Comments (9)
Okay I think what I understand what you mean. So basically what you are asking for is a program that would expose itself as a wireguard peer, and any traffic it received would be forwarded via a specified socks5 server?
I think implementing such a thing wouldn't be hard. I can give it a try.
from wireproxy.
Hello,
Just to be sure, do you mean something like hosting a SOCKS5 server on wireguard's network, and the outbound traffic of the SOCKS5 proxy would be outside wireguard?
This would require some slight patching to or changing the socks5 library which I am currently using. In fact while testing suggestions in #15 I think I've accidentally implemented something like what you are describing. I'll look into it and try to implement it.
from wireproxy.
Tun2socks looks like it should do all I actually need, thanks for finding it! I'll test that out, and let you know how it goes.
from wireproxy.
Perhaps explaining the use case will clarify.
As a security person, quite often we can achieve a socks tunnel into a target network, whether via reGeorg or PivotNacci, or even ssh. Once that is done, sometimes we want to use a Windows-based tool to interact with eg the target domain, but actually coercing the tool to use the socks proxy can be quite difficult in some cases.
As an alternative, one could route the windows traffic over a vpn, such as wireguard, then use Linux transparent proxying and redsocks on the vpn endpoint to achieve the same end result. This has been prototyped using a docker container, but even then, it's more complicated and heavyweight than strictly necessary.
The proposed alternative would be to integrate the wireguard endpoint and the socks client into one app, such that any traffic reaching the wireguard endpoint, and destined for a non-local target would be routed via the socks client, to a specified socks server.
from wireproxy.
Yes, exactly that. Happy to test for you when needed.
from wireproxy.
So here is an status update: this is going to be harder than I had originally thought. gvisor
's netstack is too abstracted for me to accomplish listening TCP traffic on all addresses easily. There is hope though: this library seems to allow me to implement your suggestion with ease.
From how things are looking right now, I will probably implement your suggestion in a separate project, since I doubt the final code will share anything with wireproxy's code (besides config parsing).
Edit: this project seems to mostly accomplish what you want, except the wireguard part. I will investigate into this project and see if I can adapt some of it into wireproxy.
from wireproxy.
Hi Rogan,
Kindly let us know if Tun2socks works and steps to follow.
Thanks
from wireproxy.
Did not end up trying it. HTTPS://GitHub.com/Sensepost/wiresocks did what I wanted it to do.
from wireproxy.
@pufferffish Does wireproxy support "reverse" SOCKS proxy and/or remote port forwarding?
For example a wireguard "client", peer 10.8.1.2, connects to the wireguard "server", peer 10.8.1.1. After that "server" can use 10.8.1.2:1080 as a SOCKS proxy to access whatever is reachable through 10.8.1.2.
from wireproxy.
Related Issues (20)
- Support for AmneziaWG protocol HOT 1
- `suah.dev/protect` no-op under Linux? HOT 2
- Secure wireproxy with landlock
- please add feature to restart or stop own process HOT 3
- Add support of DynDNS IP address refresh HOT 1
- /etc/localtime open: no such file or directory HOT 4
- HTTPS traffic not working?
- FR: Tag ghcr.io images for their release versions
- open /dev/null: permission denied HOT 2
- wireguard本身能通过代理连接吗
- Health metrics port extraction issue --info/-i
- Garbage data when using SOCKS 5 proxy to IPv6
- Default configuration location HOT 2
- curl: (56) Recv failure: Connection reset by peer when running on Docker HOT 1
- Using wireproxy to share a wireguard VPN connection with multiple local peers HOT 2
- Not workiing anymore? HOT 1
- ERR_CONNECTION_CLOSED on Chrome with SOCKS5 and HTTP HOT 1
- race / crash in CheckAlive HOT 1
- extend /metrics HOT 1
- When server closes connection, connection hangs on client (between two wireproxy)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from wireproxy.