VPN with openconnect

A virtual private network (VPN) extends a private network across a public network, such as the Internet. It enables a computer to send and receive data across shared or public networks as if it is directly connected to the private network, while benefiting from the functionality, security and management policies of the private network.

GUI Client

Installation

sudo apt-get install network-manager-openconnect network-manager-openconnect-gnome ca-certificates

Configuration

  1. Click on the network icon in GNOME panel
  2. Select Network Settings
  3. Add a new connection
  4. Select VPN Interface
  5. Select Cisco AnyConnect Compatible VPN (openconnect)

Use the following settings:

  • Connection name: BFH (TLS)
  • Gateway: vpn.bfh.ch
  • CA Certificate: /etc/ssl/certs/QuoVadis_Root_CA_2.pem

Note: For VPN for BFH external people the settings are slightly different. Use vpnext.bfh.ch as gateway. Usage

VPN connections can be enabled and disabled in the network-manager menu via the network icon in the GNOME panel.

CLI Client

Installation

sudo apt-get install openconnect ca-certificates

Configuration

Manual, see openconnect manpage.