From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1Erkdq-0007WS-PA for garchives@archives.gentoo.org; Wed, 28 Dec 2005 23:23:35 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id jBSNMoku004832; Wed, 28 Dec 2005 23:22:50 GMT Received: from mail46.e.nsc.no (mail46.e.nsc.no [193.213.115.46]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id jBSNMnNN002100 for ; Wed, 28 Dec 2005 23:22:49 GMT Received: from mail.nor.wtbts.org ([213.234.126.131]) by mail46.nsc.no (8.13.5/8.13.5) with ESMTP id jBSNMmNG027267 for ; Thu, 29 Dec 2005 00:22:48 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by mail.nor.wtbts.org (Postfix) with ESMTP id 0F5E63FA31 for ; Thu, 29 Dec 2005 00:22:48 +0100 (CET) Received: from mail.nor.wtbts.org ([127.0.0.1]) by localhost (mail [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 22099-02 for ; Thu, 29 Dec 2005 00:22:47 +0100 (CET) Received: from nc (unknown [192.168.65.211]) by mail.nor.wtbts.org (Postfix) with ESMTP id D99833FA03 for ; Thu, 29 Dec 2005 00:22:47 +0100 (CET) Subject: Re: [gentoo-embedded] GNAP+VPN=PROBLEMS From: Natanael Copa To: gentoo-embedded@lists.gentoo.org In-Reply-To: <7399af0a0512281109u17c21de3rfc69c73285245b@mail.gmail.com> References: <7399af0a0512280345g442fe576n8f3df66267f353fb@mail.gmail.com> <43B29454.8050701@gentoo.org> <7399af0a0512281109u17c21de3rfc69c73285245b@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 Date: Thu, 29 Dec 2005 00:22:47 +0100 Message-Id: <1135812167.12838.122.camel@nc> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-embedded@gentoo.org Reply-to: gentoo-embedded@lists.gentoo.org Mime-Version: 1.0 X-Mailer: Evolution 2.4.2.1 X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at wtbts.no Content-Transfer-Encoding: quoted-printable X-MIME-Autoconverted: from 8bit to quoted-printable by robin.gentoo.org id jBSNMoli004832 X-Archives-Salt: c2b1aabb-6b6d-43aa-b4c9-2417730a677d X-Archives-Hash: ef07d98bcbb0273ce2890fa01ba49120 I'm not sure if this is the proper place to suggest this but, anyway... I have a bootable proof-of-concept CD, build from gnetoo-embedded, that probably could do what you want without you needing compiling anything. fetch latest iso from http://jv.lmdata.org/alpine/hardened/isoimages/ This is totally undocumented (still alfa, but I think you should be able to use it). All runtimes are installed in RAM so you need at least 64MB, probably more. boot the cd. configure your network (debian/busybox style) in /etc/network/interfaces. You can install nano or vim runtimes for that with: apk_add openvpn (You migh want to install dhcpcd or pump for dhcp. busybox internal doesnt work because of no /share/ directory containing the scripts) install openvpn runtimes: apk_add openvpn configure openvpn (you might want to install bash for running the openvpn scripts: apk_add bash) bridgeutils are available with: apk_add bridge-utils shorewall is available with: apk_add shorewall Now as soon you reboot you would lose your configs so you would want to store it on floppy or usb. To add files to the save-to-writeable-media-list use: lbu_add FILE... for example: lbu_add /etc/resolv.conf /etc/network/interfaces /etc/ssl /etc/openvpn To really preform the write to floppy, use: lbu_commit floppy You could store configs to usb stick too but then you will need usbd. apk_add usbd /etc/init.d/usbd start modprobe ub lbu_commit usb Now next reboot, everythign in the lbu_add'ed files will be restored and all pacakges installed will be reinstalled during boot. make symblinks in /etc/rc2.d and add those links to local backup list with lbu_add and the services will be started too. For manpages on apk_add apk_delete and friends, visit http://apk-tools.sf.net I know atleast one person using this cd for openvpn. On ons, 2005-12-28 at 19:09 +0000, Jo=E3o Br=E1zio wrote: > Dear Thierry, > It works great but now I've got another problem, I'm trying to compile > GNAP with nylon, a sock proxy and the following error occurs: >=20 > File: myspecs/extensions.conf > extensions: nylon >=20 > nylon/packlist: nylon libevent=20 > nylon/cleanup: /usr/share >=20 > Portage: > http://mirrors.tds.net/gentoo/snapshots/portage-20051227.tar.bz2 >=20 >=20 > # gnap_make -t extensions -e myspecs -p portage-20051227.tar.bz2 > GNAP Core Building tool gnap_make version 1.8.2 > * Checking parameters... > [ ok ] > * 'livecd-stage1' or 'extensions' was selected without 'stage3'.=20 > * Should I use the seed stage as stage3 result ? [N]: y > * The following targets will be called: > * [extensions] > * Preparing portage snapshot... > [ ok ] > * [extensions] stage start... > [ ok ]=20 > * Building nylon extension... > [ !! ] > * Extension build failed, see ./gnap_make-20051228.err and .out for > det [ !! ] > * Cleaning temporary directories... > [ ok ]=20 > Build failed, try man gnap_make for more help >=20 >=20 > # cat gnap_make-20051228.err > >>> Regenerating /etc/ld.so.cache... >=20 >=20 > Performing Global Updates: /usr/portage/profiles/updates/4Q-2005 > (Could take a couple of minutes if you have a lot of binary > packages.)=20 > .=3D'update pass' *=3D'binary update' @=3D'/var/db move' > s=3D'/var/db SLOT move' S=3D'binary SLOT move' > p=3D'update /etc/portage/package.*' >=20 >=20 > # cat gnap_make-20051228.out > ........................ > Calculating dependencies=20 >=20 > !!! Problem in sys-apps/portage dependencies. > !!! [Errno 38] Function not implemented: > '/var/cache/edb/dep//usr/portage/sys-apps/.update.8098.portage-2.0.53' > exceptions > Calculating dependencies >=20 > !!! Problem in net-proxy/nylon dependencies.=20 > !!! [Errno 38] Function not implemented: > '/var/cache/edb/dep//usr/portage/net-proxy/.update.8144.nylon-1.2-r2' > exceptions > Gentoo Catalyst, version 1.1.10.10 > Copyright 2003-2005 The Gentoo Foundation=20 > Distributed under the GNU General Public License version 2 >=20 > Using command line specified Catalyst configuration > file, /etc/catalyst/catalyst.conf > Setting storedir to config file value "/var/tmp/catalyst"=20 > Setting portdir to default value "/usr/portage" > Setting distdir to config file value "/usr/portage/distfiles" > Setting options to config file value "pkgcache kerncache" > Setting sharedir to config file value "/usr/lib/catalyst"=20 > Package cache support enabled. > Kernel cache support enabled. >=20 > WARNING: No value set for key: grp/use > deleting key: grp/use >=20 > Building natively for x86 > Checking for processes running in chroot and killing them.=20 > Running command > "/bin/bash /usr/lib/catalyst/targets/support/kill-chroot-pids.sh" > Running action sequence: dir_setup > Setting up directories... > Running action sequence: unpack_and_bind > Unpacking stage tarball...=20 > Running command "/bin/tar > xjpf /var/tmp/catalyst/builds/gnap/stage3-x86-20051228.tar.bz2 > -C /var/tmp/catalyst/tmp/gnap/grp-x86-20051228" > Unpacking portage tree snapshot... > Running command "/bin/tar xjpf /var/tmp/catalyst/snapshots/portage- > 20051228.tar.bz2 -C /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/usr" > Configuring profile link... > Running command "rm > -f /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/etc/make.profile" > Running command "ln > -sf ../usr/portage/profiles/uclibc/x86/hardened /var/tmp/catalyst/tmp/g= nap/grp-x86-20051228/etc/make.profile"=20 > Running action sequence: chroot_setup > Setting up chroot... > Running command > "cp /etc/resolv.conf /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/etc" > Running command > "mv /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/etc/hosts /var/tmp/cata= lyst/tmp/gnap/grp-x86-20051228/etc/hosts.bck"=20 > Running command > "cp /etc/hosts /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/etc/hosts" > Running command "rm > -f /var/tmp/catalyst/tmp/gnap/grp-x86-20051228/etc/make.conf" > Running action sequence: setup_environment=20 > Running action sequence: run_local > Running command "/bin/bash /usr/lib/catalyst/targets/grp/grp.sh run > pkgset nylon 'nylon' 'libevent'" >=20 > Traceback (most recent call last): > File "modules/grp_target.py", line 44, in run_local=20 > cmd("/bin/bash "+self.settings["sharedir"]+\ > File "/usr/lib/catalyst/modules/catalyst_support.py", line 102, in > cmd > raise CatalystError,myexc > CatalystError: =20 > None >=20 > !!! catalyst: GRP build aborting due to error. >=20 > On 12/28/05, Thierry Carrez wrote: > Jo=E3o Br=E1zio wrote: > =20 > > I've been trying to configure GNAP as a VPN server without > any success.=20 > > > > I want to allow 10 clients connected to the VPN server at > the same time > > and each one of them should have a different local IP > address. This is > > possible to do with a bridge. > =20 > This is also possible to do without a bridge, using OpenVPN > 2.0 "server" > mode. See http://openvpn.net/howto.html > =20 > > I need to create br0 bridge with eth0 with tap0. The problem > is that I=20 > > can't see the interfaces when I do ifconfig -a altought i > can see=20 > > /dev/net/tun so I think TUN/TAP module is loaded. > =20 > GNAP vanilla kernel is missing bridge support. > =20 > > Can this be done with a vanilla GNAP system ? > > How is supposed to use the USE_VPN flag on GNAP, p2p VPN or > a=20 > > Server-to-many solution ? > =20 > USE_VPN triggers the use of OpenVPN. It supports both modes. > =20 > -- > Thierry Carrez (Koon) > GNAP Developer > -- > gentoo-embedded@gentoo.org mailing list > =20 >=20 >=20 >=20 > --=20 >=20 > Cumprimentos, > Jo=E3o Br=E1zio. --=20 gentoo-embedded@gentoo.org mailing list