/ecpvolht

Eon CheckPoint VPN on Linux How-To

Primary LanguageShellGNU General Public License v3.0GPL-3.0

ecpvolht

Eon CheckPoint VPN on Linux How-To

  1. extract pkcs12 package into CA cert, client cert and private key https://stackoverflow.com/a/9516936/2915423 (optionally drop private key passphrase)
  2. install shrew vpn client (package called ike on Ubuntu/Debian, google the package name for your specific distro OR build from source)
  3. configure as suggested on attached screenshots, OR import site config and replace cert files & private key @ Authentication:Credentials tab
  4. run key service daemon (via provided ikedsvc init script or manually)
  5. launch the GUI (qikea) and connect OR use the CLI variant ikec -r <sitename> -a where the sitename is a name of file located at ~/.iked/sites/
  6. enjoy

In case CLI solution is preferred init service can be used. In order for it to work symlink shell scripts from within ./src as follows:

symlinking-the scripts

Then, both the key daemon and the connection client can be run via CLI like this:

sudo /etc/init.d/ike start && /etc/init.d/ikes start

TODOs

  • improve currently primitive solution for docker via routing