Has anyone managed to get openvpn going? compiling custom tun.ko file for DHD?
It's probably possible, now that we have the source. Don't have a DHD just yet, so can't try
Sent from my HDfied HTC Desire
Thread moved to General.
hello
i'm interesting too for the kernel mod tun.ko for the DHD
any reponse ?
Hello,
i'm very interesting in this file too...
My NAS awaits the phone "call".
Hey everyone. First time poster, so hoping its a happy reply
Has anyone had any luck with this ? i also require the tun.ko file for DHD. been searching the net for hours
looking forward to your replies.
I heard that tun.ko file has to be specifically compiled for each kernel version. Is that right?
Is it also linked to the radio version?
If we could have a link for kernel source, i might be able to follow tutorial and publish it here.
I have 2.6.32.21 -g66cfb7a kernel version and you? (not sure if the second part is part of the kernel version)
Lionel
Attached is tun.ko for the Desire HD (for kernel 2.6.32.21-gf3f553d). Built it today & it seems to insert OK and work fine with VPN Connections.
thedji said:
Attached is tun.ko for the Desire HD (for kernel 2.6.32.21-gf3f553d). Built it today & it seems to insert OK and work fine with VPN Connections.
Click to expand...
Click to collapse
Perfect! Thanks!!
Very thanks for the module.
DHD - tun.ko for 2.6.32.21-g66cfb7a
EFCAugure said:
I heard that tun.ko file has to be specifically compiled for each kernel version. Is that right?
Click to expand...
Click to collapse
Yes. After trying other people's tun.ko modules, it wasn't until I checked the output of dmesg that I learnt this (got my first Android 3 weeks ago - so I'm still a n00b).
EFCAugure said:
If we could have a link for kernel source, i might be able to follow tutorial and publish it here. I have 2.6.32.21 -g66cfb7a kernel version and you? (not sure if the second part is part of the kernel version)
Click to expand...
Click to collapse
Lionel, it would appear that my Desire HD has the same kernel.
2.6.32.21-g66cfb7a
2.6.32 is the base kernel version
I assume 21 is the revision or build number.
The hex string on the end seems to vary by which ROM you have installed. This was what was stopping me from loading these other tun.ko modules - including the one posted by @thedji
I've just compiled the tun.ko module for 2.6.32.21-g66cfb7a (on a headless Pentium 2 400 MHz lol). It loads fine and can be seen in the output of lsmod. I've attached it below.
Edit: I was able to use this module successfully to connect to a Cisco VPN with vpnc.
Mike
@MikeMelbourne
Can you explain to me how and with what Software you connected to a Cisco VPN?
C.K. said:
Can you explain to me how and with what Software you connected to a Cisco VPN?
Click to expand...
Click to collapse
First - applications.
1) You're going to need a terminal/console app. I used one called Terminal Emulator.
2) You're going to want an app called "VPN Connections". I downloaded a patched APK in post #4 here:
hxxp://code.google.com/p/get-a-robot-vpnc/issues/detail?id=122&q=patch
Alternatively, you might get it from here: hxxp://code.google.com/p/get-a-robot-vpnc/downloads/list (although YMMV).
Second - setup.
1) You're phone needs to be rooted.
2) You need to have the appropriate tun.ko module (for your phone's kernel) loaded. Load up the Terminal Emulator then:
a) Type 'su' without quotes and hit enter.
b) Type 'insmod /path/to/tun.ko' without quotes and press enter. If your tun.ko is on your sdcard in the root, the path would be /mnt/sdcard/tun.ko
c) If the step above worked, you should be able to type 'lsmod' and see the tun module loaded.
Note: I didn't have any luck running the "VPN Connections" app directly - the connection kept failing (possible due to the configuration of the VPN I was connecting to). So I start it from the command line. You might want to try using the GUI first as it would make things so much easier if it works.
Third - connecting to the VPN by a command line.
1) The command to enter is quite long (and I got sick of typing it), so I put it into a file called 2.sh in the root of the sdcard.
2) Inside the file /mnt/sdcard/2.sh, I entered the following:
Code:
/data/data/org.codeandroid.vpnc_frontend/files/vpnc --script /data/data/org.codeandroid.vpnc_frontend/files/vpnc-script --no-detach --natt-mode cisco-udp --debug 1 --gateway AAA.BBB.CCC.DDD --id groupid --username mike --enable-1des
Note that the gateway is the IP address of the VPN you are connecting to. The username for me is just my username - it isn't prefixed by my company's active directory domain.
3) Open the Terminal Emulator.
4) Enter 'su' without quotes and press enter.
5) Enter 'sh /mnt/sdcard/2.sh' without quotes and press enter.
6) You will be asked to provide the group password, then the personal password for your username. Then it should attempt to connect.
You can change the debug value to 2 or 99 if you want to get more information (if it doesn't connect successfully).
If you want to know what command line options are available, enter the following at the Terminal Emulator:
Code:
/data/data/org.codeandroid.vpnc_frontend/files/vpnc --script /data/data/org.codeandroid.vpnc_frontend/files/vpnc-script --long-help
I think that's it - I hope this helps. After disconnecting I tend to do a long reboot (takes 1-2 minutes) to get the network back to the way it was; although I'm not sure this is necessary.
Mike
Edit: seems like you need to create a directory and a symbolic link. This is my working script:
Code:
mkdir /dev/net
insmod /mnt/sdcard/download/tun.ko
lsmod
ln -s /dev/tun /dev/net/tun
/data/data/org.codeandroid.vpnc_frontend/files/vpnc --script /data/data/org.codeandroid.vpnc_frontend/files/vpnc-script --no-detach --natt-mode cisco-udp --debug 1 --gateway AAA.BBB.CCC.DDD --id groupid --username mike --enable-1des
Damn I hoped it woulld be easier. As I have never worked with Android that sounds like a challenge to me. So there is no easy switching on and off of the VPN connection? I always have to use the scripts?
C.K. said:
Damn I hoped it woulld be easier. As I have never worked with Android that sounds like a challenge to me. So there is no easy switching on and off of the VPN connection? I always have to use the scripts?
Click to expand...
Click to collapse
Because the "VPN Connections" GUI app didn't connect for me, I had to resort to the script - you may not need to (depending upon the configuration of your Cisco VPN box).
I just need to run the final script (the 5 liner above) to connect to the VPN - good enough for the time being. You just need to modify the path to tun.ko, set your gateway server, groupid & username.
I hadn't worked with Android before the weekend just past - I've just rooted my first Android phone. It's all a learning experience - I guess it depends how badly you want VPN access? Hopefully it will get easier in time as the apps improve.
Good luck!
Mike
You can use something GScript to make it a two-click process (open app, click script). It's just as efficient as using VPN Connections (open app, click connect).
For me personally, I use VPN Connections to connect (successfully) but the traffic is routed down the wrong interface (i.e. not tun0).
After connecting I have to run
Code:
ip ru del table wifi
or
Code:
ip ru del table gprs
to fix the issue.
You should definitely try VPN Connections first. If that doesn't work, try the long method above.
thedji said:
You can use something GScript to make it a two-click process (open app, click script). It's just as efficient as using VPN Connections (open app, click connect).
Click to expand...
Click to collapse
GScript is a great idea - it will save me doing any typing to connect to the VPN.
Once I added these VPNC flags (--natt-mode cisco-udp --enable-1des) to "VPN Connections" I was able to successfully connect after running the script in GScript.
It doesn't say I'm connected, however my IP address has been assigned and I can Remote Desktop to my work PC. My routing already seems to be ok, so I don't to run the 'ip ru del' commands that you do.
I'm pretty satisfied with this now... no typing - just point and press.
-Mike-
What about tap.ko? (needed for OpenVPN bridge mode)
Exposure said:
What about tap.ko? (needed for OpenVPN bridge mode)
Click to expand...
Click to collapse
What kernel version are you running? If you have '2.6.32.21-g66cfb7a' I could compile tap.ko for you?
Hi,
Just got myself some nice account at hidemyass_dot_com ... They dont support l2tp yet, and pptp just doesn't work (some encryption issue idk).
So I figured i'd try using openvpn. So I downloaded the market version of openvpn software.
Got the crt files, ovpn files and key file. Everything is in order. When I try to connect, I see that I can pass everything (even get a bloody IP). But the routes dont work. Meaning, I'm not routed through the tunnel but through the normal pdp0 interface.
I got into adb shell, adb logcat etc. This is what I figured out:
Routes are not "implemented" because it can't find the tun0 interface. Why? because its not in "up" mode. Since its not in "up" mode, openvpn software failed when it did "ifconfig IP MASK".
Now get this, if i manually (after openvpn authenticates, assigns an IP and says "connected") netcfg tun0 up, and then manually ifconfig tun0 IP MASK and then manually assign the routes which were automatically failed last time - it works.
Everything is routed properly.
What I figured was an issue with the netcfg tun0 up and ifconfig tun0 ip mask commands ... I read people tried tun.ko files (for each cfw) but couldn't find any for S2 (or lite'ning).
OMG I'm desperate. Help?
[SOLVED] - CHECK BELOW
advocator said:
Hi,
Just got myself some nice account at hidemyass_dot_com ... They dont support l2tp yet, and pptp just doesn't work (some encryption issue idk).
So I figured i'd try using openvpn. So I downloaded the market version of openvpn software.
Got the crt files, ovpn files and key file. Everything is in order. When I try to connect, I see that I can pass everything (even get a bloody IP). But the routes dont work. Meaning, I'm not routed through the tunnel but through the normal pdp0 interface.
I got into adb shell, adb logcat etc. This is what I figured out:
Routes are not "implemented" because it can't find the tun0 interface. Why? because its not in "up" mode. Since its not in "up" mode, openvpn software failed when it did "ifconfig IP MASK".
Now get this, if i manually (after openvpn authenticates, assigns an IP and says "connected") netcfg tun0 up, and then manually ifconfig tun0 IP MASK and then manually assign the routes which were automatically failed last time - it works.
Everything is routed properly.
What I figured was an issue with the netcfg tun0 up and ifconfig tun0 ip mask commands ... I read people tried tun.ko files (for each cfw) but couldn't find any for S2 (or lite'ning).
OMG I'm desperate. Help?
Click to expand...
Click to collapse
I've been trying to do this but just forgot about it when I first got the phone. You need to compile the tun.ko driver.
are you root?
you need root for OpenVPN
also the kernel needs to have tun.ko else it won't work
I wasn't able to test it myself yet but this is what I remembered from my Hero..
Gawis said:
are you root?
you need root for OpenVPN
also the kernel needs to have tun.ko else it won't work
I wasn't able to test it myself yet but this is what I remembered from my Hero..
Click to expand...
Click to collapse
I'm root.
Now not sure about the tun.ko in the kernel. I guess it has the default one (I do afterall, manage to netcfg tun0 up and ifconfig tun0 IP MASK if I do them manually ... they fail when openvpn does them by itself) ..
Maybe I need a special tun.ko? how can I compile my own?
I suddenly remembered thread in which I posted a while back about SGSII and OpenVPN
that member confirmed it as working, the link is here:
http://forum.xda-developers.com/showthread.php?t=1074492
I will root my SGSII somewhere this or next month and try it myself then..
SOLVED
Had to reinstall BusyBox (so I'd have /system/xbin/bb folder).
Now everything works with the default tun.
re-install openvpn when prompt ifconfig directory select /system/xbin/bb. then open console add sym link "ln -s /system/xbin /system/xbin/bb"
your openvpn should now able to up the tun0 interface and accept the push config from openvpn server
Hi everybody,
I installed vpnc from code.google.com/p/get-a-robot-vpnc.
I followed an howto (in german) for galaxy s (ip-phone-forum.de/showthread.php?t=222417&page=1) and tried to connect to my fritzbox 7390..
But I get an error when I want to connect to my vpn.
Error: application VPN Connections stopped unexpectedly.
The application requires tun.ko, which already is in the modules folder - al least with kyrillos 5.7.
As I'm unsure where to find the error I first wanted to ask if anybody ist using this app successfully - eventually with the patches provided in the mentioned howto.
Kind regards,
Dieter
Hi all,
I was an iphone user because with jailbreak there is a openvpn package that allow me to connect via vpn ssl to my work and check internal mail.
Now i have move to android with sgs2 and i rooted it and follow a guide (sergiodeluz.wordpress.com/software/android/openvpn-ssltls-para-android-eclair-2-1-y-froyo-2-2) and installed busybox and openvpn installer and settings.
i deploy in sd the files crt ca key y ovpn and the phone ask my for credentials and connect sucessfully to my firewall. On firewall side i checked that the phone is connected and is ok.
BUT the phone cant ping any internal ip address and in my opinion is that is not able to create new routes or the tun iface.
so my question is how can i debug the problem because now i have more knowledge in Ios than in android.
Thanks
Hello Xylograph.
First i would like to say "Thank you". You save me a lot of money for a new Android tablet. :good:
I have only one problem: if i would like to connect to my VPN server, NCP VPN (payed version) say "This device is not supported by this VPN client. Access to TUN/TAP interface failed. (Cannot create interface)". With other 4.1.2 ROMs it works fine. :crying:
VPNCilla has the same problem with TUN device. Btw. I use NativeSD version.
meingott said:
Hello Xylograph.
First i would like to say "Thank you". You save me a lot of money for a new Android tablet. :good:
I have only one problem: if i would like to connect to my VPN server, NCP VPN (payed version) say "This device is not supported by this VPN client. Access to TUN/TAP interface failed. (Cannot create interface)". With other 4.1.2 ROMs it works fine. :crying:
Click to expand...
Click to collapse
In ADB shell or Terminal Emulator, type lsmod to see the currently loaded modules. If you don't see tun.ko there, load it by insmod /system/lib/hw/modules/tun.ko
Swyped from HTC HD2 using xda premium
I see following modules:
bcm4329
tun
msm rmnet
I reinstalled the ROM into NAND and now all works fine. It is a NativeSD problem.