ANSWERED eddie arm portable question reguarding whitelisting(solved)

[sableslayer 1]

Hello ,
I'm using eddie-cli armhf portable on one of my SBCs and been trying to whitelist internal traffic with -netlock. Is there some option to force tunneling and still whitelist my internal ip range so i can reach ssh??

Thank you!

[OpenSourcerer 1450]

It's already normal behavior that local traffic is not routed through the VPN. The --netlock.allow_private option is used to control that, but it defaults to true already, so it should work.

[sableslayer 1]

$ sudo /home/rock64/.eddie-cli_2.16.3_linux_armhf_portable/eddie-cli -login=**** -password=**** --netlock.allow_private -connect
exception inside UnhandledException handler: Object reference not set to an instance of an object

[ERROR] FATAL UNHANDLED EXCEPTION: System.DllNotFoundException: Lib.Platform.Linux.Native.so
  at (wrapper managed-to-native) Eddie.Platform.Linux.NativeMethods:eddie_signal (int,Eddie.Platform.Linux.NativeMethods/eddie_sighandler)
  at Eddie.Platform.Linux.NativeMethods.Signal (System.Int32 signum, Eddie.Platform.Linux.NativeMethods+eddie_sighandler handler) [0x00000] in <1a3bcbd9ff4c4d73ad6d40616d94b558>:0
  at Eddie.Platform.Linux.Platform.OnInit (System.Boolean cli) [0x0020e] in <1a3bcbd9ff4c4d73ad6d40616d94b558>:0
  at Eddie.Core.Engine.Initialization (System.Boolean cli) [0x00000] in <3be0437ef3624232adf6091382fd1690>:0
  at Eddie.CLI.Linux.MainClass.Main (System.String[] args) [0x00030] in <7501db3f6411483fbe2e6a08141919e4>:0

 

$ sudo /home/rock64/.eddie-cli_2.16.3_linux_armhf_portable/eddie-cli -login=**** -password=**** -netlock.allow_private -connect
exception inside UnhandledException handler: Object reference not set to an instance of an object

[ERROR] FATAL UNHANDLED EXCEPTION: System.DllNotFoundException: Lib.Platform.Linux.Native.so
  at (wrapper managed-to-native) Eddie.Platform.Linux.NativeMethods:eddie_signal (int,Eddie.Platform.Linux.NativeMethods/eddie_sighandler)
  at Eddie.Platform.Linux.NativeMethods.Signal (System.Int32 signum, Eddie.Platform.Linux.NativeMethods+eddie_sighandler handler) [0x00000] in <1a3bcbd9ff4c4d73ad6d40616d94b558>:0
  at Eddie.Platform.Linux.Platform.OnInit (System.Boolean cli) [0x0020e] in <1a3bcbd9ff4c4d73ad6d40616d94b558>:0
  at Eddie.Core.Engine.Initialization (System.Boolean cli) [0x00000] in <3be0437ef3624232adf6091382fd1690>:0
  at Eddie.CLI.Linux.MainClass.Main (System.String[] args) [0x00030] in <7501db3f6411483fbe2e6a08141919e4>:0

Couldnt get it to run with that option. Any suggestion?


I know it works without netlock but im trying to force tunnelling so that my nodes dont leak data but i can still connect to ssh locally. Seems like i need to setup some iptable rules if theirs no option like their is in the gui for whitelisting ip ranges.

 

[sableslayer 1]

--Use vpn for all traffic except local.
sudo ufw default deny incoming
sudo ufw default deny outgoing

sudo ufw allow out on tun0
sudo ufw allow in on tun0
sudo ufw allow from 192.168.1.1/24 ##edit to your own subnet.
sudo ufw allow out ip port ##change the ip and port to the vpn's 
-