Instruction: VPN Configuration for Linux (Ubuntu 19.04)
Every active MU student or staff member can make use of VPN. In order to log in, one must use UČO and secondary password as login data.
If you want to set up OpenVPN, it is necessary to have the OpenVPN package installed, which should be a part of every common linux distribution.
We Use Network Manager
Network Manager should be a standard component of your linux distribution. If you want to be sure, check whether the support for OpenVPN is installed. (Ubuntu/Debian – package network-manager-openvpn-gnome or network-manager-openvpn-kde, according to the graphic environment in use).
Go to Settings and select Network from the side menu. In the row next to VPN, click the plus (+) icon to add a new connection.
Fill in Connection Name and Gateway vpn.ics.muni.cz. As authentication Type select Password and enter Username UČO, Password Secondary Password, and select /etc/ssl/certs/DigiCert_Assured_ID_Root_CA.pem in the CA Certificate or download this file.
Then click on Advanced ...
Select the Use LZO compression and let it adaptive. Next, Set the virtual device type and select TAP from the menu.
Confirm the settings with the OK button and click the Add button at the top right.
Command prompt launching is for advanced users only. We strongly recommend that you use NetworkManager.
No additional software is required to use OpenVPN via the command prompt. The openvpn package is enough.
- Download the configuration file
- Save the file to /etc/openvpn/ (you will need root user privileges)
This completes the configuration. Running the OpenVPN tunnel also requires root privileges and it is performed using the command:
sudo openvpn --config /etc/openvpn/muni-linux.ovpn
Command prompt launching in most distributions does not set DNS correctly, and as a result queries go to your provider's servers (the so-called DNS leak). For correct DNS settings, consult at wiki OpenVPN.
At launching, the program will require Username (enter your UČO here) and Password (enter your secondary password here). To end the VPN tunnel, press Ctrl+C.
Still having trouble with connection?
In case you have trouble connecting, have a look at the list of frequent problems. Also, do not forget to adjust firewall settings (UDP port 1194) so that it allows VPN connection.
Answers to questions about split tunnels, mail settings or passwords can be found in the section Frequently Asked Questions.