Configuration Example, IPSec / SSL VPN

OpenVPN ALS

René Jorissen on November 29, 2010 1 Comment • Tags: #adito #als #install #openvpn #ubuntu

A few days ago I installed and configured the SSL VPN solution OpenVPN ALS, which is a direct descendant of Adito, which has a fork of SSL-Explorer. OpenVPN ALS is a simple to use SSL VPN solution to publish multiple services via browser-based portal. OpenVPN uses Java to publish multiple services. OpenVPN ALS isn’t an enterprise SSL VPN solution, but nevertheless useful for SMB environments with no special needs.

I made some nodes for the installation of OpenVPN ALS, which helps you installing the SSL VPN solution. The notes can be found below. I used the following hardware to install OpenVPN ALS.

  • Simple Dell Latitude D830 laptop with VMware Workstation;
  • Ubuntu Server 10.10;
  • Adito 0.9.1;

Follow these steps to install OpenVPN ALS.

– Install Ubuntu Server 10.10

– Update / upgrade Ubuntu packages

sudo apt-get update

sudo apt-get upgrade

– Install tasksel, the Debian/Ubuntu tool that installs multiple related packages as a co-ordinated “task” onto the system

sudo apt-get intall tasksel

– Install the LAMP server and OpenSSH server using tasksel

sudo tasksel

– Install Java JDK and the dependencies including Java JRE

sudo apt-get install default-jdk

– Install ant, the Java-based build application comparable to make

sudo apt-get install ant

– Download the adito.tar.gz and copy it to the directory /opt

– Extract the tar.gz file

sudo tar zxvf adito-0.9.1.tar.gz

– Start the installation

cd adito-0.9.1

sudo ant install

Buildfile: /opt/adito-0.9.1/build.xml

set-tools:

check-tools:

[echo] Couldn’t find tools.jar from $ADITO_HOME/adito/lib

[echo] Copying the tools.jar from your JDK

[copy] Copying 1 file to /opt/adito-0.9.1/lib

check-permissions:

install:

[java] Starting installation wizard…..

[java] Point your browser to http://aparedis.geelen-beton.local:28080.

[java]

[java] Press CTRL+C or use the ‘Shutdown’ option from the web interface to leave the installation wizard.

– Open the web browser for further configuration

http://<ip address>:28080

– Configure the multiple options, like SSL certificate, user authentication, super user and web server parameters. I used Active Directory integration as user authentication method, which works like a charm.

– Install the Adito service

sudo ant install-service

– Start the Adito service

sudo ant start

– Configure the SSL VPN applications, by opening a web browser and login with the configured super user

https://<ip address>

– You can find multiple extensions on the internet to publish applications like RDP and a Mozilla Firefox web browser. An example of a website to download extensions can be found here.

Have fun!!!

The following two tabs change content below.

René Jorissen

Co-owner and Solution Specialist at 4IP Solutions
René Jorissen works as Solution Specialist for 4IP in the Netherlands. Network Infrastructures are the primary focus. René works with equipment of multiple vendors, like Cisco, Aruba Networks, FortiNet, HP Networking, Juniper Networks, RSA SecurID, AeroHive, Microsoft and many more. René is Aruba Certified Edge Expert (ACEX #26), Aruba Certified Mobility Expert (ACMX #438), Aruba Certified ClearPass Expert (ACCX #725), Aruba Certified Design Expert (ACDX #760), CCNP R&S, FCNSP and Certified Ethical Hacker (CEF) certified. You can follow René on Twitter and LinkedIn.

Latest posts by René Jorissen (see all)

  1. Robo_geek says:

    Well done, this saved me tons of time. I have used Adito for several years on a Windows XP host,and ran into issues finding the tools.jar with ANT and the Java-jdk when I first tried to install on Ubuntu 10.10.

    I am running Ubuntu 10.10 as a VM on VMware ESX 3i server on an ancient Dell P4 server.

    I plan to do some comparison testing between Adito on Ubuntu vs. Adito on XP (all on VMware).

    I have spent considerable time tweaking and tuning my Windows box to run OpenVPN fast, and plan to attempt the same for my virtual Ubuntu box.

Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.