Questions tagged [tun]
The tun tag has no usage guidance.
82 questions
0
votes
0
answers
17
views
Free5GC/UERASIM - [error] TUN allocation failure [Open failure /dev/net/tun]
Please your kind support with this error, I0m trying to replicate testbed Free5GC, but after PDU session is established there show me an error TUN.
[2024-12-04 10:51:35.763] [nas] [info] Initial ...
0
votes
0
answers
24
views
Implications of replacing the loopback interface in a network namespace with a tun device
I am running a process in a network namespace, and I want that process to be able to reach services running on localhost outside the namespace. I had the idea of deleting the loopback interface and ...
- 252
0
votes
1
answer
72
views
How to make TUN device accept incoming packets?
I'm working on the simple VPN server project for iOS.
iOS sends intercepted packets to Go server with UDP connection, then those packets are injected into the TUN device.
Go server workflow:
Create ...
- 111
0
votes
0
answers
147
views
Packets sent to tun Interface not received by Application
i have been stuck at this problem for quite some time and just can't figure out what I am doing wrong.
What I am trying to achieve is to intercept packets (IP and TCP), change their header and then ...
1
vote
0
answers
850
views
what effects performance of a tun/tap or a virtual network interface?
I know what a tun/tap device does in linux.
if I create a new tun interface with only a name and assigning an IP address to it, and leave other settings as default, like this:
sudo tunctl -t tun0
sudo ...
- 23
0
votes
0
answers
446
views
NAT Between TUN and Ethernet Network Interfaces
There's a detailed explanation of the setup and my debugging efforts so far, but the main question is at the bottom.
I have a setup like so:
Machine A has two network interfaces: eth0 (192.168.159.60)...
- 117
0
votes
1
answer
391
views
Is the outgoing connection from a OpenVPN client to a LAN behind an OpenVPN server forwarded by the server kernel?
I've observed a somewhat strange behavior that I can't quite understand. So I set up an OpenVPN connection as shown in the graphic below. (It's a TUN and client-to-client setup).
My thoughts are ...
- 3
0
votes
1
answer
2k
views
proper way of NATing and Routing when using TUN interface with iptables
edit: I'm a newbie in networking and discovering new things :)
I created a TUN interface programmatically and able to interact with.
I set it up and running by
ifconfig myTun 10.10.1.1/24 up
and its ...
- 23
0
votes
0
answers
356
views
Reply IP packets lost when using eBPF and AF_XDP --- where do they go?
I have a test case eBPF/AF_XDP test case which is supposed to take incoming ethernet packets from an interface, send them to user-space using an AF_XDP socket, filter them according to some criterion (...
- 109
2
votes
2
answers
2k
views
qemu commandline can't see /dev/net/tun
i am newbie with qemu and libvirt. I hit the issue with virsh and qemu, especially with tun interface setup.
Once i run
qemu-system-x86_64 \
-nographic -enable-kvm \
-cpu host -m 2048 \
-...
- 23
0
votes
0
answers
228
views
Is it possible to read less than 4 bytes from TUN device when IFF_NO_PI is not set?
I was reading the implementation of wireguard-go, and found it handles reading less than 4 bytes from the TUN device file when the no packet information flag is not set.
I wonder is it possible that ...
0
votes
1
answer
3k
views
I am creating a tun interface with sudo ip tuntap add dev <interface_name> mod tun, but it's not receiving packets when I ping it?
Here are my command when I set up the interface:
sudo ip tuntap add dev router0 mod tun
sudo ip addr add 10.0.0.138/24 dev router0
sudo ip link set dev router0 up
Here is the output of ip addr show ...
- 103
0
votes
0
answers
2k
views
tun2socks configuration not working
I am trying to configure a tun2socks server that forwards all traffic to an external proxy found online. I also want to retain the ability to ssh into the server so I had to take this into ...
0
votes
0
answers
383
views
Testing a tun tunnel between an Ubiquiti edge router and a Linux Server
I am following the first example setup for OpenVPN which involves establishing a TUN tunnel.
On the server I run:
openvpn --ifconfig 10.200.0.1 10.200.0.2 --dev tun
The ubiquiti Edge Router is ...
- 124
0
votes
1
answer
907
views
QEMU VM with tap interface sees all packages coming from hypervisor instead of real source IP
I have set up a very simple Hypervisor using Alpine Linux and my VM sees all traffic coming from the IP of the hypervisor.
Which also means if fail2ban tries to block attacks, it always blocks the ...
- 333
4
votes
1
answer
3k
views
What does ip addr add dev tun1 local 192.168.69.0 remote 192.168.69.1 mean? [closed]
I found the following set of commands to open a tun device on linux that relays things to the internet. However, packets are not relayed back to the tun device
ip tuntap add dev tun1 mode tun user `id ...
0
votes
0
answers
2k
views
Forwarding Traffic from TUN interface to XX
My setup is the following: I'm writing a program that creates a tun interface and writes raw (Layer 3) packets to that interface. For example a ICMP ping packet (to make things easy).
Now i want to ...
1
vote
1
answer
336
views
Name resolution for dummy interfaces
I've a virtual NIC of type NAT on my Ubuntu 20.04 virtual machine which connects it to the internet via host. For some processing, I need to route all incoming and outgoing packets via a program I've ...
- 21
1
vote
1
answer
6k
views
Route all traffic through TUN interface
I want all my traffic go through TUN interface.
So, as you can see, the traffic is routed to TUN iface on 10.0.0.1 address from every program. Then, the program attached to the TUN does something ...
2
votes
0
answers
187
views
Is there a tool I can use to test out multiple vpn tunnels in one machine?
I use wget -q -O https://checkmyip.com/csv to determine if I am connected to a VPN but I want to verify multiple VPN tunnels on the same machine. Is there a tool that can allow me to send a command ...
- 181
0
votes
0
answers
1k
views
Attach a VM to a host TAP or TUN device
I'm working on a project whilst in lockdown in England, and I am hoping someone can offer some advice?
I have a machine with 5 physical eth interfaces on Linux Mint, 20.04. All eth interfaces ...
- 1
3
votes
0
answers
334
views
How to migrate OpenVPN architecture TAP to TUN
I did a tunnel system with OpenVPN to let a distant client act like a private network client to access private resources. It uses a client on the private network as a gateway.
DistantClient <-> ...
- 131
0
votes
1
answer
1k
views
Unable to connect VPN client to OpenVPN server running Ubuntu 16.04.6
im a bit new to Linux and also rather stuck with this... any help here would be much appreciated...
I am running Ubuntu 16.0.4 on my server and trying to connect a client to it but no luck. The ...
- 1
0
votes
0
answers
8k
views
OpenVPN: Cannot open TUN/TAP dev /dev/net/tun: Operation not permitted
I'm have some trouble with OpenVPN reccently, OpenVPN server are hosted on a VPS. It had been work for few months but last friday I reboot and update and upgrade since impossible to connect from my PC ...
0
votes
0
answers
253
views
Embedding 3 bytes custom data in IPv4 header and then filter by iptables
In my modified OpenVPN server process, as an intermediate node, I'd need to embed my custom 3 bytes data in the header of every IP packet and then in the same machine (after going through tun) filter ...
- 103
0
votes
1
answer
2k
views
tun/tap works on incoming or outgoing packet?
When we create a tun virtual interface we use read and write to read and write packets from/into network stack. My question is when we use .read, we are actually reading outgoing packets (the packets ...
- 3
0
votes
1
answer
330
views
what is difference between simple TUN and VPNs like PPTP and L2TP
In respect of VPNs and tunneling, as far as i know, TUN is a virtual interface works on network Layer 3 (IP packets), and is nothing more than a simple more likely UDP socket link in practice (I think)...
- 103
5
votes
1
answer
4k
views
socat tun device very low throughput
I was tinkering around with socat and tried to use socat for creating a TUN device for tunneling between two debian stretch servers. However, throughput seemed very low and comparing with iperf ...
2
votes
0
answers
1k
views
write into a tun interface and forward traffic to another computer
I have the following setup. An application on machine A creates an IP packet which is captured by the tun1 interface. I have added the route using the command :
sudo route add -host 10.129.131.220 ...
- 121
12
votes
2
answers
28k
views
OpenVPN persist-tun option - what's the point?
According the OpenVPN 2 Cookbook:
The persist-tun and persist-key options are used to ensure that the
connection comes back up automatically if the underlying network is
disrupted. These ...
- 223
3
votes
1
answer
8k
views
Multiqueue tun/tap interface
I am trying to understand how Multiqueue tuntap interface works. Following the instructions provided at: https://www.kernel.org/doc/Documentation/networking/tuntap.txt
I was able to create multiple ...
- 51
2
votes
1
answer
2k
views
IPv6 on Linux tun/tap: NDP not working
I am working on an old code that used to connect different IPv6 devices over a different kind of network (a powe line netwrok, PLC, which is quite similar to 802.15.4). To do that, it created Linux ...
- 191
2
votes
1
answer
7k
views
OpenVPN TAP vs TUN in parallel
I have a few questions about our existing OpenVPN server setup and a requirement that we have to expand our access.
Our current setup is as follows:
1 OpenVPN server (in TAP mode)
Multiple VM ...
- 21
0
votes
1
answer
1k
views
How to set up single client TAP/TUN on the client for my OpenVPN?
My laptop OpenVPN client establishes a TAP device. My client config is TUN, though. This devices shows under ifconfig /ALL with the IP 10.8.0.6
and a subnetmask of 255.255.255.252. (!!!)
This ...
- 115
0
votes
1
answer
2k
views
Can the inet address assigned to P-t-P tun interface be used for a client inet address if the server runs out of all addresses within a subnet?
I have an OpenVPN server with an Inet address 10.8.0.1 serving the subnet 10.8.0.0/24. I have two clients connected to this server and the status log (/etc/openvpn/openvpn-status.log)reads as follows:
...
2
votes
1
answer
2k
views
Issues setting up TINC on Mac OSX 10.12.2
I have TINC setup on a few linux boxes and they are working great.
linux001 (static ip vps - 10.0.0.1)
macosx002 (connects to linux001 - 10.0.0.2)
linux050 (connects to linux001 - 10.0.0.50)
I also ...
0
votes
1
answer
193
views
OpenVPN allows some users to jump to other hosts in the LAN
All users can connect to host where OpenVPN runs but some users can jump to other hosts in the LAN. For example, foo user can reach host 10.2.0.1/32 (where OpenVPN runs) and hosts at 10.0.0.0/24 but ...
0
votes
1
answer
3k
views
openvpn - Why do I have 2 tun interfaces on my server?
I have just configured watching this Hak5 video I found on Youtube.
But what is bothering me is that why do I have two tun interfaces on my server ?
Namely-:
tun0 Link encap:UNSPEC HWaddr 00-...
- 103
0
votes
1
answer
541
views
Why is my host not receiving packets sent across tun0?
I have a tun0 interface set up which allows packets to be sent as such:
HOST (aaaa::1) ----> tun0 ----> SLIP ----> Router (aaaa::200:0:0:1)
The router receives the packets, and can send back a ...
- 101
0
votes
1
answer
2k
views
How do I route traffic over the a tun0 device (IPSec VPN connection)?
I've set up an IPSec VPN tunnel between my laptop and work. The tunnel gets established, but routing does not.
The relevant part of ifconfig is :
eth0 Link encap:Ethernet HWaddr d4:be:d9:6f:a7:...
- 1,670
0
votes
1
answer
43
views
Endpoint to security gateway tunnel
I want to establish a connection between the client and the proxy server through a VPN tunnel in android device.
I want to do this at layer 2 or 3 , where a packet can captured and encrypted.
Please ...
5
votes
3
answers
648
views
How do VPN servers/clients avoid routing their own remote connection packets through themself?
I am trying to conceptualise how networking works under the hood for linux VPNs which use TUN interfaces.
My current best guess is as follows (please correct me):
Connection established to remote ...
1
vote
0
answers
788
views
Direct all traffic between Eth0:1 interface and VPN Tun0
If answered correctly this question will show you how to link a 2nd public IP address on a machine to a VPN server tunnel on that machine, so that the remote VPN client (running a server), sees this ...
- 11
0
votes
1
answer
463
views
OpenVPN - connect server as client to itself
I have tried to setup a small openvpn network but I ran into one big problem. I have a server and a machine at home. So I created a openvpn server on my machine and a configured the client on the ...
user219962
1
vote
1
answer
1k
views
Prevent IP Spoofing on OpenVPN tun
I have a question regarding IP Spoofing and authentication. I have an OpenVPN server in TUN mode with many untrusted clients in the same VPN network, and I was wondering if one client is able to spoof ...
- 13
0
votes
1
answer
2k
views
/dev/net/tun exists, but OpenVPN is refussing to find it
I'm currently configuring an OpenVPN client on an arm microprocessor running debian squeeze, however I'm running into problems.
As the below shows, /dev/net/tun exists:
debarm:~# whoami
root
debarm:~...
- 175
12
votes
1
answer
16k
views
How to create /dev/tun device inside unprivileged LXC container?
This question is similar to No tun device in lxc guest for openvpn . The LXC has evolved and the unprivileged LXC containers were introduced recently that offer another layer of security against ...
- 730
3
votes
1
answer
7k
views
What exactly happens to packets written to a TUN/TAP device?
I'm trying to send packets to an application listening on eth0 from machine's user-space as if they were coming from a remote machine.
What I can't seem to find good documentation for is the exact ...
- 131
0
votes
0
answers
94
views
OpenVPN tunnel not able to support secure connect request
In CentOS 7 host we have installed openvpn package and did create an tunnel using OpenVPN tunneling for eth9 and tap9.
Everthing work fine for unsecure connection but when we try to connect to server ...
- 225
2
votes
2
answers
1k
views
Use OpenVPN tun device for specific request
I have setup an OpenVPN connection with the route-nopull configuration.
So now no special routes have been added to the client's configuration and only a TUN device is created, like so:
tun0 ...
- 1,114