Saturday, April 08, 2006

SOCKS.


after more than twenty hours of real hard job, finally i've got it: yeah im chatting on ICQ still using the MAN(Metropolitan Area Network) which grants about 10Mb/s for both dload/upload. yeah it rocks now!
then, reporting well costs less efforts than do it over without reference(it takes to happens some broken or corrupted files or misedited my myself even), so i'll move on step by step as i can:
  1. Download install Dante Server from http://www.inet.no/dante/
  2. browse on site looking for the configuration file example provided by the developer's team(U spare a lot of troble, headache and time getting the short config), otherwise there's a full commented one in /etc/sockd.conf
  3. now u need to focus on the app layer that, through socks5 layer, is able to get services outside the MAN, that's, masking request coming from u(inside a wide lan) make possible of being seen transparency(without need to extra config by client side app) by the network
  4. Assuming u are going to run app compiled with socks5 support, otherwise u must 'socksify' the client(with a socks-client app included) to hijack the requests to the socks'es server listen port(server's bound port)
  5. run the sockd deameon and set up the target app with proxy socks5 set to ip bound to socks and port as well:when needed write down the external ip(the NAT ip) as in XChat u might do
  6. enjoy! i quote the sockd.conf, stored into /etc

internal: 127.0.0.1 port = 1080
external: 1.39.248.138
method: none
user.privileged: root
user.notprivileged: rah
logoutput: stderr

## client access rules

client pass {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect disconnect
}


## server operation access rules

#allow bind to ports greater than 1023
#pass {
# from: 0.0.0.0/0 to: 0.0.0.0/0 port gt 1023
# command: bind
# log: connect disconnect
#}

#allow outgoing connections (tcp and udp)
pass {
from: 0.0.0.0/0 to: 0.0.0.0/0
command: connect udpassociate
log: connect disconnect
}

#allow replies to bind, and incoming udp packets
#pass {
# from: 0.0.0.0/0 to: 0.0.0.0/0
# command: bindreply udpreply
# log: connect error
#}

#log the rest
#block {
# from: 0.0.0.0/0 to: 0.0.0.0/0
# log: connect error
#}

firefox proxy setup
XChat Firewall/Proxy setup
Posted by at

1 comment:

  1. Anonymous3:40 PM

    Hi there, I enjoy reading all of your article post.
    I like to write a little comment to support you.

    Feel free to surf to my web site - bypass hand pruners

    ReplyDelete

Subscribe to: Post Comments (Atom)