Cisco VPN Client

From SonicWiki
Revision as of 16:19, 16 May 2012 by Kgc (talk | contribs)

Jump to: navigation, search

How do I use the Sonic.net VPN Service?

Create a VPN tunnel to ipsec.vpn.sonic.net. Log in using your Sonic.net account name and password.

The Cisco VPN Clients available below are preconfigured and should work on any recent release of your operating system. When configuring your own VPN client to use Sonic.net Hotspots, use the following:

  • Host: ipsec.vpn.sonic.net
  • Group Auth Name: "Standard VPN"
  • Password: "standard"

Note: We strongly recommend using the Cisco VPN Client available below as it uses certificate-based authentication that is unavailable to other clients at this time.

Software Downloads

Note: The Cisco VPN Client above will use highly-secure certificate-based authentication and peer validation via a pre-packaged certificate. For this reason, we suggest uninstalling and reinstalling the Cisco VPN client via the installers above if you have a prior version installed so you can take advantage the enhanced security.

One of our users wrote up this blog post on how to access our VPN server with Suse. It may be applicable to other Linux OSes. http://omgsuse.com/content/surfing-securely-opensuse OR http://web.archive.org/web/20110626124308/http://omgsuse.com/content/surfing-securely-opensuse

Windows Configuration

This page has been deprecated. It may:
*Reference services that Sonic.net no longer offers
*Refer to hardware or software that are outdated or no longer available

The page has been left up for reference only.


Installation

First, download the installer program from our Sonic.net VPN Service Page. Run the installer, and click the button labeled "next" to continue.

Win vpn1.png

You will be prompted to review the Cisco VPN Client license agreement. After reading this license, if you agree to all terms, click the button labeled "yes" to continue.

Win vpn2.png

You will be prompted to specify the folder into which you would like to install the VPN Client. For most purposes, the default folder will suffice.

Win vpn3.png You will be prompted to specify the "Program Folder" you would like to use for the Cisco VPN Client. This is the folder in which you will later find the client in your Programs folder.

Win vpn4.png The installer will take a few moments placing files into the appropriate places on your hard drive. When it is done, the "canel" button will change to "finish."

Win vpn5.png

The Cisco VPN Client modifies a number of network settings on your computer. This can take a few minutes to accomplish.

Win vpn6.png

Upon changing the network settings, the Cisco VPN Client will install a network adapter onto your system.

Win vpn7.png

Upon completion, the installer will prompt you to restart your system. Sonic.net recommends that you save any work before proceeding.

Win vpn8.png


Connecting

Open the Cisco VPN Client by clicking your "Start" menu, selecting "All Programs," and opening the "Cisco Systems VPN Client" folder. If you specified another Program Folder during installation, it will be in another location, as specified by you. Select "VPN Client." The Sonic.net-distributed copy of the Cisco VPN Client is pre-configured to use the Sonic.net VPN concentrator. Click the button labeled "Connect" to continue.

Win vpn connect screen.png

You will be prompted to provide you Sonic.net login name and password. Please note that only active Sonic.net accounts with dialup privileges will be allowed to authenticate.

Win vpn auth screen.png


Advanced

The Sonic.net-distributed copy of the Cisco VPN Client is pre-configured to use the Sonic.net VPN concentrator. Should it become necessary for some reason to modify your settings, the following screenshots can serve as a reference. First, open the "Options" menu, then select "Advanced Mode."

Win vpn connect screen.png

In the advanced view, you will see listed any connections your VPN client is aware of. New connection settings can be created, and existing settings can be modified, deleted, or imported from another source.

Win vpn advanced.png

Select the connection you would like to modify, and click the "modify" button. The "Authentication" tab will be presented by default. For the Sonic.net VPN Concentrator, the settings should be as follows:

  • Connection Family can be named anything you like.
  • Description can be anything you like.
  • Host should be 208.201.249.242, the IP address for ipsec.vpn.sonic.net.
  • Select "Group Authentication">
  • Name should be "Standard VPN" (note the capitalization)
  • Password should be "standard" (all lower-case)
  • Confirm Password should be as above.

Win vpn auth.png

Under the "Transport" tab, "Enable Transparent Tunneling" should be selected. Both IPSec over UDP and IPSec over TCP (port 10000) should work with the Sonic.net VPN concentrator. "Allow Local LAN Access" is purely-optional.

Win vpn transport.png

No settings should be specified under the "Backup Servers" tab.

Win vpn backup.png

The "Dial-Up" tab allows you to configure the VPN Client to function over a normal modem connection (whereas by default it is configured to use your LAN connection). To enable this, simply click the checkbox labeled "Connect to Internet via dial-up" and select the dialup connection (listed as a "Phonebook Entry" here) that you wish to use. Please note that the additional overhead of a VPN connection will have a noticeable impact on connection performance.

Win vpn dial.png


iOS VPN Configuration (iPhone/iPad)

This page has been deprecated. It may:
*Reference services that Sonic.net no longer offers
*Refer to hardware or software that are outdated or no longer available

The page has been left up for reference only.

This reference document details the procedure for configuring an iOS (iPad / iPhone / iPod) device for use with the Sonic.net VPN concentrator.

Open up the "Settings" application on your iOS device. Within "Settings" tap "General", then tap "Network" then "VPN." Tap "Add VPN Configuration..." then tap "IPSec" and enter the following settings:

  • Description: ipsec.vpn.sonic.net
  • Server: ipsec.vpn.sonic.net
  • Account: (your Sonic.net username)
  • Password: (your Sonic.net password)
  • User Certificate: OFF
  • Group Name: Standard VPN
  • Secret: standard

Tap "Save" at the top right hand corner.

Iosvpn.png


Cisco Systems VPN Client for Mac OSX

This page has been deprecated. It may:
*Reference services that Sonic.net no longer offers
*Refer to hardware or software that are outdated or no longer available

The page has been left up for reference only.


Setup File

This will create a virtual install drive on your desktop.

Virtual Drive

Double-click on the install drive, then double-click on the "Cisco VPN Client.mpkg" icon to begin the installation.

Setup Folder

On the first screen of the installation process, press "Continue."

Welcome!

The Client Software License Agreement outlines the terms and conditions of using the software. Click on "Continue," then "Agree" on the next screen to consent and move forward.

License Agreement
Do you agree?

The next screen will specify the drive on your computer on which the program will be installed. Select your main hard drive, and when you're ready, click "Continue."

Install Volume

Click on "Install" on this next screen to install the program.

Almost Done

The installer will now ask for your Name and Password. This is NOT your Sonic.net Username and password! This information is specific to your computer only.

Mac Login Info

The installer will begin transferring files to your computer.

Copying files...

When the installation is complete, you will find the Cisco VPN client icon in your Applications folder.

VPN Client Icon.

The main VPN client window will look like this. The settings for the client should be correct by default. When you are ready, click connect.

VPN client window

When you make the connection, you will be prompted for your Sonic.net username and password. Enter them here.

Username and Password

Once connected, the client will remain visible unless you minimize it to your dock. To end your VPN session, click on the "Disconnect" button.

Way to go!

OS X 10.7 (Lion)

The Cisco VPN client has a number of bugs when running in OS X 10.7, and is not recommended. You may be able to connect to the Sonic.net VPN Concentrator using the VPN client built into Lion:

  1. Open System Preferences > Network
  2. Click the lock button to unlock it and make changes
  3. Click the plus sign above the unlocked lock button to add an interface.
  4. On the "Interface" drop-down select "VPN"
  5. On the "VPN Type:" drop-down select "Cisco IPSec"
  6. In the "Service Name:" text box create a memorable interface name such as "Corp IPsec VPN"
  7. Click OK and then select this new interface
  8. Configure the interface with
  • Server: ipsec.vpn.sonic.net
  • Account: (your Sonic.net username)
  • Password: (your Sonic.net password)
  • Use Certificate: OFF
  • Group Name: Standard VPN
  • Secret: standard


Android Configuration

Several users have reported success being able to connect to the VPN service on rooted Android devices running ICS. See this post in our forums for more information. https://forums.sonic.net/viewtopic.php?f=10&t=16&view=unread#p3515