< p > zrok VPN backend allows for simple host-to-host VPN setup.< / p >
< h2 class = "anchor anchorWithStickyNavbar_LWe7" id = "starting-vpn-server" > Starting VPN server< a href = "#starting-vpn-server" class = "hash-link" aria-label = "Direct link to Starting VPN server" title = "Direct link to Starting VPN server" > < / a > < / h2 >
< p > VPN is shared through the < code > vpn< / code > backend of < code > zrok< / code > command.< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@hermes $ sudo -E zrok share private --headless --backend-mode vpn< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.542] INFO sdk-golang/ziti.(*listenerManager).createSessionWithBackoff: {session token=[589d443c-f59d-4fc8-8c48-76609b7fb402]} new service session< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.705] INFO main.(*sharePrivateCommand).run: allow other to access your share with the following command:< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > zrok access private 3rq7torslq3n< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.705] INFO zrok/endpoints/vpn.(*Backend).Run: started< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< p > < img decoding = "async" loading = "lazy" alt = "VPN share" src = "/assets/images/vpn-share-077094eabd79a2e072ee4c40f8e0fd31.png" width = "1626" height = "1314" class = "img_ev3q" > < / p >
2024-04-16 22:35:33 +02:00
< p > < code > sudo< / code > or equivalent invocation is required because VPN mode needs to create a virtual network device (< code > tun< / code > )
< code > -E< / code > option allows < code > zrok< / code > to find your zrok configuration files (in your < code > $HOME/.zrok< / code > )< / p >
< p > By default < code > vpn< / code > backend uses subnet < code >< / code > and assigns < code >< / code > to the host that stared VPN share.< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > $ ifconfig< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > tun0: flags=4305< UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 16384< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > inet netmask destination< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > inet6 fe80::705f:24e4:dcfc:a6b2 prefixlen 64 scopeid 0x20< link> < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > inet6 fd00:7a72:6f6b::1 prefixlen 64 scopeid 0x0< global> < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > RX packets 0 bytes 0 (0.0 B)< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > RX errors 0 dropped 0 overruns 0 frame 0< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > TX packets 27 bytes 3236 (3.2 KB)< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< p > Default IP/subnet setting can be overridden by adding < code > < target> < / code > parameter:< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > $ sudo -E zrok share private --headless --backend-mode vpn< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< h2 class = "anchor anchorWithStickyNavbar_LWe7" id = "vpn-share-reservation" > VPN share reservation< a href = "#vpn-share-reservation" class = "hash-link" aria-label = "Direct link to VPN share reservation" title = "Direct link to VPN share reservation" > < / a > < / h2 >
< p > Share reservation works the same as with other backend types:< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@hermes $ zrok reserve private -b vpn< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.297] INFO main.(*reserveCommand).run: your reserved share token is ' k77y2cl7jmjl' < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@hermes $ sudo -E zrok share reserved k77y2cl7jmjl --headless< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.211] INFO main.(*shareReservedCommand).run: sharing target: '' < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.211] INFO main.(*shareReservedCommand).run: using existing backend target:< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.463] INFO sdk-golang/ziti.(*listenerManager).createSessionWithBackoff: {session token=[22c5708d-e2f2-41aa-a507-454055f8bfcc]} new service session< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.641] INFO main.(*shareReservedCommand).run: use this command to access your zrok share: ' zrok access private k77y2cl7jmjl' < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
2024-04-16 22:35:33 +02:00
< h2 class = "anchor anchorWithStickyNavbar_LWe7" id = "accessing-vpn-share" > Accessing VPN share< a href = "#accessing-vpn-share" class = "hash-link" aria-label = "Direct link to Accessing VPN share" title = "Direct link to Accessing VPN share" > < / a > < / h2 >
< p > Accessing a VPN share works similar to other backends.< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@calculon % sudo -E zrok access private --headless k77y2cl7jmjl< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.201] INFO main.(*accessPrivateCommand).run: allocated frontend ' 50B5hloP1s1X' < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.662] INFO main.(*accessPrivateCommand).run: access the zrok share at the following endpoint: VPN:< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.662] INFO main.(*accessPrivateCommand).run: -> CONNECTED Welcome to zrok VPN< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > [ 0.662] INFO zrok/endpoints/vpn.(*Frontend).Run: connected:Welcome to zrok VPN< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< p > Starting < code > zrok access< / code > to a VPN share creates virtual network device/interface:< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@calculon ~ % ifconfig < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > ...< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > utun5: flags=8051< UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > inet --> netmask 0xff000000< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > inet6 fe80::ce08:faff:fe8a:7b25%utun5 prefixlen 64 scopeid 0x14< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > nd6 options=201< PERFORMNUD,DAD> < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > ...< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< p > At this point a VPN tunnel is active between your server and client.
In the example above server is < code > hermes(< / code > and client is < code > calculon(< / code > .
You can access server from client by using assigned IP address.< / p >
< div class = "codeBlockContainer_Ckt0 theme-code-block" style = "--prism-color:#F8F8F2;--prism-background-color:#282A36" > < div class = "codeBlockContent_biex" > < pre tabindex = "0" class = "prism-code language-text codeBlock_bY9V thin-scrollbar" style = "color:#F8F8F2;background-color:#282A36" > < code class = "codeBlockLines_e6Vv" > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@calculon ~ % ssh eugene@< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > Welcome to Ubuntu 23.10 (GNU/Linux 6.5.0-27-generic x86_64)< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > * Documentation: https://help.ubuntu.com< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > * Management: https://landscape.canonical.com< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > * Support: https://ubuntu.com/pro< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > 0 updates can be applied immediately.< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > Last login: Tue Apr 16 09:27:13 2024 from< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@hermes:~$ who am i< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene pts/8 2024-04-16 10:04 (< / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" style = "display:inline-block" > < / span > < br > < / span > < span class = "token-line" style = "color:#F8F8F2" > < span class = "token plain" > eugene@hermes:~$< / span > < br > < / span > < / code > < / pre > < div class = "buttonGroup__atx" > < button type = "button" aria-label = "Copy code to clipboard" title = "Copy" class = "clean-btn" > < span class = "copyButtonIcons_eSgA" aria-hidden = "true" > < svg viewBox = "0 0 24 24" class = "copyButtonIcon_y97N" > < path fill = "currentColor" d = "M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z" > < / path > < / svg > < svg viewBox = "0 0 24 24" class = "copyButtonSuccessIcon_LjdS" > < path fill = "currentColor" d = "M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z" > < / path > < / svg > < / span > < / button > < / div > < / div > < / div >
< p > You can also make a reverse(server-to-client) connection:< / p >
