beranmuden
Cadet
- Joined
- Oct 20, 2019
- Messages
- 3
Dear all,
I'm looking for a solution to achieve a situation where my jails can use the same VPN connection.
The current situation:
My system is running on version FreeNAS-11.1-U7.
I've installed OpenVPN on the host, configured with the following Tunables in the GUI:
cloned_interfaces="tun"
gateway_enable="YES"
openvpn_configfile="/mnt/vpn/openvpn.conf"
openvpn_dir="/mnt/vpn"
openvpn_enable="YES"
openvpn_if="tun"
There are two jails installed on my FreeNAS, Sabnzbd and Transmission. They're both configured through the GUI.
My goal now is, to get these jails network access to the outside by using the VPN on the host.
I've read numerous threads about this, yet although some similarties can be found amongst them, each solution is very different in its approach.
Some of the things I tried:
- install VPN in one jail with ipfw rules (actually got this working fine and is my solution for just one jail)
- editing the "/etc/rc.conf" file in my jail to somehow make it use the cloned tunnel interface
- creating a "jail.conf" in the "var/run" folder for my jail
- configuring pfsense and routing tables
To make things worse, Windows has always been more of my thing and networking isn't something I'm particulary good at as well.
So at this moment I'm at a loss of where to begin.
A fresh start now provides me with the basics that are in place.
VPN runs on the host, my jails are running without any adjustments.
An "ifconfig" command shows the following tunnel interface:
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1500
options=80000<LINKSTATE>
inet 10.4.96.244 --> 10.4.96.1 netmask 0xffffff00
nd6 options=1<PERFORMNUD>
groups: tun
Opened by PID 1824
Also the "wget" command on the host shows my VPN address (yay).
But how do I get my jails to use the host VPN connection?
Some sidenotes:
Instead of using Tunables, is it possible to put this directly into a config file?
I tried editing the "/tmp/rc.conf.freenas" file, but I believe this wasn't working properly.
With this I realise I'm asking a lot and probably the same many before me have asked.
Also I really have read many posts and threads about how to achieve a similar setup, but the sheer amount of different suggestions only adds up to the confusion.
If someone is willing to provide me with some feedback and hopefully some help with this, that would be greatly appreciated.
Thank you in the least for reading this and regards,
BM
I'm looking for a solution to achieve a situation where my jails can use the same VPN connection.
The current situation:
My system is running on version FreeNAS-11.1-U7.
I've installed OpenVPN on the host, configured with the following Tunables in the GUI:
cloned_interfaces="tun"
gateway_enable="YES"
openvpn_configfile="/mnt/vpn/openvpn.conf"
openvpn_dir="/mnt/vpn"
openvpn_enable="YES"
openvpn_if="tun"
There are two jails installed on my FreeNAS, Sabnzbd and Transmission. They're both configured through the GUI.
My goal now is, to get these jails network access to the outside by using the VPN on the host.
I've read numerous threads about this, yet although some similarties can be found amongst them, each solution is very different in its approach.
Some of the things I tried:
- install VPN in one jail with ipfw rules (actually got this working fine and is my solution for just one jail)
- editing the "/etc/rc.conf" file in my jail to somehow make it use the cloned tunnel interface
- creating a "jail.conf" in the "var/run" folder for my jail
- configuring pfsense and routing tables
To make things worse, Windows has always been more of my thing and networking isn't something I'm particulary good at as well.
So at this moment I'm at a loss of where to begin.
A fresh start now provides me with the basics that are in place.
VPN runs on the host, my jails are running without any adjustments.
An "ifconfig" command shows the following tunnel interface:
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1500
options=80000<LINKSTATE>
inet 10.4.96.244 --> 10.4.96.1 netmask 0xffffff00
nd6 options=1<PERFORMNUD>
groups: tun
Opened by PID 1824
Also the "wget" command on the host shows my VPN address (yay).
But how do I get my jails to use the host VPN connection?
Some sidenotes:
Instead of using Tunables, is it possible to put this directly into a config file?
I tried editing the "/tmp/rc.conf.freenas" file, but I believe this wasn't working properly.
With this I realise I'm asking a lot and probably the same many before me have asked.
Also I really have read many posts and threads about how to achieve a similar setup, but the sheer amount of different suggestions only adds up to the confusion.
If someone is willing to provide me with some feedback and hopefully some help with this, that would be greatly appreciated.
Thank you in the least for reading this and regards,
BM