Date: Sat, 19 Mar 2016 16:41:06 +0100
From: ***@netbsd.org (Emmanuel Dreyfus)

I would like to bridge an OpenVPN tunnel (tun(4) based) with a vlan.

But brconfig does not seem to like tun interfaces:
brconfig bridge4 add tun4
brconfig: add tun4: Invalid argument

Is there any hope to get this working?

Use tap(4)? tun(4) represents a software IP device, which has no
ethernet identity; tap(4) represents a software ethernet device.

--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-***@muc.de

Hi,
As Taylor already answered, a tun(4) is a "pure IP" interface which
does not have a link layer - so to be able to bridge it to an ethernet
bridge, you'd need to have "something" between tun and bridge that
synthesizes ethernet headers (tun->bridge) and strips them in the other
direction.

OpenVPN's "--dev tap" will use a tap(4) device, which looks like a
proper ethernet device - with headers and everything, so that can
be bridged just fine.

If you have no control over the other end, you can play around with
proxy arp and routing tricks to "sort-of-bridge" tun and LAN...

(I've toyed with the idea of having a "shim ethernet layer" inside
OpenVPN to be able to have a bridge on one side and a tun-only client
on the other end - like, Android or iOS - but that was never more than
a "wouldn't it be cool...?" idea)

gert

From bridge_ioctl_add:
1. the mtu's must match
2. if_input needs to be ether_input
3. It needs to be able to be SIMPLEX
4. It needs to be able to be set in promiscuous mode

which ones fail?

christos


--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-***@muc.de