Overview
Virtual Private Networking (VPN) software creates a secure, encrypted connection between your off-campus computer and the campus network. Affiliates of InCHIP can use VPN software to connect securely to the campus network from off-campus. This software, called Junos Pulse, must be downloaded to your computer, installed and configured. To connect using the full VPN client, download it below, install and configure it as directed.
1. Download Client
OpenConnect GUI is a free Mac VPN client. It uses TLS and DTLS to establish sessions and is compatible with the Cisco AnyConnect SSL VPN protocol. For those who don't know, OpenConnect was originally developed as an open source replacement for Cisco's proprietary product, and it quickly grew in popularity. So recently I did a article Azure: Point To Site VPN (Remote Access User VPN) but what if you want to use the same solution for a remote mac user? Firstly you will want to download the VPN package (and have a valid client/user certificate, see the link above).
Apple OS X: Junos Pulse Client 5.0
2. Install Client
- Double click on the download and then the package icon
- Click 'Continue'
- Click 'Install'
- You will be prompted for user credentials. This would be the user name and password with the ability to install software on this Mac. If you are unsure please contact InCHIP IT
- Click 'Close'
3. Configure Client
- Click on the Junos icon on the title bar and then click 'Open Junos Pulse'
- Click on the '+' symbol at the bottom of the window
- Enter in the values shown below and click 'Add'
- Close the window.
- Click on the Junos Client icon on the title bar and mouse over 'CHIP VPN' and select 'Connect'
- You will be prompted to enter your InCHIP ID [usually First Initial, Last Name] and password. To save this step in the future you may select 'Save Settings'. To have increased security, do not check 'Save settings' and you will be prompted each time you connect.
- To disconnect from the VPN, click on the Junos Client icon on the title bar and mouse over 'CHIP VPN' and select 'Disconnect'
There are three client options for Mac OS X.:
The OpenVPN command line client. Jw org biblia en linea descargar. Most users prefer a graphical client, so thisoption will not be covered.
Tunnelblick, a free option available for download at the Tunnelblick Website.
The commercial Viscosity client. At the time of this writing, it costs $14USD for a single seat. If OpenVPN is used frequently, Viscosity is a muchnicer client and well worth the cost.
Both Tunnelblick and Viscosity are easily installed, with no configurationoptions during installation.
Configuring Viscosity¶
When using the Viscosity client, it can be configured manually or the OpenVPNClient Export package may be used to import the configuration. Viscosityprovides a GUI configuration tool that can be used to generate the underlyingOpenVPN client configuration. The CA and certificates can be imported manually,and all of the parameters can be set by hand. This section cover importing aViscosity bundle from the export package.
Download a copy of the Viscosity bundle for the client from the OpenVPNClient Export package
Locate the saved file, which will end in
.visc.zip
indicating that it is acompressed archiveCopy this exported bundle to a folder on the Mac
Double click this file and it will expand to
Viscosity.visc
Double click
Viscosity.visc
and Viscosity will open and import theconnection as shown in Figure Viscosity Import
Delete the
Viscosity.visc
directory and the.zip
archiveViscosity will be running after import, and may be found in the menu bar
Click the lock icon added to the menu bar at the top of the screen
Click Preferences to check that the configuration was imported as shown inFigure Viscosity Preferences
Viscosity Preferences¶
Check the Connections area to see if the connection imported successfullyas shown in Figure Viscosity View Connections.
Close the Preferences screen
Click the lock in the menu bar
Click the name of the VPN connection to connect as shown in FigureViscosity Connect. After a few seconds, the lock in the menu barwill turn green to show it connected successfully.
Viscosity Connect¶
Click on it and then click Details as shown in FigureViscosity Menu to see connection information
On the first screen (Figure Viscosity Details), the connectionstatus, connected time, the IP assigned to the client, and the IP of the serverare all displayed. A bandwidth graph is displayed at the bottom of the screen,showing the throughput in and out of the OpenVPN interface.
Viscosity Details¶
Clicking the up/down arrow button in the middle of the details screen displaysadditional network traffic statistics. This shows the traffic sent within thetunnel (TUN/TAP In and Out), as well as the total TCP or UDP traffic sentincluding the overhead of the tunnel and encryption. For connections usingprimarily small packets the overhead is considerable with all VPN solutions. Thestats shown in Figure Viscosity Details: Traffic Statistics are from only afew pings traversing the connection. The traffic sent in bringing up theconnection is also counted here, so the initial overhead is higher than what itwill be after being connected for some time. Also, the typical VPN traffic willhave larger packet sizes than 64 byte pings, making the total overhead anddifference between these two numbers considerably less.
Clicking on the third icon in the middle of the Details screen shows theOpenVPN log file (Figure Viscosity Details: Logs). If there is any troubleconnecting, review the logs here to help determine the problem. See alsoTroubleshooting OpenVPN.
Usaf Vpn Client
Viscosity Details: Logs¶