socks5 proxying through ssh tunnel and vpn
- Creating a SOCKS5 Proxy Server via SSH Tunnel with Optional Authentication
- language: Golang
- packages:
- github.com/armon/go-socks5
- golang.org/x/crypto/ssh
- DNS Resolver (socksh://)
- uses the SSH remote command(crypto/ssh.Client.NewSession): dig +short
- Containers
- docker, docker-compose
- make
- Autoheal
- configure healthcheck in compose.yaml
- use the autoheal project(https://github.com/willfarrell/docker-autoheal)
- configuration(configs/local.yaml)
ssh:
ssh_host: remote_host
ssh_port: 22
ssh_user: account
ssh_password: password
ssh_private_key: /home/account/.ssh/id_rsa
ssh_known_hosts: /home/account/.ssh/known_hosts
socks5_user: hello
socks5_password: world
noauth:
ssh_host: remote_host
ssh_port: 22
ssh_user: account
ssh_password: password
ssh_private_key: /home/account/.ssh/id_rsa
ssh_known_hosts: /home/account/.ssh/known_hosts- compile
make build- run
./target/main ssh -config=configs/local.yaml -addr=127.0.0.1:1081- release
make release- deployment(docker-compose)
- build image socks5-proxy:dev:
make image-dev- create compose.yaml see containers/compose.sh and containers/compose.template.yaml
- commandlines with socks5 proxying
# proxy=socks5://hello:world@127.0.0.1:1081
proxy=socks5h://hello:world@127.0.0.1:1081
https_proxy=$proxy git pull
https_proxy=$proxy git push
https_proxy=$proxy curl -4 https://icanhazip.com
curl -x "$proxy" https://icanhazip.com- web browser with sock5 proxying (Neither Firefox nor Chromium supports SOCKS5 with authentication)
proxy=socks5h://127.0.0.1:1081
chromium --disable-extensions --incognito --proxy-server="$proxy"
# mannual config proxy in settings of firefox
firefox -p proxy- config and debug
- _openvpn.sh
- deployment
- containers/supervisord.compose.yaml
- openvpn server in container
- block target ips and domains
socks5 through sshvpn- wireguard: apk add wireguard-tools, --cap-add=NET_ADMIN, --cap-add=SYS_MODULE
- stunnel