TTU VPN: Difference between revisions
From ICO wiki
Jump to navigationJump to search
| (17 intermediate revisions by the same user not shown) | |||
| Line 15: | Line 15: | ||
==Packages== | ==Packages== | ||
* clean client | * clean client https://www.forticlient.com/downloads | ||
* for MS Windows, TTU preconfigured http://www.ttu.ee/FortiClient.exe | |||
* for MS Windows, [https://portal.itcollege.ee:10443/SslvpnClient.exe IT College client] (requires login beforehand, usually older version than original one from Fortinet) | |||
* Debian packages | * Debian packages | ||
** FortiClient | ** FortiClient | ||
| Line 33: | Line 35: | ||
ldconfig && dpkg --configure -a && apt clean | ldconfig && dpkg --configure -a && apt clean | ||
</pre> | </pre> | ||
==Connecting== | ==Connecting== | ||
* use your Uni-ID credentials to login | * use your Uni-ID credentials to login | ||
* Web: https://vpn.ttu.ee:443/ | * Web: https://vpn.ttu.ee:443/ | ||
* | * server: '''vpn.ttu.ee''' | ||
* | * port: 443 | ||
'''... in IT College:''' | |||
* use your IT College credentials to login | |||
* Web: https://portal.itcollege.ee:10443/ | |||
* server: '''portal.itcollege.ee''' | |||
* port: 10443 | |||
In IT College there is an option to use SSH tunnel using http://enos.itcollege.ee/ server using your IT College credentials. For convenient usage there is a [[Sshuttle]] (article in Estonian) available for Linux users. This SSH tunnel is available also for students. MS Windows users [https://www.startpage.com/do/search?q=putty+SSH+tunnel can use puTTY]. Also macOS users [https://www.startpage.com/do/search?q=SSH+tunnel+macOS can use SSH tunnel]. | |||
=OpenVPN= | =OpenVPN= | ||
Revision as of 16:42, 23 May 2018
Uni-ID
Uni-ID is required to use TTU VPN.
Tutorials
- EST https://wiki.ttu.ee/et/juhendid/it/doc/lib_toru
- ENG https://wiki.ttu.ee/en/manuals/it/doc/lib_toru
Forticlient VPN
Does not allow to access the TTU library outside university. You will get only a secure VPN connection.
Packages
- clean client https://www.forticlient.com/downloads
- for MS Windows, TTU preconfigured http://www.ttu.ee/FortiClient.exe
- for MS Windows, IT College client (requires login beforehand, usually older version than original one from Fortinet)
- Debian packages
- FortiClient
- repository https://styrion.at/apt/ - FortiClient
- https://hadler.me/linux/forticlient-sslvpn-deb-packages/
- OpenFortiGUI
- repository https://styrion.at/apt/ - OpenFortiGUI
- https://hadler.me/linux/openfortigui/
- FortiClient
for Ubuntu:
sudo -i apt-key adv --recv-keys --keyserver keyserver.ubuntu.com 2FAB19E7CCB7F415 echo "deb http://styrion.at/apt/ ./" > /etc/apt/sources.list.d/styrion.list apt update apt install forticlient-sslvpn #or apt install openfortigui ldconfig && dpkg --configure -a && apt clean
Connecting
- use your Uni-ID credentials to login
- Web: https://vpn.ttu.ee:443/
- server: vpn.ttu.ee
- port: 443
... in IT College:
- use your IT College credentials to login
- Web: https://portal.itcollege.ee:10443/
- server: portal.itcollege.ee
- port: 10443
In IT College there is an option to use SSH tunnel using http://enos.itcollege.ee/ server using your IT College credentials. For convenient usage there is a Sshuttle (article in Estonian) available for Linux users. This SSH tunnel is available also for students. MS Windows users can use puTTY. Also macOS users can use SSH tunnel.
OpenVPN
Allows to access the TTU library outside university. Additionally you will get a secure VPN connection.
Client software
- for MS Windows and macOS clients, please login https://toru.ttu.ee/ and download directly from there
- GNU/Linux http://openvpn.net/clients/index.php?client=openvpn_linux
- Android http://openvpn.net/clients/index.php?client=openvpn_connect_android
- iOS http://openvpn.net/clients/index.php?client=openvpn_connect_ios
Installation in Debian/Ubuntu
- open the terminal, e.g. CTRL+ALT+T and copy-paste the following line and press Enter
- copy-paste in terminal: SHIFT+CTRL+C, SHIFT+CTRL+V
- sudo apt-get update && sudo apt-get install openvpn openvpn-blacklist && sudo apt-get clean
Configuration
- download the preconfigured client.ovpn from https://toru.ttu.ee/
- use your Uni-ID credentials to login and also later to authenticate in OpenVPN
- for GNU/Linux in file client.ovpn after setenv PUSH_PEER_INFO please add the following lines and then save the file:
script-security 2
up /etc/openvpn/update-resolv-conf
down /etc/openvpn/update-resolv-conf
Connecting in Debian/Ubuntu
- use your Uni-ID credentials
- open the terminal, e.g. using CTRL+ALT+T
- navigate to folder where the client.ovpn is saved or provide the full path
- sudo openvpn --config client.ovpn or use more convenient way - the alias created below
Usually there is possible to import *.ovpn files into graphical network manager but in current case this client.ovpn cannot be imported.
Convenient login in GNU/Linux
- open the terminal, e.g. using CTRL+ALT+T
- create an alias:
- nano ~/.bash_aliases #open CLI text editor
- alias vpn-ttu='sudo openvpn --config /path/client.ovpn' #add appropriate alias and path to client.ovpn, then save the file
- source ~/.bash_aliases (or reopen terminal or relogin)
- add permissions to run OpenVPN without entering a password
- sudo nano /etc/sudoers.d/permissions #the file name permissions could be replaced whatever else you like
- username ALL=(ALL) NOPASSWD: /usr/sbin/openvpn #replace username with your real one and then save the file
- type your new alias vpn-ttu in terminal to start a VPN session
in nano text editor
- save the file:
- CTRL+O and Enter if you agree the proposed file name (or enter a new one if needed)
- or F3
- quit the file:
- CTRL+X
- or F2
More information about...
- sudoers at https://help.ubuntu.com/community/Sudoers
- alias
Benefits of TTU VPN
- you have a secure tunnel over insecure network, e.g. public WiFi, mobile internet or similar
- can use TTU library and its paid databases outside TTU http://www.ttu.ee/asutused/raamatukogu/10640/andmebaasid-databases/
TTU helpdesk
- in case of questions, issues - please contact TTU helpdesk
