From owner-freebsd-questions@FreeBSD.ORG Fri Feb 24 03:52:12 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AC00816A420 for ; Fri, 24 Feb 2006 03:52:12 +0000 (GMT) (envelope-from illoai@gmail.com) Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3B60E43D49 for ; Fri, 24 Feb 2006 03:52:12 +0000 (GMT) (envelope-from illoai@gmail.com) Received: by xproxy.gmail.com with SMTP id s18so165772wxc for ; Thu, 23 Feb 2006 19:52:11 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=qD+/fyKi2HGRYFLeAv7pC8NhYdtYg2GKQPHDK6jGvzzWQVrgz1gKHQC+L7FIWUFL5APEbO3V0zyOaD7KFxLGhTNVkWF/SiSvukEo62BlcQwhzBaDonArf03SLagF7LrH/VDBJf3u0plN+GHcfPtY/CLTtErHFFZRBgnln9Xmez8= Received: by 10.70.46.11 with SMTP id t11mr476862wxt; Thu, 23 Feb 2006 19:52:11 -0800 (PST) Received: by 10.70.58.15 with HTTP; Thu, 23 Feb 2006 19:52:11 -0800 (PST) Message-ID: Date: Thu, 23 Feb 2006 21:52:11 -0600 From: "illoai@gmail.com" To: "Eric Sc\"Marc G. Fournier\"" , freebsd-questions@freebsd.org In-Reply-To: <43FDDE01.60707@computer.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <20060222212054.Q1931@ganymede.hub.org> <43FDDE01.60707@computer.org> Cc: Subject: Re: OpenVPN in QEMU on FreeBSD 6.x ... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2006 03:52:12 -0000 On 2/23/06, Eric Schuele wrote: > Marc G. Fournier wrote: > > > > Did some searching tonight, to see what was available as an OSS > > alternative to VMWare, and came across QEMU ... what I'm interested in > > doing is running a QEMU vServer that runs FreeBSD inside of it, and wil= l > > support having outside connections talking to it as a VPN "hub(?)" ... > > basically, I don't want to have to futz at the Host OS level, only the > > Client OS level, as far as networking is concerned ... > > > > Good chance I can't help.... I'm just curious. > > You want to have a VPN endpoint running in FreeBSD as a guest OS within > Qemu, on a FreeBSD host? You want it in Qemu so you don't have to > modify the host's network setup and/or install the necessary software? > > In any case, take a look here (if you haven't already): > http://www.qemu.org/qemu-doc.html#SEC20 > Might find something useful. > > The Qemu site states "The QEMU VM behaves as if it was behind a firewall > which blocks all incoming connections." So on first glance, its sounds > as if it might not be supported. But I'd read over the docs in more > detail if I were you. > Qemu's default behaviour (-net user) is as a firewalled machine, some futzing around and searching on google, and using tap(4), along side ng_bridge(4), you can make it behave as a normal network node (albeit one at 10baseTX), which should support your needs in this one instance. > > > Wishful thinking, or does this make sense? Has anyone done it? > > Pointers to docs on this, if so? > > qemu.dad-answers.com has a *BSD subsexion, from whence I managed to get mine working: http://tinyurl.com/pazdu (assuming I cut and pasted okay this time) Honestly, if you're going to run FreeBSD inside the VM, you might look into chroot and jail, as I'm sure those would be faster. I know exactly nothing about networking in jails and/or chroot environments, so qemu may be the thing. -- --