plugout.net

[firwareslut]

I wondered if it's possible to setup a Socks5 http proxy tunnel for web browsing? I have this set up on a remote server so i can use firefox and browse the web with a different IP. This would be handy for using my home connection when I am not at home.

Would be a less resourceful technique maybe than the PPTP vpn? And I never did successfully get that working with internet browsing.

[Jocko]

Hi fireslut,

Here the way:
I assume that :
- you have a DDNS for updating your wan IP
- you have opened the port of the ssh server (TCP protocol)
Please to note I do not advice to open the default SSH port 22 for safety rules but you can use for example the port 8080 on the SSH server. So use the SSH server menu to change the default port. (That means you will need to use the port 8080 even from a local access)
Use the port 8080 may be relevant to get a remote access when you are behind to a proxy server on the remote location. Indeed in this case it is usual the proxy admin opens only a few port (80; 443; and often port 8080). You should not be able to use the port 80 because the proxy admin usually forbids encrypted exchanges on this port. So you may use really the ports 443 or 8080. As it may be useful to keep the standard port 443 to get a secure access to the web interface, only the port 8080 can be really use with the SSH server in this configuration.
- you may use putty from your remote access.

So:
- create a sock5 proxy tunnel on the remote host:
* set the tunnel port on your putty session (e.g. 2050) and open the relevant putty session (remote host: your ddns; port:8080)

putty-tunnel.jpg

- set the proxy on each applies used on the remote host
for example with FF (advanced settings), set manually a proxy: (socks host: 'localhost'; port: '2050'; socks type: socks5)

That's all...
with these settings:
- you can load any local web-interfaces available on your LAN (fvdw-sl web-interface, ISP box gui or if they are running: transmission; mldonkey; btsync;...) as if you are at home.
- you can load any internet pages by using your local Internet access :-D

!

If you use this method from your workplace, please to be aware that this method allows you to override the safety rules established by your employer and opens a back door allowing viruses or other object (malware; spyware;...)to enter into your company Network if your anti-virus on your remote host fails to detect them So Be careful with your web browsing

[firwareslut]

Cheers man, that seems just what i want. Will give it a shot!

[firwareslut]

one question, on the vps i have i used dante-server...do you have any recommendation on a guide i can use to setup the socks 5?

[Jocko]

No I do not know dante server but I think you will find guidance here: http://wiki.kartbuilding.net/index.php/ ... cks_Server

[firwareslut]

I know how to setup and configure Dante but I don't know how to build a binary for the NS2 on my computer and apt-get isn't a thing there. That's the bit i need help with. Thanks.

[fvdw]

I will have a look if i can compile it for you, when configuring it gave this as output, is that suffcient for you ?

Code: Select all

                     Configure status:

Client:            Enabled
Server:            Enabled
Preloading:        Enabled
Libwrap:           Disabled, -lwrap not found
BSD Auth:          Disabled, usable bsd_auth.h not found
PAM:               Disabled, security/pam_appl.h missing
GSSAPI:            Not found/disabled
KRB5:              Not found/disabled
SASL:              Not found/disabled
UPNP:              Enabled
Compatability:     issetugid setproctitle strlcpy strvis

                     Modules:

redirect:          Not found
bandwidth:         Not found
ldap:              Not found


[fvdw]

attached dante-1.4.2 and a zip file with example conf files, I have no idea how to set up

Extract the archive in system root to install the binaries and libs

[firwareslut]

Thanks a lot. Much appreciated! I will give it a go today and let you know how it goes.