IPKM DokuWiki

User Tools

Site Tools

Trace: open_vpn
general:open_vpn

Table of Contents

Access to the intranet with OpenVPN

Please install one of the following clients to get into the IPKM network, this is the only way to access your local resources (Office PC, Lab PC) as they are all behind a firewall. This is not needed for Zoom or other video conferencing software.

In order to be able to use the VPN connection, please use the IPKM mail server username (not mail address) and password.

Windows

This will install a preconfigured client:

Mac OS X

Install the official OpenVPN Client for Mac and load the configuration file. (Note: Tunnelblick may also work, but users reported problems since spring 2022).

Here is a ZIP file with the certificate if needed: arkani-udp4-1196-config.zip

Alternatively use Viscosity.

Linux

Install network-manager-openvpn and/or network-manager-openvpn-gnome. Then you can load the configuration bundle:

arkani-udp4-1196-bundle.ovpn

(Note: the file before 2024-02-02 had the certificates missing)

Android/iOS

Install OpenVPN Connect. Then you can download the configuration file and import it in the app.

ChromeOS (Flex)

For ChromeOS use the OpenVPN Connect client (see Android). For ChromeOS Flex, when you can not install the OpenVPN Connect Client, use this configuration. Rename it to ipkm.onc, then import the file by browsing with Chrome to chrome://network.

Access to your desktop

  • For the Vogel group follow this link

You can use "RustDesk" on Linux, Mac, IOS, Android and Windows. In order to make it secure please change the default configuration so that your PC in the IPKM network is not advertised in the internet by the default rustdesk relay server. While this makes it very simple for you to access your PC, it also makes it easy for others, not necessarily friendly, people.

For that reason we have our own relay server for rustdesk, which is only reachable within the OpenVPN connection:

  • ID Server: 192.168.10.11
  • Relay Server: 192.168.10.11
  • API Server: http://192.168.10.11
  • Key: FRSRRBBCbaNPkycrLIYFJJ7VZoFH3SQBJ1AkUjNV4vo=

Configuration is relatively simple:

  1. Open RustDesk
  2. Click on Settings (three vertikal dots), then ID/Relay Server
  3. Set it according to the screenshot

The protection behind the VPN means also that *currently* the Drossel group can not use this relay server. We are working on a solution.

VPN from the HRZ

This is for access of data in the HRZ intranet, for example forms and SAP applications. You could also use one of the VPN connections above. For this one to work you need your TU-ID. This service is provided by HRZ and is independent of the IPKM services. In case our VPN is down you can use this to at least access papers fo example.

The PCs behind our firewall are not accessible by this VPN!

https://www.hrz.tu-darmstadt.de/services/it_services/vpn/index.en.jsp

general/open_vpn.txt · Last modified: 2024-02-02 14:03 by Markus Rosenstihl