Interface for accessing /dev/net/tun
Jamie Strandboge
jamie at canonical.com
Tue Sep 6 16:07:29 UTC 2016
On Mon, 2016-09-05 at 11:51 +0100, Jamie Bennett wrote:
> On 03/09/16 at 12:45pm, Casey Marshall wrote:
> >
> > I'm trying to write a snap for OpenVPN with some wrapper scripts that
> > automate
> > PKI setup, IP masq, etc. My goal is to be able to setup an OpenVPN server
> > with
> > a single command, and then issue new clients with a single command. I'm
> > using
> > strict mode, because that's how I roll.
> >
> > I've added the firewall-control and network-control plugs, and that allowed
> > some things to work (like setting up IP masq, etc.). However openvpn cannot
> > start up, it's getting denied from opening /dev/net/tap, https://github.com/
> > cmars/easy-openvpn-pkg/blob/master/TODO.md#
> > tuntap-access-for-openvpn-in-strict-mode
> >
> > Would it be reasonable to contribute a patch to snapd adding the tun and/or
> > tap
> > devices to the network-control interface? Or would these constitute a new
> > interface?
> As this interface is just a network device, albeit for user space programs, it
> makes sense for this to be part of the network-control interface IMHO.
>
I tend to agree. I suggest filing a bug and submitting a PR against network-
control and we can review/discuss there. Thanks! :)
--
Jamie Strandboge | http://www.canonical.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/snapcraft/attachments/20160906/ff6ec47f/attachment.sig>
More information about the Snapcraft
mailing list