Cisco VPN tip for Ubuntu 9.0.4 (Jaunty) users

If you want to configure Cisco VPN on Ubuntu 9.0.4 is very easy now.You don't need to install the Cisco VPN client -- NetworkManager includes support for Cisco IPSec VPNs.NetworkManager attempts to keep an active network connection available at all times. It is intended primarily for laptops where it allows easy switching betwen local wireless networks, it's also useful on desktops with a selection of different interfaces to use. It is not intended for usage on servers.
This package provides a VPN plugin for vpnc, providing easy access Cisco Concentrator based VPN's.

You need to install network-manager-vpnc using the following command

sudo apt-get install network-manager-vpnc

Configure your VPN connection from Click on the NetworkManager icon in the system tray, VPN Connections -> Configure VPN

Follow onscreen instructions.

Sponsored Link

You may also like...

24 Responses

  1. Pablo says:

    Does this support certificates now?

  2. abtris says:

    Is possible use Profiles ?

  3. micknh says:

    Does this work with the 64 bit version of Ubuntu 9.04. I have been using KVPNC as the client and the group password didn’t work in the 64 bit version but is fine in 32 bit installs.

    The only other cause for the problem may be that I am using the WUBI install?

  4. Michael says:

    vpnc was built without openssl: Can’t do hybrid or cert mode.

    useless the way it was built.

  5. Brett says:

    This works all the way back in 8.04 just fine and I’m connecting to my work on a 64-bit machine that is still running the LTS (8.04).

  6. Charles says:

    It does not appear to support certificates.

  7. Charles says:

    Regarding certificates, the cisco_cert_mgr hangs trying to read from /dev/random on Jaunty.

    Here’s a hack I used to get it to import my certficate:

    sudo mv /dev/random /dev/orandom
    sudo ln /dev/urandom /dev/random

  8. Pablo says:

    Charles, I didn’t have cisco_cert_mgr, so I installed it the cisco_vpn_client to get it. I copy my profile over to where it should be, but I don’t think it matters anymore. I tried:

    sudo cisco_cert_mgr -R op import
    rootcert.crt

    That worked, but I couldn’t get VPN to connect. Questions:

    – I assume that I don’t need to start vpnclient anymore, right?
    – Can you better explain your hack? I think I’m missing something big time.

    Thanks

  9. Desertship says:

    It semms to work with certificats, but i have the following problem:
    It connects with the network of my university well but it creates e new network device(tun0) witch isch not unusual i think but the problem is it doesn’t uses this connection to surf on the net or connect to a smb server it just uses eth0 further does somebody know how i can change this?

    greet desertship (sry 4 my english)

  10. Pablo says:

    Could you explain how you imported the certificate? It is not working for me.

    Thanks

  11. Mike Phillips says:

    What about TCP-encapsulation?

  12. Pablo says:

    Desertship or Charles, how did you guys import the Certificates?

  13. Heisenborg says:

    Does _not_ support IPSec over TCP. Shame.

  14. Charles says:

    $ cisco_cert_mgr -U -op import
    Cisco Systems VPN Client Version 4.8.00 (0490)
    Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
    Client Type(s): Linux
    Running on: Linux 2.6.18-128.1.1.el5 #1 SMP Mon Jan 26 13:59:00 EST 2009 i686

    [ Importing Certificate ]

    Enter filename: ./mycert.p12
    Import Password:

    Enter a password to protect your certificate.
    Choose a password that you can remember.

    Password:
    Confirm Password:
    Success: certificate imported from path: ./mycert.p12

    $ cisco_cert_mgr -U -op view
    Cisco Systems VPN Client Version 4.8.00 (0490)
    Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
    Client Type(s): Linux
    Running on: Linux 2.6.18-128.1.1.el5 #1 SMP Mon Jan 26 13:59:00 EST 2009 i686

    Cert # Common Name
    ——- ————

    0 ***.***.***.***

    Enter Certificate #: 0

    Common Name: ***.***.***.***
    Department: ******
    Company: ***
    State: ***
    Country: ***
    Email:
    Thumb Print: *************************
    Key Size: 1024
    Subject: cn=***,ou=***,o=***,l=***,st=***,c=***
    Serial #: 39
    Issuer: cn=***,ou=***,o=***,l=***,st=***,c=***
    Not before: Tue Mar 10 11:37:40 2009

    Not after: Wed Mar 10 10:37:40 2010

  15. Fred says:

    works like a champ. much better than kvpnc!

  16. Charles says:

    Regarding the /dev/random hack. This is needed to establish the VPN session. You’ll need to do this after each reboot.

  17. ysf says:

    I had no problems just importing a .pcf file. No need to hack around.

  18. seani says:

    Hi,

    This method works perfectly for me on Jaunty 9.04.

    However my current method (“real” Cisco VPN Client running in a minimal XP setup under VMWare) has the advantage that I don’t lose local internet access.

    I know there are patches around for other clients that allow this to happen, but is there any equivalent with this method?

    Thanks

    S

  19. JM says:

    This worked – I connected and cannot do a thing. With Cisco secure vpn client on XP it works flawlessly.
    I am running 9.1 remix

  20. Wayne says:

    To use your Internet connection at the same time configure the VPN connection –> Edit –> IPv4 Settings –> Routes –> Tick “Use this connection only for resources on its network”

    Also try use weak encryption method if it only works at command line level with the 1des switch.

  21. Alex says:

    I used cisco vpn client for two years now. I did’t used vpnc because internet was not working. Searched everywhere but I didn’t get a fix. Got back to cisco vpn client.
    Now I can use vpnc. Thanks Wayne for the working solution:
    VPN connection –> Edit –> IPv4 Settings –> Routes –> Tick “Use this connection only for resources on its network”

  22. dhyan says:

    Ya its true .Best thing according to me is using Sun’s virtual box and have winxp inside ubuntu .

  23. Jonathan says:

    @Wayne:

    Thanks for the tip!
    I was only able to access the local network and after ticking this checkbox I’m able to acess Internet through my own connection

  24. hi says:

    hi, seani, dhyan, I hope that you are still reading this thread. I want to reproduce your solution since all the others failed for me.

    I installed winxp 32+cisco vpn as guest in virtual box under ubuntu lucid 64 bit. I provided two virtual network adapters: a NAT adapter and a Host-Only adapter.

    guest-based cisco vpn sucessfully connects to VPN. but I do not know how to direct traffic from the host through the tunnel provided inside the guest. how to do it?

    I posted the question here too: http://ubuntuforums.org/showthread.php?t=1556956

    Thanks (to anybody) for replying.

Leave a Reply

Your email address will not be published. Required fields are marked *