User Tools

Site Tools


vpn-ssh-tap

This is an old revision of the document!


VPN via SSH TAP interfaces

Useful to run the following on both local and remote, to get a sense of what's happening:

  • bridge monitor
  • watch ip –brief address
  • watch ip –brief link
  • watch bridge link

VM, where eth1 is connected to the network I want to make my RPi appear in:

ip link add br0 up type bridge             # Create a bridge
ip address add 192.168.167.134/24 dev br0  # Copy the address and netmask of eth1
ip address flush dev eth1                  # Remove eth1's addresses completely
ip link set eth1 master br0                # Attach eth1 to the bridge

Raspberry Pi:

sudo ip link add br0 up type bridge
sudo ssh \
  -o PermitLocalCommand=yes \
  -o "LocalCommand=ip link set tap5 up master br0" \
  -o Tunnel=ethernet \
  -w 5:5 \
  -t \
  root@192.168.167.237 \
  "ip link set tap5 up master br0"

Debugging

I found tshark - Dump and analyze network traffic useful, as it can capture ethernet frames to a file (such as /vagrant/tshark) which you can then load into the Wireshark GUI after the fact.

vpn-ssh-tap.1595642340.txt.gz · Last modified: 2020/07/25 01:59 by robm