How to deploy eduVPN
Currently the NRENs from Uganda, Denmark, Norway and the Netherlands have deployed an eduVPN server. At TNC18 we got questions about how to deploy eduVPN. The steps are:
1 Deploy and install a VM in order to get your own eduVPN instance. note: Network equipment/VM platform allows access to at the very least tcp/80, tcp/443, udp/1194 and tcp/1194 for basic functionality.
2 connect the eduVPN instance to your SAML federation
3 contact us in order to ‘get in the eduVPN app’
At TNC18 a two hour eduVPN workshop was organised. The presentations of this workshop are available below:
eduVPN software updates
We have recently released newer eduVPN app versions:
- iOS app (bug fixes) for iOS the OpenVPN app is currently needed
- Android app (bug fixes like 2FA authentication)
- Linux client (bug fixes)
- MacOS app (bug fixes, 2FA enrollment, 2FA authentication)
- Windows app (newer OpenVPN version included)
Every few weeks we are releasing new eduVPN server packages with small improvements. Details are available here
In order to make sure the eduVPN software is safe and secure we’ve asked the Digital Security Group of Radboud University to review our software architecture and the eduVPN server source code. This audit was finished recently and fortunately only some minor issues were found.
The Windows eduVPN client was recently audited by Fox-IT (NCC group). They did a source code audit and only found some minor issues. We’ve of course fixed these.
The full audit reports are available on request.
In the media: GÉANT blog & In the Field
Two articles about eduVPN that were recently published:
In the Field stories
Won ISOC.NL Innovation Award 2018
eduVPN is a brand name we use for the educational & research community. For the software we’re developing we use the name: Let’s Connect!
Let’s Connect! has won the ISOC.NL Innovation Award 2018. The Jury said:“A very necessary technical innovation with potentially a huge social impact. For secure connections, but also for free internet,
we are really dependent on good VPN technology, especially now that net
neutrality is under international pressure. A deserved winner of the
Internet Innovation Award 2018!”
eduVPN beta apps
The eduVPN app for Android was released in January 2017. Since recently there are (beta) apps available for Windows and Linux as well. The windows installers, which should work for Windows 7, 8 and 10 are available here: https://github.com/Amebis/eduVPN/releases/
For Linux only the latest Ubuntu, Debian and Fedora releases are supported. More info about how to install: http://python-eduvpn-client.readthedocs.io/en/master/introduction.html#installation
We are also working on IOS and Mac OS, please stay tuned…
Level of encryption and OAuth info
François Kooman, eduVPN lead developer, created an overview of the used eduVPN crypto
Also an overview of how OAuth is being used in eduVPN was depicted here
EduVPN enables students, employees and researchers to connect securely and encrypted to the Internet from any standard device. EduVPN integrates with the institutional network so that internal ICT services can be made available in a secure manner
First NREN deploy
SURFnet will be the FIRST NREN offering eduVPN as a service to its constituency. Institutes in the Netherlands will be able to replace their current VPN concentrators by a centrally hosted cloud-like managed eduVPN service. The official launch date is scheduled for 1 July 2017.