Versions Compared

Old Version 12

changes.mady.by.user W.Erber

Saved on

compared with

New Version 13

changes.mady.by.user W.Erber

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: small clarification; formatting

...

To configure a VPN bridge,

  • set Create for SSH VPN to ON,
  • enter the Number of virtual adapters (TAP interfaces) required,
  • configure IP address for the bridge interface, and
  • set the Netmask.

(warning) This interface and the interface on the remote Linux system must be in the same IP subnet.

Click on OK to save your configuration.

...

2. In the Charon Manager, select the guest system and then the Ethernet configuration category on the left. Assign one of the created TAP interfaces to the guest (see example below):.

Click on OK to save the configuration change.

...

ActionCommand
Create TAP interface.# ip tuntap add dev tap0 mod tap
Enable TAP interface.# ip link set tap0 up
Create bridge.# ip link add name br_vpn0 type bridge
Enable bridge interface.# ip link set br_vpn0 up
Define IP address for bridge.# ip addr add 192.168.0.1/24 dev br_vpn0
Add TAP interface to bridge.# ip link set tap0 master br_vpn0

Start  the SSH tunnel.

autossh is a program to start a copy of ssh and monitor it, restarting it
as necessary should it die or stop passing traffic.

Once started, you can move the program to the background.

# autossh -M 9876 -o ServerAliveInterval=60 -o Tunnel=ethernet \
  -t -f -w 0:0 -i <path-to-private-key>-NCT charon@<public-AWS-instance-IP>

-i   denotes the path to the private key matching the public key copied to the host system.
-w denotes the number of the local and remote tunnel interfaces for tunnel device forwarding
     (e.g., the 0 in interface tap0). 
-N denotes that no remote command should be executed
-T disables pseudo-terminal allocation
-C requests data compression
-f requests that the command go into the background before command execution

...

ActionCommand
Terminate the autossh process.# kill -9 <autossh-pid>
Terminate remaining SSH tunnel connections.# kill -9 <tunnel-ssh-pid>
Delete the bridge.# ip link delete br_vpn0
Delete the TAP interface.# ip link delete tap0

Routing to/from Solaris Guest 

...