Linux

These user guides help you to establish a VPN connection with Linux.

Requirements

Install software

In the browser open the VPN page of the Universiy of Vienna and log in with your u:account details.

Screenshot VPN Linux Loginfenster

For the download of the software click BIG-IP Edge Client Linux.
If you want to download the Linux client under Windows or MacOS instead, click here.

Screenshot VPN BIG-IP Edge Client Linux Download

Open the terminal.

Screenshot Linux VPN Terminal

  1. Go to the Download directory, by entering the following command and then (as well as at the end of all commands mentioned in these user guides) press Enter:

    cd Downloads

    If the directory has a different name, type in the respective name or path in Downloads.
  2. Unpack the Installation data:

    tar -xvf BIGIPLinuxClient.tgz
  3. Change to the directory BIGIPLinuxClient:

    cd BIGIPLinuxClient
  4. For Debian based systems (e.g. Ubuntu, Mint) install the required package via dpkg:

    sudo dpkg -i linux_f5cli.x86_64.deb

    or for ARM architectures (e.g. Raspberry PI):  sudo dpkg -i linux_f5cli.armhf.deb

    For RPM based systems (e.g. Fedora, CentOS, Redhat) install the required package via rpm:

    sudo rpm –i linux_f5cli.x86_64.rpm

  5. Type in the local password of your device and press Enter. The software will be installed.

    If you neither use a Debian nor a RPM based system, you may try the installation with the old installer insted by typing in the following command:
    sudo ./old-version/Install.sh
    and answer all questions with yes.

Establish a VPN connection

To establish a connection:

  • Traffic to servers of the University of Vienna:
    f5fpc -s -t vpn.univie.ac.at -u u:account-UserID -d /etc/ssl/certs/

In the parameter -u type in your u:account UserID. Typing in the directory the certificates are in is not always necessary and can be ignored (Option: -d /etc/ssl/certs/).

Type in your u:account password and click Enter.
The connection should be up and running.

Screenshot Linux VPN u:account Passwort

You can check the connection status after waiting for 5 seconds and by using the command f5fpc --info. IF the connection has been succesfull, it should look like the screenshot.

Screenshot VPN Linux Verbindung prüfen

Manually install root certificate

If you receive the failure notice Server certificate verfication failed, do the following steps:

  1. Download the Root-Zertifikat.
    Change the name to USERTrust_RSA_Certification_Authority.pem and copy it in the directory /etc/ssl/certs/. Create a shortcut to /etc/ssl/certs/fc5a8f99.0

    wget https://zid.univie.ac.at/fileadmin/user_upload/d_zid/zid-open/daten/datennetz/vpn/Linux/SHA-2_Root_USERTrust_RSA_Certification_Authority.crt


    sudo
    mv SHA-2_Root_USERTrust_RSA_Certification_Authority.crt /etc/ssl/certs/USERTrust_RSA_Certification_Authority.pem

    sudo
    ln -s /etc/ssl/certs/USERTrust_RSA_Certification_Authority.pem /etc/ssl/certs/fc5a8f99.0
  2. Repeat the connection establishment.

Diconnect from VPN

To disconnect, type in the following command:
f5fpc -o

Screenshot VPN Linux Befehl Verbindung trennen