Linux'da VPN Client Kurulumu
CLI Guru - Cisco Eğitim ve Danışmanlık Merkezi |

+ Konuyu Cevapla
Toplam 4 sonuçtan 1 ile 4 arasındakiler gösteriliyor.
Linux'da VPN Client Kurulumu

Linux Uzerinde VPN Istemci Konfigurasyonu NOT: Asagida Rehdat 5u1 versiyonunda kurulum yapilmistir. 1 – Internetten linux’ unuza uygun vpn istemcisini indiriniz. 2- Sıkıstırılmıs dosyayi acin ve ilgili dizine geciniz: [[email protected]

  1. #1
    irony isimli Üye şimdilik offline konumundadır Senior Member
    Üyelik tarihi
    Nov 2008
    Mesajlar
    914

    Standart Linux'da VPN Client Kurulumu

    Linux Uzerinde VPN Istemci Konfigurasyonu

    NOT: Asagida Rehdat 5u1 versiyonunda kurulum yapilmistir.

    1 – Internetten linux’ unuza uygun vpn istemcisini indiriniz.
    2- Sıkıstırılmıs dosyayi acin ve ilgili dizine geciniz:
    [[email protected] ~]# tar -xvf vpnclient-linux-x86_64-4.8.00.0490-k9.tar.gz
    vpnclient/
    vpnclient/libvpnapi.so
    vpnclient/vpnapi.h
    vpnclient/cisco_cert_mgr
    vpnclient/vpnclient
    vpnclient/ipseclog
    vpnclient/cvpnd
    vpnclient/vpn_install
    vpnclient/vpnclient_init
    vpnclient/vpn_uninstall
    vpnclient/driver_build.sh
    vpnclient/sample.pcf
    vpnclient/vpnclient.ini
    vpnclient/license.txt
    vpnclient/license.rtf
    vpnclient/interceptor.c
    vpnclient/linuxcniapi.c
    vpnclient/linuxcniapi.h
    vpnclient/vpn_ioctl_linux.h
    vpnclient/IPSecDrvOS_linux.c
    vpnclient/linux_os.h
    vpnclient/frag.h
    vpnclient/frag.c
    vpnclient/linuxkernelapi.c
    vpnclient/GenDefs.h
    vpnclient/mtu.h
    vpnclient/IPSecDrvOSFunctions.h
    vpnclient/IPSecDrvOS_linux.h
    vpnclient/Cniapi.h
    vpnclient/unixcniapi.h
    vpnclient/unixkernelapi.h
    vpnclient/config.h
    vpnclient/libdriver64.so
    vpnclient/libdriver.so
    vpnclient/Makefile
    [[email protected] ~]# cd vpnclient

    3 – vpn_install betigi ile vpn kurulumunu yapiyoruz:

    [[email protected] vpnclient]# ./vpn_install
    Cisco Systems VPN Client Version 4.8.00 (0490) Linux Installer
    Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.

    By installing this product you agree that you have read the
    license.txt file (The VPN Client license) and will comply with
    its terms.


    Directory where binaries will be installed [/usr/local/bin]

    Automatically start the VPN service at boot time [yes]

    In order to build the VPN kernel module, you must have the
    kernel headers for the version of the kernel you are running.


    Directory containing linux kernel source code [/lib/modules/2.6.18-53.el5/build]

    * Binaries will be installed in "/usr/local/bin".
    * Modules will be installed in "/lib/modules/2.6.18-53.el5/CiscoVPN".
    * The VPN service will be started AUTOMATICALLY at boot time.
    * Kernel source from "/lib/modules/2.6.18-53.el5/build" will be used to build the module.

    Is the above correct [y]

    Making module
    make -C /lib/modules/2.6.18-53.el5/build SUBDIRS=/root/vpnclient modules
    make[1]: Entering directory `
    .
    .
    .
    Creating start/stop script "/etc/init.d/vpnclient_init".
    /etc/init.d/vpnclient_init
    Enabling start/stop script for run level 3,4 and 5.
    Creating global config /etc/opt/cisco-vpnclient

    Installing license.txt (VPN Client license) in "/opt/cisco-vpnclient/":

    Installing bundled user profiles in "/etc/opt/cisco-vpnclient/Profiles/":
    * New Profiles : sample

    Copying binaries to directory "/opt/cisco-vpnclient/bin".
    Adding symlinks to "/usr/local/bin".
    /opt/cisco-vpnclient/bin/vpnclient
    /opt/cisco-vpnclient/bin/cisco_cert_mgr
    /opt/cisco-vpnclient/bin/ipseclog
    Copying setuid binaries to directory "/opt/cisco-vpnclient/bin".
    /opt/cisco-vpnclient/bin/cvpnd
    Copying libraries to directory "/opt/cisco-vpnclient/lib".
    /opt/cisco-vpnclient/lib/libvpnapi.so
    Copying header files to directory "/opt/cisco-vpnclient/include".
    /opt/cisco-vpnclient/include/vpnapi.h

    Setting permissions.
    /opt/cisco-vpnclient/bin/cvpnd (setuid root)
    /opt/cisco-vpnclient (group bin readable)
    /etc/opt/cisco-vpnclient (group bin readable)
    /etc/opt/cisco-vpnclient/Profiles (group bin readable)
    /etc/opt/cisco-vpnclient/Certificates (group bin readable)
    * You may wish to change these permissions to restrict access to root.
    * You must run "/etc/init.d/vpnclient_init start" before using the client.
    * This script will be run AUTOMATICALLY every time you reboot your computer.

    4 – Bu asamada artik VPN baglantimiz icin profil olusturacagiz. Bunun icin /etc/opt/cisco-vpnclient/Profiles dizinine geciyoruz.
    [[email protected] vpnclient]# cd /etc/opt/cisco-vpnclient/Profiles/

    Profiles dizininde yer alan sample.pcf dosyasini istediginiz bir profil isminde kopyalayiniz:
    [[email protected] Profiles]# cp sample.pcf vpndemo.pcf
    vpndemo.pcf dosyasinin izinlerini asagidaki gibi degistiriyoruz:

    [[email protected] Profiles]# ls -l
    total 8
    -rw-rw-rw- 1 root bin 349 Apr 28 17:40 sample.pcf
    -rw-r--r-- 1 root root 347 Apr 28 17:47 vpndemo.pcf
    [[email protected] Profiles]# chmod 666 vpndemo.pcf
    [[email protected] Profiles]# ls -l
    total 8
    -rw-rw-rw- 1 root bin 349 Apr 28 17:40 sample.pcf
    -rw-rw-rw- 1 root root 347 Apr 28 17:47 vpndemo.pcf

    vpndemo.pcf dosyasi icinde sadece asagidaki alanlari degistirmeniz yeterli olacaktir:
    Description=vpndemo
    Host=x.x.x.x
    GroupName=vpndemo

    5– Makinemizi yeniden baslatiyoruz:
    [[email protected] Profiles]# reboot

    6- Simdi ise vpn istemcimize ait sureci baslatiyoruz:
    [[email protected] Profiles]# /etc/init.d/vpnclient_init start
    Starting /opt/cisco-vpnclient/bin/vpnclient: Done

    7 – Artik VPN baglantisi yapabiliriz:
    [[email protected] vpnclient]# /usr/local/bin/vpnclient connect vpndemo
    Cisco Systems VPN Client Version 4.8.00 (0490)
    Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
    Client Type(s): Linux
    Running on: Linux 2.6.18-53.el5 #1 SMP Wed Oct 10 16:34:19 EDT 2007 x86_64
    Config file directory: /etc/opt/cisco-vpnclient

    Enter a group password:
    //Yukarida size Network Yoneticisi tarafindan verilen sifreyi girmeniz gerekiyor.
    Initializing the VPN connection.
    Contacting the gateway at x.x.x.x
    User Authentication for vpndemo...

    The server has requested the following information to complete the user authentication:

    Username [chimchim]: irony
    // Sunucu sistemine giris yaparken kullandiginiz kullanici adini yazmalisiniz.
    Password []:
    // Kullanici adiniza ait olan sifreyi girmelisiniz.
    Authenticating user.
    Negotiating security policies.
    Securing communication channel.

    Your VPN connection is secure.

    VPN tunnel information.
    Client address: y.y.y.y
    Server address: x.x.x.x
    Encryption: 168-bit 3-DES
    Authentication: HMAC-SHA
    IP Compression: None
    NAT passthrough is inactive
    Local LAN Access is disabled

    Bu asamadan itibaren VPN ile baglanti yapabilirsiniz.
    Iyi Calismalar...
    Konu irony tarafından (29.04.2009 Saat 20:42 ) değiştirilmiştir.

  2. #2
    ercanusa isimli Üye şimdilik offline konumundadır Senior Member
    Üyelik tarihi
    Dec 2007
    Bulunduğu yer
    İstanbul
    Mesajlar
    513

    Standart

    Linuxden hiç anlamam ama çok güzel olmuş

  3. #3
    AcLMasteR isimli Üye şimdilik offline konumundadır Administrator
    Üyelik tarihi
    Jan 2008
    Bulunduğu yer
    Ankara
    Mesajlar
    1,195

    Standart

    valla şu linuxu bi ögrenemedim gitti yaw ne zaman nasip olacak kullanmak aceba. kesinlikle güzel bi döküman teşekkürler
    Konu AcLMasteR tarafından (29.04.2009 Saat 21:09 ) değiştirilmiştir.
    The day that never comes

  4. #4
    root isimli Üye şimdilik offline konumundadır Moderator
    Üyelik tarihi
    Jun 2007
    Bulunduğu yer
    Ankara
    Mesajlar
    1,409

    Standart

    irony arkadasimiza tesekkurler.. gercekten guzel bir anlatimda bulunmus.. ancak kaynak koddan kurulumu anlatmis..

    bazi linux dagitimlarinin ise kendi paket yoneticisi bulunuyor. ornegin debian'in apt sistemi var. debian/ubuntu vb. dagitimlar kullananlar apt ile asagidaki sekilde kurulum yapabilirler.

    once paketin paket depolarinda olup olmadigina bakalim;

    [email protected]:~$ apt-cache search vpnc
    kvpnc - vpn clients frontend for KDE
    network-manager-vpnc - network management framework (VPNC plugin core)
    network-manager-vpnc-gnome - network management framework (VPNC plugin GNOME GUI)
    vpnc - Cisco-compatible VPN client

    daha sonra onumuze cikan listeden, eger KDE kullaniyorsaniz kvpnc programini yok normal masaustu ortami kullaniyorsaniz (gnome vs.) vpnc programini yine apt ile kurmaniz yeterli olacaktir.

    bunun icin gereken komut ise su;

    [email protected]:~$ apt-get install vpnc

    saygilar

+ Konuyu Cevapla

Bu Konuyu Paylaşın !

Bu Konuyu Paylaşın !

Yetkileriniz

  • Konu Acma Yetkiniz Yok
  • Cevap Yazma Yetkiniz Yok
  • Eklenti Yükleme Yetkiniz Yok
  • Mesajınızı Değiştirme Yetkiniz Yok