Request Access to the testbed

Currently project-extern institutions may not apply for access to the testbed. We plan to grant access at a later point in time when fulfilling some predefined conditions.

VPN

Our testracks can be accessed by using OpenVPN only. Clients may access the testbed at all of the three sites. After logging in to the VPN one can access all testracks residing within the testbed. Currently we're providing the following access-servers:

Site FQDN IPv4 IPv6
Tübingen bwnet100.gw.uni-tuebingen.de 134.2.19.12001:7c0:30c3:127::8602:1301
Ulm bwnet-100g-vpn.rz.uni-ulm.de 134.60.55.2002001:7c0:900:37:b9:7e:dfdd:1
Karlsruhebwnet100g-vpn.scc.kit.edu 129.13.73.462a00:1398:200:400::10

Some example client-configuration might look like:

client
remote 129.13.73.46
ca /path/to/Deutsche_Telekom_Root_CA_2.pem
auth-user-pass
cipher AES-256-CBC
auth SHA1
dev tap
proto tcp-client
nobind
script-security 2
persist-key
persist-tun
tls-cipher DEFAULT
route 193.196.176.0 255.255.252.0

Depending on your OpenVPN-Client you may have to add some routes directing to the subnet manually:

Netz Präfix Gateway
193.196.176.0 22 193.196.177.1
2001:7c0:2400:: 40 2001:7c0:2404:2::1

Authentication is provided using the bwIDM project1). The username consists of the following:

university-code {tu,ul,ka}_[user-id at your university]

Example: “ka_gd4323”

bwIDM

A bwIDM-entitlement is some string-value, which has to be set as LDAP attribute at your home-university's directory service. bwNET's entitlement is:

http://bwidm.de/entitlement/bwNET

Once the attribute is set correctly in your home university's LDAP you can register for access to bwNET at https://bwidm.scc.kit.edu. After your successful registration you have to set an access-password for the VPN connection. Your VPN username (localUid) will be shown when selecting Registry Info on the website's menu

en/access.txt · Last modified: 2016/10/11 17:00 by Andre Hafner