greyhoundforty
3/2/2017 - 4:22 PM

Connecting to the SL Employee VPN and the IBM VPN at the same time

Connecting to the SL Employee VPN and the IBM VPN at the same time

Using SL Emploee VPN and IBM VPN on your Mac:

You can use both VPNs by using OpenConnect to connect to one of them. There are instructions below to connect to the SL VPN via OpenConnect so that you can run the IBM VPN in AnyConnect and the SL VPN in OpenConnect. Install Software

Install TUN/TAP driver located here: http://tuntaposx.sourceforge.net/download.xhtml

Open a terminal window and run the following commands to install Homebrew (if not already installed):

/usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"

Install OpenConnect:

brew install openconnect

Right click and save the following files to Downloads folder

Run the following commands from a terminal to copy the file to the needed folder and create the ~/.cisco storage folder

sudo mkdir -p /opt/local/etc/vpnc-scripts/
sudo mv ~/Downloads/vpnc-script /opt/local/etc/vpnc-scripts/
sudo chmod +x /opt/local/etc/vpnc-scripts/vpnc-script
mkdir ~/Downloads/.cisco
mv ~/Downloads/csd-wrapper.sh ~/Downloads/.cisco/csd-wrapper.sh

Create Bash Script to start SL VPN: In a terminal run the command below:

vi/nano ~/Documents/slvpn

Paste the text below into the console replacing "username_here" with your username and exit[ctrl+q or ctrl+x] and save.

#!/bin/bash
# connect to SL VPN
sudo openconnect -s /opt/local/etc/vpnc-scripts/vpnc-script -u username_here -p "Password_here" --csd-wrapper=$HOME/Downloads/.cisco/csd-wrapper.sh dal09.remote.softlayer.com

Run the following command to make the script executable and put it in your path.

chmod +x ~/Documents/slvpn
mv ~/Documents/slvpn /usr/local/bin/slvpn

From terminal run the following command (be warned, there is a lot of output)

slvpn

Once you get passed all the verbose output you will be prompted for your SoftLayer username, password and VIP Access token. The script will then log in and add the appropriate routes so you can hit the SoftLayer internal network. You will need to keep this terminal open while you stay connected.