SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I use Openconnect to create VPN connections to our corporate VPN-server (Pulse Secure, formerly Juniper). I invoke openconnect from a script (it's a cli tool), but there seems to be a plugin for Networkmanager.
I use Openconnect to create VPN connections to our corporate VPN-server (Pulse Secure, formerly Juniper). I invoke openconnect from a script (it's a cli tool), but there seems to be a plugin for Networkmanager.
I use VPN with Networkmanager and it works great.
First you need to install NetworkManager-openvpn that adds openvpn support to networkmanager.
I also added openresolv (built with openvpn support) to protect from DNS-leak from my opnenvpn configuration.
Code:
#DNS-leak protection, you need to install openresolv
script-security 2
up /etc/openvpn/update-resolv-conf
down /etc/openvpn/update-resolv-conf
I don't remember if it was needed with networkmanager but i had it in my older .ovpn that i imported with networkmanager.
You can also chose to automaticly connect to VPN for a connection in networkmanager.
Is there anything special with Sonicwall Global VPN?
What vpn solutions do they support?
Did some quick google-fu and it seems to support ipsec and L2TP.
If it supports L2TP then i can't see why there would be any problems to use networkmanager.
Hello Nille
The Sonicwall is setup for IPsec with XAUTH
(I'd need to pass a preshared secret, user/password, VPN group etc)
I was looking at L2TP as an option, but after talking to a engineer at Sonicwall I've decided not to take that route.
(It appears that it's an legacy protocol that isn't recommended and may be removed)
I've heard that StrongSwan may work, but so far have had no luck getting Networkmanager-strongswan to compile
If you can switch to plain IKEv2 instead of outdated IKEv1/L2TP, then you can use StrongSwan.
I use it to connect to my office via IPsec (pure IKEv2 with eap-mschap2, no L2TP), but afaik XAUTH is only for IKEv1(similar thing is called EAP in IKEv2).
I have NetworkManager but my VPN is not controlled by it: I just call ``ipsec start``. This command is kinda outdated (StrongSwan recommends ``swanctl``) but I am too lazy to update my configs
Not sure which device is installed on the other side, probably Windows box (this is why I use mschap2)
I use this slackbuild because I am on 14.2 https://slackbuilds.org/repository/1...rk/strongswan/
but you can build it from scratch: pay attention on options, there are a lot of plugins you may need depending on your authentication method etc.
I ended up here, cause work suddenly changed vpn from a working vpnc to ipsec/l2tp which seemed a doodle (there is a NetworkManager-l2tp plugin) but then it needs xl2tp and also swan (it looks as if the ubuntu-world is catered for this, as openswan comes from the same company that's behind the xl2tp lib):https://github.com/xelerance/Openswa...-and-SonicWall
fwif, if you check Robbie Workman's Slackbuilds for say the NetworkManager-Openvpn plugin he uses a configure-option " --without-libnm-glib ". Adding that to the list enabled compiling at my end. But still it won't do a thing. Possible some configuration issue as you see what comes with strongswan....
Now have to plow through Ilyak's list to see what's going on, but I am afraid my old NetworkManager disgust will get revived. See, after an hour installing it, the NetworkManager strongswan-plugin I compiled turns up in its interface.... ok let's see what happens ;-#
I am still in the dark about getting my comp to connect with my new work-vpn (I think it's to do with all kinds of settings or -for linux- badly chosen ikev/authorisation protocols), but the stuff is talking to each other on my system. Being on current (with NetworkManager 1.22), this has:
To upgrade just use the SBo slackbuilds, but change the version. Also, if you want to use the strongswan.org provided Networkmanager-strongswan plugin, you need to add to the strongswan.SlackBuild:
There is no SBo Slackbuild for this plugin, but with the one attached (you need to restore filenames before use), with added configure options (one of which is introduced as a variable), it got installed at my end.
Code:
#path to charon coming with strongswan
CHARON=${CHARON:-/usr/libexec/ipsec/charon-nm}
...
--without-libnm-glib \
--with-charon=$CHARON \
Being a networking-noob no guarantuee anything will work but at least one can try...
Thanks for the tip (the NM plugin also needed --without-libnm-glib to compile).
Well, this is what I get with the OpenConnect version:
Quote:
POST https://remote.net.xx.xx.xx/
Attempting to connect to server 192.xx.xx.xx:xx
Connected to 192.xx.xx.xx:xx
SSL negotiation with remote.net.xx.xx.xx
SSL connection failure: The TLS connection was non-properly terminated.
Failed to open HTTPS connection to remote.net.xx.xx.xx
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
