ITBHU VPN
319 views
Skip to first unread message
Rohit Yadav
Mar 8, 2012, 2:44:33 PM3/8/12
to FOSS@ITBHU
ITBHU folks (both alums and on campus students) can start using VPN
using your valid itbhu.ac.in username and password. Check your itbhu
inbox for details.
VPN allows you to login to our ITBHU network from both the BHU-cc
network and the Internet.
VPN's Internal gw/ip is 10.3.11.250 and external gw/ip is
14.139.228.210 running on port 443 (so if 10.3.11.250 is down, you can
use the same via any of the bhu-cc proxies).
Hints for Linux users:
1. sudo apt-get install openvpn network-manager-openvpn
2. Download the ca.crt file: http://14.139.228.210/ca.crt
3. Open network manager, in VPN, add new connection with:
Gateway: 10.3.11.250 (or use 14.139.228.210 using proxy)
Type: Password
Username: rohit.yadav.cse07 (yours here, note: not the @itbhuxxx
part, only your username/id)
Password: <your-passwd>
CA cert file: put here path/select it
4. Click advanced -> set custom gateway port to 443 and check/tick
"use TCP"
5. Click on the VPN to connection to activate!
6. Open terminal and do: `we need to fix routes`
netstat -nr
If you're lucky simply run this the second colm will hold your
hostel's/dept's gw:
netstat -nr | grep -v tun | grep ^0.*[\t.\ ]*10.[0-9.]*[0\t.\ ]*
the idea is to find any network 0.0.0.0 that has its gateway
(equal to your hostel's) in eth0/or-your-network-device and delete it
so all packets from 0.* goto the vpn's gw:
sudo route del -net 0.0.0.0 netmask 0.0.0.0 gw 10.8.50.1 dev
eth0
Now enjoy the Internet, let me know if it fails for you. Try some cool
things the were forbidden by bhu proxies, go check mail on mutt,
hangout on irrsi. Avoid torrents and network games so you don't ruin
the experience for everybody and someone may suspend your account.
Lastly, gear up for GSoC! Don't mail any member or myself personally,
ask away on this group.
Cheers.
using your valid itbhu.ac.in username and password. Check your itbhu
inbox for details.
VPN allows you to login to our ITBHU network from both the BHU-cc
network and the Internet.
VPN's Internal gw/ip is 10.3.11.250 and external gw/ip is
14.139.228.210 running on port 443 (so if 10.3.11.250 is down, you can
use the same via any of the bhu-cc proxies).
Hints for Linux users:
1. sudo apt-get install openvpn network-manager-openvpn
2. Download the ca.crt file: http://14.139.228.210/ca.crt
3. Open network manager, in VPN, add new connection with:
Gateway: 10.3.11.250 (or use 14.139.228.210 using proxy)
Type: Password
Username: rohit.yadav.cse07 (yours here, note: not the @itbhuxxx
part, only your username/id)
Password: <your-passwd>
CA cert file: put here path/select it
4. Click advanced -> set custom gateway port to 443 and check/tick
"use TCP"
5. Click on the VPN to connection to activate!
6. Open terminal and do: `we need to fix routes`
netstat -nr
If you're lucky simply run this the second colm will hold your
hostel's/dept's gw:
netstat -nr | grep -v tun | grep ^0.*[\t.\ ]*10.[0-9.]*[0\t.\ ]*
the idea is to find any network 0.0.0.0 that has its gateway
(equal to your hostel's) in eth0/or-your-network-device and delete it
so all packets from 0.* goto the vpn's gw:
sudo route del -net 0.0.0.0 netmask 0.0.0.0 gw 10.8.50.1 dev
eth0
Now enjoy the Internet, let me know if it fails for you. Try some cool
things the were forbidden by bhu proxies, go check mail on mutt,
hangout on irrsi. Avoid torrents and network games so you don't ruin
the experience for everybody and someone may suspend your account.
Lastly, gear up for GSoC! Don't mail any member or myself personally,
ask away on this group.
Cheers.
Shishir Mittal
Mar 9, 2012, 3:12:14 AM3/9/12
to foss-...@googlegroups.com
Kudos to your team! Great work! :)
--
Shishir
--
Shishir
--
You received this message because you are subscribed to the Google Groups "FOSS@ITBHU" group.
To post to this group, send email to foss-...@googlegroups.com.
To unsubscribe from this group, send email to foss-itbhu+...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/foss-itbhu?hl=en.
Atul Aggarwal
Mar 9, 2012, 6:04:29 AM3/9/12
to foss-...@googlegroups.com
Yup.. Interesting work.. I will be using it for several activities inside company :)--
Regards,
Atul Aggarwal
Regards,
Atul Aggarwal
Amit Baranwal
Mar 12, 2012, 8:10:58 AM3/12/12
to foss-...@googlegroups.com
Firsly, lots of thanx......
It works fine with my ubuntu but there is a problem--->As I'm using ApexDc via wine so first it says to upgrade and now it shows timeout while connecting
and same with jucy.....
Even my iptux is unable to show ppl. from outside hostel.....
I think in some way vpn is restricting me to access(say ping) only my hostel's ips and of vpn......
with regards
Amit Kumar Baranwal
3rd cs IT-BHU
Rohit Yadav
Mar 12, 2012, 11:30:27 AM3/12/12
to foss-...@googlegroups.com
On Mon, Mar 12, 2012 at 5:40 PM, Amit Baranwal <amitbar...@gmail.com> wrote:
Firsly, lots of thanx......It works fine with my ubuntu but there is a problem--->As I'm using ApexDc via wine so first it says to upgrade and now it shows timeout while connectingand same with jucy.....Even my iptux is unable to show ppl. from outside hostel.....I think in some way vpn is restricting me to access(say ping) only my hostel's ips and of vpn......
Pl. post a message to Ravi Teja, pk and cc to NSR and myself.
Shobhit Jindal
Mar 12, 2012, 11:37:16 AM3/12/12
to foss-...@googlegroups.com
Maybe add a route 10.0.0.0/8 via 10.4.5.1 (Your hostel gateway) if your default(0.0.0.0) route is VPN G/w.
-Shobhit
Amit Baranwal
Mar 12, 2012, 1:33:22 PM3/12/12
to foss-...@googlegroups.com
Adding this new route doesn't work for ubuntu...
and
I think this is the usual problem with linux (atleast UBUNTU) as i was never able to use both my cell's network/net-connector and LAN at the same time...
i.e. UBUNTU supports only one network at a time.
and
Routing del/add commands are not required at the time configuration
if we simply treat vpn connection as our old proxy setting
and modify routes in ipv4 setting of vpn as --
Address : 10.20.1.*
Netmask : 255.0.0.0
Gateway : 10.8.11.1 (i.e. our hostel's)
and
most childish part
If it is somehow possible to change Netmask of vpn as 255.255.255.0 then maybe we can access both networks simultaneously.....
Rohit Yadav
Mar 12, 2012, 1:43:18 PM3/12/12
to foss-...@googlegroups.com
Works for me, sudo route add -net 10.0.0.0 netmask 255.0.0.0 gw <your-goddamn-hostel-gw>10.8.50.1 dev eth0
Reply all
Reply to author
Forward
0 new messages