-file (as described [[here>>Informatik.Helpdesk.Vpn||anchor="A_1.1._Freischaltung_und_Konfigurationsdatei"]]) to the config folder. Usually, it is to be found here: C:\Program Files\OpenVPN\config
44 44  
45 -[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindowsConfig.png|| width="1094" height="338" alt=""]]
47 +[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindowsConfig.png||height="126" width="409"]]
46 46  
47 -Launch the VPN-client via the desktop icon. (it may already been launched, which will result in a corresponding message).
49 +Launch the VPN client via the desktop icon. (it may have already been launched, which will result in a corresponding message).
48 48  
49 -[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsIcon.png|| width="135" height="104" alt=""]]
51 +[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsIcon.png||height="104" width="135"]]
50 50  
51 -Right click the OpenVPN Icon on the task bar and choose connect
53 +Right-click the OpenVPN Icon on the taskbar and choose Connect.
52 52  
53 -[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindwosConnect.png|| width="498" height="355" alt=""]]
55 +[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindwosConnect.png||height="287" width="402"]]
54 54  
55 -Enter your credentials (without @in.tum.de or @ma.tum.de)
57 +Enter your credentials (without @cit.tum.de)
56 56  
57 -[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsLogin.png|| width="702" height="493" alt=""]]
59 +[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsLogin.png||height="286" width="407"]]
58 58  
59 -Your connection should be established now, as indicated by a green OpenVPN icon in the task bar.
60 60  
61 -[[image:Screenshot 2020-03-20 at 13.48.37.png||width="800"]]
62 +Your connection should be established now, as indicated by a green OpenVPN icon in the taskbar.
62 62  
64 +[[image:Screenshot 2020-03-20 at 13.48.37.png||height="86" width="84"]]
65 +
63 63  == 3. macOS: ==
64 64  
65 -If you have not installed Tunnelblick, you can download [[here>>https://tunnelblick.net/]] and install it.
68 +If you have not installed Tunnelblick, you can download it [[here>>https://tunnelblick.net/]] and install it.
66 66  
67 67  **Note**: Access must be activated for each user by the chair administrator, the configuration file is available from https://vpn.in.tum.de.
68 68  
... ... @@ -69,123 +69,98 @@
69 69  
70 70  Open the page https://vpn.in.tum.de and search for your chair in the list.
71 71  
72 -[[image:openvpnstandard.png||width="800"]]
75 +[[image:openvpnstandard.png||height="143" width="376"]]
73 73  
74 -
75 -
76 76  
77 77  
78 -Right click on the configuration file (standard, legacy, ios) and select **Save the file as ...** off.
79 +Right-click on the configuration file (standard, legacy, ios) and select **Save the file as ...** off.
79 79  
80 -[[image:vpndownloadovpn.png||width="800"]]
81 +[[image:vpndownloadovpn.png||height="141" width="374"]]
81 81  
82 -
83 -
83 +\\
84 84  
85 85  Select the location of the file.
86 86  
87 -[[image:openvpnsave.png||width="800"]]
87 +[[image:openvpnsave.png||height="173" width="372"]]
88 88  
89 -
90 -
91 91  
92 92  
93 93  The file was saved as a .txt file. Delete the ending .txt.
94 94  
95 -[[image:openvpnrename.png||width="800"]]
93 +[[image:openvpnrename.png||height="213" width="369"]]
96 96  
97 97  
98 -
99 -
100 100  
101 101  
102 102  Open the configuration file with a double click or with the right mouse button as below.
103 103  
104 -[[image:openvpnopenwith.png||width="800"]]
100 +[[image:openvpnopenwith.png||height="142" width="371"]]
105 105  
106 -
107 -
108 108  
109 109  
110 110  You can choose whether the configuration file should be installed for all users of the laptop or only for the current user, i.e. for you.
111 111  
112 -[[image:openvpnonlyme.png||width="800"]]
106 +[[image:openvpnonlyme.png||height="142" width="375"]]
113 113  
114 114  
115 -
116 -
117 117  
118 118  
119 119  Enter the system password to confirm the installation.
120 120  
121 -[[image:openvpninstallconfiguration.png||width="800"]]
113 +[[image:openvpninstallconfiguration.png||height="243" width="368"]]
122 122  
123 123  
124 -
125 -
126 126  
127 127  
128 128  When the configuration file has been installed, the following window appears in the upper right corner:
129 129  
130 -[[image:openvpnsuccessfullyinstalled.png||width="800"]]
120 +[[image:openvpnsuccessfullyinstalled.png||height="70" width="376"]]
131 131  
132 132  
133 -
134 -
135 135  
136 136  
137 137  You will see a tunnel symbol when the program has started. Next, you can click it and select **Connect vpn-xxx-standard** to connect to the VPN.
138 138  
139 -[[image:connectopenvpn.png||width="800"]]
127 +[[image:connectopenvpn.png||height="248" width="378"]]
140 140  
141 -
142 -
129 +\\
143 143  
144 - Finally, enter the RBG ID (without @ in.tum.de or without @ ma.tum.de) and the RBG password in the opened window and click on **OK**.
131 + Finally, enter the CIT ID (without @cit.tum.de) and the CIT password in the opened window and click on **OK**.
145 145  
146 -[[image:openvpnlogin.png||width="800"]]
133 +[[image:openvpnlogin.png||height="244" width="379"]]
147 147  
148 148  
149 -
150 -
151 151  
152 152  
153 153  When the connection is established the Tunnelblick symbol is white as can be seen in the screenshot below.
154 154  
155 -[[image:Screenshot 2020-03-20 at 13.53.25.png||width="800"]]
140 +[[image:Screenshot 2020-03-20 at 13.53.25.png||height="142" width="164"]]
156 156  
157 157  
158 158  
159 -
160 -
161 -
162 -
163 163  == 4. Linux: ==
164 164  
165 165  Save the configuration file, e.g. to the Home folder.
166 - In the terminal, go to this directory and execute this command : sudo openvpn Configuration file, e.g. for group XXX:
167 -{{{
168 - sudo openvpn vpnxxx.ovpn
169 -}}}
170 -Then enter the RBG ID (without @in.tum.de or without @ma.tum.de) and the RBG password.
147 + In the terminal, go to this directory and execute this command: sudo openvpn Configuration file, e.g. for group XXX:
148 +{{{sudo openvpn vpnxxx.ovpn }}}
149 +Then enter the CIT ID (without @cit.tum.de) and the CIT password.
171 171  
172 -=== 4.1 Import VPN profile into networkmanager ===
151 +=== 4.1 Import VPN profile into network manager ===
173 173  
174 174  The RBG VPN profile can be imported either via the Gui or via the command line.
175 175  
176 176  ==== 4.1.1 Via the GUI tool nm-connection-editor: ====
177 -Right-click on the nm applet and click on **Edit connections** : Then choose **Add** and then **Import a saved one VPN configuration**.
156 +
157 +Right-click on the nm applet and click on **Edit connections**: Then choose **Add** and then **Import a saved one VPN configuration**.
158 +
178 178  ==== 4.1.2 Via the terminal: ====
179 -Enter the following command in the terminal: nmcli connection import type openvpn file ~ / vpn-rbg-standard.ovpn
180 180  
161 +Enter the following command in the terminal: nmcli connection import type openvpn file / vpn-rbg-standard.ovpn
162 +
181 181  === 4.2 Possible Problems ===
182 182  
183 -It is possible, that openvpn has problems with Ubuntu.
184 - The Problem is that in the networkmanager from the openvpn plugin in the settingspage this thing has to be activated: {{html wiki="true"}}
185 -<strong>''Use this connection only for resources on its network''</strong>
186 -{{/html}}. When activated there is no possible {{html wiki="true"}}
187 -<strong>defaultgateway</strong>
188 -{{/html}}. Although the RBG VPN has no defaultgateway, thinks the networkmanager, that there is one and so is the problem losed
165 +It is possible, that openvpn has problems with Ubuntu.
166 + The problem is that in the network manager from the openvpn plugin in the settings page, this thing has to be activated: {{html wiki="true"}}<strong>''Use this connection only for resources on its network''</strong>{{/html}}. When activated there is no possible {{html wiki="true"}}<strong>defaultgateway</strong>{{/html}}. Although the RBG VPN has no default gateway, thinks the network manager, that there is one and so is the problem lost
189 189  
190 190  
191 191  [[image:vpnipv4.jpg.png||width="900"]]
... ... @@ -198,29 +198,14 @@
198 198  
199 199  === 5.1 Multiple VPNs ===
200 200  
201 -{{html wiki="true"}}
202 -<span style='background-color: transparent; color: #000000; font-size: small;' >In Windows with multiple simultaneous</span>
203 -{{/html}}OpenVPN{{html wiki="true"}}
204 -<span style='background-color: transparent; color: #000000; font-size: small;' > a connections another TAP device must be added.</span>
205 -{{/html}}
179 +{{html wiki="true"}}<span style='background-color: transparent; color: #000000; font-size: small;' >In Windows with multiple simultaneous</span>{{/html}} OpenVPN {{html wiki="true"}}<span style='background-color: transparent; color: #000000; font-size: small;' > a connections another TAP device must be added.</span>{{/html}}
206 206  
207 207  Windows 7:
208 -* {{html wiki="true"}}
209 -<span style='background-color: transparent;' > add **hdwwiz.exe** (Add Hardware Wizard) to be able to add a new hardware component.</span>
210 -{{/html}}
211 -* {{html wiki="true"}}
212 -<span style='background-color: transparent;' >Manually select the hardware from the list (advanced setting), leave the settings at **Show all components**, click on **Installation media available**</span>
213 -{{/html}}
214 -* {{html wiki="true"}}
215 -<span style='background-color: transparent;' >The path for the driver is:</span>
216 -{{/html}}{{html wiki="true"}}
217 -<span style='background-color: transparent;' >C:\Program Files\TAP-Windows\driver</span>
218 -{{/html}}
219 -* {{html wiki="true"}}
220 -<span style='background-color: transparent;' >TAP-Windows Select Adapter V9</span>
221 -{{/html}}
182 +
183 +* {{html wiki="true"}}<span style='background-color: transparent;' > add **hdwwiz.exe** (Add Hardware Wizard) to be able to add a new hardware component.</span>{{/html}}
184 +* {{html wiki="true"}}<span style='background-color: transparent;' >Manually select the hardware from the list (advanced setting), leave the settings at **Show all components**, click on **Installation media available**</span>{{/html}}
185 +* {{html wiki="true"}}<span style='background-color: transparent;' >The path for the driver is:</span>{{/html}}{{html wiki="true"}}<span style='background-color: transparent;' >C:\Program Files\TAP-Windows\driver</span>{{/html}}
186 +* {{html wiki="true"}}<span style='background-color: transparent;' >TAP-Windows Select Adapter V9</span>{{/html}}
222 222  all Windows versions:
223 223  
224 224  Run the following in an administrator shell: | C:\Program Files\TAP-Windows\bin\tapinstall install C:\Program Files\TAP-Windows\driver\OemVista.inf tap0901 |.
225 -
226 -