search

Mikescops / pixelswap

📖 PixelSwap Blog
https://pixelswap.fr/
0 stars 0 forks source link

Allowing multicast protocols on Cloudflare Warp | Pixelswap #6

Closed utterances-bot closed 10 months ago

utterances-bot commented 1 year ago

Allowing multicast protocols on Cloudflare Warp | Pixelswap

I use Cloudflare Warp (and the warp-cli on Linux) as my main VPN to access a bunch of resources. I usually never turn it off but I recently star…

http://pixelswap.fr/entry/allowing-multicast-protocols-on-cloudflare-warp

lanave commented 1 year ago

Hi, thanks for this article. Is split tunneling to be enabled as exlude or include? Thanks

Mikescops commented 1 year ago

@lanave from a security point of view, everything goes through the VPN and you exclude some IPs and domains

lanave commented 1 year ago

@lanave from a security point of view, everything goes through the VPN and you exclude some IPs and domains

I explain better what I want to achieve. While connected to Cloudflare Warp tunnel to my home, I want to catch mDNS traffic on my client device. In other words I’m searching for a method to reflect mDNS traffic to the other end of the tunnel let’s say. I configured the tunnel to have my entire home CIDR and I can reach all my devices just fine. But mDNS traffic is not routed through. Do you know how I can achieve this? Thanks a lot!

Note that I enabled the tunnel to work in Proxy mode for both TCP and UDP and it is running with QUIC mode turned on. Local domain fallback works too.

Mikescops commented 1 year ago

But mDNS traffic is not routed through.

Ah I see, the way that mDNS work is that the devices will send a packet when announcing who they are to the multicast address, i believe that if you include the mDNS multicast address (mentioned in the blogpost) in your tunnel, your device with warp will be able to subscribe to the multicast address. I don't have an environment to try it, so let me know how it goes.

pl4nty commented 1 year ago

I've had no luck with this, at least with a tunnel as the server. I can get the client to query Cloudflare's resolver by playing with includes/excludes, but that won't actually resolve. Then I tried routing mDNS/SSDP IPs to the tunnel but received no activity logs. I'm not sure the outbound mDNS packets from the device are routed over the tunnel (warp-to-warp as the server might work)