Skip to content
/ svpn-login Public

Connect to a F5 BIG-IP APM VPN server using the FastPPP protocol without any graphical frontend

License

GPL-3.0 license
22 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

zrhoffman/svpn-login

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
CHANGELOG.md
CHANGELOG.md
 
 
COPYING
COPYING
 
 
README.md
README.md
 
 
svpn-cookie-getter.user.js
svpn-cookie-getter.user.js
 
 
svpn-login.py
svpn-login.py
 
 

Repository files navigation

F5 SSLVPN Command-line client

This project allows you to connect to an F5 Networks VPN server (BIG-IP APM) using the proprietary FastPPP protocol but without any graphical frontend.

Setup

Acquire svpn

The script requires svpn, which is a component of the BIG-IP Edge Client. If you already have the BIG-IP Edge Client installed, then you already have svpn.

Otherwise, if you are on macOS, you can get it by going to https://[your-VPN-server]/ in a web browser, clicking on "Edge Client - macOS", unzipping the file you downloaded, and running the installer that you unzipped.

If you are on Linux, choose one of the following options depending on which distro you run.

OS Option
Ubuntu or Debian https://[your-VPN-server]/public/download/linux_f5vpn.x86_64.deb
Ubuntu or Debian (aarch64) https://[your-VPN-server]/public/download/linux_f5vpn.aarch64.deb
Fedora https://[your-VPN-server]/public/download/linux_f5vpn.x86_64.rpm
Arch Linux Install the f5vpnAUR package
macOS https://[your-VPN-server]/public/download/mac_f5vpn.pkg
Windows https://[your-VPN-server]/public/download/f5vpn_setup.exe

Acquire svpn-login

$ git clone https://github.com/zrhoffman/svpn-login.git
$ cd svpn-login

Basic Usage (supports two-factor authentication):

./svpn-login.py --sessionid=0123456789abcdef0123456789abcdef [hostname]

You can find the session ID by going to the VPN host in a web browser, logging in, and running this JavaScript in Developer Tools:

document.cookie.match(/MRHSession=(.*?); /)[1]

Alternatively, use the svpn-cookie-getter.user.js userscript with GreaseMonkey or TamperMonkey to get the cookie.

If your organization does not use 2FA and you are able to log in with just your username and password:

./svpn-login.py [user@host]

DNS and Routing

  • By default, the script will change your DNS servers to the ones provided by the VPN server. Skip this step by by passing the --skip-dns option.

  • By default, once connected, the script will route all traffic through the newly-created VPN network interface. Skip this step by passing the --skip-routes option (your VPN connection will be useless if this option is used, so only use it if you plan to set up the routing table yourself).

Other Info

[user@host] is saved for future invocations, so doesn't need to be specified on future invocations.

Use CTRL-C to exit.

The application will save [user@host] and last session ID in ~/.svpn-login.conf. If no user was given, [host] will still be saved. In case of problems or for reset the session data simply remove that file.

About

Connect to a F5 BIG-IP APM VPN server using the FastPPP protocol without any graphical frontend

Resources

Readme

License

GPL-3.0 license
Activity

Stars

22 stars

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 7

Languages