rejetto forum

stunnel-like proxy?

rejetto · 6 · 3021
« previous next »
Pages: 1

0 Members and 1 Guest are viewing this topic.

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13510
    • View Profile
on: September 05, 2008, 01:11:39 PM
Some of you may have not noticed that, but last betas introduced an interesting thing: if a proxy redirects the requests, HFS will show the correct ip instead of the proxy one.

This is what most stunnel users would need: seeing the client ip.
The point is that stunnel is not an http proxy, but works at a lower level, redirecting any tcp (AFAIK, i don't use it).
If you know/find a web proxy software that will eventually do the same job, but a higher level (web proxy indeed).

ebola

  • Guest
Reply #1 on: September 05, 2008, 07:19:12 PM
Hi

What about polipo? I use it to torify HTTP over the Tor-Network.
There are also Privoxy and Proxomitron (only HTTP).

Dunno if it that you are looking after


cheers

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13510
    • View Profile
Reply #2 on: September 06, 2008, 10:27:25 AM
will someone see if these programs do the job?

hfs <--http--> proxy <--httpS--> browser

Offline Mars

  • Operator
  • Tireless poster
  • *****
    • Posts: 2059
    • View Profile
Reply #3 on: September 07, 2008, 08:20:00 PM
rejetto
can you add an debug option to see in the log (file) all ips address detected in the connect trame ip? and then we see if stunnel replace all informations about them.

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13510
    • View Profile
Reply #4 on: September 08, 2008, 12:30:22 PM
i didn't understand what you asking mars.
what are the addresses that are not logged at the moment in the log?

ebola

  • Guest
Reply #5 on: September 08, 2008, 01:26:08 PM
Quote
3.12 Tunnelling connections

Polipo is an HTTP proxy; it proxies HTTP traffic, and clients using other protocols should either establish a direct connection to the server or use an ad hoc proxy.

In many circumstances, however, it is not possible to establish a direct connection to the server, for example due to mis-configured firewalls or when trying to access the IPv4 Internet from an IPv6-only host. In such situations, it is possible to have Polipo behave as a tunnelling proxy — a proxy that merely forwards traffic between the client and the server without understanding it. Polipo enters tunnel mode when the client requests it by using the HTTP ‘CONNECT’ method.

Most web browsers will use this technique for HTTP over SSL if configured to use Polipo as their `https proxy'. More generally, the author has successfully used it to cross mis-configured firewalls using OpenSSH, rsync, Jabber, IRC, etc.

The variable tunnelAllowedPorts specifies the set of ports that Polipo will accept to tunnel traffic to. It defaults to allowing ssh, HTTP, https, rsync, IMAP, imaps, POP, pops, Jabber, CVS and Git traffic.


w*w.pps.jussieu.fr/~jch/software/polipo/polipo.html#index-HTTP_002fSSL-180

Pages: 1