Screen-friendly
page
Printer-friendly
pageMovian / Antha VPN Client Software (Windows CE and Palm OS)
The following instructions are for users of Windows CE and Palm OS. For other platforms' instructions, see Downloads and Installation.
Show all images | Hide all images
Before you install and configure the software
You should make sure that you can connect your device itself to the UIUCnet Wireless network itself before attempting to leave the UIUCnet Wireless network via the VPN system. For more information, see Connecting your wireless device to UIUCnet Wireless.
Acquiring and installing the software
Certicom's Movian VPN software is now being redistributed by Antha (http://www.anthavpn.com/) in conjunction with Antha's new development of AnthaVPN software for more recent palmtop operating systems. You will need to visit Antha's web site to ascertain the status of their Movian distribution and support, and whether your particular palmtop should use an Antha client instead.
Since there are currently four different interfaces possible for different palmtop users, with more in development, this document simply lists the required settings that you will need to enter into your Movian or Antha sofware.
For assistance in navigating the interface itself, you will need to consult the manufacturer's instructions for your PDA's specific version of Movian or Antha software.
If you cannot acquire a Movian or Antha VPN license, you can use the free UIUCnet QuickConnect service for many of the functions provided by VPN client software. However, as described in QuickConnect and Security, UIUCnet QuickConnect is not a complete replacement for a VPN client.
Configuring the software for use at UIUC
Before you configure your PDA's VPN software, you will need to make sure your wireless device is set to expect DHCP communication (i.e., it expects to be assigned an IP address by the VPN server).
On Windows CE:
After you've installed the VPN client using instructions from the vendor that apply to your palmtop and your desktop OS, go to Start -> Settings -> Connections -> Network. Choose the wireless network card, and make sure that "Use server-assigned IP address" is checked. Also, there should not be an IP address listed in the DNS name server settings; the VPN server will also handle this.
On Palm OS:
The precise configuration will depend on the networking card you have installed. However, some general advice does apply. After you've installed the VPN client using instructions from the vendor that apply to your palmtop and your desktop OS, go to Preferences -> Connection to configure your network connections. Select Movian (or Antha) VPN. Then select Edit. Again, depending on the networking card, your selection may vary, but it will be "IPSEC to" something. (Consult the Movian/Antha documentation for more specifics.)
Next, under Preferences -> Network, select the Movian (or Antha) VPN connection.
UIUC-specific summary of settings
Note: Not all of these fields will be required in all of the available interfaces. If a field is displayed in your interface, enter the values below; if a field is not displayed in your interface, you can ignore that field.
The fields that are most likely to be required in all interfaces include gateway type and address, user name and password, group name and password, DNS, IKE, and IPSEC.
| Policy name | UIUCnet Wireless (for the UIUCnet Wireless network) or Remote connection (for any remote and/or wired network) |
| Gateway type ("Please select one" drop list) | Cisco VPN Concentrator 3000 |
| Gateway IP address | 128.174.1.99 (if using UIUCnet Wireless) or 130.126.144.3 (if using any remote and/or wired network) |
| Split tunneling | <none> |
| Perfect Forward Secrecy | Not Checked |
| Extended Authentication | Checked |
| DNS checkbox | Query DNS checkbox: Checked |
| IKE Suite (or Proposals) | Group: GRP1_DH-768 |
| Cipher: 3DES_CBC | |
| Hash: MD5 | |
| Account info: Group Name | Wireless1 |
| Group Password | secret |
| User Name | Network ID |
| User Password | Network ID password (All other CITES VPN versions use the Active Directory password for connecting. This VPN client uses the Network ID password instead.) |
| User Passcode (SecurID) | <none> |
| Network Properties | Primary Subnet IP Address: Assigned by DHCP server |
| Primary Subnet Subnet Mask: Assigned by DHCP server | |
| Secondary Subnet IP Addresses: Assigned by DHCP server | |
| Secondary Subnet Subnet Masks: Assigned by DHCP server | |
| IPSec Suite (or Proposals) | <none> |
| SA Lifetime | <none> |
| Options -> Connection Type | your wireless Ethernet card |
| Options -> Dialup RAS Entry | <none> |
After connecting
To check your connection, you can tap the Tools tab at the bottom of the VPN window, choose ping, and ping a host that you know should be alive (for example, www.uiuc.edu). You should get a "ping successful" message.
If your ping test was successful, you can start using the other Internet applications you have on your wireless device, such as Internet Explorer.
When you are done with your wireless networking session and the VPN connection, make sure that you log out of the VPN service using the Logout button. If you will continue to use your handheld device without a network connection, you may want to exit the VPN client with the Exit button.
More help
For more help, see the VPN FAQs or contact the CITES Help Desk during the Help Desk's hours of operation.