[ login ]
Path: Root » FreeBSD » Proxy Server

Table of contents

Proxy Server

Introduction

A proxy server is a middel man application that functions on a application layer. It acts as a server to the client and as a client to the server. Why use proxy server?

Socks Server

A socks server is a lite proxy server. A client request a connection and, once allowed, the socks server just passes data between the client and server. 

cd /usr/ports/net/dante
make config && make && make install

My configuration accepts request comming from 192.168.0.0/16 while skipping any autorizations options and acting as user socks allowing specilized firewall rules. We will also create a user that we later on need. 

cd /usr/local/etc/
fetch http://alex.kruijff.org/files/FreeBSD/sockd.conf
echo 'sockd:1080:::::Dante Socks Server:/nonexistent:/sbin/nologin' | adduser -w no -S -f -

If you've followed my P2P firewall article then add the following lines to your firewall to bypass the blocklist. If you've followd my firewall configuration article then you can add these two lines to /etc/firewalll.whitelist and either reboot or load them by executing 'ipfw /etc/firewall.whitelist'. 

# Add to bypass the blocklist section
02200 skipto 2500 ip from me to any uid 1080
02200 skipto 2500 ip from any to me uid 1080

You might need to update your /etc/firewall.conf. The version before april 2006 is out of date and you need to update. 

cd /etc/
fetch http://alex.kruijff.org/files/FreeBSD/firewall.conf

Dante Socks Client

Danta also implements a socks client. I provide my /usr/local/etc/socks.conf for your convenience. 

route {
from: 0.0.0.0/0   to: 0.0.0.0/0   via: 192.168.31.2 port = 1080
proxyprotocol: socks_v4 socks_v5 http_v1.0
}