General port forwardingĪt Perfect Privacy SSH usage is not limited to just HTTP, SOCKS and TOR proxies. List args 'exec sshpass -p "PASSWORT" ssh -N -o UserKnownHostsFile=perfect_privacy_known_hosts -L 192.168.1.1:5083:127.0.0.1:9050 of PASSWORD and USERNAME enter your PerfectPrivacy login credentials, and instead of SERVER use a server of your choice (for example ).įor applications like the TOR browser instead of 127.0.0.1:5083 then use the SOCKS5 setting with 192.168.1.1:5083 to utilize the OpenWRT router. Skip the following steps till the section "Configuring TOR proxy", if the file pservice was already created. The scheme of the SSH connection to use the TOR proxy is like this: sshpass -p 'PASSWORD' ssh -N -o UserKnownHostsFile=perfect_privacy_known_hosts -L OpenWRT-LAN-IP:5083:127.0.0.1:9050 you are using Tor for security and anonymity reasons, we strongly recommend that you do not use your normal browser and use the Tor Browser Bundle instead. onion addresses using your normal browser. If you want to get a taste of the Tor network, you can use Perfect Privacy's Tor proxy via SSH. List args 'exec sshpass -p "PASSWORD" ssh -N -o UserKnownHostsFile=/root/perfect_privacy_known_hosts -D 192.168.1.1:5081 of PASSWORD and USERNAME enter your PerfectPrivacy login credentials, and instead of SERVER use a server of your choice (for example ).įor applications instead of 127.0.0.1:5081 then use 192.168.1.1:5081 to utilize the OpenWRT router. (If the pservice file does not yet exist, please create it). In the pservice file located in the directory /etc/config/ add the following content at the bottom. Skip the following steps till the section "Configuring SOCKS proxy", if the file pservice was already created. Sshpass -p 'PASSWORD' ssh -N -o UserKnownHostsFile=perfect_privacy_known_hosts -D OpenWRT-LAN-IP:5081 is the port on which the proxy should be available locally. But some applications only support one of these two methods. Tunneling SOCKS proxy through SSHĪ SOCKS proxy is very similar to an HTTP proxy in the aforementioned points. Then execute the following command using PuTTY or any other terminal program: /etc/init.d/pservice enableįor applications instead of 127.0.0.1:5080 then use 192.168.1.1:5080 to utilize the OpenWRT router. List args 'exec sshpass -p "PASSWORD" ssh -N -o UserKnownHostsFile=/root/perfect_privacy_known_hosts -L 192.168.1.1:5080:127.0.0.1:3128 of PASSWORD and USERNAME enter your Perfect Privacy login credentials, and instead of SERVER use a server of your choice (for example ). Then create a second pservice file in the /etc/config/ directory with the following contents: You may choose to use any different port which is not yet in use instead.Ĭreate the file pservice in the /etc/init.d/ directory of the OpenWRT router using WinSCP (of course alternatively the ssh terminal may be used), with the contents of this linked file.Īfter saving, open the properties of the pservice file and set the access rights to 755. Sshpass -p 'PASSWORD' ssh -N -o UserKnownHostsFile=perfect_privacy_known_hosts -L OpenWRT-LAN-IP:5080:127.0.0.1:3128 number 5080 is the local port on which the HTTP proxy should be accessible. Usually the connection to HTTP proxies is unencrypted, using SSH this connection can be encrypted. The most common usage for SSH at Perfect Privacy is for encrypted access of HTTP proxies. Download it on the OpenWRT router using wget: wget Information regarding HTTP proxy In order to enable the ssh client to check that it has connected to a Perfect Privacy VPN server, you first need the known_hosts file containing the public keys of the servers. Successively execute the following commands: opkg update and opkg install wget sshtunnel sshpass Downloading the SSH keys There are clones of Plink that support interactive authentication though.Open the program PuTTY or any other terminal program and login on the router. So typically using -pw switch for a password authentication or Pageant for public key authentication. The "Local proxy command" needs to be set to: plink.exe -nc %host:%portĪnd of course, you need to have Plink installed (part of the PuTTY package).įor this to work, the authentication has to proceed seamlessly, without any prompt. The first hop on the Proxy page of Advanced site settings dialog: See the Tunnel page of its Advanced site settings dialog.įor the other hop (the first of the two), you can use plink in "local proxy command" feature.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |