Friday, 15 March 2013

Install Shrewsoft VPN client in Ubuntu for Juniper Firewall


1. Download ike-2.2.0-rc-2.tgz or Latest Version from http://www.shrew.net/download.

2. Unzip the Downloaded file by following command $tar -xzvf shrewsoft-client.tgz

3. Go through the Readme file in extracted folder.

4. Install the prerequisites for Shrewsoft VPN client. like following.

sudo apt-get install gcc flex bison cmake openssl libssl-dev qt4-dev-tools libedit-dev build-essential

5. Go to the extracted folder IKE

6. Run following commands one by one.

$cmake -DCMAKE_INSTALL_PREFIX=/usr/local-DQTGUI=YES -DETCDIR=/etc -DNATT=YES
$cmake
$make
$sudo make install

$sudo cp ~/Downloads/ike/source/iked/iked.conf.sample /usr/local/etc/iked.conf

7. Use a text editor to edit (as root) /etc/sysctl.conf
8. Change the following Entries from 1 to 0 (if these values are not defined you will need to add
them in order to override the default setting of 1).
net.ipv4.conf.default.rp _ filter=0
net.ipv4.conf.all.rp _ filter=0
9. Use a text editor to edit (as root) /etc/sysctl.d/10-network-security.conf
10. Change the following Entries from 1 to 0 (if these values are not defined you will need to add
them in order to override the default setting of 1).
net.ipv4.conf.default.rp _ filter=0
net.ipv4.conf.all.rp _ filter=0
11. Reboot the PC.
12. Execute the following command to confirm settings change has taken affect:
$> sysctl -a | egrep rp_filter | egrep -v arp
net.ipv4.conf.all.rp _ filter = 0
net.ipv4.conf.default.rp _ filter = 0
net.ipv4.conf.lo.rp _ filter = 0
net.ipv4.conf.eth0.rp _ filter = 0

13. start IKED
$sudo iked

14. Start GUI and configure the VPN or Import Porifile.
$qikea

15. If GUI not starting install it. $ sudo apt-get install ike-qtgui

No comments:

Post a Comment