2014-04-17 07:00:40 +02:00
|
|
|
[[Kategorie:Infrastruktur]]
|
|
|
|
|
|
|
|
== Hardware Info ==
|
|
|
|
Virtualisiert durch [[intern:Freebert]]
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== Software Info ==
|
|
|
|
FreeBSD Jail Container
|
|
|
|
* squid 3.3
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== Verwendungszweck ==
|
|
|
|
* WebCache
|
|
|
|
* (Anonymisierung durch externe IPv4 per iPredator, IPv6 von der JAIL)
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== JAIL: Squid Anpassung ==
|
|
|
|
|
|
|
|
sehr leichte Anonymisierung durch via,forwarded,follow_x_forwarded off
|
|
|
|
|
|
|
|
<source lang=bash>
|
|
|
|
vi /usr/local/etc/squid/squid.conf
|
|
|
|
|
|
|
|
dns_v4_first on
|
|
|
|
#Privacy Things
|
|
|
|
via off
|
|
|
|
forwarded_for off
|
|
|
|
follow_x_forwarded_for deny all
|
|
|
|
</source>
|
|
|
|
|
2014-04-17 07:02:28 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
Segfault bei "aufs" da die Jail im ZFS läuft
|
|
|
|
|
2014-04-17 07:02:28 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
<source lang=bash>
|
|
|
|
cache_dir ufs /var/squid/cache/squid 100 16 256
|
|
|
|
</source>
|
|
|
|
|
2014-04-17 16:37:16 +02:00
|
|
|
|
|
|
|
== automatische Proxy Einstellungen ==
|
|
|
|
|
|
|
|
<source lang=bash>
|
|
|
|
firefox: Edit -> Preferences -> Advanced -> Settings -> Auto-detect proxy settings for this network
|
|
|
|
</source>
|
|
|
|
|
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== manuelle Proxy Einstellungen ==
|
|
|
|
|
|
|
|
<source lang=bash>
|
|
|
|
172.22.99.53:3128
|
|
|
|
</source>
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== Web Proxy Autodiscovery Protocol (WPAD) ==
|
|
|
|
|
|
|
|
per DHCP wird die proxy.pac URL verteilt
|
|
|
|
|
|
|
|
<source lang=bash>
|
|
|
|
vi /usr/local/etc/dhcpd.conf
|
|
|
|
|
|
|
|
option local-proxy-config code 252 = text;
|
|
|
|
|
|
|
|
option local-proxy-config "http://172.22.99.54/proxy.pac";
|
|
|
|
</source>
|
|
|
|
|
2014-04-17 07:02:28 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
Watchbert (Apache 2.4) bietet die proxy.pac an
|
|
|
|
|
|
|
|
alternativ existieren proxy/wpad DNS Einträge
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== Tests ==
|
|
|
|
|
|
|
|
http://test-ipv6.com/
|
|
|
|
|
|
|
|
http://www.iprivacytools.com/proxy-checker-anonymity-test/
|
|
|
|
|
|
|
|
http://ip-check.info/?lang=de
|
|
|
|
|
2014-04-17 16:38:15 +02:00
|
|
|
|
2014-04-17 07:00:40 +02:00
|
|
|
== Log ==
|
2014-04-17 16:38:15 +02:00
|
|
|
* 16.04.2014 - einfaches Basis Setup
|