UNIVERSITY OF AMSTERDAM

Central Computer Services

___________________________________________________________________________

Introduction to VPN
VPN (Virtual Private Network) allows users to establish a secure, private connection
via the public, hostile internet, ensuring the safety of a private connection without the
associated costs.
The technology behind VPN is relatively simple. Network protocols (and TCP/IP is
no exception) divide traffic into small, easy-to-process chunks, known as packages.
These packages normally travel through the network autonomously, moving from
router to router. Any prying eyes along the way can see the package and open its
contents, much the same as a letter sent by regular mail.
Within the logic of this comparison, VPN is the sealed envelope. No one can see
through the envelope, which can only be opened by the addressee.
VPN uses the same method of packaging, but transmits the data in encrypted rather
than open format, sending the entire package to the VPN gateway. This gateway
then deletes the surrounding package (the envelope), decrypts its contents and
transmits them. Data traffic in the opposite direction is processed in the same way.
Straightforward in conceptual terms. The complexity lies in the actual implementation:

Traffic must be routed via the VPN gateway rather than directly.
To this end, the VPN gateway issues the computer with a special network
address, with both systems working to ensure that traffic is routed via this
pathway.
As the contents of the data packages must be encrypted, both parties must
have an encryption system and the relevant keys that are not accessible to any
eavesdroppers.

The combination between a VPN gateway (central network equipment) and VPN
software (installed on the client system in the unsafe network) resolves both
problems.
The rest of this manual describes the procedure for installing and using the VPN
facility on an Apple Macintosh (OS X and higher).

UNIVERSITY OF AMSTERDAM

Central Computer Services

___________________________________________________________________________

Installation and configuration in MacOS X

The CISCO VPN client is downloadable as a zip archive. Use Stuffit
Expander to extract the installer application.
Start up the installer to be guided through the entire installation process.
First, you will be prompted to enter the Administrator password

Click on the lock, and enter the administrator password. The system will now
prompt you to specify where you want to install a number of software
components:

UNIVERSITY OF AMSTERDAM

Central Computer Services

___________________________________________________________________________
Once the installation has been completed, you will have to configure the system
according to UvA specifications. Start up the VPN application. A window resembling
the below example will now appear:

Create a new Connection Entry and click on the New icon:

Fill in these fields:

Please note: these values do not match those in the above example!
Connection Entry
Description
Host
Group Authentication
Name
Password
Confirm Password

UvA-VPN
VPN via vpn.uva.nl
vpn.uva.nl
Select Group (not Certificate)
ipsec
ipsec (appears as asterisks)
ipsec

UNIVERSITY OF AMSTERDAM

Central Computer Services

___________________________________________________________________________
The software has now been installed and configured.
An Uninstall application will also be installed, so that you can remove the software if
necessary. This application will remove the VPN software from your computer.