BigBearVPN (Linux) Tutorial

• Download the Package
• Install to /opt/bigbear
• Authorize TUN
• Log In
• Select a Node
• Connect VPN
• Stop VPN
• Web UI
• Common Commands
• FAQs
  • Q1: It says TUN mode requires root or CAP_NET_ADMIN?
  • Q2: What should I do if a node does not work?
  • Q3: How do I start or stop the VPN?
  • Q4: How do I view logs?

Download the Package

Download the package for your Linux system architecture:

• Download amd64 version
• Download arm64 version
• Download OpenWrt amd64 version
• Download OpenWrt arm64 version

Use the bigbear-linux-* packages for regular Linux systems, and the bigbear-openwrt-* packages for OpenWrt devices. Most Intel / AMD computers should use amd64. ARM servers, Raspberry Pi devices, or ARM64 routers should use arm64.

Install to /opt/bigbear

Using the amd64 version as an example, open a terminal in the package download directory and run:

sudo mkdir -p /opt/bigbear
sudo tar -zxvf bigbear-linux-amd64.tar.gz -C /opt/bigbear
cd /opt/bigbear

If you downloaded the arm64 version, replace the package file name with bigbear-linux-arm64.tar.gz.

Authorize TUN

BigBearVPN for Linux uses TUN mode. Authorize it before first use:

sudo ./bigbear install-cap --apply

Log In

./bigbear login --email <email>

Enter your member account password when prompted.

Select a Node

List available nodes:

./bigbear nodes

Select a node:

./bigbear select <node-id>

Example: select node ID 1:

./bigbear select 1

Connect VPN

./bigbear start

After connecting, check your current external IP:

curl ifconfig.me

If the displayed IP has changed, the VPN is connected successfully.

Stop VPN

./bigbear stop

Web UI

Ubuntu desktop users can start the local Web UI.

Start the Web UI in the foreground:

./bigbear web

Then open this address in a local browser:

http://127.0.0.1:32080

The Web UI supports login, loading and selecting nodes, switching Rule / Global mode, starting/stopping VPN, checking status, and viewing recent logs.

To run the Web UI in the background:

./bigbear web start
./bigbear web status
./bigbear web stop
./bigbear web restart

If the port is already in use, choose another local port:

./bigbear web start --listen 127.0.0.1:32081

By default, the Web UI only listens on 127.0.0.1:32080 and only allows local access.

To access it from another device on the same LAN, explicitly enable LAN mode:

./bigbear web start --lan --listen 0.0.0.0:32080

Then open this address from another device on the same LAN:

http://<server-lan-ip>:32080

If the server has a firewall enabled, allow port 32080. LAN mode exposes the VPN-controlling Web UI to the local network, so only use it on a trusted LAN. ./bigbear web start and ./bigbear web stop only control the Web UI process. The VPN is still controlled from the page buttons or with ./bigbear start / ./bigbear stop.

Common Commands

Show help:

./bigbear help

Check version:

./bigbear version

Check status:

./bigbear status

Rule mode:

./bigbear route-mode rule

Global mode:

./bigbear route-mode global

Log out:

./bigbear logout

FAQs

Q1: It says TUN mode requires root or CAP_NET_ADMIN?

Run the authorization command again:

sudo ./bigbear install-cap --apply

Q2: What should I do if a node does not work?

Stop the VPN and select another node:

./bigbear stop
./bigbear nodes
./bigbear select <node-id>
./bigbear start

Q3: How do I start or stop the VPN?

Start VPN:

./bigbear start

Stop VPN:

./bigbear stop

Q4: How do I view logs?

VPN log path:

~/.local/state/bigbear/sing-box.log

Web UI background log path:

~/.local/state/bigbear/web.log