Logowww.asingh.netHomeNewsBioInterestsTechnicalSearchContact



 Archive :

  May 2006
  June 2006
  July 2006
  July 2007
  August 2007
  April 2008
  June 2008
  December 2008
  January 2009
  March 2009
  June 2009
  January 2010
 

How to Install Cisco vpnClient on Debian

As the heading suggests this blog explains the how to install Cisco VPN client from source (rather than package) on Debian. It is assumed that you already have the cisco-vpnclient source. If so, just follow the steps below :

1. 'vpnclient' requires kernel-sources. To install the correct kernel sources first identify the kernel you are running :



aman@asingh:~$ uname -r
2.6.26-2-686
aman@asingh:~$


2. I had to find kernel-sources by running "apt-cache search linux-source*" :


asingh:/usr/src# apt-cache search linux-source*
linux-patch-debian-2.6.26 - Debian patches to version 2.6.26 of the Linux kernel
linux-source-2.6.26 - Linux kernel source for version 2.6.26 with Debian patches
linux-tree-2.6.26 - Linux kernel source tree for building Debian kernel images


Next install the sources using apt-get :


asingh:/usr/src# apt-get install linux-source-2.6.26
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following extra packages will be installed:
make
Suggested packages:
libncurses-dev ncurses-dev kernel-package libqt3-mt-dev make-doc
The following NEW packages will be installed:
linux-source-2.6.26 make
0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
......


3. Now cd into the vpnclient and run ./vpn_install. Keep hitting "enter" to keep the default values :


asingh:/opt/vpnclient# ./vpn_install
Cisco Systems VPN Client Version 4.8.02 (0030) Linux Installer
Copyright (C) 1998-2006 Cisco Systems, Inc. All Rights Reserved.

By installing this product you agree that you have read the
license.txt file (The VPN Client license) and will comply with
its terms.


Directory where binaries will be installed [/usr/local/bin]

Automatically start the VPN service at boot time [yes]

In order to build the VPN kernel module, you must have the
kernel headers for the version of the kernel you are running.

For RedHat 6.x users these files are installed in /usr/src/linux by default
For RedHat 7.x users these files are installed in /usr/src/linux-2.4 by default
For Suse 7.3 users these files are installed in /usr/src/linux-2.4.10.SuSE by default

Directory containing linux kernel source code []

* Binaries will be installed in "/usr/local/bin".
* Modules will be installed in "/lib/modules/2.6.26-2-686/CiscoVPN".
* The VPN service will be started AUTOMATICALLY at boot time.
* Kernel source from "" will be used to build the module.

Is the above correct [y]

Shutting down /opt/cisco-vpnclient/bin/vpnclient: Done
Stopped: /etc/init.d/vpnclient_init (VPN init script)
Making module
./driver_build.sh
Cisco Systems VPN Client Version BUILDVER_STRING
Copyright (C) 1998-2001 Cisco Systems, Inc. All Rights Reserved.

usage:
./driver_build.sh 'kernel_src_dir'

'kernel_src_dir' is the directory containing the linux kernel sour
ce

Copying module to directory "/lib/modules/2.6.26-2-686/CiscoVPN".
Already have group 'bin'

Creating start/stop script "/etc/init.d/vpnclient_init".
/etc/init.d/vpnclient_init
Enabling start/stop script for run level 3,4 and 5.

Installing license.txt (VPN Client license) in "/opt/cisco-vpnclient/":
/opt/cisco-vpnclient/license.txt

Installing bundled user profiles in "/etc/opt/cisco-vpnclient/Profiles/":
* Replaced Profiles: sample

Copying binaries to directory "/opt/cisco-vpnclient/bin".
Adding symlinks to "/usr/local/bin".
/opt/cisco-vpnclient/bin/vpnclient
/opt/cisco-vpnclient/bin/cisco_cert_mgr
/opt/cisco-vpnclient/bin/ipseclog
Copying setuid binaries to directory "/opt/cisco-vpnclient/bin".
/opt/cisco-vpnclient/bin/cvpnd
Copying libraries to directory "/opt/cisco-vpnclient/lib".
/opt/cisco-vpnclient/lib/libvpnapi.so
Copying header files to directory "/opt/cisco-vpnclient/include".
/opt/cisco-vpnclient/include/vpnapi.h

Setting permissions.
/opt/cisco-vpnclient/bin/cvpnd (setuid root)
/opt/cisco-vpnclient (group bin readable)
/etc/opt/cisco-vpnclient (permissions not changed)
* You may wish to change these permissions to restrict access to root.
* You must run "/etc/init.d/vpnclient_init start" before using the client.
* This script will be run AUTOMATICALLY every time you reboot your computer.
asingh:/opt/vpnclient#


4. Copy any .pcf that may have come with the vpnclient to /etc/CiscoSystemsVPNClient/Profiles

5. For this one time start vpnclient, as follows:


asingh:/opt/vpnclient#/etc/init.d/vpnclient_init start


This will happen automatically at system start-up in the future.

6. Connect to VPN as follows:

asingh:/opt/vpnclient#vpnclient connect profile

Substitute profile with the your preferred profile defined via profile.pcf file in /etc/CiscoSystemsVPNClient/Profiles

That's it!

posted by Amandeep 6/18/2009 11:29:00 PM | PERMALINK

 

 

| Home | News | Bio | Interests | Technical | Search | Contact |

This page is powered by Blogger.