VPN, CISCO AnyConnect, Linux
University of Illinois students, faculty, and staff can use these directions to set up some Linux computers or devices to connect to the Virtual Private Network (VPN).
Cisco-supported Versions
Some versions of Red Hat Linux and Ubuntu are compatible with the Cisco Secure VPN client. See the this document for a detailed listing of which versions and features are supported.
Downloading the VPN software
From the WebStore, download the VPN software that applies to your system's hardware (only 64 bit is supported in the 4.x software).
If you are using Ubuntu, you may also need to install the OpenConnect Network Manager in order to make the GUI work correctly:
for Ubuntu 16 try:
sudo apt-get install openconnect network-manager-openconnect-gnome
for older versions of Ubuntu, this command might be needed.
sudo apt-get install network-manager-openconnect
The information below has been modeled on the University of California at Irvine instructions provided at:
University of California at Irvine - Setting up VPN for Linux
J. Stern, University of California at Irvine - Ubuntu
Additional troubleshooting tips are available there.
Red Hat Linux
As root, first unzip and untar the file, then run the vpn_install shell script. [Note the file name and directory name will change as the version changes. The example below was from version 4.3.05017.]
su root tar xzvf (name of downloaded file) cd anyconnect-4.3.05017/vpn ./vpn_install.sh
The vpn client will be installed on your system and the vpnagentd process will be started. This process will be started each time your system is booted.
Starting the VPN client
To start the VPN client:
-
Command line:
In a terminal window, type/opt/cisco/anyconnect/bin/vpnui
-
Gnome user interface:
Look for Cisco AnyConnect in the menu system. - Fedora:
Look in Applications -> Internet
The Connect to: box appears.
- Enter vpn.illinois.edu and press return.
When the connection begins, enter the following:
- Group menu: Select OpenConnect1 (Split)
(Note: This is the most common choice. See About VPN Profiles for information about the alternatives, such as Tunnel All for access to library resources.) - Username: Your NetID
- Password: Your NetID (Active Directory) password
- In the second password prompt, enter the word "push", "sms", or your Duo one-time passcode.
In the box that appears, click Accept.
You are now ready to use your VPN connection.
Ubuntu
A good source to help with this: http://www.socsci.uci.edu/~jstern/uci_vpn_ubuntu/
First, extract the files and install as root:
cd ~/Downloads tar zxvf (the download file)
cd (the extracted file directory)/vpn sudo ./vpn_install.sh
Accept the license agreement when prompted.
Then install the Ubuntu Network Manager plugins (note, even with this package Ubuntu 16 does not support the GUI interface: see https://askubuntu.com/questions/760864/no-more-anyconnect-compatible-vpn-transport-in-ubuntu-16-04 for more information):
sudo apt-get install openconnect network-manager-openconnect-gnome
To configure the VPN using the Network Manager:
- Click on the "Network Manager" icon in your System Tray on your desktop.
- In the menu that appears, go to VPN Connections -> Configure VPN
- Click Add.
- Choose Cisco AnyConnect Compatible VPN (openconnect) and click Create.
- Enter the following information:
- Connection name: Tech Services VPN
- Gateway: vpn.illinois.edu
- User name: Leave blank at this point.
- Click Save.
Starting the VPN client
- Click on the "Network Manager" icon in your System Tray on your desktop.
- In the menu that appears, go to VPN Connections and click Tech Services VPN.
- Click on the connection icon (two screens).
- Enter the following information:
- Group menu: Select OpenConnect1 (Split)
(Note: This is the most common choice. See About VPN Profiles for information about the alternatives.) - Username: Your NetID
- Password: Your Active Directory password
- In the second password prompt, enter the word "push", "sms", or your Duo one-time passcode.
- Group menu: Select OpenConnect1 (Split)
- Click Login.
sudo sed -i 's/^dns=dnsmasq/#&/' /etc/NetworkManager/NetworkManager.conf
sudo service network-manager restart
sudo service networking restart
Disconnecting the VPN client
- Click on the "Network Manager" icon in your System Tray on your desktop.
- Go to VPN Connections -> Disconnect VPN.