github-personal/firezone
1
0
Fork 0
mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-28 10:18:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
6b9231a21b1a85cf67400a7c19135683ecf1febc
firezone/rust/client-tunnel
History
Reactor Scram bab5a70eba refactor(client-tunnel): remove redundant main (#4478) 
`client-tunnel` is a library used by `linux-client` and `gui-client` and
doesn't need its own main.
2024-04-03 21:55:55 +00:00
..
src
refactor(client-tunnel): remove redundant main (#4478)
2024-04-03 21:55:55 +00:00
Cargo.toml
chore(rust): remove unused dependencies (#4475)
2024-04-03 14:11:02 +00:00
README.md
chore: add crate for privileged Linux tunnel process (#4229)
2024-03-21 14:06:55 +00:00

README.md

firezone-client-tunnel

A privileged tunnel process that can communicate with the Linux GUI Client (and eventually Windows)

Files

  • /etc/dev.firezone.client/token - The service account token, provided by the human administrator. Must be owned by root and have 600 permissions (r/w by owner, nobody else can read) If present, the tunnel will ignore any GUI Client and run as a headless Client. If absent, the tunnel will wait for commands from a GUI Client
  • /usr/bin/firezone-client-tunnel - The tunnel binary. This must run as root so it can modify the system's DNS settings. If DNS is not needed, it only needs CAP_NET_ADMIN.
  • /usr/lib/systemd/system/firezone-client-tunnel.service - A systemd service unit, installed by the deb package.
  • /var/lib/dev.firezone.client/config/firezone-id - The device ID, unique across an organization. The tunnel will generate this if it's not present.
Reference in New Issue View Git Blame Copy Permalink