OpenVPN、L2TP或PPTP客户端到代理(http或socks 4/5)
OpenVPN、L2TP或PPTP客户端到代理(http或socks 4/5)
提问于 2023-01-21 14:21:42
我正在寻找一种方法在Windows或Linux上打开一个代理服务器,该代理服务器绑定到OpenVPN、L2TP或PPTP的客户端,因此连接到代理的用户将连接到虚拟专用网服务器,主机(代理服务器)--不管是Linux还是Windows --不应该将任何流量路由到VPN客户端,超出从代理端进出的流量。
用户<->代理服务器<--> openvpn客户机<-> internet
到目前为止,我已经找到了这样的建议:运行ForceBindIP将freesshd绑定到openvpn客户端的TUN接口,并使用putty连接到freesshd和putty公开socks5,但它没有工作。
任何帮助都是非常感谢的。
我是linux世界的新手:)
回答 1
Server Fault用户
发布于 2023-01-22 12:23:20
最后,我使用Dante作为我的socks代理服务器,使用OpenVPN服务器作为外部分配的IP,我可以连接到代理,流量将通过OpenVPN路由,但问题是,我的所有操作系统流量都通过OpenVPN,我不想让我的socks流量通过它,而OpenVPN只听它。
我使用了route-noexec和pull-filter ignore redirect-gateway,经过一个接一个的测试,问题是没有从socks中通过它们的流量。
I/etc/dante.conf:
logoutput: /var/log/socks.log
internal: ens192 port = 1080
external: 172.25.0.10
clientmethod: none
socksmethod: none
user.privileged: root
user.notprivileged: nobody
client pass {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: error connect disconnect
}
client block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}
socks pass {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: error connect disconnect
}
socks block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}systemctl状态openvpn@dl19-T:
root@CaptainMarvel:~# systemctl status openvpn@dl19-T
● openvpn@dl19-T.service - OpenVPN connection to dl19-T
Loaded: loaded (/lib/systemd/system/openvpn@.service; enabled; vendor preset: enabled)
Active: active (running) since Sun 2023-01-22 07:09:42 EST; 13s ago
Docs: man:openvpn(8)
https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage
https://community.openvpn.net/openvpn/wiki/HOWTO
Main PID: 13527 (openvpn)
Status: "Initialization Sequence Completed"
Tasks: 1 (limit: 629145)
Memory: 1.0M
CPU: 33ms
CGroup: /system.slice/system-openvpn.slice/openvpn@dl19-T.service
└─13527 /usr/sbin/openvpn --daemon ovpn-dl19-T --status /run/openvpn/dl19-T.status 10 --cd /etc/openvpn --config /etc/openvpn/dl19-T.conf --writepid /run/openvpn/dl19-T.pid
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: ROUTE_GATEWAY 192.168.11.111/255.255.255.0 IFACE=ens192 HWADDR=00:0c:29:2d:7f:1b
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: TUN/TAP device tun0 opened
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_iface_mtu_set: mtu 1500 for tun0
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_iface_up: set tun0 up
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_addr_v4_add: 172.25.0.10/24 dev tun0
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_route_v4_add: 87.248.155.111/32 via 192.168.11.111 dev [NULL] table 0 metric -1
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_route_v4_add: 0.0.0.0/1 via 172.25.0.1 dev [NULL] table 0 metric -1
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: net_route_v4_add: 128.0.0.0/1 via 172.25.0.1 dev [NULL] table 0 metric -1
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Jan 22 07:09:45 CaptainMarvel ovpn-dl19-T[13527]: Initialization Sequence Completed页面原文内容由Server Fault提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://serverfault.com/questions/1120800
复制相关文章
相似问题
腾讯云开发者
