I have been following this ticket for a while and I can’t wait for it. It looks like it could on m75 or m76:
https://bugs.chromium.org/p/chromium/issues/detail?id=834585#c47
This would be huge for running Linux apps that have to leverage networks while being remote.
Personally I would prefer to run all my VPN inside Crostini and have Chrome OS route through that.
We are using GlobalProtect VPN (Palo Alto Networks) - https://www.reddit.com/r/paloaltonetworks/
and for a while I was able to use their Android VPN app, to have both crostini and chromeOS chrome work (or was I mistaken, my memory is that both worked).
But now, I use OpenConnect with -gp option (globalProtect) inside crostini (and it works), and then the Android for the Chrome. In a way both (but I haven’t tried using them both at the same time).
But whatever works would be fine with me… and if requires less custom ways to run it, the better.
I’d be fine with either. I hate having to switch back and forth.
You can do that by granting access to /dev/tun to crostini
That’s not what I meant. Currently I run all my VPN in Crostini, no issue. I would like CrOS to be able to route through them. I do not think these commits will allow that, instead only for Crostini to route via CrOS vpns
Er, that’s exactly what my solution does. You run your VPN inside crostini and the whole system routes through it
In beta and dev channels tun is already properly set up so it is no longer necessary to manually enable it.
Search this /r for /dev/net/tun of you need to know the previous method.
Don’t remember off the top of my head, Google crostini vpn
Ahh, thanks. I’m on stable so I’ll need to do it manually for now. I had been looking for a way to use an IKEv2 tunnel on ChromeOS, since the strongSwan Android app doesn’t work on ChromeOS (tunnel comes up, but it kills all traffic. Apparently a bug in the Android layer).
Hmm, I am not aware of any ability for CrOS to be told to route out via Crostini VPN. Are you in dev mode and doing it that way?
OK, well whatever you did to allow that, you obviously aren’t willing to share.
Thanks
You just have to Grant access to /dev/tun using crosh. It’s not complex.
As I thought, you are either in dev mode or are using Crouton. There is no way to do this in crosh. I am not a Linux noob by any stretch. If you are able to do this in protected mode via Crostini, I am really curious as to how!