GithubHelp home page GithubHelp logo

Comments (5)

brianmay avatar brianmay commented on May 26, 2024

Yes, IPv6 will be the issue. Unfortunately, IPv6 is not supported unless you use the TPROXY (Linux only) firewall method.

Going from memory here, before you use TPROXY you need to run the following commands as root. This only needs to be done once:

ip route add local default dev lo table 100
ip rule add fwmark 1 lookup 100
ip route show table 100
ip -6 route add local default dev lo table 100
ip -6 rule add fwmark 1 lookup 100
ip -6 route show table 100

You then need to run sshuttle (as root) and use the --method=tproxy option.

Unfortunately my tests this morning have failed, sshuttle isn't intercepting the outgoing connections. I haven't used the TPROXY method in some time, so not sure if I have forgotten something important or the latest kernel (4.2.0) I am using has changed something.

TPROXY is somewhat complicated to understand, and even worse to try and debug - will see if I can see what is going on.

from sshuttle.

brianmay avatar brianmay commented on May 26, 2024

On second thoughts, TPROXY shouldn't be required just because you are connecting to the remote server via IPv6. It is only required if transporting IPv6 connections across the tunnel. You might need to do this if your remote server only supports IPv6 and not IPv4.

from sshuttle.

brianmay avatar brianmay commented on May 26, 2024

Have got TPROXY support working for IPv4 and IPv6 TCP. TPROXY works by intercepting packets already in transit. This means if the client side doesn't have IPv6 support, there will no IPv6 routes, and no IPv6 traffic to intercept. In this case need to add a dummy IPv6 route, so the system will attempt to send the data - e.g. to eth0, where it can be intercepted by sshuttle.

from sshuttle.

brianmay avatar brianmay commented on May 26, 2024

Not absolutely sure this was an IPv6 issue. If it is the case that your remote server doesn't support IPv4, it will be a IPv6 issue. Otherwise, IPv6 should fall back to IPv4, and IPv4 should be getting transported just fine.

from sshuttle.

brianmay avatar brianmay commented on May 26, 2024

No response; closing. Can get reopened. If you do want to reopen, please provide more debugging information.

from sshuttle.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.