sshuttle on chromebook pixel
473 views
Skip to first unread message
antonio
Apr 17, 2013, 4:05:23 PM4/17/13
to sshu...@googlegroups.com
Hi, all.
I'm running ubuntu quantal on chromebook. (chromebook pixel, dev mode, crouton debootstrap install, ctrl-alt-T terminal, shell, sudo bash, enter-chroot -n quantal)
sshuttle reports iptables error.
iptables reports cannot initalize table nat- no nat table or need to insmod?
iptables does work, iptables -L -v-n shows INPUT, FORWARD, and OUTPUT chains.
I'd paste some output, but there's no damn middle-click on this thing (apparently a thumb issue!?) and I haven't found the workaround yet. May have to start carrying a usb mouse, but otherwise this touchpad is very nice so I'd like to keep it as my primary if I can get it useful.
Anyone get sshuttle running on a chromebook yet? Either in host or chroot guest? Am I blazing this trail? I'd appreciate any observations/suggestions.
Tony
I'm running ubuntu quantal on chromebook. (chromebook pixel, dev mode, crouton debootstrap install, ctrl-alt-T terminal, shell, sudo bash, enter-chroot -n quantal)
sshuttle reports iptables error.
iptables reports cannot initalize table nat- no nat table or need to insmod?
iptables does work, iptables -L -v-n shows INPUT, FORWARD, and OUTPUT chains.
I'd paste some output, but there's no damn middle-click on this thing (apparently a thumb issue!?) and I haven't found the workaround yet. May have to start carrying a usb mouse, but otherwise this touchpad is very nice so I'd like to keep it as my primary if I can get it useful.
Anyone get sshuttle running on a chromebook yet? Either in host or chroot guest? Am I blazing this trail? I'd appreciate any observations/suggestions.
Tony
Axel Beckert
Apr 17, 2013, 5:34:19 PM4/17/13
to sshu...@googlegroups.com
Hi,
On Wed, Apr 17, 2013 at 01:05:23PM -0700, antonio wrote:
> I'm running ubuntu quantal on chromebook.
Oh, you can install other operating systems on these things? (Ogling
with one, too, but only if I don't have to use any GoogleOS but can
run a self-controlled Linux distribution on it.)
> (chromebook pixel, dev mode, crouton debootstrap install, ctrl-alt-T
> terminal, shell, sudo bash, enter-chroot -n quantal)
That doesn't sound like Ubuntu running on the Chromebook but rather
like just an Ubuntu chroot on ChromeOS, i.e. with the ChromeOS kernel.
> sshuttle reports iptables error.
>
> iptables reports cannot initalize table nat- no nat table or need to insmod?
I'd expect that the ChromeOS Linux kernel (like the default Android
Linux kernels) does not provide these modules.
> iptables does work, iptables -L -v-n shows INPUT, FORWARD, and OUTPUT
> chains.
Depending on the used rules, iptables needs different modules and
features. While dropping packets (i.e. firewalling stuff) may work,
sshuttle needs NAT and forwarding stuff which may not be available
despite firewalling works.
> I'd paste some output, but there's no damn middle-click on this
> thing
That sounds a lot like a chroot and not Ubuntu running directly on the
hardware, too.
> Anyone get sshuttle running on a chromebook yet? Either in host or chroot
> guest? Am I blazing this trail? I'd appreciate any
> observations/suggestions.
I suspect that you will need a different or at least with different
configuration recompiled kernel as its the case on Android, too.
A little bit of duckduckgoing brought me to these pages:
http://www.chromium.org/chromium-os/how-tos-and-troubleshooting/using-an-upstream-kernel-on-snow
http://www.chromium.org/chromium-os/how-tos-and-troubleshooting/kernel-configuration
Not sure of how much help they actually are, but they were the closest
thing to that topic I found.
Kind regards, Axel
--
/~\ Plain Text Ribbon Campaign | Axel Beckert
\ / Say No to HTML in E-Mail and News | a...@deuxchevaux.org (Mail)
X See http://www.asciiribbon.org/ | a...@noone.org (Mail+Jabber)
/ \ I love long mails: http://email.is-not-s.ms/ | http://noone.org/abe/ (Web)
On Wed, Apr 17, 2013 at 01:05:23PM -0700, antonio wrote:
> I'm running ubuntu quantal on chromebook.
with one, too, but only if I don't have to use any GoogleOS but can
run a self-controlled Linux distribution on it.)
> (chromebook pixel, dev mode, crouton debootstrap install, ctrl-alt-T
> terminal, shell, sudo bash, enter-chroot -n quantal)
like just an Ubuntu chroot on ChromeOS, i.e. with the ChromeOS kernel.
> sshuttle reports iptables error.
>
> iptables reports cannot initalize table nat- no nat table or need to insmod?
Linux kernels) does not provide these modules.
> iptables does work, iptables -L -v-n shows INPUT, FORWARD, and OUTPUT
> chains.
features. While dropping packets (i.e. firewalling stuff) may work,
sshuttle needs NAT and forwarding stuff which may not be available
despite firewalling works.
> I'd paste some output, but there's no damn middle-click on this
> thing
hardware, too.
> Anyone get sshuttle running on a chromebook yet? Either in host or chroot
> guest? Am I blazing this trail? I'd appreciate any
> observations/suggestions.
configuration recompiled kernel as its the case on Android, too.
A little bit of duckduckgoing brought me to these pages:
http://www.chromium.org/chromium-os/how-tos-and-troubleshooting/using-an-upstream-kernel-on-snow
http://www.chromium.org/chromium-os/how-tos-and-troubleshooting/kernel-configuration
Not sure of how much help they actually are, but they were the closest
thing to that topic I found.
Kind regards, Axel
--
/~\ Plain Text Ribbon Campaign | Axel Beckert
\ / Say No to HTML in E-Mail and News | a...@deuxchevaux.org (Mail)
X See http://www.asciiribbon.org/ | a...@noone.org (Mail+Jabber)
/ \ I love long mails: http://email.is-not-s.ms/ | http://noone.org/abe/ (Web)
kgr...@gmail.com
Aug 13, 2013, 3:35:58 PM8/13/13
to sshu...@googlegroups.com
I also ran into this problem but fortunately was able to use openvpn as a workaround.
Tony Godshall
Aug 20, 2013, 7:02:07 PM8/20/13
to Axel Beckert, sshuttle
On Wed, Apr 17, 2013 at 2:34 PM, Axel Beckert <a...@deuxchevaux.org> wrote:
> Hi,
>
> On Wed, Apr 17, 2013 at 01:05:23PM -0700, antonio wrote:
>> I'm running ubuntu quantal on chromebook.
>
> Oh, you can install other operating systems on these things? (Ogling
> with one, too, but only if I don't have to use any GoogleOS but can
> run a self-controlled Linux distribution on it.)
I'm running wheezy on mine, usually booting into XFCE4
> Hi,
>
> On Wed, Apr 17, 2013 at 01:05:23PM -0700, antonio wrote:
>> I'm running ubuntu quantal on chromebook.
>
> Oh, you can install other operating systems on these things? (Ogling
> with one, too, but only if I don't have to use any GoogleOS but can
> run a self-controlled Linux distribution on it.)
I have to hit Ctrl-L every time I boot up but otherwise it's pretty stable.
And the SSD is fast- like 400 MB/sec per hdparm -tT
Message has been deleted
antonio
Nov 25, 2017, 3:53:25 PM11/25/17
to sshuttle
Times change, and I'll be trying to run sshuttle on an ASUS Flip C101PA-DB02 soon. Hopefully iptables with all the modules now : - )
Developer mode seems easier now, and ARM is more power-efficient.
Tony Godshall
Nov 27, 2017, 5:10:16 PM11/27/17
to sshuttle
Initial tests are that it works! It does give an warning about ttl
module not being present, but I was able to sshuttle to a branch
office and then ssh to a remote private address.
> --
> You received this message because you are subscribed to the Google Groups
> "sshuttle" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to sshuttle+u...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
Best Regards.
A.P.
module not being present, but I was able to sshuttle to a branch
office and then ssh to a remote private address.
> You received this message because you are subscribed to the Google Groups
> "sshuttle" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to sshuttle+u...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
Best Regards.
A.P.
Tony Godshall
Nov 27, 2017, 5:12:33 PM11/27/17
to sshuttle
(crouton installed from github with -t cli-extra, and then apt update
and apt install sshuttle from inside the crouton chroot)
--
Best Regards.
A.P.
and apt install sshuttle from inside the crouton chroot)
Best Regards.
A.P.
antonio
Nov 27, 2017, 8:10:34 PM11/27/17
to sshuttle
Editted subject to expand the scope of the discussion.
Anyone have any idea what the ttl is for and whether it's absence will cause any functional difficulty?
On Monday, November 27, 2017 at 2:12:33 PM UTC-8, antonio wrote:
(crouton installed from github with -t cli-extra, and then apt update
and apt install sshuttle from inside the crouton chroot)
On Mon, Nov 27, 2017 at 2:10 PM, Tony Godshall <apgod...@gmail.com> wrote:
> Initial tests are that it works! It does give an warning about ttl
> module not being present, but I was able to sshuttle to a branch
> office and then ssh to a remote private address.
>
>
> On Sat, Nov 25, 2017 at 12:53 PM, antonio <apgod...@gmail.com> wrote:
>>
>> Times change, and I'll be trying to run sshuttle on an ASUS Flip C101PA-DB02
>> soon. Hopefully iptables with all the modules now : - )
>>
>> Developer mode seems easier now, and ARM is more power-efficient.
>>
>> --
>> You received this message because you are subscribed to the Google Groups
>> "sshuttle" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to sshuttle+unsubscribe@googlegroups.com.
Brian May
Nov 28, 2017, 2:03:54 AM11/28/17
to sshuttle
antonio <apgod...@gmail.com> writes:
> Anyone have any idea what the ttl is for and whether it's absence will
> cause any functional difficulty?
There is a kludge in the code - one that I have never really liked much
> Anyone have any idea what the ttl is for and whether it's absence will
> cause any functional difficulty?
- that we set the TTL to 42 for packets we generate. The firewall rules
in turn are designed to ignore packets with a TTL 42, which in turn
prevents (at least in theory) infinite loops due to (AFAIK) poor
configuration choices.
--
Brian May <br...@microcomaustralia.com.au>
Tony Godshall
Jan 13, 2018, 1:39:54 PM1/13/18
to Brian May, sshuttle
Thanks for the explanation!
I've been ignoring the warning and it's been working fine.
--
Best Regards.
This is unedited.
This message came out of me
via a suboptimal keyboard.
I've been ignoring the warning and it's been working fine.
> --
> You received this message because you are subscribed to the Google Groups "sshuttle" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to sshuttle+u...@googlegroups.com.
> You received this message because you are subscribed to the Google Groups "sshuttle" group.
--
Best Regards.
This is unedited.
This message came out of me
via a suboptimal keyboard.
Tony Godshall
Jul 17, 2018, 5:45:01 PM7/17/18
to Brian May, sshuttle
We should probably add notes to
https://sshuttle.readthedocs.io/en/stable/platform.html
It works on this particular chromebook in crouton. If others have
tested other chromebooks, we should add them too. And also, once
somebody tries it on crostini/crosvm.
https://sshuttle.readthedocs.io/en/stable/platform.html
It works on this particular chromebook in crouton. If others have
tested other chromebooks, we should add them too. And also, once
somebody tries it on crostini/crosvm.
Brian May
Jul 21, 2018, 6:33:05 PM7/21/18
to Tony Godshall, sshuttle
Tony Godshall <to...@of.net> writes:
> We should probably add notes to
>
> https://sshuttle.readthedocs.io/en/stable/platform.html
>
> It works on this particular chromebook in crouton. If others have
> tested other chromebooks, we should add them too. And also, once
> somebody tries it on crostini/crosvm.
Pull Requests to update documentation are very much welcome.
> We should probably add notes to
>
> https://sshuttle.readthedocs.io/en/stable/platform.html
>
> It works on this particular chromebook in crouton. If others have
> tested other chromebooks, we should add them too. And also, once
> somebody tries it on crostini/crosvm.
--
Brian May <br...@linuxpenguins.xyz>
https://linuxpenguins.xyz/brian/
Tony Godshall
Aug 24, 2018, 5:42:15 PM8/24/18
to sshuttle, Avery Pennarun, Avery Pennarun
sshuttle works on crostini!
I'm running Dev channel and I was able to install crostini
and its default stretch VM and run Terminal and did
# apt update
# apt install sshuttle xfonts-scalable xterm xtightvncviewer
and was able to fork off xterms and sshuttle into private
networks and ssh to servers with the local IP addresses
and VNC into workstations and just Get Work Done with just
this little thing that I can carry in a cargo vest and a WiFi
connection! Even ctrl-A and ctrl-W Do The Right Thing.
It does *not* have much storage and I have not yet figured
out if it's possible to use a USB stick or a microSD as storage,
and I did initally make the mistake of pulling in my git script repo
so for now I'm running really bare bones, but It Works!
I see crostini is in the Beta channel too now, so it's possible
it's not necessary to go all the way to Dev, but I'd have to
powerwash this to test it, so that will have to wait till another
time. (I do have another one of these devices that I was
using for Crouton, I can probably powerwash that sometime.)
To do:
- learn how to back up virtual machines
- see if external storage can be used
- figure out how to copy/paste between xterms with this
nasty-limited keyboard
Tony
I'm running Dev channel and I was able to install crostini
and its default stretch VM and run Terminal and did
# apt update
# apt install sshuttle xfonts-scalable xterm xtightvncviewer
and was able to fork off xterms and sshuttle into private
networks and ssh to servers with the local IP addresses
and VNC into workstations and just Get Work Done with just
this little thing that I can carry in a cargo vest and a WiFi
connection! Even ctrl-A and ctrl-W Do The Right Thing.
It does *not* have much storage and I have not yet figured
out if it's possible to use a USB stick or a microSD as storage,
and I did initally make the mistake of pulling in my git script repo
so for now I'm running really bare bones, but It Works!
I see crostini is in the Beta channel too now, so it's possible
it's not necessary to go all the way to Dev, but I'd have to
powerwash this to test it, so that will have to wait till another
time. (I do have another one of these devices that I was
using for Crouton, I can probably powerwash that sometime.)
To do:
- learn how to back up virtual machines
- see if external storage can be used
- figure out how to copy/paste between xterms with this
nasty-limited keyboard
Tony
Avery Pennarun
Aug 24, 2018, 6:10:14 PM8/24/18
to Tony Godshall, sshuttle
On Fri, Aug 24, 2018 at 5:41 PM, Tony Godshall <to...@of.net> wrote:
> sshuttle works on crostini!
>
> I'm running Dev channel and I was able to install crostini
> and its default stretch VM and run Terminal and did
>
> # apt update
> # apt install sshuttle xfonts-scalable xterm xtightvncviewer
>
> and was able to fork off xterms and sshuttle into private
> networks and ssh to servers with the local IP addresses
> and VNC into workstations and just Get Work Done with just
> this little thing that I can carry in a cargo vest and a WiFi
> connection! Even ctrl-A and ctrl-W Do The Right Thing.
Wow, that's not what I expected. I didn't realize crostini was
> sshuttle works on crostini!
>
> I'm running Dev channel and I was able to install crostini
> and its default stretch VM and run Terminal and did
>
> # apt update
> # apt install sshuttle xfonts-scalable xterm xtightvncviewer
>
> and was able to fork off xterms and sshuttle into private
> networks and ssh to servers with the local IP addresses
> and VNC into workstations and just Get Work Done with just
> this little thing that I can carry in a cargo vest and a WiFi
> connection! Even ctrl-A and ctrl-W Do The Right Thing.
full-on virtualization including the network layer. (I assume that's
the case, rather than letting you just futz with the ChromeOS network
layer directly, which would be a giant security problem.) But it's
good news I guess!
> To do:
> - learn how to back up virtual machines
> - figure out how to copy/paste between xterms with this
> nasty-limited keyboard
Have fun,
Avery
Tony Godshall
Aug 24, 2018, 6:45:22 PM8/24/18
to Brian May, sshuttle
Pull request to add platform notes for ChromeBooks/ChromeOS indicating
that sshuttle works under Crostini virtual machines
https://github.com/sshuttle/sshuttle/pull/262
I've only tested on OP1 ARM / Asus C101PA but it look like most of the
Crostini work in on Intel, so I have no reason to think it's not
universal.
that sshuttle works under Crostini virtual machines
https://github.com/sshuttle/sshuttle/pull/262
I've only tested on OP1 ARM / Asus C101PA but it look like most of the
Crostini work in on Intel, so I have no reason to think it's not
universal.
Tony Godshall
Aug 24, 2018, 7:10:06 PM8/24/18
to Avery Pennarun, sshuttle
On Fri, Aug 24, 2018 at 3:10 PM Avery Pennarun <apen...@gmail.com> wrote:
>
> On Fri, Aug 24, 2018 at 5:41 PM, Tony Godshall <to...@of.net> wrote:
> > sshuttle works on crostini!
> >
> > I'm running Dev channel and I was able to install crostini
> > and its default stretch VM and run Terminal and did
> >
> > # apt update
> > # apt install sshuttle xfonts-scalable xterm xtightvncviewer
> >
> > and was able to fork off xterms and sshuttle into private
> > networks and ssh to servers with the local IP addresses
> > and VNC into workstations and just Get Work Done with just
> > this little thing that I can carry in a cargo vest and a WiFi
> > connection! Even ctrl-A and ctrl-W Do The Right Thing.
>
> Wow, that's not what I expected. I didn't realize crostini was
> full-on virtualization including the network layer. (I assume that's
> the case, rather than letting you just futz with the ChromeOS network
> layer directly, which would be a giant security problem.) But it's
> good news I guess!
Crouton is a chroot, so you have the chromeos kernel to do that,
>
> On Fri, Aug 24, 2018 at 5:41 PM, Tony Godshall <to...@of.net> wrote:
> > sshuttle works on crostini!
> >
> > I'm running Dev channel and I was able to install crostini
> > and its default stretch VM and run Terminal and did
> >
> > # apt update
> > # apt install sshuttle xfonts-scalable xterm xtightvncviewer
> >
> > and was able to fork off xterms and sshuttle into private
> > networks and ssh to servers with the local IP addresses
> > and VNC into workstations and just Get Work Done with just
> > this little thing that I can carry in a cargo vest and a WiFi
> > connection! Even ctrl-A and ctrl-W Do The Right Thing.
>
> Wow, that's not what I expected. I didn't realize crostini was
> full-on virtualization including the network layer. (I assume that's
> the case, rather than letting you just futz with the ChromeOS network
> layer directly, which would be a giant security problem.) But it's
> good news I guess!
and I had failure with that on an old chromebook but on the C101PA
it worked well enough (TTL warning, not implemented, see previous
thread), but Crostini is actual VMs. Documentation was mostly Intel-
centric, but it looks like it works on ARM too, and VM definitely has
its own kernel.
Chrome ctrl-alt-T shell uname -a says:
Linux localhost 4.4.148-14741-gc80506552d4b #1 SMP PREEMPT Wed Aug 22
05:00:20 PDT 2018 aarch64 ARMv8 Processor rev 4 (v8l) GNU/Linux
Crostini default Debian stretch says:
Linux penguin 4.14.63-06698-g8e70c938c971 #1 SMP PREEMPT Fri Aug 17
07:42:29 PDT 2018 aarch64 GNU/Linux
> > To do:
> > - learn how to back up virtual machines
>
> bup, obviously :)
is chromeos.
> > - figure out how to copy/paste between xterms with this
> > nasty-limited keyboard
>
> It's not alt-click in the traditional two-button-X11 fashion?
double-click wouldn't stay highlighted, but it turns out that drag-across
works for copy and three-finger click (on touchpad only) works for paste.
Alt-click doesn't work.
> Have fun
Fun, yes! Tesla road-trip! http://of.net/red3
T
Reply all
Reply to author
Forward
0 new messages