Linux
These user guides help you to establish a VPN connection with Linux.
Requirements
- Established and operational internet access
- Valid u:account UserID and password
- Fedora users: Note the guides in Manually install Root certificate
Install software
In the browser open the VPN page of the Universiy of Vienna and log in with your u:account details.
For the download of the software click BIG-IP Edge Client Linux.
If you want to download the Linux client under Windows or MacOS instead, click here.
Open the terminal.
- Go to the Download directory, by entering the following command and then (as well as at the end of all commands mentioned in these user guides) press Enter:
cd Downloads
If the directory has a different name, type in the respective name or path inDownloads
. - Unpack the Installation data:
tar -xvf BIGIPLinuxClient.tgz
- Change to the directory BIGIPLinuxClient:
cd BIGIPLinuxClient
- For Debian based systems (e.g. Ubuntu, Mint) install the required package via dpkg:
sudo dpkg -i linux_f5cli.x86_64.deb
or for ARM architectures (e.g. Raspberry PI):sudo dpkg -i linux_f5cli.armhf.deb
For RPM based systems (e.g. Fedora, CentOS, Redhat) install the required package via rpm:sudo rpm –i linux_f5cli.x86_64.rpm
- Type in the local password of your device and press Enter. The software will be installed.
If you neither use a Debian nor a RPM based system, you may try the installation with the old installer insted by typing in the following command:sudo ./old-version/Install.sh
and answer all questions with yes.
Establish a VPN connection
To establish a connection:
- Traffic to servers of the University of Vienna:
f5fpc -s -t vpn.univie.ac.at -u u:account-UserID -d /etc/ssl/certs/
In the parameter -u
type in your u:account UserID. Typing in the directory the certificates are in is not always necessary and can be ignored (Option: -d /etc/ssl/certs/
).
Type in your u:account password and click Enter.
The connection should be up and running.
You can check the connection status after waiting for 5 seconds and by using the command f5fpc --info
. IF the connection has been succesfull, it should look like the screenshot.
Manually install root certificate
If you receive the failure notice Server certificate verfication failed, do the following steps:
- Download the Root-Zertifikat.
Change the name to USERTrust_RSA_Certification_Authority.pem and copy it in the directory /etc/ssl/certs/. Create a shortcut to /etc/ssl/certs/fc5a8f99.0
wget https://zid.univie.ac.at/fileadmin/user_upload/d_zid/zid-open/daten/datennetz/vpn/Linux/SHA-2_Root_USERTrust_RSA_Certification_Authority.crt
sudomv SHA-2_Root_USERTrust_RSA_Certification_Authority.crt /etc/ssl/certs/USERTrust_RSA_Certification_Authority.pem
sudoln -s /etc/ssl/certs/USERTrust_RSA_Certification_Authority.pem /etc/ssl/certs/fc5a8f99.0
- Repeat the connection establishment.
Diconnect from VPN
To disconnect, type in the following command:
f5fpc -o