[[Include(WikiToC)]] === IPSEC VPN === #setup We maintain point to point connections to link various resources to the testbed, mostly at layer 2 for networking experiments. This consists of dialable links over internet2, as well as tunnels over the public internet. ==== User VPN Service Connect to the following endpoints using your COSMOS username and password. This will only be active during your reservation. || Server || Subnet || Description || || vpn.bed.cosmos-lab.org || 10.110.0.0/16 || COSMOS Main Testbed || || vpn.sb1.cosmos-lab.org || 10.37.0.0/16 || COSMOS SB1 || || vpn.sb2.cosmos-lab.org || 10.116.0.0/16 || COSMOS SB2 || ==== Instructions per Client OS [[CollapsibleStart(Windows)]] Windows !PowerShell commands: || Domain || Windows !PowerShell Commands || || SB1 || {{{ Add-VpnConnection -Name "COSMOS SB1" -ServerAddress vpn.sb1.cosmos-lab.org -DnsSuffix sb1.cosmos-lab.org -TunnelType IKEv2 -EncryptionLevel Required -AuthenticationMethod EAP -SplitTunneling -RememberCredential -PassThru}}} [[BR]]{{{ Add-VpnConnectionRoute -ConnectionName "COSMOS SB1" -DestinationPrefix 10.37.0.0/16 -PassThru}}} || || SB2 || {{{ Add-VpnConnection -Name "COSMOS SB2" -ServerAddress vpn.sb2.cosmos-lab.org -DnsSuffix cosmos-lab.org -TunnelType IKEv2 -EncryptionLevel Required -AuthenticationMethod EAP -SplitTunneling -RememberCredential -PassThru }}} [[BR]]{{{ Add-VpnConnectionRoute -ConnectionName "COSMOS SB2" -DestinationPrefix 10.116.0.0/16 -PassThru}}} || || Main Testbed || {{{ Add-VpnConnection -Name "COSMOS Main Testbed" -ServerAddress vpn.bed.cosmos-lab.org -DnsSuffix cosmos-lab.org -TunnelType IKEv2 -EncryptionLevel Required -AuthenticationMethod EAP -SplitTunneling -RememberCredential -PassThru }}} [[BR]]{{{ Add-VpnConnectionRoute -ConnectionName "COSMOS Main Testbed" -DestinationPrefix 10.110.0.0/16 -PassThru}}} || Open the !PowerShell command window as administrator [[Image(PowerShell1.png, 600px)]] Cut and paste the pair of commands into the !PowerShell window as show in figure below: [[Image(PowerShell2.png, 600px)]] Alternatively, [download the Windows !PowerShell script] to your local machine, right-click on it and run it as administrator. This will create three VPN connections for the three COSMOS domains. Once VPN connection(s) are created, you will be able to bring the connection menu up by left mouse click on the network icon on the Windows task bar: [[Image(VPN1.png, 300px)]] Selecting the appropriate connection (for which you must have current reservation) will bring up the prompt for username and password (only the very first time that particular VPN connection is activated): [[Image(VPN2.png, 300px)]] [[CollapsibleEnd]] [[BR]] [[CollapsibleStart(Linux)]] Comming soon [[CollapsibleEnd]] [[BR]] [[CollapsibleStart(MacOS)]] Comming soon [[CollapsibleEnd]]