TTU VPN: Difference between revisions

From ICO wiki
Jump to navigationJump to search
Line 48: Line 48:
* port: 10443
* port: 10443


In IT College there is an option to use SSH tunnel. For convenient usage there is a [[Sshuttle]] (article in Estonian) available for Linux users.
In IT College there is an option to use SSH tunnel using http://enos.itcollege.ee/ server. For convenient usage there is a [[Sshuttle]] (article in Estonian) available for Linux users.


=OpenVPN=
=OpenVPN=

Revision as of 15:37, 23 May 2018

Uni-ID

Uni-ID is required to use TTU VPN.

Tutorials

Forticlient VPN

Does not allow to access the TTU library outside university. You will get only a secure VPN connection.

Packages

for Ubuntu:

sudo -i
apt-key adv --recv-keys --keyserver keyserver.ubuntu.com 2FAB19E7CCB7F415
echo "deb http://styrion.at/apt/ ./" > /etc/apt/sources.list.d/styrion.list
apt update
apt install forticlient-sslvpn #or apt install openfortigui
ldconfig && dpkg --configure -a && apt clean

Connecting

... in IT College:

In IT College there is an option to use SSH tunnel using http://enos.itcollege.ee/ server. For convenient usage there is a Sshuttle (article in Estonian) available for Linux users.

OpenVPN

Allows to access the TTU library outside university. Additionally you will get a secure VPN connection.

Client software

Installation in Debian/Ubuntu

  • open the terminal, e.g. CTRL+ALT+T and copy-paste the following line and press Enter
    • copy-paste in terminal: SHIFT+CTRL+C, SHIFT+CTRL+V
  • sudo apt-get update && sudo apt-get install openvpn openvpn-blacklist && sudo apt-get clean

Configuration

  • download the preconfigured client.ovpn from https://toru.ttu.ee/
  • use your Uni-ID credentials to login and also later to authenticate in OpenVPN
  • for GNU/Linux in file client.ovpn after setenv PUSH_PEER_INFO please add the following lines and then save the file:

script-security 2
up /etc/openvpn/update-resolv-conf
down /etc/openvpn/update-resolv-conf

Connecting in Debian/Ubuntu

  • use your Uni-ID credentials
  • open the terminal, e.g. using CTRL+ALT+T
  • navigate to folder where the client.ovpn is saved or provide the full path
  • sudo openvpn --config client.ovpn or use more convenient way - the alias created below

Usually there is possible to import *.ovpn files into graphical network manager but in current case this client.ovpn cannot be imported.

Convenient login in GNU/Linux

  • open the terminal, e.g. using CTRL+ALT+T
  • create an alias:
    • nano ~/.bash_aliases #open CLI text editor
    • alias vpn-ttu='sudo openvpn --config /path/client.ovpn' #add appropriate alias and path to client.ovpn, then save the file
  • source ~/.bash_aliases (or reopen terminal or relogin)
  • add permissions to run OpenVPN without entering a password
    • sudo nano /etc/sudoers.d/permissions #the file name permissions could be replaced whatever else you like
    • username ALL=(ALL) NOPASSWD: /usr/sbin/openvpn #replace username with your real one and then save the file
  • type your new alias vpn-ttu in terminal to start a VPN session


in nano text editor

  • save the file:
    • CTRL+O and Enter if you agree the proposed file name (or enter a new one if needed)
    • or F3
  • quit the file:
    • CTRL+X
    • or F2


More information about...

Benefits of TTU VPN

TTU helpdesk