The VPN Client is shipped as a compressed tar file.
To unpack the files
----------------------------------------------------------------------------------------------------
Step 1 Download the packed files, either from your internal network or the Cisco website, to a directory of your choice.
Step 2 Copy the VPN Client file to a selected directory.
Step 3 Unpack the file using the zcat and tar commands.
For example, the command for Linux is: zcat vpnclient-linux-3.7.xxx-K9.tar.gz | tar xvf -
The command for Solaris is: zcat vpnclient-solaris-3.7.xxx-K9.tar.Z | tar xvf -
This command creates the vpnclient directory in the current directory.
Installing the VPN Client for Linux
The following sections describe the installation procedure for the VPN Client for each operating system. Before you install a new version of the VPN Client, or before you reinstall your current version, you must use the stop command to disable VPN service. If you are upgrading from the VPN 5000 Client to the VPN Client, use the following stop command: /etc/rc.d/init.d/vpn stop
If you are upgrading from the VPN 3000 Client to the VPN Client, use the following stop command: /etc/rc.d/init.d/vpnclient_init stop
To install the VPN Client for Linux
--------------------------------------------------------------------------------------------- Step 1 Obtain superuser privileges to run the install script. Step 2 Enter the following commands: cd vpnclient ./vpn_install
Step2: The default directories for the binaries, kernel, VPN modules, and profiles are listed during the installation process.
You receive the following prompts during the installation:
•Directory where binaries will be installed [/lib/modules/
•Directory containing linux kernel source code [/usr/src/linux]
•Is the above correct [y]
Step 3 Press Enter to choose the default response. At the directory prompts, if you do not choose the default, you must enter another directory in your user's path.
Step 4 If the installer cannot auto detect these settings, you might receive the following prompts: •Directory containing init scripts: –The directory where scripts that are run at boot time are kept. Typically this is /etc/init.d or /etc/rc.d/init.d •Directory containing run level directories (rcX.d): –The directory that contains init's run level directories. Typically this is /etc or /etc/rc.d
Step 5 Enable the VPN service by using one of the following methods:
•Restart your computer.
•Enable the service without restarting.
Enter the following command: /etc/rc.d/init.d/vpnclient_init start
------------------------------------------------------------------------------------------------- Kernel Source Requirements To install the VPN Client
you must have the kernel source that was used to build the kernel that is running on the system. If the system is using a kernel that came as part of the Linux distribution, or a custom built kernel, the kernel code can be obtained in different ways:
•For users running kernels that came with their distribution—You must install the corresponding kernel-source rpm. The vpn_install script should be able to automatically find the kernel source.
•For users running a custom-built kernel—You must use the same copy of the kernel source that was used to build the kernel you are running. Unpacking the source code for the version of the kernel you are using is insufficient. There are several files generated when the kernel is compiled that the VPN Client uses. These files must exactly match with the kernel you are running. Otherwise, the VPN Client installation might fail. -------------------------------------------------------------------------------------------------- Note: If you install a patch on the workstation kernel, you must reinstall the VPN Client using these guidelines.
-------------------------------------------------------------------------------------------------
VPN Client for Linux Install Script Notes During the installation process:
1. The module is compiled, linked, and copied to either the directory /lib/modules/preferred/CiscoVPN, if it exists, or to /lib/modules/system/CiscoVPN, where system is the kernel version.
2. The application binaries are copied to the specified destination directory.
3. The startup file /etc/rc.d/init.d/vpnclient_init is created to enable and disable the VPN service. 4. The links /etc/rc3.d/s85vpnclient and /etc/rc5.d/s85vpnclient are added to run level 3 and level 5 if startup at boot time is requested. These links allow the tunnel server to start at boot time and run in levels 3 and 5.
No comments:
Post a Comment