More than just the kernel headers, the cisco vpnclient is a kernel module that also needs the kernel sources to compile. These are provided in the `kernel-devel` package. The following are steps I did to compile the `vpnclient-linux-4.8.00.0490-k9.tar.gz` package. All of the instructions are done as root (`su -`)
1) Development Environment.
Make sure you have a development environment. This means being able to run make and gcc.
- Code: Select all
yum install make gcc
1a) Note that it installs `kernel-headers-<some.kernel.version>`. Jot this down for later.
2) Verify the current running kernel
- Code: Select all
uname -r
3) kernel-devel package
Install the right kernel-devel package for the running kernel. Normally, you would be able to just do
- Code: Select all
yum install kernel-devel
But double check that you would be installing the same version as the running kernel. You may need to be more specific. Mine is 2.6.22, so:
- Code: Select all
yum install kernel-devel-2.6.22
p.s. Depending on which OS version you have, this may be the most difficult step, or a trivial step.
4) Compile
In your vpnclient source directory, run
- Code: Select all
make
4a) Troubleshooting
If the kernel headers installed in (1a) is not the same, then that is one potential for problems. You may need to uninstall it
- Code: Select all
rpm -e kernel-headers
and manually get one that matches your running kernel.
5) Installing
In your source directory should be a `vpn_install` script.
- Code: Select all
./vpn_install
6) Profile
Copy your company/school/org provided profile `Blarg.pcf` to the profiles directory
- Code: Select all
cp Blarg.pcf /etc/opt/cisco-vpnclient/Profiles/
7) Start it up!
Start the service and connect
- Code: Select all
/etc/init.d/vpnclient_init start
/opt/cisco-vpnclient/bin/vpnclient connect Blarg
You can optionally run that in the background and recover your shell prompt, but I personally like to keep that around so that I can just CTRL-C to "log off" my vpn.
7a) If during your `vpn_install` script you opted to have your service start every time, then the next time you reboot you will not need to `/etc/init.d/vpnclient_init start`.