pub:conf-vpn-paloalto-en
Differenze
Queste sono le differenze tra la revisione selezionata e la versione attuale della pagina.
Entrambe le parti precedenti la revisioneRevisione precedenteProssima revisione | Revisione precedenteUltima revisioneEntrambe le parti successive la revisione | ||
pub:conf-vpn-paloalto-en [2020/12/21 07:23] – [VPN PaloAlto GlobalProtect Configuration] andrea.avi@unitn.it | pub:conf-vpn-paloalto-en [2022/08/08 14:26] – m.fiorazzo@unitn.it | ||
---|---|---|---|
Linea 2: | Linea 2: | ||
[[https:// | [[https:// | ||
---- | ---- | ||
- | The **GloblaProtect** client allows you to use the UniTN network resources in the same way you can do in your office but from a remote site (home network or any internet connection) and it supports Windows | + | The **GlobalProtect** client allows you to use the UniTN network resources in the same way you can do in your office but from a remote site (home network or any internet connection) and it supports Windows,MacOS and Linux clients. |
- | The **OpenConnect** unofficial | + | The **GlobalProtect Mobile** client |
+ | |||
+ | For security reasons, access | ||
+ | * Windows: Supported OS ( Windows 8.1, Windows 10, Windows 11 ), automatic updates enabled, antivirus installed | ||
+ | * MacOSX: Supported OS ( OSX Version 10.13 o later), automatic updates enabled | ||
+ | * Linux: Automatic updates enabled (CentOS, RehHat, Ubuntu) | ||
+ | |||
+ | [[https:// | ||
Internet traffic will still flow from the active connection (ADSL, etc) while only the Unitn traffic will be routed into the tunnel (**Spilt Tunnel Mode**) | Internet traffic will still flow from the active connection (ADSL, etc) while only the Unitn traffic will be routed into the tunnel (**Spilt Tunnel Mode**) | ||
Linea 17: | Linea 24: | ||
- Navigate to URL [[https:// | - Navigate to URL [[https:// | ||
- | Otherwise you can download it from the links below and jump to step 4) | + | Otherwise you can download it from the [[https://wiki.unitn.it/ |
- | + | ||
- | ^GlobalProtect Download^ | + | |
- | |{{:pub: | + | |
- | |{{: | + | |
- | |{{:pub:vpn: | + | |
- | |[[: | + | |
1) login with your UniTN credentials on https:// | 1) login with your UniTN credentials on https:// | ||
Linea 57: | Linea 58: | ||
- | ===== OpenConnect | + | ===== GlobalProtect Mobile |
- | ---- | + | * Download the client on Play/App Store, searching for " |
- | OpenConnect is an **unofficial** client for Linux machines, to use it you need to be able to do some basic compilation | + | * Launch the app, in the Portal section, insert // |
+ | {{: | ||
+ | * When asked, insert the University credentials in the // | ||
+ | {{: | ||
- | The software is available on: [[https://www.infradead.org/ | + | ===== GlobalProtect for Linux ===== |
+ | Get the client from the [[https://wiki.unitn.it/pub: | ||
- | Installation instructions are dependent upon the specific | + | Install |
- | ---- | + | |
- | + | ||
- | Installation and download of OpenConnect client and libraries: | + | |
< | < | ||
- | sudo apt-get install build-essential gettext autoconf automake libproxy-dev libxml2-dev libtool vpnc-scripts pkg-config zlib1g-dev libgnutls28-dev | + | Debian Based: dpkg -i GlobalProtect_deb-5.2.3.0-10.deb |
- | + | RedHat Based: rpm -ivh GlobalProtect_rpm-5.2.30-10.rpm | |
- | git clone git://git.infradead.org/ | + | |
- | cd openconnect | + | |
- | ./autogen.sh | + | |
- | ./ | + | |
- | make | + | |
- | sudo make install && sudo ldconfig | + | |
</ | </ | ||
- | After the installation, | + | After the installation, |
< | < | ||
- | sudo openconnect | + | Connect: globalprotect connect |
+ | Disconnect: globalprotect disconnect | ||
</ | </ | ||
Linea 88: | Linea 85: | ||
{{: | {{: | ||
+ | |||
+ | ===== Blocked resources ===== | ||
+ | |||
+ | Users connection with unsupported operating systems will not be able to access the following resources: | ||
+ | |||
+ | |||
+ | alessandria1.unitn.it | ||
+ | 192.168.206.42 | ||
+ | |||
+ | nx-trento.unitn.it | ||
+ | 192.168.132.11 | ||
+ | |||
+ | nx-collina.unitn.it | ||
+ | 192.168.123.6 | ||
+ | 192.168.123.5 | ||
+ | |||
+ | fluidfs-prod.unitn.it | ||
+ | 192.168.123.11 | ||
+ | |||
+ | fluidfs-prod2.unitn.it | ||
+ | 192.168.123.19 | ||
+ | 192.168.123.18 | ||
+ | |||
+ | f87.unitn.it 192.168.187.25 | ||
+ | f85.unitn.it 192.168.187.26 |