Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Access local network from vopono jail #159

Closed
Roethenbach opened this issue May 23, 2022 · 5 comments
Closed

Access local network from vopono jail #159

Roethenbach opened this issue May 23, 2022 · 5 comments
Labels
enhancement New feature or request good first issue Good for newcomers important An important issue that should be resolved quickly

Comments

@Roethenbach
Copy link

Is it possible to access a service on a local host from within a vopono host?
@jamesmcm
Copy link
Owner

Not at the moment, I've only ever done vice versa with -f e.g. for hosting Jackett or transmission-daemon in vopono.

What would a good use case be? I don't think it'd be too hard to support, just some extra firewall rules.

@niki-on-github niki-on-github mentioned this issue Jul 10, 2022
Merged
@jamesmcm jamesmcm added enhancement New feature or request good first issue Good for newcomers important An important issue that should be resolved quickly labels Jul 17, 2022
@ak-1
Copy link
Contributor

ak-1 commented Jul 18, 2022

You can also tunnel traffic over unix sockets using one process outside the network namespace and one within.

For example:

host_hostname=$HOSTNAME
host_port=9999
vpn_hostname=localhost
vpn_port=9999
socket_path=/tmp/vpn-tunnel

outside:

ncat --listen --keep-open --sh-exec "ncat --unixsock $socket_path" $host_hostname $host_port

inside:

ncat --listen --keep-open --sh-exec "ncat $vpn_hostname $vpn_port" --unixsock $socket_path

@jamesmcm jamesmcm mentioned this issue Jul 24, 2022
Merged
@jamesmcm
Copy link
Owner

This should be possible with --allow-host-access in 0.10.1 - please test it.

Note that from the network namespace you will need to use its IP address for the host - e.g. usually 10.200.1.1

@SocietasCooperationis
Copy link

I've tested this and it works

@jamesmcm
Copy link
Owner

jamesmcm commented May 5, 2023

Fixed in 0.10.1 release with --allow-host-access

@jamesmcm jamesmcm closed this as completed May 5, 2023
@jamesmcm jamesmcm mentioned this issue Mar 24, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request good first issue Good for newcomers important An important issue that should be resolved quickly
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jamesmcm @ak-1 @Roethenbach @SocietasCooperationis