Connecting to the Technion with VPN
Technion operates a service that enables its clients to remotely connect to the Technion network based on existing Internet connectivity in the computer for instance from Hotel rooms, Internet caffes or when one already has an Internet provider. The connection is secured and encrypted and is carried out in a channel between the computer and the Technion network over public Internet infrastructure and is called: VPN - Virtual private Network.
Two main protocols (or languages) exist for use with VPN. Microsoft uses a protocol named PPTP - Point to Point Tunneling, while most other companies use the IPSec - Internet Protocol Security. While PPTP has a built in 'good' encryption and means to identify users and their passwords, IPSec is a 'pure' encryption protocol that doesn't include ways to identify the user. For that, a third protocol has been created - L2TP - Layer 2 Tunneling, which is IPSec combined with means to identify the user.
VPN at the Technion
As part of the remote access services run at the Technion, few servers are operated which 'talk' the above mentioned protocols of which the recommended protocol is L2TP. It is possible and even desired to define a second protocol so in case one of the protocols doesn't work, the other can be used as backup.
Some 'finger rules' in choosing the preferred protocol:
- Use L2TP for the modern Operating Systems, do though create the PPTP as well for backup purposes.
- Use PPTP for older operating systems
- Use PPTP if you have an advanced operating system but you must connect to your work place with the IPSec protocol.
Each remote connection to the Technion network must use an OTP device. Passwords generated by the card are valid in local systems for two minutes which more then enough to complete the identification procedure.
Currently, the Technion operates two different devices that look like this:
The two pictures to the right are of the Tele-ID device, used by long time customer and on the left and RSA type generator, used by new users.
Purchase/Return points for the device are as follows:
-
Staff - Human Resources, Reuma
-
Faculty (private budget) - faculty office, Yael Albo
-
Faculty (research budget) - Research Authority, Sharona Hendel ext. 2570 or Shula Nir ext. 2402
-
Under graduate students - Ulmann 400 (windows), daily 11:00 to 13:00
-
Graduate students - Churchill building, room 2005, Levana, daily 09:30 to 12:30
-
Medicine - staff and students, Galit at the faculty office.
Before connecting to the Technion network some conditions apply:
-
An active account on either t2 or tx
-
Understanding initialization and usage of the OTP device (see instruction below)
-
Creating the Dialer L2TP (preferable) and/or PPTP
Once completed, you can start working with the device some 10 minutes later with Tele-ID and immediately with RSA.
Important to remember
The devices are electronic devices with batteries of limited life time. When the Tele-ID device shows a sign of a weak battery 
- This is the time to replace it. RSA devices have an expiration date printed on their back.
You should read the Procedures of using Technion network computing resources before you start your work.
L2TP Dialer
Following instructions will guide you through the process of defining and L2TP dialer. Please choose the appropriate operating system:
PPTP Dialer
Following instructions will guide you through the process of defining and L2TP dialer. Please choose the appropriate operating system: