The following guide outlines the steps necessary to install & configure FrootVPN using IPsec on your Ubuntu 16.04:




1. Install StrongSwan


Open terminal and run this commands one by one:


sudo -s
apt-get update
apt-get -y install strongswan
apt-get -y install strongswan-plugin-eap-mschapv2
apt-get -y install libcharon-extra-plugins
apt-get -y install libstrongswan-extra-plugins



2. The following command will replace default configuration file and write required settings. 


Change the following information and run a command:


'conn frootvpn' - Enter a name for the connection you are adding. IE. FrootVPN


'eap_identity=username' - Enter your FrootVPN user name.


'right=server address' - Enter the PPTP or L2TP server address of the location/server that you wish to connect to from our server list


sudo printf '%s\n\t' 'frootvpn' 'keyexchange=ike' 'dpdaction=clear' 'dpddelay=300s' 'eap_identity=username' 'leftauth=eap-mschapv2' 'left=%defaultroute' 'leftsourceip=%config' 'right=pt-ls-vpn.frootvpn.com' 'rightauth=pubkey' 'rightsubnet=0.0.0.0/0' 'rightid=%any' 'type=tunnel' 'auto=add' >  /etc/ipsec.conf


After this execution of this command you will have configuration file /etc/ipsec.conf like this:


conn frootvpn
        keyexchange=ike
        dpdaction=clear
        dpddelay=300s
        eap_identity=username
        leftauth=eap-mschapv2
        left=%defaultroute
        leftsourceip=%config
        right=pt-ls-vpn.frootvpn.com
        rightauth=pubkey
        rightsubnet=0.0.0.0/0
        rightid=%any
        type=tunnel
        auto=add


3. Disable the "constraints" plugin


 sudo sed -i 's/load = yes/load = no/g' /etc/strongswan.d/charon/constraints.conf



4. Write your credentials into /etc/IPsec.secrets replacing username and password with your FrootVPN username and password


sudo printf '%s' 'username' ' : EAP ' 'password' >> /etc/ipsec.secrets 


5. StrongSwan needs to verify server certificate. As it searches its certificates store, we can link it to the system's OpenSSL certificate store. To do so, execute the following commands:


sudo rmdir /etc/ipsec.d/cacerts
sudo ln -s /etc/ssl/certs /etc/ipsec.d/cacerts



6. Restart StrongSwan daemon so it reads new settings:



sudo ipsec restart 



7. To start the connection just type:


sudo ipsec up your_connection


To disconnect, type:


sudo ipsec down your_connection



Where your_connection is the name of connection you specified in step 2


You can always check the status of your connection by typing:


sudo ipsec status



Once you are connected you will see the message: "connection 'your_connection' established successfully"



All of your online activities are now 100% secure and anonymous while connected to FrootVPN.

If you have any questions, or experience any issues while installing and setting up your Ubuntu device to connect to

the FrootVPN VPN servers - please contact our Support Team anytime.