VPN

From renci wiki
Jump to navigation Jump to search

A Virtual Private Network (VPN) is a tool used for connecting your computer to a company's internal network. Connecting to the RENCI VPN makes it look like you are physically located inside the RENCI office, which allows you to access various internal websites that aren't exposed on the public internet (likewise for the UNC VPN).

RENCI VPN

In order to connect to the RENCI VPN, you must first download the latest version of the OpenVPN client. The directions are as follows:

  1. Visit https://vpn.renci.org
  2. Provide your RENCI credentials
  3. Download the OpenVPN Connect client recommended for your device
    1. If you get an "Internal Server Error", see the troubleshooting section below.
  4. Install the client
  5. Back on the OpenVPN webpage, at the bottom, click and download Yourself (user-locked profile)
  6. Start the openVPN client
  7. Click on the "plus" icon located at the bottom right hand corner of the client to import the user-locked profile you just downloaded
  8. After the import, in the client, toggle the switch next to your imported profile to connect to the RENCI VPN

When a new version of the client is released, you should complete the same steps again.

Should any issues arise during an installation or upgrade, please uninstall the client and attempt the installation again. If any issues persist with the install, please contact help@renci.org for assistance.

UNC VPN

Instructions to install UNC's VPN Client can be found here: ITS Knowledge - ITS. Select your respective operating system under the Obtaining and installing the VPN section and follow the directions.


Connecting to UNC VPN

After the client has been installed from the UNC site above you can connect using the RENCI group and your ONYEN username and password.

UNC VPN 2.jpg

Error Troubleshooting - RENCI OpenVPN Connect

Internal Server Error: CPage error in CMain/locateChild

If you encounter an Internal Server Error when trying to download your client from https://vpn.renci.org, follow these steps instead as a workaround until OpenVPN fixes the bug:

  1. Go to the OpenVPN website to download the client: https://openvpn.net/client/
    1. It's the same client that vpn.renci.org will download, it's just missing a pre-loaded "profile" for connecting to RENCI, which can be obtained in the next step.
  2. After the client is installed, click the "+" button to import a profile
  3. For the URL, enter https://vpn.renci.org, then click "next"
  4. Enter your RENCI username and password, leave the other fields untouched, then click "import"

macOS: Error calling protect() method on socket

On macOS, after trying to connect, the VPN client might spin for a minute, then the message "Error calling protect() method on socket" may appear. If this happens, you'll need to open your Terminal and run the following command (source):

sudo launchctl load -w /Library/LaunchDaemons/org.openvpn.client.plist

This command will start up a background process which OpenVPN requires to work.

To make this change permanent, you must do the following:

  1. Open "system settings"
  2. Search for the "Login Items" setting
  3. Under "Allow in the background", find "OpenVPN client" and make sure it is enabled.

This change will ensure that when you restart your computer, OpenVPN's background process will start back up automatically. This background process does not use up any resources, but is unfortunately required for OpenVPN to work.

Error Troubleshooting - UNC Cisco AnyConnect

The VPN Service is not available. Exiting

If you launch Cisco AnyConnect and it throws the error "The VPN Service is not available. Exiting.", the fix is to uninstall it and reinstall it. Follow the directions here to do that: https://uncch.service-now.com/sp?id=kb_article_view&sysparm_article=KB0010155

VPN client agent was unable to create the interprocess communication depot

If you receive an error during the installation or when trying to launch UNC's Cisco AnyConnect VPN, stating "VPN client agent was unable to create the interprocess communication depot", perform the following methods:


Method 1: Disable Internet Connection Sharing (ICS)
  1. Press Windows key + R to open a Run box, then type “control” and press Enter to open Control Panel.
  2. Inside Control Panel, change the View by type to Category from the top-right corner.
  3. Then, click on View network status and tasks (directly under Network and Internet).
  4. In the Network and Sharing Center window, click on Change adapter settings from the left-hand side submenu.
  5. In the Network Connections screen, look for the network (or networks) that has Shared in the Status column, then right-click on it and choose Properties.
  6. In the Properties screen, go to the Sharing tab and uncheck the box associated with Allow other network users to connect through this computer’s Internet connection.
  7. Click Ok to save the changes.
  8. Try to install or run Cisco AnyConnect again.


If the above steps do not resolve the error OR "Allow other network users to connect through this computer’s Internet connection" is already unchecked, try the Method 2.


Method 2: Changing the startup type of the ICS service to Disabled
  1. Press Windows key + R to open up a Run dialog box. Next, type “services.msc” and press Enter to open up the Services screen.
  2. In the Services window, use the right-hand pane to scroll down through the list of services and locate the Internet Connection Sharing (ICS) entry.
  3. Once you see it, right-click on it and select Stop to turn off the service.
  4. Right-click on Internet Connection Sharing (ICS) and select Properties.
  5. In the Internet Connection Sharing (ICS) Properties window, under the General tab, change the startup type to Disabled using the drop-down menu. Then, click Apply to save the changes.
  6. Try to install or run Cisco AnyConnect again.
Retrieved from "https://wiki.renci.org/index.php?title=VPN&oldid=1587"