[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor running on mipsel



Tirsdag den 4. januar 2005 03:24 skrev Roger Dingledine:
> On Mon, Jan 03, 2005 at 02:37:43AM +0100, Niels Elgaard Larsen wrote:
> > Can I suggest transproxy too?
>
> Hi Niels,
>
> Could you write up a little tutorial on tor + transproxy for us,
> and post it maybe at http://wiki.noreply.org/wiki/TheOnionRouter ?
>
> We already have http://wiki.noreply.org/wiki/TheOnionRouter/SquidProxy
> which describes setting up an exit node + squid for caching. But the
> squid howto was written before we added the RedirectExit config option
> (man tor for details).
>
> It looks like you're thinking of using iptables+transproxy at the client
> side instead, to automatically capture and redirect port 80 requests?

Not just port 80, now I want all TCP ports (except that protocols like FTP 
will not work).

I have now compiled transocks instead. It is at:
http://www.agol.dk/elgaard/transocks (statically linked with dante).
I'll make a ipkg sometime. I also want to clean up the way I compiled the 
libsocks (dante) library.

Then I set /etc/socks.conf to something like

route {
       from: 0.0.0.0/0   to: 0.0.0.0/0   via: 127.0.0.1 port = 9050
       proxyprotocol: socks_v4
        method: none
        protocol: tcp
}

and use the IPtables rules from:
http://cvs.sourceforge.net/viewcvs.py/transocks/transocks/README?rev=1.2&view=auto
except that I skipped the "owner module".

Unfortunately I will not have access to my WRT the next month so I hope 
someone else will look at it.

But it actually works.

-- 
Niels Elgaard Larsen
elgaard@xxxxxxx

Attachment: pgpQ3OH1IVpig.pgp
Description: PGP signature