Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
∞ take a peek at our legendary cryptostorm_is twitter feed if you're into that kind of thing ∞
Ξ we're rolling out voodoo network security across cryptostorm - big things happening, indeed! Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit GitHub Ξ

Odroid C2 transparent bridge.

Freewheeling spot to chew the fat on anything cryptostorm-related that doesn't fit elsewhere (i.e. support, howto, &c.). Criticism & praise & brainstorming & requests for explanation... this is where it goes when it's hot & ready for action! :-)

Topic Author
Roy Thinnes
Posts: 22
Joined: Mon Apr 18, 2016 2:50 pm

Odroid C2 transparent bridge.

Postby Roy Thinnes » Mon May 16, 2016 6:19 pm

Hi,

I'm getting a bit overwhelmed...*sigh

Is it possible to use Cryptostorm within a transparent bridging context on Linux? My reading - and attempts to bridge - indicate bridges hate Tun. Is there a way to achieve a transparent bridge in this context, or perhaps another solution amounting to the same effect?

I'm chasing the following -

ISP router (modem only mode) --- Odroid C2 running OpenVPN (on Debian derivative OS) --- Main Router (RT-AC68U running Tomato Shibby)

I'd like '68U to run all services apart from Openvpn. But I'm getting a bit lost.

I've thought about going the fixed IP route, but will I then have to have the C2 doing DHCP and DNS?

Just a nudge in the right direction would be most helpful.

User avatar

parityboy
Site Admin
Posts: 994
Joined: Wed Feb 05, 2014 3:47 am

Re: Odroid C2 transparent bridge.

Postby parityboy » Mon May 16, 2016 10:03 pm

@OP

Can I assume that the RT-AC68U doesn't have the horsepower you need for OpenVPN? Would this be the sole purpose of the C2, to run OpenVPN?


Topic Author
Roy Thinnes
Posts: 22
Joined: Mon Apr 18, 2016 2:50 pm

Re: Odroid C2 transparent bridge.

Postby Roy Thinnes » Tue May 17, 2016 2:39 am

Need is probably too strong a term. More would be nice, but I don't really mind paying a tax for the benefits this service provides. I just like to tinker.

So, yes,I intend the C2 to be a more-or-less single issue device running Openvpn/CS. Although, saying that, having a box outside the LAN interests me for the perspective it could give. Still, one thing at a time.

Bridging seems a dead-end, unless I'm missing something. A signpost would be appreciated. I'll brute-force my ignorance from that point forth.

User avatar

parityboy
Site Admin
Posts: 994
Joined: Wed Feb 05, 2014 3:47 am

Re: Odroid C2 transparent bridge.

Postby parityboy » Thu May 19, 2016 2:37 am

@OP

Well from what I've seen/read/experienced, while bridges are network addressable I don't think they can route traffic as well, so I don't think you'll be initiating OpenVPN sessions from it.


Topic Author
Roy Thinnes
Posts: 22
Joined: Mon Apr 18, 2016 2:50 pm

Re: Odroid C2 transparent bridge.

Postby Roy Thinnes » Thu May 26, 2016 3:13 pm

Yeah, bridging a dead end.

iptables and dnsmasq (also handling DHCP) are the direction I'm going now, plus sysctl.conf changes to harden, and using the router just as an access point ...not as complex or scary as I first thought, now I'm getting my hands dirty with it. My fixed approach was the main problem, I think.

The linux mist is clearing a little in doing all this. I'm still not quite Neo when he finally gets the matrix, but it's there somewhere ahead...somewhere :D

I'll post up my script when I get chance to get back on it. Life's conspiring somewhat at the moment.


Wister
Posts: 4
Joined: Mon May 30, 2016 2:35 pm

Re: Odroid C2 transparent bridge.

Postby Wister » Tue May 31, 2016 11:32 am

Thanks for the info
ทางเข้า gclub


kaiserthesage24
Posts: 1
Joined: Tue Mar 14, 2017 7:37 pm

Re: Odroid C2 transparent bridge.

Postby kaiserthesage24 » Tue Mar 14, 2017 7:44 pm

Well, those kernels are pretty old though. I am pretty sure this is some kernel issue where module auto-loading doesn't work they way it does these days.

bbbs.bacc1688.com


Return to “general chat, suggestions, industry news”

Who is online

Users browsing this forum: No registered users and 7 guests

Login