|
Linux VPN HOW-TO Use |
|
NOTE : Kernel Source must be installed before attempting to install the Cisco VPN client for Linux. The examples given below were from a fresh Fedora-Core-1 Linux installation. Each Linux distro will vary some.
• Reboot Linux machine completely. If you have not since the Cisco VPN software install.
• (as root) issue the command vpnclient connect SIUC-staff (assuming that you are a faculty/staff, use SIUC-student instead if you are a student) and this will then connect you to the VPN for authentication. You can see the output from this command. It will ask you for your User ID (which is your Kerberos ID) and then your Password (which is your Kerberos Password). Keep in mind this Terminal window must stay open in order to keep passing traffic through the VPN tunnel. If you close this Terminal window, or Ctrl-C, then this will disconnect you from the VPN.
• You can test to make sure you are indeed connected to the VPN by issuing the traceroute command and noticing the first hop is the VPN appliance itself. Like Below :
[root@ws007059 root]# traceroute www.yahoo.com
traceroute: Warning: www.yahoo.com has multiple addresses; using 216.109.118.67
traceroute to www.yahoo.akadns.net (216.109.118.67), 30 hops max, 38 byte packets
1 wham-b13-02v.infra.siu.edu (131.230.76.177) 0.679 ms 0.641 ms 0.601 ms
2 wham04r.infra.siu.edu (131.230.21.254) 0.810 ms 0.853 ms 0.698 ms
3 sc-tsc-00r.infra.siu.edu (131.230.140.68) 0.768 ms 0.950 ms 0.741 ms
4 sc-tsc-02r.infra.siu.edu (131.230.207.118) 1.299 ms 1.421 ms 1.392 ms
• You can also check the status by issuing the "vpnclient stat" command. (without the quotes)
• To disconnect from the VPN issue "vpnclient disconnect". (without the quotes)
For more information or help please contact the Computer Support Center at 453-5155.
