F5 VPN

• Website
• Technical support forum
  • Troubleshooting | BIG-IP Edge Client operations guide

openconnect

• Docs
• I couldn't get it to work with openconnect
• Gitlab issues

Start:

openconnect --protocol=f5 --dump -vvv $SERVER

F5 Big IP VPN Client

• Installation packages only in rpm and deb format

Install on Arch

• CLI-Only Alternatives
  • gof5: Last commit 2022-05
  • svpn-login: Last commit 2021-03
  • f5vpn-login: Last commit 2020
  • Offical f5 cli client: f5fpc
    • Docs
• Openconnect
  • GlobalProtect-openconnect A GlobalProtect VPN client (GUI) for Linux, based on OpenConnect and built with Qt5, supports SAML auth mode.
  • Doesn't work: Support f5-vpn:// URIs
• NetworkManager-f5vpn "Now that OpenConnect added support for F5 SSL VPN, this project is obsolete"
• F5 SSL VPN on unsupported Linux distribution (Arch Linux, Manjaro, maybe others)

f5vpn-arch

• f5vpn-arch GitHub
  • AUR package

Steps:

Install package:

pamac install f5vpn

Configure mimeapps.list:

• Ensure x-scheme-handler/f5-vpn=com.f5.f5vpn.desktop under [Default Applications] and [Added Associations]

Fix wayland issue where client crashes with qt.qpa.plugin: Could not find the Qt platform plugin "wayland" in "":

Add Exec=/usr/sbin/bash -c "export QT_QPA_PLATFORM=xcb; /opt/f5/vpn/f5vpn %u" to /usr/share/applications/com.f5.f5vpn.desktop

Official client on Arch

Download official f5-client Debian package, i.e.

wget https://huskyonnet-ns.uw.edu/public/download/linux_f5vpn.x86_64.deb -O ~/projects/vpn/f5-client/native/linux_f5vpn.x86_64.deb

Extract content:

cd ~/projects/vpn/f5-client/native/
ar x linux_f5vpn.x86_64.deb
tar -xzf control.tar.gz
tar -xzf data.tar.gz
sudo cp -a opt/f5 /opt/f5
sudo ./postinst

Etc

• Config at ~/.F5Networks/f5networks.conf
• Log at ~/.F5Networks/vpn.log Also contains some F5 tunnel config details

Debug with export QT_DEBUG_PLUGINS=1