Routing all traffic thru socks proxy using ssh -D

ssh ssh-tunnel socks
23,798

Solution 1

In Linux:

  1. iptables -t nat -A OUTPUT ! -d 127.0.0.0/8 -j REDIRECT --to 1081
  2. Run program that listens 1081, retrieves actual, non-redirected destination address, negotiates with SOCKS server and relays.

I have written such program for private usage in Perl (prototype quality) and writing a better version in C. It is not yet published.

Update: now published: http://github.com/vi/socksredirect/ Use prototype.pl. Send me some notice if you interested in development of better version.

Update 2 Created a bit better version of it: http://github.com/vi/tcpsocks and a patch for Socat 2: http://github.com/vi/socksredirect/blob/master/socat-2.0.0-b3-REDIRECT.patch

P.S. Most of my (and sometimes some of neighbours') traffic now goes through the tcpsocks->ssh.

Solution 2

Avery Pennarun's sshuttle works similar to Vi's answer, but requires less setup and works on BSD and OS X as well as Linux.

Solution 3

Maybe you should considering setting up VPN instead.

Solution 4

I don't think there's any way to do this, but maybe you can try programs like FreeCap(windows), SocksCap(windows) or proxychains(linux). These programs may help you a little bit.

Share:
23,798

Related videos on Youtube

grm
Author by

grm

Updated on September 17, 2022

Comments

  • grm
    grm over 1 year

    is it any easy way to route all traffic through a ssh proxy with -D?

    I can configure individual specific applications to do this, but I would like a configuration that routes all the traffic on the machine. Thanks for your help!

    • grm
      grm about 14 years
      Forgot to say that I was on linux so idealy, something by which I can route using iptables.
  • grm
    grm about 14 years
    Very interesting project Vi. Thanks! I will give this a look.
  • Vi.
    Vi. about 14 years
    You should probably use more iptables rules to select which traffic do you want to be socksified. I use "iptables -t nat -A OUTPUT -j QQQ", then bunch of "iptables -t nat -A QQQ <checks> -j RETURN" and finally "iptables -t nat -A QQQ -p tcp -j REDIRECT --to 1234".
  • user2910702
    user2910702 over 13 years
    Thank you! I've been wondering if this was doable, it was on my loong list of project ideas to try sometime.
  • Vi.
    Vi. over 13 years
    @Tobu, I have implemented this more: now there is a Socat patch (github.com/vi/socksredirect/blob/master/…) for this and also light-weight tcpsocks program (github.com/vi/tcpsocks)
  • ephemient
    ephemient over 13 years
  • chiggsy
    chiggsy over 13 years
    With MacOS in particular, trusting the global proxy settings needs to be verified.
  • Alex H
    Alex H over 11 years
    answer not at point
  • Tanmay
    Tanmay over 7 years
    @Vi. Why not create a tun device, rather than using REDIRECT?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to encrypt SOCKS5 traffic?
SSH Reverse socks tunnel
SSH as socks proxy through multiple hosts
If I am using SSH for a SOCKS proxy, do DNS connections go through it?
strange output on ssh tunneling: output failed; connect failed: Connection timed out;
VisualVM over Putty SSH-tunnel
How to use Node.js to make a SSH tunneling connection to a MongoDB database
Jsch session Configuration
Run SSH over a SOCKS proxy?
SSH jumping over socks(4/5) proxy chain. Host -> socks proxy -> socks proxy -> destination