Mattermost Logo
We're hiring!
Edit on GitHub

VPN(CLOUD)

Table of contents

Setup VPN access on Pritunl 

Viscosity client 

  1. Install a VPN client that supports DNS settings such as Visocity.
brew cask install viscosity
  1. Go to the VPN server and select Sign in with OneLogin. Then connect with your OneLogin username and password and when prompt put the OTP (One Time Password). Select Show More and hit Download Profile Pritunl User Profiles

  2. Open the Viscosity application or your preferred VPN client and go to settings/preferences.

  3. Click + to import the profile you downloaded from the VPN server on the step 1 Viscosity Profile Add

  4. After your profile is imported, select to edit the entry,

  • On the General tab update the Address of the Remote Server to be: pritunl.core.cloud.mattermost.com as shown below: General settings Viscosity

  • Go to Networking tab and update the DNS settings.

    • Select for the Mode to be Full DNS.
    • As Servers put: pritunl.core.cloud.mattermost.com which is VPN’s server IP.
    • In Domains put: cloud.mattermost.com, this will split traffic for those domains Network settings Viscosity
  1. Add, if it is not there, in your /etc/resolv.conf: nameserver 10.247.0.2

  2. After following these steps you should be able to connect to VPN and then to resolve private DNS entries.

Pritunl client 

  1. Go to the VPN server and select Sign in with OneLogin Then connect with your OneLogin username and password and when prompt put the OTP (One Time Password).

  2. Select Download Client which will redirect you to download the Pritunl Client.

    Select your OS, download and install the appropriate client. Pritunl Download Client

  3. Go back to browser and copy the Profile URI link Pritunl Download Client

  4. Open the Pritunl client and paste the Profile URI link from previous step into Import Profile URI Pritunl import URI

  5. Click the burger button on the newly imported profile and select Edit Config Pritunl Config

  6. On the config change the line that says:

    remote X.XXX.XXX.XX 1194 udp to be:

    remote pritunl.core.cloud.mattermost.com 1194 udp

    NOTE: Do NOT change the port, it will be either 1194, 1195 or something else Pritunl Config remote

  7. Add, if it is not there, in your /etc/resolv.conf: nameserver 10.247.0.2

  8. After following these steps you should be able to connect to VPN and resolve private DNS entries.

Gnome VPN Client 

  1. Go to the VPN server and select Sign in with OneLogin.

  2. Connect with your OneLogin username and password and when prompted input the OTP (One Time Password).

  3. Click Download Profiles and save the .tar file to your filesystem.

  4. Extract the .tar file (tar xf yourusername.tar) and note the location of the .ovpn file.

  5. Open the Gnome Settings manager and navigate to Network > VPN. Click the + to create a new VPN connection.

  6. Choose Import from file….

  7. Select the .ovpn file downloaded earlier through the file picker.

  8. Open the IPv4 tab and select Use this connection only for resources on its network.

  9. Open the IPv6 tab and select Use this connection only for resources on its network.

  10. If desired, rename the VPN to something friendlier in Identity > Name.

  11. Choose Add to save the configuration.

  12. From now on, enable the VPN through the taskbar picker in the upper right corner of Gnome.

Older Setup of VPN access on OpenVPN 

  1. Login to the VPN server using your mattermost email and OneLogin password. Please select connect instead of login on the drop down menu.

    • If login fails, ask Cloud team to check if your username is in the correct group
  2. Please refresh the page if it says: Please click here to continue to download OpenVPN Connect. You will be automatically connected after the installation has finished.

  3. Download the user-locked profile. VPN HomePage

  4. Install a VPN client that supports DNS settings such as Visocity.

brew cask install viscosity
  1. Open the Viscosity application or your preferred VPN client and go to settings/preferences.

  2. Click + to import the profile you downloaded from the VPN server on the step 1 Viscosity Profile Add

  3. After your profile is imported, select to edit the entry, go to Networking tab and update the DNS settings.

    • Select for the Mode to be Split DNS.
    • As a Server IP put: 10.247.4.47 which is VPN’s server IP.
    • In Domains put: cloud.mattermost.com, this will split traffic for those domains Viscosity VPN CIDR
  4. After following these steps you should be able to connect to VPN and then to resolve private DNS entries.