VPN (Virtual Private Network) connection
C&CZ manages a VPN server, which makes it possible for all users to gain secure access to the network with their Science username and password. A RU-central VPN service can also be used with RU-account and RU-password.
The computer at home (or anywhere on the Internet) becomes part of the campus network. In this way users can get access to services that are normally only accessible from computers on campus. The most common of such services are connecting to disk shares or to special servers.
As of November 2015, the VPN is based on IPsec.
For the use of the University library one does not need VPN, because the library has a proxy website, that can be used from anywhere on the Internet after logging in with your RU-account and RU-password.
- VPN-server/gateway: vpnsec.science.ru.nl
Per device or Operating system:
- Windows7/8/8.1/10: Just add a *new* VPN with server vpnsec.science.ru.nl, that's all. Detailed instructions are below.
- OS X 10.11 El Capitan and higher: Download and install vpnsec-macosx.mobileconfig to your Apple computer.
Adapt the Authentication Settings... in System Preferences → Network → VpnSec to match your Science account and password.
- Linux: VPNsec Linux installation and configuration
- Ubuntu 16.04: If you are currently using vpnsec.science.ru.nl, please do not upgrade to Ubuntu 16.04. There is a known bug people are trying to fix, see msg4923789. A work around currently exists, requiring some manual configuration. See: VPNsec Linux installation and configuration. Or use the OpenVPN service.
VPNsec setup Windows 10
From Windows Settings, take the following route:
- Networks and Internet
- Add a VPN connection
- Fill in
|VPN provider||Windows (built-in)||default choice|
|Connection name||Science-VPNsec||choose something|
|Server name or address||vpnsec.science.ru.nl||provide as stated|
|VPN type||Automatic||default choice|
|Type of sign-in info||User name and password||default choice|
|User name (optional)||Science account||optional|
|Password (optional)||Science password||optional|
VPNsec setup Windows 7/8
From the windows Control panel, take the following route:
- Network and Internet
- Network and Sharing Center
- Setup a new connection or network
- Connect to a workspace -> Next
- Use my Internet connection (VPN)
- Fill in the Internet address: vpnsec.science.ru.nl
- and connection name, for example: Science VPNsec
- You'll be prompted for your Science username and password.
OpenVPN for Linux & MacOS
Setting up OpenVPN on Linux
Make sure you have the openvpn package installed. For Debian based distributions (like Ubuntu), run:
sudo apt-get install openvpn
Next, download the openvpn configuration file:
Starting OpenVPN on Linux
Startup the OpenVPN tunnel as follows:
sudo openvpn openvpn-science.ovpn
All traffic through OpenVPN
Use OpenVPN's --redirect-gateway autolocal option (or put it in the config file as redirect-gateway autolocal)
SSH SOCKS-Proxy to access journals (linux)
- Login to your Science account with ssh:
ssh -D 8942 lilo.science.ru.nl # (or any other login-server) (Enter password if required)
If your Science username (e.g. "peter") is different on your local username use:
ssh -D 8942 email@example.com
- Tell the web browser to use the server. In Firefox:
Chromium and Google Chrome can be called from the command line with the proxyserver option:
Run ssh in the background
With these flags:
ssh -f -N -D port
ssh will run in the background (-f) and only setup the proxy server but not actually logon (-N).
The "netstat" command may be used to troubleshoot problems:
will show all active and non-active tcp sockets. In the above example you should see something like: