• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!

OpenVPN / tun.ko / Binary Galaxy Tab

Search This thread

hipath

New member
Jul 7, 2010
4
0
Hi,
openvpn is up and running.

Install busybox via busybox-Installer (Market). Then install Openvpn via Openvpn-Installer (Market). I dont know if Openvpn-Installer is needed, as we are replacing the binary with another file - but as it takes care of dependencies just install it :)

Use tun.ko from there:
xxx.android-hilfe.de/samsung-galaxy-tab-forum/51007-openvpn-tun-ko-unionfs-ko.html
(replace the xxx with www)

Binary from here: (OpenVPN Installer won't work - its not able to recognize push options)
github.com/downloads/fries/android-external-openvpn/openvpn-static-2.1.1.bz2

Finally you have to provide the busybox-ifconfig in /system/xbin/bb/ifconfig and busybox-route in /system/xbin/bb/route (ln -s /system/bin/busybox /system/xbin/bb/ifconfig ...)

cheers
patrick
 
Last edited:
I tried and got the connection established. But in opposite to my Desire, traffic is not routed that way.

Also, there is no /dev/tun

Addendum: Got it running, beside that I am using tap, doing a reinstall after having created the a.m. symlinks for busyboy, adding some push options on the server to force the routing did the trick (they were not required on my Desire).
 
Last edited:

ipaqkiller

Senior Member
Mar 2, 2006
54
3
46
Montgomery, AL
I used the tun.ko module for the VPN Connections app and got it working great... except when I disable the VPN connection, it doesn't reset the dns servers to the values that where there before.

I don't believe it's the application since the same version on my Nexus One works correctly. If I turn off the data then turn it back on, I get my data back. I believe it to be the tun.ko not being written to reset the dns entries.
 

ritdaw

Senior Member
Jan 17, 2007
272
8
I think I could kiss someone, I now have working cisco vpn :)

How do we make the tun.ko module stay after a reboot? Mine disappeared from /modules/ when I restarted my tab? I copied it with root explorer.

Also if we can get it to stick will I have to run these commands each time?

insmod /modules/tun.ko
ln -s /system/bin/busybox/system/xbins/bb/ route
ln -s /system/bin/busybox/system/xbins/bb/ ifconfig
 
Last edited:

trondjl

Senior Member
May 27, 2007
90
9
Hi, i am not getting this to work, is there any thing i am missing? What i did:

1. Rooted device and installed busybox
2. copying the tun.ko from the german site to /modules after remounting to r/w.
3. Running those three commands from previous post in terminal
4. Installing vpnc 0.99 and configuring connection
5. Connect

still get failed to connect.

any tips please?

Sent from my GT-P1000 using XDA App
 
  • Like
Reactions: Aqb_

ritdaw

Senior Member
Jan 17, 2007
272
8
Hi, i am not getting this to work, is there any thing i am missing? What i did:

1. Rooted device and installed busybox
2. copying the tun.ko from the german site to /modules after remounting to r/w.
3. Running those three commands from previous post in terminal
4. Installing vpnc 0.99 and configuring connection
5. Connect

still get failed to connect.

any tips please?

Sent from my GT-P1000 using XDA App

I believe that's exactly what I did. Were all the commands successful?
 

trondjl

Senior Member
May 27, 2007
90
9
works now.
I rebooted and reinstalled vpnc and busybox and recopied and reissued commands. Something must have been hanging from all my testing.
Tanks!

This is so great! Now I'm online with Sip, xmpp and RDP with work!

I know, get a life :)

Sent from my GT-P1000 using XDA App
 

ipaqkiller

Senior Member
Mar 2, 2006
54
3
46
Montgomery, AL
I had to copy tun.ko to /system/lib/modules. I did have to create that directory but when I did, it was loaded every time.

You can make sure by using the lsmod command in the terminal emulator.
 

Justin^Tan

Senior Member
Jul 14, 2010
486
33
sorry for noob question as i dont know that much about open vpn
i know its a virtual private network, and some ppl in my country offering a cheaper internet connection through them

what did this one do exactly?
 

kboi

Member
Mar 8, 2009
6
0
Cisco vpn ftw

This is great! After reading everything and getting everything done I can connect through our Cisco VPN. :):)
 

ritdaw

Senior Member
Jan 17, 2007
272
8
How can I use terminal emulator to run the two ln -s commands? I guess I need some prior commands to enable r/w to system?
 
I bought Better Terminal Emulator Pro in the Market to do this.

This is how I did it:

1. Install busybox from the Market into /system/bin,
2. Install root-explorer (to get r/w access to /system/xbin),
3. Create /system/xbin/bb,
4. Create symbolic links in /system/xbin/bb to busybox with the names ifconfig and route:

ln -s /system/bin/busybox /system/xbin/bb/route
ln -s /system/bin/busybox /system/xbin/bb/ifconfig

5. Copy tun.ko into /system/xbin with root-explorer,
6. Install OpenVPN from the Market into /system/xbin and set the paths to route/ifconfig to /system/xbin/bb,
7. Install OpenVPN Settings from the Market,
8. Configured to activate the TUN module via Menu / Advanced with insmod in path /system/xbin/tun.ko and to activate "Load tun kernel module"
9. Copied my existing and working OpenVPN-settings to the memory card and finally
10. Set the path to the OpenVPN configuration and to the OpenVPN binary.

After this, the OpenVPN connection could be established the data was rerouted via that connection.

@alias_neo

The internal Android functions do not support OpenVPN which can be quite easily installed on a Linux root server to establish a secure connection to that server. Setting the firewall rules on that server properly, the whole traffic can virtually enter the internet via the server and systems inbetween the Tab and the server cannot see what's going on anymore. So even an open WLAN hotspot can be safely used as well as all monitoring/logging/recording on forwarding systems sees only an encrypted connection.

Also OpenVPN is in my eyes more secure than a simple username/password encrypted connection (as PPTP offers). So, the secret to encrypt the connection is better protected as with PPTP.

If a VPN provider is used to tunnel the traffic into the internet (to hide it from the systems inbetween when there is no own server available), the encryption method of the VPN provider is relevant. For example, SwissVPN only offers PPTP or OpenVPN.
 
Last edited:

ritdaw

Senior Member
Jan 17, 2007
272
8
I had to copy tun.ko to /system/lib/modules. I did have to create that directory but when I did, it was loaded every time.

You can make sure by using the lsmod command in the terminal emulator.

I don't know if' I'm missing something, but I can't get the module to automatically load on a reboot. lsmod doesn't show tun.ko in the list. I have to issue insmod /system/lib/modules/tun.ko on each startup.

EDIT: Think I've sussed it, will post my details later for anyone who wishes to get this setup for cisco only without installing the openvpn installer.
 
Last edited:
I don't know if' I'm missing something, but I can't get the module to automatically load on a reboot. lsmod doesn't show tun.ko in the list. I have to issue insmod /system/lib/modules/tun.ko on each startup.

That's why I use the OpenVPN Settings app from the Market. It allows to activate the module with insmod when OpenVPN is started as this obviously cannot be done by the system automatically.
 

ritdaw

Senior Member
Jan 17, 2007
272
8
I had to copy tun.ko to /system/lib/modules. I did have to create that directory but when I did, it was loaded every time.

You can make sure by using the lsmod command in the terminal emulator.

That's why I use the OpenVPN Settings app from the Market. It allows to activate the module with insmod when OpenVPN is started as this obviously cannot be done by the system automatically.

Worked that out in the end, I thought it was only specific to OpenVPN connections.
 

Top Liked Posts

  • There are no posts matching your filters.
  • 1
    Hi, i am not getting this to work, is there any thing i am missing? What i did:

    1. Rooted device and installed busybox
    2. copying the tun.ko from the german site to /modules after remounting to r/w.
    3. Running those three commands from previous post in terminal
    4. Installing vpnc 0.99 and configuring connection
    5. Connect

    still get failed to connect.

    any tips please?

    Sent from my GT-P1000 using XDA App