VPN information for the College of Engineering
This document is a one-stop-shop for VPN information for the college of Engineering. PLEASE NOTE THAT WiscVPN IS CHANGING, AND DOES NOT USE THE CISCO ANYCONNECT CLIENT! THIS WILL NOT WORK FOR DEPARTMENTAL VPN. YET. SEE BELOW! For more information on the WiscVPN change, please see https://kb.wisc.edu/helpdesk/page.php?id=68164
The CoE will be transitioning to the Palo Alto VPN client, GlobalProtect very soon.
Once this has been done, this page will be updated, and the departmental IT staff will be notified. If you have any questions or problems, please contact the CAE helpdesk at email@example.com
What is VPN
A FAQ on CAE VPN can be found here: https://kb.wisc.edu/cae/page.php?id=8312
Types of VPN available to the CoE
There are two basic types of VPN offered to anyone affiliated with the College of Engineering; WiscVPN and CAE VPN. WiscVPN, also known as Campus VPN allows you to connect to the UW campus network. While some of CAE’s resources are available this way, most require some type of CAE VPN. CAE VPN is further broken down into CoE VPN, License (Sofftware) VPN and Collaborator VPN.
Wisc VPN: All UW Madison students, faculty and staff should have access to WiscVPN. In addition to general campus use, WiscVPN can be used to access a few CAE resources, such as filespace and groupspace.
CoE VPN: The College of Engineering VPN network is automatically given all College of Engineering faculty and staff, and graduate students who have an appointment in the CoE (such as TAs). It allows complete access to engineering resources, as if you were physically connected to the engineering network.
If you are a faculty or staff member, or grad student who does not already have this access, you can activate your access using the information in http://kb.wisc.edu/cae/page.php?id=23424 . CoE VPN is generally not available to undergraduate students.
With CoE VPN, you must log in with your CAE credentials. You will have the option of Full and Split tunnel connections.
Split Tunnel means that only network traffic that is destined for a computer on the UW-Madison campus will be sent through the VPN tunnel. All other network traffic will travel normally over the internet and will appear to come from your computer's IP address.
Full Tunnel means that *all* internet traffic will travel through the VPN tunnel, regardless of its destination and all of the traffic will appear to come from a College of Engineering IP address.
The license VPN instructions have been temporarily removed.
License VPN : Also
known as software VPN, the license VPN is a more restricted version of the CoE
VPN. It requires CAE credentials, and only allows a user to connect to the CAE
license servers and a few other services, such as groupspace and userspace.
License VPN will not allow access to research clusters and other CoE resources.
The license VPN is available to undergraduate students, and is a split tunnel connection. The advantage of this is that students can locally install
and run some CAE owned and controlled software while your computer is connected
to the network or Internet. The license VPN must be activated prior to first use.
Activation information can be found here: https://kb.wisc.edu/cae/page.php?id=32730
Collaborator VPN: Collaborator VPN is also a special restricted version of the CoE VPN for users that have affiliations in the College of Engineering, but do not have access to UW paid resources. This version will give access to researcher's systems, but will not give access to CAE resources, software, or any other UW paid resources (library, etc.). Because of the software restriction, a collaborator account will not be able to SSH into a CAE Tux lab computer. There are, however, provisions (see below) for those who are used to doing this, but no longer have software/lab access. You must use CAE credentials to log into a collaborator account.
Installing and Using the Engineering VPN
Installing the AnyConnect Client for the first time
- Upgrading a previously installed AnyConnect Client
Attention: The College of Engineering VPN network is automatically given all College of Engineering faculty and staff. If you are a faculty or staff member who does not already have this access, you can activate your access in the same way that Engineering graduate students can. If you are a graduate student in the College of Engineering, you may activate your access using the information in http://kb.wisc.edu/cae/page.php?id=23424 .
Navigate your browser to https://dept-ra-cssc.vpn.wisc.edu/ . You will be presented with a login page.
Configuring the Cisco AnyConnect Client
If you already have the Cisco AnyConnect Client installed, or used the manual installation method, you will need to configure the client.
How to setup the Cisco VPN client with the Collaborator Profile to Access the College of Engineering's VPN serviceIf you would like detailed instructions on how to install the Cisco AnyConnect VPN client, please see these other Knowledge Base articles:
Collaborator AccessDo you have permission to use the Collaborator profile? While the profile to use the collaborator mode is freely available, there are specific access controls on your account that need to be set before you can use this service. If you are not sure if access has been granted, please contact the CAE Helpdesk at firstname.lastname@example.org
Install the Cisco AnyConnect VPN ClientPlease note that you only need to install the AnyConnect Client once!
- Navigate your browser to https://dept-ra-cssc.vpn.wisc.edu/
- From the drop-down box next to "GROUP:" , select the item "Engineering_Collaborator" and then enter your CAE username and password. This should give you log you in and allow you to install the Cisco AnyConnect VPN client.
If the VPN client does not install properly, please contact email@example.com.
Connect to the Engineering VPN
- Start the Cisco AnyConnect Client (right-click on the AnyConnect icon in your tool bar) and select "Engineering_Collaborator" as the Group.
- When you are asked for your username and password, enter your CAE ID and then enter the password that is associated with your CAE ID.
Congratulations! If the Engineering VPN accepted your username and password, the connection was successful. If you would like to double-check and confirm that you are using an IP address that is allowed through our firewall, click on the menu item "Status" and then select the option "Statistics".
If the connection was successful, you should see an IP address that is in the range of 10.128.61.1 - 10.128.61.255 listed as the "Client" address under the "Address Information" section of that window.
As mentioned above, if you don’t already have access to VPN, but you believe you should, the problem may be that your VPN has not been activated. This will only need to be done once.
Instructions for graduate students (CoE VPN) can be found here: https://kb.wisc.edu/cae/page.php?id=23424.
Instructions for undergraduate students (License VPN) can be
found here: https://kb.wisc.edu/cae/page.php?id=32730.
Here are some solutions to common problems:
1. AnyConnect fails to install: See manual installation https://kb.wisc.edu/cae/page.php?id=37750
2. AnyConnect installs, but cannot establish connection: Verify that the client is pointed to dept-ra-cssc.vpn.wisc.edu/
3. Cannot access best-tux or Linux lab machine: Collaborators do not have access to lab machines. If you are trying to use best-tux to get to a cluster, see the Important Note in the collaborator doc above (https://kb.wisc.edu/cae/page.php?id=13824) for information on sshvpn.cae.wisc.edu. Collaborator VPN must be running for sshvpn.cae.wisc.edu to work.
4. Linux installation issues: https://kb.wisc.edu/cae/page.php?id=29331
5. Userspace, groupspace and myfiles can all be reached from UWnet, WiscVPN or any of the CoE VPN types.
6. No VPN of any kind is needed for XenApp.
Troubleshooting can be split into two categories: Installation of Cisco AnyConnect, and connecting to the COE VPN. In either case, you may
Troubleshooting can be split into two categories: Installation of Cisco AnyConnect, and connecting to the COE VPN. In either case, you maycontact the CAE Help Desk at firstname.lastname@example.org. Problems installing/connecting with the AnyConnect client (that is, you are unable to install Cisco AnyConnect and/or connect to Wisc VPN) may be referred to the DoIT Help Desk (email@example.com).
Internal use only: https://kb.wisc.edu/cae/internal/page.php?id=59233
- Accessing the College of Engineering's VPN
- CoE VPN "Collaborator"
- Software VPN for Mac
- Activation of CoE VPN for graduate students
- CoE VPN on iOS (iPhone, iPad, iPod Touch) using Cisco AnyConnect