The FH JOANNEUM intranet is being managed and protected against abuse by the central IT services. Internet access is being routed through a proxy as well. There are 3 options for gaining access to the intra- and internet:
- with a VPN tunnel (discussed in this article),
- with a dynamic ethernet port or
- via wireless LAN (WPA-TKIP Enterprise).
In order to establish a VPN tunnel connection, the client computer needs software that is compatible with the VPN concentrators. Cisco produces their own, proprietary software for connecting to VPN 3000 concentrators. At this time, there are the Cisco AnyConnect VPN Client and the (outdated) Cisco VPN Client.
Additionally, Mac OS X 10.6 ("Snow Leopard") can connect to the FH JOANNEUM VPN without any third-party software.
Mac OS X 10.6 built-in VPN connection
Philipp Rappold of IND09 wrote an instruction manual for creating a Cisco-compatible VPN connection with OS X Snow Leopard. Thanks a lot!
Important notice: The VPN server address has changed - use vpn.fh-joanneum.at instead of the IP address shown in the PDF.
Cisco AnyConnect VPN Client
The Cisco AnyConnect VPN Client is a modern alternative to the older Cisco VPN Client, which has been the source of many past problems under both Windows and OS X. The new client is smaller, faster, more stable and efficient, does not need access profiles and, in fact, no other configuration whatsoever. Download it here:
Please note that the Cisco AnyConnect VPN Client cannot be used when you are already connected to the FH JOANNEUM intranet (via "wpa4fh", "wireless4fh" or a dynamic ethernet port).
Just install the program. After starting the application, use this server to connect:
After the connection is established, the client asks for your username and password:
- Username: (Your Windows username)
- Password: (Your Windows password)
When done, you should be able to connect to the inter- and intranet as usual.
Cisco VPN Client (outdated)
The following steps have to be taken to establish a VPN connection with the FH JOANNEUM network:
- Install VPN client software
- Download and install suitable VPN profile(s)
- When at home: connect to the internt
- When on location at the FH JOANNEUM: connect to the wireless LAN - see below!
- Start the VPN client and connect with a suitable profile
If everything went fine, you will be asked for a password:
- Username: technikum\(your username)
- Password: (your Windows password)
Afterwards, access to the intra- and internet should be possible. It is recommended to manually disconnect the VPN connection before putting your computer into standby, because connection difficulties might result after wakeup.
Alternative WLAN access point for the old Cisco VPN Client
Besides the known (and visible) access point "wpa4fh", there is another wifi network with hidden SSID broadcast, that can be used with the old Cisco VPN Client to connect to the intra- and internet. On older computers which do not support WPA-Enterprise or 802.1X authentification, this is the only way to get wireless access.
The SSID of the wireless VPN access points is hidden - you have to add the network manually with the following data:
- SSID: wireless4fh
- Protection: none
This wireless network is not directly connected to the intra- or internet - it only serves as VPN access point. All other routing is disabled until your VPN tunnel is established.
VPN client software
VPN client software is needed to establish an encrypted VPN tunnel. This software also needs to be compatible with VPN 3000 Concentrators - Cisco provides their own proprietary client for this purpose.
This is the original proprietary Cisco VPN Client software.
Max OS X
The original Cisco VPN Client is also available for multiple versions of Mac OS X. The user interface is the same as on Windows and the profile import also works identically.
- vpnclient-darwin-4.9.01.0090-universal-k9-BETA (Readme) - From OS X 10.5
- vpnclient-darwin-4.9.01.0030-universal-k9 (Readme) - OS X 10.4, Universal Binary
- vpnclient-darwin-4.8.00.0490-GUI-k9 (Readme) - Old version, until OS X 10.4, PPC
VPNC has been reported to work with Cisco VPN 3000 concentrators. Instructions as well as needed tools can be found on their website.
The VPN client needs connection details, which are contained in profile files. Depending on your location (at home or at one of the FH JOANNEUM locations), you need different profiles:
- Profiles for acces from a remote location
- Profiles for access via WLAN in Graz
- Profiles for access via WLAN in Kapfenberg
- Profiles for access via WLAN in Bad Gleichenberg
- Unpack the profile(s)
- Start the VPN client
- Press the Import button and select one profile at a time.
Right-clicking any profile entry after import gives you the option to set this entry as default. Doubleclicking a profile tries to connect.