I roto i tenei tuhinga e hiahia ana ahau ki te whakaatu i nga waahi o te takawaenga marama, e taea ai e koe te huri i te katoa, i tetahi waahanga ranei o te hokohoko ma roto i nga kaitoro takawaenga o waho kaore e kitea e nga kaihoko.
I te wa i timata ahau ki te whakaoti i tenei raruraru, i anga ahau ki te meka ko tana whakatinanatanga he raruraru nui - ko te kawa HTTPS. I nga ra o mua, kaore he raruraru motuhake me te takawaenga HTTP marama, engari me te takawaenga HTTPS, ka ripoatahia e nga kaitirotiro te pokanoa ki te kawa, ka mutu te koa.
I roto i nga tohutohu noa mo te tūmau takawaenga Squid, e kii ana ratou ki te whakaputa i to ake tiwhikete me te whakauru ki runga i nga kaihoko, he tino kore noa, he koretake me te ahua o te whakaeke MITM. Kei te mohio ahau ka taea e Squid te mahi penei, engari ko tenei tuhinga e pa ana ki tetahi tikanga whakamatau me te mahi ma te whakamahi i te 3proxy mai i te 3APA3A whai mana.
I muri mai, ka tirohia e maatau te mahi o te hanga 3proxy mai i te puna, tona whirihoranga, ki tonu me te whiriwhiri i te takawaenga ma te whakamahi i te NAT, te tohatoha hongere ki te maha o nga kaiwhakarato takawaenga o waho, tae atu ki te whakamahi i te pouara me nga huarahi tuuturu. Ka whakamahia e matou a Debian 9 x64 hei OS. Tīmatahia!
Te whakauru i te 3proxy me te whakahaere i tetahi tūmau takawaenga auau
1. Tāuta ifconfig (mai i te kete taputapu-kupenga)
apt-get install net-tools
2. Tāutahia te Kaiwhakahaere o waenganui po
apt-get install mc
3. E rua nga atanga inaianei:
enp0s3 - waho, titiro ki te Ipurangi
enp0s8 - roto, me titiro ki te whatunga rohe
I etahi atu tohatoha a Debian ko nga hononga e kiia ana ko te eth0 me te eth1.
ifconfig -a
atangaenp0s3: haki=4163 mtu 1500
inet 192.168.23.11 netmask 255.255.255.0 haapurororaa 192.168.23.255
inet6 fe80::a00:27ff:fec2:bae4 prefixlen 64 scopeid 0x20 ether 08:00:27:c2:ba:e4 txqueuelen 1000 (Ethernet)
Paita RX 6412 paita 8676619 (8.2 MiB)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 1726 paita 289128 (282.3 KiB)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
enp0s8: haki=4098 mtu 1500
etera 08:00:27:79:a7:e3 txqueuelen 1000 (Ethernet)
Ngā pākete RX 0 paita 0 (0.0 B)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 0 paita 0 (0.0 B)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
titiro: haki=73 mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10 loop txqueuelen 1 (Loopback)
Ngā pākete RX 0 paita 0 (0.0 B)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 0 paita 0 (0.0 B)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
Ko te atanga enp0s8 kaore i te whakamahia i tenei wa, ka taea e matou ina hiahia matou ki te whakamahi Takawaenga NAT, NAT ranei whirihoranga. Ko reira e tika ana ki te tautapa he IP pateko.
4. Kia timata tatou ki te whakauru i te 3proxy
4.1 Te whakauru i nga kohinga taketake mo te whakahiato 3proxy mai i nga puna
root@debian9:~# apt-get install build-essential libevent-dev libssl-dev -y
4.2. Me hanga he kōpaki hei tango i te puranga me nga puna
root@debian9:~# mkdir -p /opt/proxy
4.3. Me haere ki tenei kōpaki
root@debian9:~# cd /opt/proxy
4.4. Inaianei me tango e tatou te kete 3proxy hou. I te wa e tuhi ana, ko te putanga pumau hou ko 0.8.12 (18/04/2018) Tangohia mai i te paetukutuku mana 3proxy.
root@debian9:/opt/proxy# wget https://github.com/z3APA3A/3proxy/archive/0.8.12.tar.gz
4.5. Kia wetewete tatou i te puranga kua tikiakehia
root@debian9:/opt/proxy# tar zxvf 0.8.12.tar.gz
4.6. Haere ki te whaiaronga kua wetewetehia ki te hanga i te kaupapa
root@debian9:/opt/proxy# cd 3proxy-0.8.12
4.7. I muri mai, me taapiri he raina ki te konae pane kia kore ai te ingoa o to maatau (he tino mahi, kua tirohia nga mea katoa, kua huna nga IP kiritaki)
root@debian9:/opt/proxy/3proxy-0.8.12# nano +29 src/proxy.h
Tāpirihia he raina
#define ANONYMOUS 1
Pēhia Ctrl+x ka tomo ki te tiaki i ngā huringa.
4.8. Kia timata tatou ki te whakaemi i te kaupapa
root@debian9:/opt/proxy/3proxy-0.8.12# make -f Makefile.Linux
Makeloghanga[2]: Ka mahue te whaiaronga '/opt/proxy/3proxy-0.8.12/src/plugins/TransparentPlugin'
hanga[1]: Ka mahue i te whaiaronga '/opt/proxy/3proxy-0.8.12/src'
Kaore he hapa, me haere tonu.
4.9. Tāutahia te papatono ki te punaha
root@debian9:/opt/proxy/3proxy-0.8.12# make -f Makefile.Linux install
4.10. Haere ki te whaiaronga pakiaka ka tirohia te wahi i whakauruhia ai te papatono
root@debian9:/opt/proxy/3proxy-0.8.12# cd ~/
root@debian9:~# whereis 3proxy
3proxy: /usr/local/bin/3proxy /usr/local/etc/3proxy
4.11. Me hanga he kōpaki mo nga konae whirihoranga me nga raarangi ki te raarangi kaainga o te kaiwhakamahi
root@debian9:~# mkdir -p /home/joke/proxy/logs
4.12. Haere ki te whaiaronga kei hea te whirihora
root@debian9:~# cd /home/joke/proxy/
4.13. Waihangahia he konae kore ka kape i te whirihora ki reira
root@debian9:/home/joke/proxy# cat > 3proxy.conf
3proxy.confdaemon
pidfile /home/joke/proxy/3proxy.pid
nserver 8.8.8.8
nscache 65536
Kaiwhakamātau Kaiwhakamahi:CL:1234
taima 1 5 30 60 180 1800 16 60
takiuru /home/joke/proxy/logs/3proxy.log D
logformat "- +_L%t.%. %N.%p %E %U %C:%c %R:%r %O %I %h %T"
takahuri 3
mana kaha
Nini
tukua te kaiwhakaatu
tōkena -p3128
takawaenga -p8080
Hei tiaki, pehia Ctrl + Z
4.14. Me hanga he kōnae pid kia kore he hapa i te wa o te whakaoho.
root@debian9:/home/joke/proxy# cat > 3proxy.pid
Hei tiaki, pehia Ctrl + Z
4.15. Kia whakarewahia te tūmau takawaenga!
root@debian9:/home/joke/proxy# 3proxy /home/joke/proxy/3proxy.conf
4.16. Kia kite mena kei te whakarongo te tūmau i runga i nga tauranga
root@debian9:~/home/joke/proxy# netstat -nlp
rangitaki netstatHononga Ipurangi hohe (nga tūmau anake)
Proto Recv-Q Tukua-Q Wāhitau Paetata Wāhitau Tawahi State PID/ingoa Papatono
tcp 0 0 0.0.0.0:8080 0.0.0.0:* WHAKARONGO 504/3proxy
tcp 0 0 0.0.0.0:22 0.0.0.0:* WHAKARONGO 338/sshd
tcp 0 0 0.0.0.0:3128 0.0.0.0:* WHAKARONGO 504/3proxy
tcp6 0 0 :::22 :::* WHAKARONGO 338/sshd
udp 0 0 0.0.0.0:68 0.0.0.0:* 352/dhclient
I tuhia i roto i te whirihora, ka whakarongo to maatau takawaenga paetukutuku ki te tauranga 8080, ka whakarongo te takawaenga Socks5 ki te tauranga 3128.
4.17. Hei timata aunoa i te ratonga takawaenga i muri i te whakaara ano, me taapiri atu ki te cron.
root@debian9:/home/joke/proxy# crontab -e
Tāpirihia he raina
@reboot /usr/local/bin/3proxy /home/joke/proxy/3proxy.conf
Ka pehia e matou te Whakauru, na te mea ka kite cron te mutunga o te ahua raina, ka tiakina te konae.
Me whai karere mo te whakauru i te crontab hou.
crontab: tāuta crontab hou
4.18. Me whakaara ano i te punaha ka ngana ki te hono atu ma te kaitirotiro ki te takawaenga. Hei tirotiro, ka whakamahia e matou te tirotiro Firefox (mo te takawaenga paetukutuku) me te taapiri FoxyProxy mo to socks5 me te motuhēhēnga.
root@debian9:/home/joke/proxy# reboot
4.19. I muri i te tirotiro i te mahi o te takawaenga i muri i te whakaara ano, ka taea e koe te tiro i nga raarangi. Ka oti te tatūnga tūmau takawaenga.
3 rangitaki takawaenga1542573996.018 PROXY.8080 00000 tester 192.168.23.10:50915 217.12.15.54:443 1193 6939 0 CONNECT_ads.yahoo.com/443_HTTP
1542574289.634 SOCK5.3128 00000 tester 192.168.23.10:51193 54.192.13.69:443 0 0 0 CONNECT_normandy.cdn.mozilla.net:443
Te whakarite me te whakahaere i te whirihoranga NAT Takawaenga Puata
I roto i tenei whirihoranga, ko nga taputapu katoa i runga i te whatunga o roto ka marama te mahi i runga i te Ipurangi ma te tūmau takawaenga mamao. Ko nga hononga TCP katoa ka tukuna ki tetahi, neke atu ranei (ka tino whakanuia te whanui o te hongere, tauira whirihoranga Nama 2!) nga tūmau takawaenga. Ka whakamahia e te ratonga DNS nga kaha 3proxy (dnspr). Ko te UDP e kore e "haere" ki waho, na te mea kaore ano matou i te whakamahi i te huarahi whakamua (kua monohia ma te taunoa i te kernel Linux).
1. Kua tae ki te wa kia taea ai te atanga enp0s8
root@debian9:~# nano /etc/network/interfaces
/etc/network/atanga kōnae# Ko tenei konae e whakaatu ana i nga hononga whatunga e waatea ana i to punaha
# me pehea te whakahohe i a raatau. Mo etahi atu korero, tirohia nga atanga(5).
puna /etc/network/interfaces.d/*
# Ko te atanga whatunga loopback
motokā reira
iface lo inet koropiko
# Ko te atanga whatunga tuatahi
tukua-hotplug enp0s3
iface enp0s3 inet dhcp
# Ko te atanga whatunga tuarua
tukua-hotplug enp0s8
iface enp0s8 inet pateko
wāhitau 192.168.201.254
netmask 255.255.255.0
I konei i tohua e matou te atanga enp0s8 he wahitau pateko 192.168.201.254 me te kanohi kanohi 255.255.255.0
Tiakina te whirihora Ctrl+X ka whakaara ano
root@debian9:~# reboot
2. Te tirotiro i nga atanga
root@debian9:~# ifconfig
rangitaki ifconfigenp0s3: haki=4163 mtu 1500
inet 192.168.23.11 netmask 255.255.255.0 haapurororaa 192.168.23.255
inet6 fe80::a00:27ff:fec2:bae4 prefixlen 64 scopeid 0x20 ether 08:00:27:c2:ba:e4 txqueuelen 1000 (Ethernet)
Ngā pākete RX 61 paita 7873 (7.6 KiB)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 65 paita 10917 (10.6 KiB)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
enp0s8: haki=4163 mtu 1500
inet 192.168.201.254 netmask 255.255.255.0 haapurororaa 192.168.201.255
inet6 fe80::a00:27ff:fe79:a7e3 prefixlen 64 scopeid 0x20 ether 08:00:27:79:a7:e3 txqueuelen 1000 (Ethernet)
Ngā pākete RX 0 paita 0 (0.0 B)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 8 paita 648 (648.0 B)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
titiro: haki=73 mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10 loop txqueuelen 1 (Loopback)
Ngā pākete RX 0 paita 0 (0.0 B)
Ko nga hapa RX 0 i heke 0 i runga ake i te 0 te anga 0
Ngā pākete TX 0 paita 0 (0.0 B)
Ko nga hapa TX 0 i heke 0 i runga ake i te 0 te kawe kawe 0 i nga tukinga 0
3. I pai nga mea katoa, inaianei me whirihora e koe te 3proxy mo te takawaenga marama.
root@debian9:~# cd /home/joke/proxy/
root@debian9:/home/joke/proxy# cat > 3proxytransp.conf
Tauira whirihoranga o te tūmau takawaenga mārama Nama 1daemon
pidfile /home/joke/proxy/3proxy.pid
nserver 8.8.8.8
nscache 65536
taima 1 5 30 60 180 1800 16 60
takiuru /home/joke/proxy/logs/3proxy.log D
logformat "- +_L%t.%. %N.%p %E %U %C:%c %R:%r %O %I %h %T"
takahuri 3
Nini
mana motuhake
dnspr
tukua *
matua 1000 tokena5 IP_ADDRESS OF EXTERNAL_PROXY 3128 kaiwhakaatu 1234
mono /opt/proxy/3proxy-0.8.12/src/TransparentPlugin.ld.so transparent_plugin
tcppm -i0.0.0.0 888 127.0.0.1 11111
4. Inaianei ka whakarewahia e matou te 3proxy me te whirihora hou
root@debian9:/home/joke/proxy# /usr/local/bin/3proxy /home/joke/proxy/3proxytransp.conf
5. Taapiri ano ki te crontab
root@debian9:/home/joke/proxy# crontab -e
@reboot /usr/local/bin/3proxy /home/joke/proxy/3proxytransp.conf
6. Kia kite tatou he aha ta tatou takawaenga e whakarongo ana inaianei
root@debian9:~# netstat -nlp
rangitaki netstatHononga Ipurangi hohe (nga tūmau anake)
Proto Recv-Q Tukua-Q Wāhitau Paetata Wāhitau Tawahi State PID/ingoa Papatono
tcp 0 0 0.0.0.0:22 0.0.0.0:* WHAKARONGO 349/sshd
tcp 0 0 0.0.0.0:888 0.0.0.0:* WHAKARONGO 354/3proxy
tcp6 0 0 :::22 :::* WHAKARONGO 349/sshd
udp 0 0 0.0.0.0:53 0.0.0.0:* 354/3 takawaenga
udp 0 0 0.0.0.0:68 0.0.0.0:* 367/dhclient
7. Inaianei kua reri te takawaenga ki te whakaae ki nga hononga TCP i runga i te tauranga 888, DNS i te tauranga 53, kia taea ai te tuku atu ki te takawaenga socks5 mamao me te DNS Google 8.8.8.8. Ko ta matou mahi he whirihora netfilter (iptables) me nga ture DHCP mo te tuku wahitau.
8. Tāutahia te mōkihi iptables-persistent me dhcpd
root@debian9:~# apt-get install iptables-persistent isc-dhcp-server
9. Whakatikaina te kōnae whakaoho dhcpd
root@debian9:~# nano /etc/dhcp/dhcpd.conf
dhcpd.conf# dhcpd.conf
#
# Tauira konae whirihoranga mo ISC dhcpd
#
# whakamaaramatanga whiringa noa ki nga whatunga tautoko katoa…
ingoa rohe kōwhiringa "example.org";
kōwhiringa rohe-ingoa-tūmau ns1.example.org, ns2.example.org;
wa-riihi-taima 600;
teitei-riihi-wa 7200;
ddns-update-style kore;
# Mena ko tenei tūmau DHCP te tūmau DHCP mana mo te rohe
# whatunga, ko te tohutohu whaimana kia kore e korero.
mana;
# He whirihoranga paku rereke mo te kupengaroto o roto.
irirangi 192.168.201.0 netmask 255.255.255.0 {
awhe 192.168.201.10 192.168.201.250;
kōwhiringa rohe-ingoa-tūmau 192.168.201.254;
pouara whiringa 192.168.201.254;
kōwhiringa haapurororaa-wahitau 192.168.201.255;
wa-riihi-taima 600;
teitei-riihi-wa 7200;
}
11. Whakahouhia ka tirohia te ratonga i runga i te tauranga 67
root@debian9:~# reboot
root@debian9:~# netstat -nlp
rangitaki netstatHononga Ipurangi hohe (nga tūmau anake)
Proto Recv-Q Tukua-Q Wāhitau Paetata Wāhitau Tawahi State PID/ingoa Papatono
tcp 0 0 0.0.0.0:22 0.0.0.0:* WHAKARONGO 389/sshd
tcp 0 0 0.0.0.0:888 0.0.0.0:* WHAKARONGO 310/3proxy
tcp6 0 0 :::22 :::* WHAKARONGO 389/sshd
udp 0 0 0.0.0.0:20364 0.0.0.0:* 393/dhcpd
udp 0 0 0.0.0.0:53 0.0.0.0:* 310/3 takawaenga
udp 0 0 0.0.0.0:67 0.0.0.0:* 393/dhcpd
udp 0 0 0.0.0.0:68 0.0.0.0:* 405/dhclient
udp6 0 0 :::31728 :::* 393/dhcpd
raw 0 0 0.0.0.0:1 0.0.0.0:* 393/dhcpd
12. Ko nga mea e toe ana ko te whakahoki ano i nga tono tcp katoa ki te tauranga 888 me te tiaki i te ture i roto i nga iptables
root@debian9:~# iptables -t nat -A PREROUTING -s 192.168.201.0/24 -p tcp -j REDIRECT --to-ports 888
root@debian9:~# iptables-save > /etc/iptables/rules.v4
13. Hei whakawhänui i te hongere hongere, ka taea e koe te whakamahi i te maha o nga kaiwhakarato takawaenga i te wa kotahi. Me 1000 te tapeke. Kua whakaritea nga hononga hou me te 0.2, 0.2, 0.2, 0.2, 0,1, 0,1 ki nga tūmau takawaenga kua tohua.
Kia mahara: mena he takawaenga tukutuku ta tatou, hei utu mo te socks5 me tuhi hono, mena to socks4, katahi ano to socks4 (Socks4 KORE E TAUTOKO I TE LOGIN/KUPU KUPU WHAKAMAHI!)
Tauira whirihoranga o te tūmau takawaenga mārama Nama 2daemon
pidfile /home/joke/proxy/3proxy.pid
nserver 8.8.8.8
nscache 65536
maxconn 500
taima 1 5 30 60 180 1800 16 60
takiuru /home/joke/proxy/logs/3proxy.log D
logformat "- +_L%t.%. %N.%p %E %U %C:%c %R:%r %O %I %h %T"
takahuri 3
Nini
mana motuhake
dnspr
tukua *
matua 200 tokena5 IP_ADDRESS_EXTERNAL_PROXY#1 3128 kaiwhakaatu 1234
matua 200 tokena5 IP_ADDRESS_EXTERNAL_PROXY#2 3128 kaiwhakaatu 1234
matua 200 tokena5 IP_ADDRESS_EXTERNAL_PROXY#3 3128 kaiwhakaatu 1234
matua 200 tokena5 IP_ADDRESS_EXTERNAL_PROXY#4 3128 kaiwhakaatu 1234
matua 100 tokena5 IP_ADDRESS_EXTERNAL_PROXY#5 3128 kaiwhakaatu 1234
matua 100 tokena5 IP_ADDRESS_EXTERNAL_PROXY#6 3128 kaiwhakaatu 1234
mono /opt/proxy/3proxy-0.8.12/src/TransparentPlugin.ld.so transparent_plugin
tcppm -i0.0.0.0 888 127.0.0.1 11111
Te whakarite me te whakahaere i te NAT + Transparent Takawaenga whirihoranga
I roto i tenei whirihoranga, ka whakamahia e matou te tikanga NAT o mua me te takawaenga maataki, tino marama ranei o nga wahitau takitahi me nga kupengaroto. Ka mahi tahi nga kaiwhakamahi whatunga o roto me etahi ratonga/rotoroto me te kore e mohio kei te mahi ratou ma te takawaenga. Ka pai nga hononga https katoa, karekau he tiwhikete me whakaputa/whakakapi.
Tuatahi, me whakatau ko wai nga kupengaroto/ratonga e hiahia ana tatou ki te takawaenga. Me whakaaro kei te noho nga takawaenga o waho ki te waahi e mahi ana tetahi ratonga penei i te pandora.com. Inaianei kei te noho tonu ki te whakatau i ona kupenga-roto/nga wahitau.
1. Ping
root@debian9:~# ping pandora.com
PING pandora.com (208.85.40.20) 56(84) paita raraunga.
2. Patohia te BGP 208.85.40.20 ki a Google
Me haere tatou ki te pae
Ka kitea ko te kupengaroto e rapu ana ahau ko AS40428 Pandora Media, Inc
Whakatuwherahia nga tohumua v4
Anei nga kupengaroto e hiahiatia ana!
199.116.161.0/24
199.116.162.0/24
199.116.164.0/23
199.116.164.0/24
199.116.165.0/24
208.85.40.0/24
208.85.41.0/24
208.85.42.0/23
208.85.42.0/24
208.85.43.0/24
208.85.44.0/24
208.85.46.0/23
208.85.46.0/24
208.85.47.0/24
3. Hei whakaiti i te maha o nga kupenga-roto, me mahi koe i te whakahiato. Haere ki te pae ka kape i ta matou rarangi ingoa ki reira. Ko te mutunga - 6 kupenga-roto, kaua ki te 14.
199.116.161.0/24
199.116.162.0/24
199.116.164.0/23
208.85.40.0/22
208.85.44.0/24
208.85.46.0/23
4. Maamaa nga ture iptables
root@debian9:~# iptables -F
root@debian9:~# iptables -X
root@debian9:~# iptables -t nat -F
root@debian9:~# iptables -t nat -X
Whakahohehia te huarahi whakamua me te NAT
root@debian9:~# echo 1 > /proc/sys/net/ipv4/ip_forward
root@debian9:~# iptables -A FORWARD -i enp0s3 -o enp0s8 -j ACCEPT
root@debian9:~# iptables -A FORWARD -i enp0s8 -o enp0s3 -j ACCEPT
root@debian9:~# iptables -t nat -A POSTROUTING -o enp0s3 -s 192.168.201.0/24 -j MASQUERADE
Hei whakarite kia whakahoe tonu te whakamua i muri i te whakaara ano, me huri te konae
root@debian9:~# nano /etc/sysctl.conf
Na ka whakakorehia te raina
net.ipv4.ip_forward = 1
Ctrl+X hei tiaki i te kōnae
5. Ka takai matou i nga ipurangiroto pandora.com ki te takawaenga
root@debian9:~# iptables -t nat -A PREROUTING -s 192.168.201.0/24 -d 199.116.161.0/24,199.116.162.0/24,199.116.164.0/23,208.85.40.0/22,208.85.44.0/24,208.85.46.0/23 -p tcp -j REDIRECT --to-ports 888
6. Kia mau ki nga tikanga
root@debian9:~# iptables-save > /etc/iptables/rules.v4
Te whakatu me te whakahaere i te Takawaenga Puata ma te whirihoranga pouara
I roto i tenei whirihoranga, ka taea e te tūmau takawaenga marama he PC motuhake, he miihini mariko ranei kei muri i te pouara kaainga/rangatōpū. He nui noa ki te rehita i nga huarahi tuuturu i runga i te pouara, i nga taputapu ranei ka whakamahia e te ipurangiroto katoa he takawaenga me te kore e hiahia ki etahi atu taapiri.
NUI! E tika ana kia whiwhi to tatou kuaha he IP pateko mai i te pouara, kua whirihorahia ranei kia noho tonu.
1. Whirihorahia he wahitau kuaha pateko (enp0s3 adapter)
root@debian9:~# nano /etc/network/interfaces
/etc/network/atanga kōnae# Ko tenei konae e whakaatu ana i nga hononga whatunga e waatea ana i to punaha
# me pehea te whakahohe i a raatau. Mo etahi atu korero, tirohia nga atanga(5).
puna /etc/network/interfaces.d/*
# Ko te atanga whatunga loopback
motokā reira
iface lo inet koropiko
# Ko te atanga whatunga tuatahi
tukua-hotplug enp0s3
iface enp0s3 inet pateko
wāhitau 192.168.23.2
netmask 255.255.255.0
puka 192.168.23.254
# Ko te atanga whatunga tuarua
tukua-hotplug enp0s8
iface enp0s8 inet pateko
wāhitau 192.168.201.254
netmask 255.255.255.0
2. Whakaaetia nga taputapu mai i te kupengaroto 192.168.23.0/24 ki te whakamahi takawaenga
root@debian9:~# iptables -t nat -A PREROUTING -s 192.168.23.0/24 -d 199.116.161.0/24,199.116.162.0/24,199.116.164.0/23,208.85.40.0/22,208.85.44.0/24,208.85.46.0/23 -p tcp -j REDIRECT --to-ports 888
3. Kia mau ki nga tikanga
root@debian9:~# iptables-save > /etc/iptables/rules.v4
4. Me rehita tatou i nga kupengaroto i runga i te pouara
Rarangi whatunga pouara199.116.161.0 255.255.255.0 192.168.23.2
199.116.162.0 255.255.255.0 192.168.23.2
199.116.164.0 255.255.254.0 192.168.23.2
208.85.40.0 255.255.252.0 192.168.23.2
208.85.44.0 255.255.255.0 192.168.23.2
208.85.46.0 255.255.254.0 192.168.23.2
Nga rauemi/rauemi i whakamahia
1. Paetukutuku mana o te kaupapa 3proxy
2. Nga tohutohu mo te whakauru i te 3proxy mai i te puna
3. peka whanaketanga takawaenga 3 i GitHub
Source: will.com