New Jersey Institute of Technology
header images

About IST
Services
- Accounts
- Email
- Network
- Telephone
- Staying Safe and Secure
- Software
- Highlander Pipeline
- Web Hosting
- Teaching and Learning
- Computing Sites
- Additional Services
Help and Support
- FAQ Knowledge Base
- Repairs & Maintenance
- Teaching, Learning, and Technology
- Documentation
- IST Helpdesk
- Services Available
Quick Start
Cyberinfrastructure
News
System Maintenance

VPN Frequently Asked Questions
VPN Frequently Asked Questions

1: What is VPN?
2: When should you use a VPN?
3: What is an ISP?
4: What operating systems does the VPN Client work with?
5: Can I have more than one VPN Client installed on my PC?
6: Will the VPN Service work with America Online?
7: I am getting error messages or warnings when using VPN. What do they mean?
8: Should I use the VPN all the time?
9: When I use system names like ADMIN or AFS11, I get "host not found" errors. Why is this happening?
10: Can I use my NJIT UCID for the VPN?
11: I have DSL and cannot connect to the VPN. What do I do?
12: I have a cable modem. Is there a special set of instructions for me to follow?
13: I want to connect from my computer using my office network. Do I still use the directions below?
14: Can I use the VPN with a NAT device, residential gateway, and cable or DSL router?
15: I have followed all the directions, but I can't connect to VPN from my NAT device, residential gateway, and cable or DSL router. What is wrong?
-OR-
I have follow all the directions but I can't connect to VPN from my office. What is wrong?
16: Does the Cisco VPN support SSL VPN (clientless)?
17: Whom do I contact for help?

1: What is VPN?

VPN stands for Virtual Private Network. A VPN allows you to use the Internet Service Provider (ISP) of your choice to connect to NJIT's network and use services typically restricted to use on campus. This occurs through a "Virtual" network connection to NJIT, meaning that even though you are connected to your ISP, you will function as if you are directly connected to NJIT network.
Return to top.

2: When should you use a VPN?

VPN is only needed when using an ISP to access these services:

NJIT Services That Require VPN
  • Software Downloads
  • Logging into the ALPHA system
  • Filehost
  • NJIT News servers and Discussion Groups
  • Accessing ADM e-mail using Outlook (different from Web Outlook)

Return to top.

3: What is an ISP?

An ISP is an Internet Service Provider. It is the recommended way to connect to NJIT's restricted services via the Internet. Using an ISP in your area can help reduce your phone charges and provide better connectivity than dialing NJIT directly. Additional information on ISPs can be found on the ISP Information Page.
Return to top.

4: What operating systems does the VPN Client work with?

VPN presently works with:
Operating Systems Supported by Cisco VPN
  • Microsoft Windows: Windows Vista 32 bit, Windows 98, Windows NT, Windows ME, Windows 2000, Windows XP
  • Macintosh: Mac OS 10.2 or later
  • UNIX: SunBlade and Solaris runs on any UltraSPARC computer running a 32-bit or 64-bit Solaris kernel OS 2.6 or later
  • Linux (Intel): The VPN Client for Linux supports Red Hat 6.2 Linux (Intel) or compatible libraries with glibc 2.1.1-6 or later, using kernel 2.2.12 or later.

Note: The VPN Client for Linux does not support kernel 2.5 prior to VPN Client Release 4.0.1.A and does not support SMP (multiprocessor) kernels in any release of the VPN Client.
Return to top.

5: Can I have more than one VPN Client installed on my PC?

Cisco VPN may conflict with other VPN clients such as Nortel VPN Client. We strongly recommend that you uninstall other VPN clients before you install the Cisco VPN client.
Return to top.

6: Will the VPN Service work with America Online?

Many VPN users who have updated to AOL 7.0, AOL 6.0, and AOL 5.0 are having problems using the VPN. We are currently researching this issue and have found that in some cases the VPN Client does NOT work with AOL 7.0, AOL 6.0, and AOL 5.0.

The VPN client still works with AOL 4.0, and since America Online does permit you to have multiple copies of AOL packages installed, you can keep, (install AOL 7.0, AOL 6.0, or AOL 5.0 without overwriting AOL 4.0), or reinstall AOL 4.0 (if you have already removed it). We have tested and found that both AOL 4.0 and AOL 5.0 can coexist on the same machine, and AOL 4.0 when installed in this manner still supports the VPN Client.
Return to top.

7: I am getting error messages or warnings when using VPN. What do they mean?

To see a list of common error messages and what they mean, click here.
Return to top.

8: Should I use the VPN all the time?

NO. VPN is only required when access to certain NJIT services is needed.

NJIT Services That Require VPN
  • Software Downloads
  • Logging into the ALPHA system
  • Filehost
  • NJIT News servers and Discussion Groups
  • Accessing ADM e-mail using Outlook (different from Web Outlook)

Return to top.

9: When I use system names like ADMIN or AFS11, I get "host not found" errors. Why is this happening?

While VPN is active you are still connected using your ISP's domain root (ie. home.com, att.net). This means you MUST fully qualify your NJIT system names, including the njit.edu domain name. You must use SYSTEM-NAME.njit.edu to contact systems at NJIT. For example, use alpha.njit.edu, when contacting ALPHA, or afs11.njit.edu for a Highlander AFS system.
Return to top.

10: Can I use my NJIT UCID for the VPN?

Yes. The VPN server authenticates using your UCID and UCID password. Administrative and Academic users must have a UCID to use the VPN services. If you do not have a UCID, you may apply for a new account online. If you are having login issues related to your UCID and/or password, please consult our UCID FAQ.
Return to top.

11: I have DSL and cannot connect to the VPN. What do I do?

Standard DSL configurations use a connection method called IP hosting. The DSL connection device has a real IP address. The computer(s) are then connected to a LAN using a locally defined set of IP addresses. The DSL device hosts these local addresses on the Internet permitting access.

The use of a VPN client in this configuration is not necessarily supported. The DSL provider must provision the DSL connection device to support a VPN session using IPSec protocols. If you intend to use NJIT's VPN service with a DSL you should contact your provider for information on using VPN with your DSL service.
Return to top.

12: I have a cable modem. Do I still follow these instructions?

Yes, these instructions also apply to cable modems.
Return to top.

13: I want to connect from my computer using my office network. Do I still use the directions below?

Yes. In this case, your office network will substitute for an ISP. If you have issues connecting, please consult with your office network's administrator.
Return to top.

14: Can I use the VPN with a NAT device, residential gateway, and cable or DSL router?

Some may wish to purchase a NAT (Network Address Translation) device for connection to their ISP. This will allow several computers to connect to the Internet using one real IP address and network connection, (Cable Modem or DSL). The NAT Device has a real IP address. The computer(s) are then connected to a LAN created by the NAT device using a locally defined set of IP addresses, typically 192.168.0.x. The NAT device hosts these local addresses on the Internet permitting access. Computers on the Internet do not see the local addresses, only the real address of the NAT device, which in turn selects the correct computer on the local network. This may confuse the VPN client, as well as other services which us a defined set of protocol ports, if more then one connection is attempted. Most NAT devices will only support one VPN Client connection at a time.

Refer to your NAT device manual for configuration details. The IPSEC Protocol suite uses:

IPSEC-AH Authentication Header Protocol (UDP 33)
IPSEC-ESP Encapsulation Security Protocol (UDP 32)
IPSEC-SKIP Simple Key Management for IP (UDP 39)
IPSEC-IKE Internet Key Exchange Protocol (UDP 500)

Return to top.

15: I have followed all the directions, but I can't connect to VPN from my NAT device, residential gateway, and cable or DSL router. What is wrong?
-OR-
I have follow all the directions but I can't connect to VPN from my office. What is wrong?

If you are certain everything is installed correctly, you may be blocked from using VPN by the configuration on your device or by your company's firewall. Refer to your device manual for configuration details or contact your company's network administrator and and verify that they will support a VPN connection using the IPSec protocol. If needed, provide them with the following information, they should know what to do with it:
  • The IPSec protocol suite uses the following:
    • IPSEC-IKE Internet Key Exchange Protocol (UDP 500)
  • You may also permit the following protocols:
    • GRE Protocol (IP Protocol 47)
    • ESP Protocol (IP Protocol 50)
Return to top.

16: Does the Cisco VPN support SSL VPN (clientless)?

Yes, but only on Microsoft Windows operating system. Click here for more information how to use WebVPN.
Return to top.

17: Whom do I contact for help?

The Computing Help Desk offers support for software and hardware issues related to NJIT. For more information, look at their contact page.
Return to top.
 
 

Return to Previous Page

 
Maintained by Information Services & Technology. Date of last update: 08/07/2008 14:58:41
Copyright © 2008 New Jersey Institute of Technology University Heights, Newark, New Jersey 07102-9895 (973) 596-3000
Site Feedback