Using VPN you can connect to the university network over the Internet. If you use VPN your computer behaves the same way as if it is physically connected to the university network. This way you can use the services that are only available from inside the university network.
❗Important: Strongswan might cause problems on some distributions. If this is the case, please use a VPN connection with PPTP. You will find the instructions further down on this page.
VPN with IKEv2 Strongswan (recommended)
Install packages
You need to install the following packages:
- network-manager-strongswan
- libstrongswan-extra-plugins
- libcharon-extra-plugins
After installation, reboot your computer.
Adding a VPN
Open your network settings and add a new connection.
First, select VPN and in the next window: IPsec/IKEv2 (strongswan).
?Hint: If IPsec/IKEv2 isn't displayed you need to use an alternative network settings client. Open this client via the terminal by typing nm-connection-editor.
Click on Add and select IPsec/IKEv2 (strongswan).
VPN settings
Enter the following details:
Address: vpn.uni-mainz.de
Certificate: (none)
Authentication: EAP
Username: username@uni-mainz.de (without the string 'students')
Tick: „Request an inner IP address“.
Click on Save.
Connect
To establish a connection open your network settings, select the VPN and enable it.
In some cases you won't be able to send or receive any data after connecting to the vpn (e.g. opening websites). This is due to the size of send and received packages.
You can fix this problem by adjusting the packed size manually inside the terminal. To do so you need the network interfaces name.
To show all network interfaces type ip addr inside the terminal. You will see a list with all interfaces (eg. enp0s24), interfaces starting with en stand for a wired connection and wl wireless connection. Choose the interface you use to go online.
To change the package size type ip link set [network interface name] mtu 1392.
VPN with PPTP
Install packages
Please install the following packages:
- network-manager-pptp
- network-manager-pptp-gnome
After installation, reboot your computer.
Adding a VPN
Open your network settings and add a new connection.
Select VPN, and inside the next window select PPTP.
VPN Settings
Enter the following details:
Gateway: vpn.uni-mainz.de
Username: username (without @[students.]uni-mainz.de)
NT-Domäne: UNI-MAINZ
Klick on Advanced.
Allow only the following authentication method: MSCHAPv2.
Click on OK and afterwards on Add.
Connect
To establish a connection open your network settings, select the VPN and enable it.
You will be asked for a password. Enter the password of your university account.
Set up with firewall
If you use a firewall the PPTP connection may be blocked resulting in a timed out connection. To solve this issue you need to allow connection to port 47.
Setting this rule may be different depending on your firewall.
Allow with UFW
To use PPTP with UFW you need to edit /etc/ufw/before.rules. It is necessary to enter the line before # drop INVALID packets.
Add the following line:
1 2 3 4 5 6 |
... #Allows PPTP connection -A ufw-before-input -p 47 -j ACCEPT # drop INVALID packets (logs these in loglevel medium and higher) ... |