Remote Access (VPN)

Virtual Private Network

Description: VPN (virtual private network) is a remote access service offered by UT Health Science Center that can be dowloaded online.

Software and Instructions for Windows

Software and Instructions for Macintosh

Software and Instructions for Linux

Contact Information: IMS Service Desk, 210-567-7777 option 1, 416.L (Medical Bldg., 4th Floor)

Requirements:

See system requirements
You must have a valid UT Health Science Center computer/network account.
To obtain instructions on acquiring an account call 210-567-7777 option 1
Client node must have TCP/IP software installed

Restrictions: The VPN Client cannot be downloaded using the Netscape Browser. For more information, see additional information below.

Time Constraints: None

Turn Around Time: None

Cost: None

Request Instructions: Refer to the UT Health Science Center Troubleshooting Guide for VPN to help you self-diagnose any well-known problems.

Additional Information:

General Questions

Q: What is VPN, why do I need it, and when should I use it?
A: With so much emphasis being directed to network security, many different technologies are being deployed to help deter, if not eliminate unauthorized and often malicious access to private networks (UTHSCSA computer network). Generally, public networks have very restricted access to private networks. A Virtual Private Network (VPN) is a network technology that is constructed by using publicly accessible networking services (Internet providers) to securely connect private networks and nodes. The VPN environment uses user-level authentication, encryption and other security mechanisms to ensure that only authorized users can access the private network and that the data cannot be intercepted.

Q: Do I still need to have an Internet Service Provider (ISP) like Road Runner, AT&T, DSL, etc.?
A: Yes. VPN works along with your ISP to give a secure connection between your home computer and the UT Health Science Center campus. VPN does not replace your ISP, it works to protect data transmissions from being intercepted by a third party.

Q: Who needs the VPN software?
A: All UT Health Science Center faculty, staff and students who need remote access from an internet connection point to the private UT Health Science Center computer network should use the VPN connection. Once a VPN connection is established, the end user appears (virtually) to be directly connected to the UT Health Science Center computer network with all of the access rights granted to normal, campus connected users. Another property of the VPN is that once the VPN is established, the end user node appears to have a local UT Health Science Center Internet (IP) address, which is required to access some specific applications (Library).

Q: Will I need to learn a new program to use VPN?
A: No. You will not need to learn a new program. Once you install VPN you will only need to click on the VPN icon to connect. You will see no difference in your programs, and there are no new applications to learn.

Q: I want to get a router for my home network. Is there anything I should know about their functionality with VPN before I buy one?
A: Absolutely! If you are going to purchase a new router, and you will be attempting to use VPN through it, be sure it either states it is enabled with NAT transparency or allows for VPN passing. Most of the newer routers have this feature, but investigate it before you buy.

Q: What are VPN system requirements?
A: Click here to see system requirements

You must have a valid UT Health Science Center computer/network account. If you do not, please call the Information Management Client Support Services (Triage Help Desk) at (210) 567-7777 to obtain instructions on how to acquire an account.

Client node must have TCP/IP software installed

Q: Where do I download the VPN Client?
A: Select the appropriate download:

Software and Instructions for Windows

Software and Instructions for Macintosh

Software and Instructions for Linux

Q: Where do I download the Windows Vista VPN client?
A: Software and Instructions for Windows Vista

Q: How do I uninstall the older version of the VPN client?
A: Cisco Uninstall Instructions

Error Messages and Explanations

Q: How do I do a regular uninstall?
A: Normal Uninstall of the Cisco VPN Client 4.0.4.B for Windows

Q: How do I manually uninstall version 4.0.4.B?
A: Manual Uninstall of the Cisco VPN Client Version 4.0.4.B for Windows

Q: What does the "Remote Peer Disconnected" or "Remote Peer Rejected" message mean?
A: There are several factors that may contribute to this error message. The following section may help determine the cause of this error on your system.

Firewalls and Routers

Firewalls and routers are the main cause for the "Remote Peer" errors. The following steps below may help you troubleshoot your setup to allow VPN to pass through your router and/or firewall.

Q: I am running a personal firewall on my machine. What ports need to be opened to access the VPN server?
A: If your machine is behind a firewall or running a personal firewall the following need to be opened to the VPN server(s):

UDP Port 62515 (only port required for Windows XP SP2 users) Windows Firewall
UDP Port 500
UDP Port 4500
UDP Port 10000
TCP Port 10000
To change port settings in your Windows XP SP2 firewall, open Control Panel, select the Windows Firewall. Under the Exceptions tab, click Add Port, in the Description field type "UDP 62515" or the Port Number.

If your firewall (or possibly a NAT box) cannot properly deal with IPSEC you can configure your client to tunnel all IPSEC traffic over UDP and TCP port 10000 and simply open that port on your firewall. Do this from Properties, General tab. Click the box next to Enable Transparent Tunneling and then click the Radio Button to allow IPSEC over UDP. If you have questions regarding the function of your firewall, consult your manufacturer’s documentation or contact their technical support.

Q: I have a router set up on my home network and am getting the "Remote Peer" error. What should I be looking for?
A: Routers that were manufactured before June 2002 may be incompatible with VPN. Many of the routers that were manufactured before this time did not allow for NAT transparency. This means that they do not allow for VPN traffic to pass through them. There are two solutions to this problem:

On the machine you are trying to connect to VPN with, unplug the Ethernet cable that goes into the router and plug it directly into your modem. This configuration is the same setup that your provider uses on a single machine setup. By connecting directly to the modem rather than through the router this will allow for VPN to be accessible to the machine.

Contact the manufacturer of your router. They will be able to tell you if your router uses NAT transparency (or allows VPN passing). If it does not, ask if they have a firmware update that allows this feature. Ask them to assist you with the update. If you have questions regarding your router’s capabilities, consult your manufacturer’s documentation or contact their technical support.

Gettng Help

Before calling Client Support Services, please refer to the UT Health Science Center Troubleshooting Guide for VPN to help you self-diagnose any well-known problems.

Contact Client Support Services at: Telephone: (210) 567-7777
Comments: Any Comments??

XP Users

When you connect to the VPN client using Windows XP, you will see a two line login screen. Type your UserDomain\Userlogin and Password as the example below shows.

Top

Information Management & Services | The University of Texas Health Science Center at San Antonio | Public / Personal Information

Links from web sites affiliated with The University of Texas Health Science Center at San Antonio's web site (www.uthscsa.edu) to other web sites do not constitute or imply university endorsement of those sites, their content, or products and services associated with those sites.