Connecting SSL VPN FortiGate using Fedora 24

OpenForti

OpenFortiGUI is an open-source VPN-Client to connect to Fortigate VPN-Hardware. It is based on openfortivpn and adds an easy to use and nice GUI on top of it, written in Qt5.

Unlike other VPN-clients it is also possible to connect to multiple VPN-destinations  simultaneously. It is an replacement for the closed-source Forticlient – SSLVPN Client.

Important: Since version 0.2.12 the encoding of AES-encrypted passwords has changed because of a change of the upstream AES-library. You must reset all passwords for your VPN-profiles again to work, sorry for the inconveniences.

Features include:

  • Qt5 GUI, based on 5.5
  • openfortivpn library built-in, no separate download required
  • All settings saved in text-files, so easy to share, passwords saved AES-encrypted (key can be defined as needed)
  • VPNs divided into local and global sections (readonly, useful for deployments to many users)
  • VPN-groups can be defined to start groups of VPNs at the same time
  • Trayicon with fast access to start/stop VPNs and groups
  • Multiple VPN connections possible simultaneously
  • Certificate and user/password auth supported
  • English and german language
  • Source: https://github.com/theinvisible/openfortigui

Prebuild packages are available for following Distros:

Ubuntu 16.04 (last Update 19.08.2017): 

OpenFortiGUI 0.3.3 32bit
OpenFortiGUI 0.3.3 64bit

Debian 9 (last Update 19.08.2017):

OpenFortiGUI 0.3.3 64bit

You can also use our apt mirror, for instructions see: https://styrion.at/apt/

Quick instruction to build from source:

  1. Install DEV-tools (on Ubuntu: build-essential, qt5-default, libssl-dev)
  2. git clone https://github.com/theinvisible/openfortigui.git
  3. cd openfortigui && git submodule init && git submodule update
  4. cd qtinyaes && git submodule init && git submodule update
  5. cd .. && qmake && make -j8
  6. openfortigui binary is ready

Used software/libraries/resources:

Running with command line :

sudo openfortivpn [<host>:<port>] [-u <user>] [-p <pass>]
[–realm=<realm>] “Optoinal”
[–no-routes] “Optional”
[–no-dns] “Optional”
[–pppd-no-peerdns] “Optional”
[–pppd-log=<file>] “Optional”
[–pppd-plugin=<file>] “Optional”
[–ca-file=<file>] “Optional”
[–user-cert=<file>] “Optional”
[–user-key=<file>] “Optional”
[–trusted-cert=<digest>] “Need if you have some cert”
[-c <file>] [-v|-q] “Optional”

If works, you can see this INFO :

Selection_043

Thanks
Source : Bits and

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s