[OpenIndiana-discuss] about tuntap
Jim Klimov
jimklimov at cos.ru
Fri Feb 22 13:27:34 UTC 2013
On 2013-02-22 13:58, Jonathan Adams wrote:
> I know it's not totally relevant, but do you know how significant the
> difference is between our iptun/vnic/bridges and tun/tap
>
> would it ever be possible to configure OpenVPN to work with a pure
> Illumos/Solaris 11 interface?
Giving it a bit more thought for a more definite answer: it is two-fold :)
On one hand, I don't think OpenVPN can use iptun/vnic interfaces, nor
that it should begin to do so - in interests of interoperability (that
is, same tuntap is available on many platforms, "IPSec" also - but the
standards and implementations are often so different and quirky that
it is quite complicated to make two random vendors' devices and
programs actually communicate).
On another hand, it might be possible to make a GLDv3 interface type
which implements its networking over tuntap (possibly, along with all
or much of OpenVPN - including the per-client cyphering with OpenSSL)
and use that with dladm/flowadm/etc.
More information about the OpenIndiana-discuss
mailing list