= vpn using tuwien =


== config file ==

the default config file looks like (everything is commented out):

#IPSec gateway 
#IPSec ID 
#IPSec secret 
#IKE Authmode hybrid
#Xauth username 
#Xauth password 

Change this to (see [0])
Interface name vpntun0
IPSec gateway terminator.tuwien.ac.at
IPSec ID vpncclient
IPSec secret vpnc2tu
Xauth username @[student.]tuwien.ac.at
Debug 1

== Debugging ==

Now start using
 sudo vpnc

Then check if the routes are correctly:
 sudo route -n

should be (?)
 0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        0 vpntun0
 10.0.0.0        0.0.0.0         255.255.255.0   U     0      0        0 eth0
 128.131.238.66  0.0.0.0         255.255.255.255 UH    0      0        0 vpntun0
 128.131.240.4   10.0.0.138      255.255.255.255 UGH   0      0        0 eth0


Then check if you can ping the terminator:
 ping terminator.tuwien.ac.at

Now see if you can ping dns:
 ping dns1.tuwien.ac.at

And see if /etc/resolv.conf is ok (has tuwien dns servers)



== Terminator not reached problem ==

[1] suggests to use:

 sudo route add 128.131.192.4 dev eth0

This seems not a problem in Debian Wheezy, because vpnc-connect already
performs that correctly. So it is not necessary to add this route.

Note that it would not work in a NAT environment with an gateway, it
should be:

 sudo route add terminator.tuwien.ac.at dev eth0 gw gateway


== useful links ==

[0] http://www.zid.tuwien.ac.at/tunet/vpn/vpnc/vpnc_client_fuer_den_externen_vpn_zugang/
[1] http://blog.rueckgr.at/vpn.htm


== Useful information ==

important ip adresses (can be put into /etc/hosts):
128.131.240.4 terminator.tuwien.ac.at
81.16.97.1 dns1.tuwien.ac.at

script /etc/vpnc/vpnc-script

Xauth password XXXXXXXXX
allows specification of password in configuration file
Don Okt 19 15:24:27 CEST 2017
anybrowser.gif elektra.jpg fsfe-logo.png patent_button.gif valid-css.png valid-html401.png vim.gif