Cyberoam Knowledge Base


Advanced Search

Table of Contents

. . . . . . . . . . . . .

What's New

Knowledge Base Information

Cyberoam UTM

Product Literature

Best Practices & Policies

Protect Your Cyberoam Appliances from Power Fluctuations

Identity-based Policies

IPS

Logs & Reports

Multiple Gateway - Load Balancing and Failover

Quality of Service (QoS)

Registration

Routing

SSL VPN

Configure SSL VPN for iPhone/iPad using OpenVPN Connect

Allow an SSL VPN User Access to an Application Hosted at Remote Side of an IPSec Connection

Configure SSL VPN for Mac OS X using Tunnelblick VPN client

Configure SSL VPN in Cyberoam

Configure SSL VPN Client in Linux

Access Arbitrary URLs through Cyberoam’s SSL VPN Portal

Access ActiveX applications through (WebAccess) SSL VPN Bookmark

Web Application Firewall (WAF)

Wireless LAN

Configure Wireless WAN

Product Technical Support

Compatibility

Cyberoam Virtual UTM

Endpoint Data Protection

Cyberoam SSL VPN

Cyberoam iView

Cyberoam Central Console

Cyberoam's On-Cloud Management Service

Configure SSL VPN for Mac OS X using Tunnelblick VPN client

Applicable Version: 10.00 onwards

Overview

Tunnelblick is an open source graphic user interface for SSL VPN on Mac OS X. It comes as a ready-to-use application with all necessary binaries and drivers. It does not require any additional installation. You just need to add the VPN tunnel configuration and encryption information.

Tunnelblick Client can be used to establish SSL VPN connection between Mac OS and Cyberoam.

Scenario

Configure SSL VPN for Mac OS X using Tunnelblick VPN client.

Configuration

You can configure SSL VPN for Mac OS X using Tunnelblick VPN client by following the steps below. Configuration is to be done in Cyberoam and Mac OS using Administrator profile.

Step 1: Configure SSL VPN with Tunnel Access Mode in Cyberoam

To know how to configure SSL VPN in Cyberoam, refer to the article How To – Configure SSL VPN in Cyberoam.

Step 2: Download and Install Tunnelblick Client.

Download Tunnelblick Client from http://tunnelblick.googlecode.com/files/Tunnelblick_3.2.3.dmg and install it on your Mac workstation.

Step 3: Download Cyberoam SSL VPN Client Configuration

To download Cyberoam SSL VPN Client Configuration, follow the steps below.

· Access Cyberoam SSL VPN Portal using the URL - https://<WAN IP address of Cyberoam:port> and login to the Portal.

· Click Download SSL VPN Client Configuration to download the client configuration and save it in your system.

A compressed file called ClientBundle.tgz is downloaded and saved at your mentioned location.

Step 4: Extract ClientBundle.tgz to Tunnelblick’s Configurations folder

Extract ClientBundle.tgz to Tunnelblick’s Configurations folder in your Mac system. The following files will be added to the folder as shown below.

- UserPrivateKey.key

- UserCertificate.pem

- RootCertificate.pem

- Client.crssl

Step 5: Configure client.crssl file according to parameters given below

Double click client.crssl to open it in a text editor. Append the following parameters to it and save it with the extension .ovpn.

Parameter	Value
ca	RootCertificate.pem
cert	UserCertificate.pem
key	UserPrivateKey.key

Note:

For firmware version 10.02.0 Build 224 onwards, append the parameters given above and remove the parameters:

- dhcp-renew

- dhcp-release

Step 5: Establish SSL VPN Connection with Cyberoam

Launch Tunnelblick Client and login to establish an SSL VPN connection with Cyberoam at remote site.

The above configuration applies Cyberoam SSL VPN Client Configuration to Tunnelblick client in Mac OS X and establishes an SSL VPN

connection with Cyberoam at a remote site.

Document Version: 1.0 – 09/05/2012

Disclaimer:

Steps described in this document are for reference purpose only. Cyberoam is not responsible for any malfunction or misbehaviour on the part

of the Tunnelblick Client. Kindly contact Tunnelblick support to resolve any such issues.

Attachments
	How To - Configure SSL VPN for Mac OS X using Tunnelblick VPN client.pdf

Article ID: 2292