I decided to do a watchdog script, vxlan works fine. One endpoint is an old 5$ raspberry 0, its CPU is much happier with vxlan than with wg. Thanks again
Il giorno gio 16 nov 2023 alle 10:41 Stuart Henderson <s...@spacehopper.org> ha scritto: > Ah, so it's an existing upstream feature that just isn't working on > OpenBSD yet. That wasn't clear from the earlier mails. > > That could be something which is reasonable to patch in ports. > Though for your use case, I think you'll be happier with performance > of something in-kernel. If vxlan doesn't work for you then wg may well > be your best bet, as long as you don't have a specific reason to > avoid encryption. > > > On 2023/11/13 16:29, Luca Di Gregorio wrote: > > Socat upstream tells me that they don't have resource/time > > to add tun/tap support on OpenBSD. > > > > No matter anyway. > > Thanks again > > > > > > Il giorno lun 13 nov 2023 alle ore 10:19 Luca Di Gregorio < > luc...@gmail.com> > > ha scritto: > > > > > I will do it. > > > Anyway, a few months ago I noticed a similar issue on vlc. > > > Prior 7.4, OpenBSD port didn't have the telnet interface available. > > > Some gentlemen here in ports@openbsd.org added it and now it's > available > > > in 7.4. > > > That is why I submitted the question related to socat and TUN. > > > Thanks > > > > > > Il giorno dom 12 nov 2023 alle ore 11:54 Theo de Raadt < > > > dera...@openbsd.org> ha scritto: > > > > > >> you would need to talk to socat upstream, because in general the ports > > >> team do not add features > > >> > > >> Luca Di Gregorio <luc...@gmail.com> wrote: > > >> > > >> > I would like to set a point to point interface encapsulating > packets via > > >> > UDP. > > >> > > > >> > It would be like a point to point wireguard but: > > >> > - without authentication (I can set permissions in PF on source ip) > > >> > - without encryption (content is already encrypted by source > > >> application) > > >> > > > >> > I can't use GIF or GRE interfaces because I'm behind NAT with only > > >> TCP/UDP > > >> > capabilities. > > >> > > > >> > With linux it's possible with fou-gue interfaces, but I see that in > > >> OpenBSD > > >> > fou is not implemented. > > >> > > > >> > So, I installed socat with pkg_add and tried to do like this: > > >> > http://www.dest-unreach.org/socat/doc/socat-tun.html > > >> > > > >> > Anyway, I see this: > > >> > # socat UDP:1.2.3.4:11443 TUN:192.168.255.2/24,up > > >> > 2023/11/11 14:11:27 socat[4504] E unknown device/address "TUN" > > >> > > > >> > Do you think it's possible to add TUN/TAP support in socat? > > >> > > > >