[OpenIndiana-discuss] about tuntap
Jonathan Adams
t12nslookup at gmail.com
Fri Feb 22 14:07:34 UTC 2013
Okay, with that in mind, I take it that we should be looking to
migrate to the tuntap by Kazuyoshi Aizawa, since this is being
actively maintained (Maxim Krasnyansky's driver was last updated in
2001)
are there any significant disadvantages in doing this?
I currently have "system/network/tuntap (sfe)" version
"1.3.0-0.151.1.7" installed, via the repositories, would I need to
compile OpenVPN and the tuntap software manually by myself (and
de-install the packages?)
Jon
On 22 February 2013 13:27, Jim Klimov <jimklimov at cos.ru> wrote:
> On 2013-02-22 13:58, Jonathan Adams wrote:
>>
>> I know it's not totally relevant, but do you know how significant the
>> difference is between our iptun/vnic/bridges and tun/tap
>>
>> would it ever be possible to configure OpenVPN to work with a pure
>> Illumos/Solaris 11 interface?
>
>
>
> Giving it a bit more thought for a more definite answer: it is two-fold :)
>
> On one hand, I don't think OpenVPN can use iptun/vnic interfaces, nor
> that it should begin to do so - in interests of interoperability (that
> is, same tuntap is available on many platforms, "IPSec" also - but the
> standards and implementations are often so different and quirky that
> it is quite complicated to make two random vendors' devices and
> programs actually communicate).
>
> On another hand, it might be possible to make a GLDv3 interface type
> which implements its networking over tuntap (possibly, along with all
> or much of OpenVPN - including the per-client cyphering with OpenSSL)
> and use that with dladm/flowadm/etc.
>
>
>
> _______________________________________________
> OpenIndiana-discuss mailing list
> OpenIndiana-discuss at openindiana.org
> http://openindiana.org/mailman/listinfo/openindiana-discuss
More information about the OpenIndiana-discuss
mailing list