Wiki source code of VPN

Last modified by Leo Fahrbach on 2025/08/28 14:08

version	line-number	content
140.2	1	= Setting up a VPN connection to a Chair in the CIT Departments =
1.1	2
	3
	4
	5	{{toc/}}
	6
	7
140.2	8	== 1. General ==
1.1	9
140.2	10	=== 1.1 Activation and configuration file ===
129.2	11
140.2	12	A VPN is available for each chair (as well as service offices etc.). However, the VPN must first be set up with the cooperation of the Chair admin or IT supervisor. If you want to get VPN access, please get in touch with your Chair admin or IT supervisor. These are ultimately also responsible for the configuration, RBG only takes over the operation and consultation.
1.1	13
140.2	14	The Access must be activated for each user by the chair admin, the configuration file will be found [[here>>https://vpn.in.tum.de]].
1.1	15
140.2	16	Please note: A connection to the VPN can only be established from outside the respective chair network (for example, the networks configured in the VPN). On the one hand, since a connection would create double routes, the VPN usually uses a UDP connection and UDP is completely blocked in most networks.
1.1	17
140.2	18	The VPN does not allow a direct connection to the Internet. Under Windows, access to the Internet should be possible via the direct network connection of the computer; under Linux, either the web proxy (proxy.in.tum.de) can be used or the routing table must be set so that the VPN is only used for routes provided by the VPN (no default route to the VPN).
1.1	19
140.2	20	=== 1.2 Login and password ===
1.1	21
140.2	22	Login: CIT account (e.g. musterma)
	23	password: CIT password
1.1	24
140.2	25	=== 1.3 Required Software ===
129.2	26
140.2	27	On the Mac we recommend Tunnelblick:
1.1	28
	29	macOS: [[Tunnelblick>>https://tunnelblick.net/]]
	30
140.2	31	Otherwise, the software openvpn-client must be downloaded and installed:
1.1	32
140.2	33	Windows: [[OpenVPN for Windows>>https://openvpn.net/index.php/open-source/downloads.html]]
1.1	34
	35	Ubuntu: sudo apt-get install openvpn
	36
	37	== 2. Windows: ==
	38
140.2	39	Install the OpenVPN-Client software that can be found here:: https://openvpn.net/community-downloads/
1.1	40
140.2	41	Start the installer:
1.1	42
129.2	43	[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNinstallWindows.png\|\|height="1008" width="1426"]]
1.1	44
140.2	45	Copy the OVPN-file (as described [[here>>CIT.ITO.Docs.Guides.Helpdesk.Vpn.WebHome\|\|anchor="A_1.1._Freischaltung_und_Konfigurationsdatei"]]) to the config folder. Usually, it is to be found here: C:\Program Files\OpenVPN\config
1.1	46
140.2	47	[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindowsConfig.png\|\|height="126" width="409"]]
1.1	48
140.2	49	Launch the VPN client via the desktop icon. (it may have already been launched, which will result in a corresponding message).
1.1	50
129.2	51	[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsIcon.png\|\|height="104" width="135"]]
1.1	52
140.2	53	Right-click the OpenVPN Icon on the taskbar and choose Connect.
1.1	54
140.2	55	[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNWindwosConnect.png\|\|height="287" width="402"]]
1.1	56
140.2	57	Enter your credentials (without @cit.tum.de)
1.1	58
140.2	59	[[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Vpn/WebHome/OpenVPNwindowsLogin.png\|\|height="286" width="407"]]
1.1	60
	61
140.2	62	Your connection should be established now, as indicated by a green OpenVPN icon in the taskbar.
1.1	63
140.2	64	[[image:Screenshot 2020-03-20 at 13.48.37.png\|\|height="86" width="84"]]
	65
1.1	66	== 3. macOS: ==
	67
140.2	68	If you have not installed Tunnelblick, you can download it [[here>>https://tunnelblick.net/]] and install it.
1.1	69
140.2	70	Note: Access must be activated for each user by the chair administrator, the configuration file is available from https://vpn.in.tum.de.
1.1	71
	72
140.2	73	Open the page https://vpn.in.tum.de and search for your chair in the list.
1.1	74
140.2	75	[[image:openvpnstandard.png\|\|height="143" width="376"]]
1.1	76
	77
	78
140.2	79	Right-click on the configuration file (standard, legacy, ios) and select Save the file as ... off.
1.1	80
140.2	81	[[image:vpndownloadovpn.png\|\|height="141" width="374"]]
	82
	83	\\
1.1	84
140.2	85	Select the location of the file.
1.1	86
140.2	87	[[image:openvpnsave.png\|\|height="173" width="372"]]
1.1	88
	89
	90
140.2	91	The file was saved as a .txt file. Delete the ending .txt.
1.1	92
140.2	93	[[image:openvpnrename.png\|\|height="213" width="369"]]
1.1	94
	95
	96
	97
140.2	98	Open the configuration file with a double click or with the right mouse button as below.
1.1	99
140.2	100	[[image:openvpnopenwith.png\|\|height="142" width="371"]]
1.1	101
	102
	103
140.2	104	You can choose whether the configuration file should be installed for all users of the laptop or only for the current user, i.e. for you.
1.1	105
140.2	106	[[image:openvpnonlyme.png\|\|height="142" width="375"]]
1.1	107
	108
	109
	110
140.2	111	Enter the system password to confirm the installation.
1.1	112
140.2	113	[[image:openvpninstallconfiguration.png\|\|height="243" width="368"]]
1.1	114
	115
	116
	117
140.2	118	When the configuration file has been installed, the following window appears in the upper right corner:
1.1	119
140.2	120	[[image:openvpnsuccessfullyinstalled.png\|\|height="70" width="376"]]
1.1	121
	122
	123
	124
140.2	125	You will see a tunnel symbol when the program has started. Next, you can click it and select Connect vpn-xxx-standard to connect to the VPN.
130.1	126
140.2	127	[[image:connectopenvpn.png\|\|height="248" width="378"]]
	128
	129	\\
1.1	130
140.2	131	Finally, enter the CIT ID (without @cit.tum.de) and the CIT password in the opened window and click on OK.
1.1	132
140.2	133	[[image:openvpnlogin.png\|\|height="244" width="379"]]
1.1	134
	135
129.2	136
1.1	137
140.2	138	When the connection is established the Tunnelblick symbol is white as can be seen in the screenshot below.
129.2	139
140.2	140	[[image:Screenshot 2020-03-20 at 13.53.25.png\|\|height="142" width="164"]]
1.1	141
	142
	143
140.2	144	== 4. Linux: ==
1.1	145
140.2	146	Save the configuration file, e.g. to the Home folder.
	147	In the terminal, go to this directory and execute this command: sudo openvpn Configuration file, e.g. for group XXX:
	148	{{{sudo openvpn vpnxxx.ovpn }}}
	149	Then enter the CIT ID (without @cit.tum.de) and the CIT password.
1.1	150
140.2	151	=== 4.1 Import VPN profile into network manager ===
1.1	152
140.2	153	The RBG VPN profile can be imported either via the Gui or via the command line.
1.1	154
140.2	155	==== 4.1.1 Via the GUI tool nm-connection-editor: ====
1.1	156
140.2	157	Right-click on the nm applet and click on Edit connections: Then choose Add and then Import a saved one VPN configuration.
1.1	158
140.2	159	==== 4.1.2 Via the terminal: ====
1.1	160
140.2	161	Enter the following command in the terminal: nmcli connection import type openvpn file / vpn-rbg-standard.ovpn
1.1	162
140.2	163	=== 4.2 Possible Problems ===
129.2	164
140.2	165	Networkmanager sets the default route through our VPN even though it doesn't provide a default gateway.
	166	To fix this, activate the setting "use this connection only for resources on its network"
1.1	167
140.2	168	[[image:vpnipv4.jpg.png\|\|width="900"]]
1.1	169
140.2	170	The same has to be done for the IPv6 Settings.
1.1	171
140.2	172	[[image:vpnipv6.png\|\|width="900"]]
1.1	173
140.2	174	== 5. Special cases ==
1.1	175
140.2	176	=== 5.1 Multiple VPNs ===
1.1	177
140.2	178	{{html wiki="true"}}<span style='background-color: transparent; color: #000000; font-size: small;' >In Windows with multiple simultaneous</span>{{/html}} OpenVPN {{html wiki="true"}}<span style='background-color: transparent; color: #000000; font-size: small;' > a connections another TAP device must be added.</span>{{/html}}
	179
	180	Windows 7:
	181
	182	* {{html wiki="true"}}<span style='background-color: transparent;' > add hdwwiz.exe (Add Hardware Wizard) to be able to add a new hardware component.</span>{{/html}}
	183	* {{html wiki="true"}}<span style='background-color: transparent;' >Manually select the hardware from the list (advanced setting), leave the settings at Show all components, click on Installation media available</span>{{/html}}
	184	* {{html wiki="true"}}<span style='background-color: transparent;' >The path for the driver is:</span>{{/html}}{{html wiki="true"}}<span style='background-color: transparent;' >C:\Program Files\TAP-Windows\driver</span>{{/html}}
	185	* {{html wiki="true"}}<span style='background-color: transparent;' >TAP-Windows Select Adapter V9</span>{{/html}}
	186	all Windows versions:
	187
	188	Run the following in an administrator shell: \| C:\Program Files\TAP-Windows\bin\tapinstall install C:\Program Files\TAP-Windows\driver\OemVista.inf tap0901 \|.

Wiki source code of VPN

Navigation