"Solution" Linux does not support GlobalProtect software

Recently, I reinstalled the Linux system on my Mi Notebook, and the overall programming experience has also improved. Eliminates a lot of tedious and complicated environment configuration, and can concentrate more on code implementation. The inconvenience is also obvious. The linux system has too little support for domestic social applications (the wx and tx meetings of the Goose Factory do not have the linux version, and QQ for linux is also really " traveling "). Recently, when I discovered that VPNs do not support Linux systems. .

* Note: The IP and Mac addresses in the text are arbitrarily set and not real.

Two requirements:

(1) If you only need to view resources such as information portals and Google Scholar, it is recommended to visit webvpn directly to obtain the required resources.

(2) If you wish:

• Obtain the intranet IP address
• VPN client-like experience
• Access the intranet server

You can try the openconnect solution:

step 1: Install the openconnect package (here, take the ubuntu system as an example)

$sudo apt-get install openconnect

Step 2: Connect to the server
* Note that the protocol type is specified

$sudo openconnect --protocol=gp  vpn.bupt.edu.cn

The page will feedback:

POST https://vpn.bupt.edu.cn/ssl-vpn/prelogin.esp?tmp=tmp&clientVer=4100&clientos=Linux
Connected to 118.229.255.32:443
SSL negotiation with vpn.bupt.edu.cn
Connected to HTTPS on vpn.bupt.edu.cn
Enter login credentials
Username: 

step 3: Authentication login
Enter the gateway account and password to complete the login

Username: 20***********
Password: 
POST https://vpn.bupt.edu.cn/ssl-vpn/login.esp
GlobalProtect login returned authentication-source=GP_SSL_auto
POST https://vpn.bupt.edu.cn/ssl-vpn/getconfig.esp
Session will expire after 43200 minutes.
Tunnel timeout (rekey interval) is 180 minutes.
Idle timeout is 180 minutes.
No MTU received. Calculated 1422 for ESP tunnel
POST https://vpn.bupt.edu.cn/ssl-vpn/hipreportcheck.esp
Connected as 10.*.*.*, using SSL, with ESP in progress
ESP session established with server
ESP tunnel connected; exiting HTTPS mainloop.

At this time, directly visit the school website such as the information portal .

At this point, you can further verify the IP address: the inet address should be an intranet address in the 10.xxx format.

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST>  mtu 1422
        inet 10.8.8.8 netmask 255.255.255.255  destination 10.3.3.3
        inet6 f444:d4aa:2285:b::441a  prefixlen 64  scopeid 0x20<link>
        unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  txqueuelen 500  (未指定)
        RX packets 446  bytes 387622 (387.6 KB)
        RX errors 0  dropped 0  overruns 0  frame 0
        TX packets 364  bytes 34401 (34.4 KB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

supplement:

How to achieve school linux host -> Remote Desktop -> host school windows

1. Keep the last VPN access terminal page running
2. Use rdesktop package to realize remote desktop

Installation command:

sudo apt-get install rdesktop  

Connection command:

sudo rdesktop 10.110.22.33 -u 用户名 -p 密码

You can realize the remote desktop outside the school