Differences

This shows you the differences between two versions of the page.

--- vpn_notes [2014/07/31 20:45] – juckins
+++ vpn_notes [2015/03/17 13:44] (current) – juckins
@@ Line 54: / Line 54: @@
 The ntpd service may not be able to connect to time servers; remember to update /etc/ntp.conf and possible /etc/ntp/step-tickers with time sources that are reachable when the machine has the VPN connected.
+----
+[[http://www.debuntu.org/how-to-connect-to-a-cisco-vpn-with-vpnc/ Cisco VPN with VPNC (Ubuntu and Debian)]]
+----
+Notes from Scalio:
+  * Install the vpnc rpm and any dependencies, if not already installed.
+  * As root, use visudo to add the following entries to the sudoers file without the surrounding "<>":
+        <your user name>   ALL=(root) NOPASSWD: /usr/sbin/vpnc
+        <your user name>   ALL=(root) NOPASSWD: /usr/sbin/vpnc-disconnect
+  * As root, create a vpn configuration file (I called mine myvpn.conf) in /etc/vpnc containing the following:
+        IPSec gateway XXX.XXX.XXX.XXX
+        IPSec ID XXX
+        IPSec secret XXXXXXXXX
+        Xauth username <your user name>
+        Xauth password <your password>
+  * Change file permissions on your vpnc configuration file to 600.
+  * Copy the two attached files to some place in your path.  I put them in ~/bin.  Make sure you they both have execute permission.
+  * Use the scripts to start/stop VPN sessions.  I use this from inside a VirtualBox Linux guest.  Occasionally, your vpn sessions will terminate without any notification.  If you aren't getting a response from an established session, you can just do "start_vpnc" again and you shouldn't even get kicked out of any remote terminal sessions you have running.
+<code>
+#!/bin/bash
+# start_vpnc.bash
+sudo /usr/sbin/vpnc --natt-mode cisco-udp myvpn
+#!/bin/bash
+# stop_vpnc.bash
+sudo /usr/sbin/vpnc-disconnect
+</code>
 ----