I am trying to set up a openvpn client with my provider in a LXC container but it keeps failing
So it seems that unprivileged containers cannot set up the /tun/tap devices. My options at this point are:
Can someone please comment on the above 3 options as to which would be optimal -- mostly with security in mind? Are there any other options available?
Code:
2021-08-03 19:51:19 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such file or directory (errno=2)
2021-08-03 19:51:19 Exiting due to fatal errorSo it seems that unprivileged containers cannot set up the /tun/tap devices. My options at this point are:
- Use a privileged container -- since I use Archlinux in most of my containers, using a privileged container is a problem due to : https://forum.proxmox.com/threads/psa-do-not-upgrade-to-systemd-247.80936/#post-357555
- Use a VM -- causes resource wastage especially for a service that's only used only for some time and sits idle most of the time
- This reddit post : https://www.reddit.com/r/Proxmox/comments/giqbzx/openvpn_client_lxc_tun_error/ --- describes changing the container's config file but I am unsure of any issues that it might cause, especially security wise.
Can someone please comment on the above 3 options as to which would be optimal -- mostly with security in mind? Are there any other options available?
