How to set up the Computer Science VPN
- Open your favorite web browser and go to https://openvpn.cs.byu.edu.
- You should see a login page like the one below. Log in using your CS username (which usually matches your NetID) and CS password.
- After logging in, click on the link for OpenVPN Connect for Windows or Mac OS X to get the client software for connecting to the VPN. If you are running Linux, jump to the Linux instructions below.
Windows 10
- Run the installer you downloaded. The filename should be something like
openvpn-connect-2.1.3.110.msi
. The version number may change as updates come out. - Once the client is installed, you should have an icon in your system tray that looks like the “O” in the OpenVPN logo with an “x” on it.
- Right click on it and select Connect.
- You should be prompted to login to the VPN.
- When you connect, it will prompt you to accept the configuration being sent by the server. Select Yes, and if you wish, uncheck the box that says “Don't ask again” if you don't want to be prompted about this anymore.
- It will take a moment to connect. The icon in the system tray will have a green check on it when connected.
- Once you are connected to the VPN, you can access resources that are otherwise only available from within the CS Department.
MacOS
Installation
- Click on the dmg file you just downloaded (openvpn-connect-2.1.3.110.dmg).
- Note that the version numbering may change over time.
- When the file opens, double-click OpenVPN Connect Installer.pkg.
- Follow the prompts of the installer.
- Note that on the License screen, after hitting Continue, it takes a few seconds for the License Agreement to appear.
- Follow the instructions below to connect to the VPN!
Connecting to the VPN
- Click on the new icon in your system tray, that looks like the “O” in the OpenVPN logo with an “x” on it, and click Connect to openvpn.cs.byu.edu.
- You will be asked if you want to Allow VPN connection to openvpn.cs.byu.edu? Select Yes to continue.
- A pop-up box will prompt you for your password. Your username should already be filled in for you.
- After a few seconds, you will be connected to the VPN. Once you are connected to the VPN, you can access resources that are otherwise only available from the CS Department!
Linux
- Click on the link Yourself (user-locked profile). The client configuration file, titled
client.ovpn
should download to your computer. Make note of where it downloads to. - Install the OpenVPN package and network manager plugin for OpenVPN for your distribution of Linux. In Ubuntu and most Debian-based distributions the command is:
sudo apt install network-manager-openvpn
. - Make sure you agree to install any additional packages that this one depends on by selecting yes when prompted.
Ubuntu 18.04 & 20.04
On Ubuntu 18.04 (and perhaps other distros), there may be issues with DNS resolution when connected to the VPN. The best solution we've found so far is to use the OpenVPN 3 Linux Client.
To install this client on Ubuntu 18.04:
apt install apt-transport-https wget https://swupdate.openvpn.net/repos/openvpn-repo-pkg-key.pub apt-key add openvpn-repo-pkg-key.pub wget -O /etc/apt/sources.list.d/openvpn3.list https://swupdate.openvpn.net/community/openvpn3/repos/openvpn3-bionic.list apt update apt install openvpn3
For other versions of Ubuntu, replace bionic
on line 4 with the release keyword for your version (e.g., xenial, artful).
You can then connect to the VPN using the configuration profile you downloaded in the previous section:
openvpn3 session-start --config client.ovpn
Once you are finished on the VPN, you can disconnect from the session:
openvpn3 session-manage --config client.ovpn --disconnect
If the wget
commands are not working and you are getting an “Unable to establish SSL connection” error, try using http
instead of https
in the urls. If that works, you're also going to have to modify the url in the /etc/apt/sources.list.d/openvpn3.list
file in the same way once you've downloaded it (line 4).
Further reading:
KDE Plasma 5.5.5
This version of KDE Plasma is what is currently in Kubuntu 16.04.2. If you are using KDE Neon, or Plasma versions later than 5.5.5, the configuration windows have changed and may look somewhat different.
- Right-click on the icon for the Network Manager. It will either look like a Wi-Fi icon or a monitor and network cable and is near the clock.
- Select Configure Network Connections from the menu that appears.
- In the Connection editor, select File then Import VPN.
- Once you select the
client.ovpn
file you downloaded the settings should be automatically imported for you. - If you wish, you can now edit the VPN connection to include your CS username and password if you do not want to be prompted for them each time you connect.
- If you want to can also re-name the connection something you can recognize (like BYU CS VPN).
- If you edited the connection, click OK to save the changes.
- Your new VPN connection will be saved in the Network Manager.
- You will be able to connect to it similar to how you connect to Wi-Fi sources in Linux.
GNOME, and GNOME-based Desktop Environments (Which includes Lubuntu)
- You will need to install the
network-manager-openvpn-gnome
package. - Click on the network icon in the system tray (usually near the clock). Select VPN Connections then Configure VPN.
- In the Network Connections window that comes up, click Add.
- In the “Choose a Connection Type box”, select Import a saved VPN configuration.
- Browse to the location that you extracted the client.ovpn to and open it. All the needed OpenVPN settings will now be imported.
- Enter your CS username and password in the appropriate fields if you do not want to be prompted for them each time you connect.
- If you want to can re-name the connection something you can recognize.
- Click Save and your new VPN connection will be saved in the Network Manager. You will be able to connect to it similar to how you connect to Wi-Fi sources in Linux.
Trouleshooting
Sometimes on Linux in ubuntu 16.04 or with older versions of network manager, you have to delete the line
reneg-sec 604800
from your client.ovpn file before importing it. Just edit it with your favorite text editor.
You may also have problems with dns on ubuntu 16.04, the easiest way to fix that is to edit /etc/NetworkManager/NetworkManager.conf so that it has dns=default
instead of dns=dnsmasq
. It should look something like this:
[main] plugins=ifupdown,keyfile,ofono dns=default [ifupdown] managed=false