IS/IT Division

Using a VPN to connect to the computer network at Karlov

This page summarizes information for users who connect to the MFF UK network at Karlov using a VPN.

Features of VPN at Karlov

  • use must be requested in advance at psik@matfyz.cuni.cz (we will include your login among those that can use the VPN)
  • built on OpenVPN, clients are available for most major operating systems
  • authentication using login and password from CAS (https://ldap.cuni.cz/)
  • all traffic of the connected client redirected via NAT to the network at Karlov (from the outside, therefore, clients appear to have a public address from the Karlov, specifically vpn.karlov.mff.cuni.cz)
  • the number of simultaneously connected clients per user is not limited
  • traffic in the vpn is governed by the rules for the operation of the computer network at Karlov
  • vpn traffic updates are communicated to users via mail distribution list

VPN connection settings

The graphical interfaces of the available client programs differ from each other, but the basic setup should be manageable according to the following overview:

  • Authentication type: Username/Pasword
  • CA Certificate: capsikvpn-20221102.crt 
  • Username/Password: according to CAS (login, not the number)
  • Server: vpn.karlov.mff.cuni.cz
  • Port: 1194
  • Protocol: UDP
  • IP & DNS: download from server
  • Routing/IPv4: all traffic through VPN
  • Server name check in the certificate: on
  • Expect server certificate: on
  • MSS of TCP: 1300

Clients and sample configuration files

The sample configuration files are marked with the date and version of the last modification to make it easier to keep up to date. 

Android

iOS


OS X


MS Windows

 

Charles University, Faculty of Mathematics and Physics
Ke Karlovu 3, 121 16 Praha 2, Czech Republic
VAT ID: CZ00216208

HR Award at Charles University

4EU+ Alliance