- To start the VPN service, enter the following in the Quick Connect Linux VM command line:
sudo service strongswan-starter restart - Verify whether the VPN tunnel is working:
- Enter
sudo ipsec statusallin the command line to verify that the service is up and running correctly.Note:If you receive an error or nothing is returned, enter
sudo service strongswan-starter startand correct any issues indicated. Then repeat thesudo service strongswan-starter startcommand until the service starts successfully andsudo ipsec statusallreturns a result that isn't blank and doesn't indicate any errors. - Set up an Enterprise Application in Jamf Security Cloud under Policies > Access > Access Policy that is configured to route via the Gateway corresponding to this Quick Connect VM.Note:
Ensure that the hostname you are defining in the access policy resolves to the IP of a server on the inside of the network. If this hostname is not publicly resolvable, either add the custom IP for each hostname, or publish a hostname using a public DNS service.
- Try to access the application from a browser or native app on a device registered with WPA that is also authorized to use the application that you just created.
The application should load if all the settings are correctly configured.
- Enter
sudo ipsec statusallon the Quick Connect Linux VM to view the new security association, which indicates that the VPN tunnel is now up and running.
Note:If the tunnel is in an active state but traffic is not properly routing, click Access Gateways in Jamf Security Cloud, then select the gateway and click Logs to display errors and remediation steps.
- Enter
You can create Access Policies to define the applications your users can access. For more information, see Zero Trust Network Access Policy.