/VPN.md (3c5751556266109b70e7e3088f9918dc43c8f8f8) (1829 bytes) (mode 100644) (type blob)
## How to make a point-to-point VPN
Socat is a powerful tool which can work together with Tuntox.
On the server (where tuntox is already running):
socat -d -d 'TCP-LISTEN:9876' 'TUN:10.20.30.41/24,up'
On the client:
socat -d -d TUN:10.20.30.40/24,up 'SYSTEM:./tuntox -P 127.0.0.1@9876 -i 86e70ffe9f835b12667d296f2df9c307ba1aff06'
Viola, you have a point-to-point VPN. On client:
# ping 10.20.30.41
PING 10.20.30.41 (10.20.30.41) 56(84) bytes of data.
64 bytes from 10.20.30.41: icmp_seq=1 ttl=64 time=138 ms
64 bytes from 10.20.30.41: icmp_seq=2 ttl=64 time=169 ms
64 bytes from 10.20.30.41: icmp_seq=3 ttl=64 time=130 ms
64 bytes from 10.20.30.41: icmp_seq=4 ttl=64 time=90.8 ms
64 bytes from 10.20.30.41: icmp_seq=5 ttl=64 time=50.7 ms
## Full madness mode: tunnelling VPN over SSH over Tox
No need to log in run and run socat on the server.
Also: inefficient, insecure (requires PermitRootLogin yes on server).
On the client:
socat -d -d TUN:10.20.30.40/24,up 'SYSTEM:ssh root@localhost -o ProxyCommand=\"./tuntox -P "127.0.0.1:22" -d -i 86e70ffe9f835b12667d296f2df9c307ba1aff06\" socat -d -d - "TUN:10.20.30.41/24,up"'
# ping 10.20.30.41
PING 10.20.30.41 (10.20.30.41) 56(84) bytes of data.
64 bytes from 10.20.30.41: icmp_seq=1 ttl=64 time=50.6 ms
64 bytes from 10.20.30.41: icmp_seq=2 ttl=64 time=81.2 ms
64 bytes from 10.20.30.41: icmp_seq=3 ttl=64 time=50.3 ms
64 bytes from 10.20.30.41: icmp_seq=4 ttl=64 time=151 ms
64 bytes from 10.20.30.41: icmp_seq=5 ttl=64 time=50.3 ms
Based on [Ben Martin's article](https://www.linux.com/news/software/developer/17942-socat-the-general-bidirectional-pipe-handler)
I've also heard about a new program called [ToxVPN](https://github.com/cleverca22/toxvpn), who knows - maybe it does a better job?
Mode |
Type |
Size |
Ref |
File |
100644 |
blob |
281 |
8b6eea76cbea14a93132b1ec7744f471c073041c |
.gitignore |
100644 |
blob |
2831 |
2d379a653504224967424cf643b086ee74f04034 |
.travis.yml |
100644 |
blob |
951 |
5de078c758a1286082bab80e48f64d4783efe9bf |
BUILD.md |
100644 |
blob |
35058 |
2061be2b732ea86101a7c0d5f4df0bbbfb830a30 |
LICENSE.md |
100644 |
blob |
669 |
5e19d0a3ee2725091cd7c51900dffbec3ffc0997 |
Makefile |
100644 |
blob |
637 |
ee41cdaf376b4cb8eca51751b170e4c698167dda |
Makefile.mac |
100644 |
blob |
5907 |
cd38142a71bad45ea05ef64905e6e55760484ba2 |
README.md |
100644 |
blob |
1829 |
3c5751556266109b70e7e3088f9918dc43c8f8f8 |
VPN.md |
100644 |
blob |
19293 |
063470258aee8aed767fb1ae5d79e6ff59301bf6 |
client.c |
100644 |
blob |
742 |
1ac50085e349329987ff615195ecfde70ab35088 |
client.h |
100644 |
blob |
3956 |
44281c9e202e8688cad141b05ec6a02364a3dc69 |
generate_tox_bootstrap.py |
100644 |
blob |
176 |
52f9d71f3415d613e0cf73edd6d05a2a27fdfd8a |
gitversion.c |
100644 |
blob |
2085 |
acb45b84f5abf7ead93318f1680d0a3af1bdc070 |
log.c |
100644 |
blob |
705 |
11d07d5557d3a46cdb1fc923252c9b197458d277 |
log.h |
100644 |
blob |
549 |
a9095f6b9cc0f97ddc698e07a4606b37822ba61c |
mach.c |
100644 |
blob |
287 |
5ac9a4e29fbb831ba2cfa6dc98589ffaf381b91b |
mach.h |
100644 |
blob |
43065 |
f4ec7f6376fdc0b336ba95f223146611398dd9b8 |
main.c |
100644 |
blob |
2969 |
c6579e2d35a1502af0ca8f67d116beff943adfb9 |
main.h |
040000 |
tree |
- |
9fc0b45bf62d115143aae3926e70bbb221d1d982 |
scripts |
100644 |
blob |
36130 |
2e8e7974cc2110f742a370293343fbc3c8edeea1 |
tox_bootstrap.h |
100644 |
blob |
12536 |
75e9dc5ed9399120416e8da5f24d1ccde41cf901 |
utarray.h |
100644 |
blob |
61492 |
7205c67efa27c66884c8d4d1c8a105d4854a0548 |
uthash.h |
100644 |
blob |
4006 |
a2f60deeed5ba62684753f2aef363d06ff76ded2 |
util.c |
100644 |
blob |
464 |
1a210d51a11eb6983a2984eec1443bd6d5c8006e |
util.h |
100644 |
blob |
55882 |
b5f3f04c104785a57d8280c37c1b19b36068e56e |
utlist.h |
100644 |
blob |
11555 |
867442c843dbe6bf096a488e3ce9ec6323809f7f |
utstring.h |
Hints:
Before first commit, do not forget to setup your git environment:
git config --global user.name "your_name_here"
git config --global user.email "your@email_here"
Clone this repository using HTTP(S):
git clone https://rocketgit.com/user/gdr/tuntox
Clone this repository using ssh (do not forget to upload a key first):
git clone ssh://rocketgit@ssh.rocketgit.com/user/gdr/tuntox
Clone this repository using git:
git clone git://git.rocketgit.com/user/gdr/tuntox
You are allowed to anonymously push to this repository.
This means that your pushed commits will automatically be transformed into a
merge request:
... clone the repository ...
... make some changes and some commits ...
git push origin main