Tirsdag den 4. januar 2005 03:24 skrev Roger Dingledine: > On Mon, Jan 03, 2005 at 02:37:43AM +0100, Niels Elgaard Larsen wrote: > > Can I suggest transproxy too? > > Hi Niels, > > Could you write up a little tutorial on tor + transproxy for us, > and post it maybe at http://wiki.noreply.org/wiki/TheOnionRouter ? > > We already have http://wiki.noreply.org/wiki/TheOnionRouter/SquidProxy > which describes setting up an exit node + squid for caching. But the > squid howto was written before we added the RedirectExit config option > (man tor for details). > > It looks like you're thinking of using iptables+transproxy at the client > side instead, to automatically capture and redirect port 80 requests? Not just port 80, now I want all TCP ports (except that protocols like FTP will not work). I have now compiled transocks instead. It is at: http://www.agol.dk/elgaard/transocks (statically linked with dante). I'll make a ipkg sometime. I also want to clean up the way I compiled the libsocks (dante) library. Then I set /etc/socks.conf to something like route { from: 0.0.0.0/0 to: 0.0.0.0/0 via: 127.0.0.1 port = 9050 proxyprotocol: socks_v4 method: none protocol: tcp } and use the IPtables rules from: http://cvs.sourceforge.net/viewcvs.py/transocks/transocks/README?rev=1.2&view=auto except that I skipped the "owner module". Unfortunately I will not have access to my WRT the next month so I hope someone else will look at it. But it actually works. -- Niels Elgaard Larsen elgaard@xxxxxxx
Attachment:
pgpQ3OH1IVpig.pgp
Description: PGP signature