Difference between revisions of "Bering-uClibc 4.x - User Guide - Advanced Topics - Setting Up Tor"
m (typos) |
(→Using Tor as HTTP/S proxy) |
||
Line 46: | Line 46: | ||
=== Using Tor as HTTP/S proxy === | === Using Tor as HTTP/S proxy === | ||
==== Configure Tor ==== | ==== Configure Tor ==== | ||
− | + | Use the configuration as provided with the <code class="filename">tor</code> Package. | |
==== Configure Privoxy ==== | ==== Configure Privoxy ==== | ||
+ | Change the configuration directive ''listen-address'' in <code class="filename">/etc/privoxy/config</code> to enable <code class="filename">privoxy</code> listening on routers LAN interface at port 8118: | ||
+ | |||
+ | # Your local interface | ||
+ | listen-address 192.168.10.254:8118 | ||
+ | |||
+ | Also add the following line to <code class="filename">/etc/privoxy/config</code>: | ||
+ | # Tor listens as a SOCKS4a proxy here: | ||
+ | forward-socks4a / 127.0.0.1:9050 . | ||
==== Configure your web browser ==== | ==== Configure your web browser ==== | ||
+ | To access the Internet via tor, enable the proxy configuration for your preferred browser and point it to your routers LAN address at port 8118. | ||
+ | ==== Configure shorewall ==== | ||
+ | |||
+ | Edit the shorewall rules (<code class="filename">/etc/shorewall/rules</code>) and open the port 8118 on your firewall for access from the LAN to your proxy server. Additionally open the firewall to allow traffic from the router to the net zone for the usual <code class="filename">tor</code> ports (9001-9033). | ||
+ | |||
+ | # access privoxy proxy from LAN | ||
+ | ACCEPT loc fw tcp 8118 | ||
+ | # tor ports fw to net zone | ||
+ | ACCEPT fw net tcp 9001:9033 | ||
==== Check if it works ==== | ==== Check if it works ==== |
Revision as of 18:16, 19 January 2011
Advanced Topics - Setting Up Tor | ||
---|---|---|
Prev | Bering-uClibc 4.x - User Guide | Next |
This is just a skeleton
Contents
What is Tor?
Tor is free software and an open network that helps you defend against a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security known as traffic analysis.
You can configure Tor to run either as a SOCKS proxy or, together with the privoxy Package, as HTTP/S proxy. Both methods are described below.
Load the necessary package to run Tor
To run tor
on your router you need to load the following Packages in leaf.cfg
:
- tor.lrp
- libssl.lrp
- libcrpto.lrp
- lpthread.lrp
- libz.lrp
- libevent.lrp
- privoxy.lrp (only required, if you want to run tor with a http/s proxy instead of a SOCKS proxy)
Using Tor as SOCKS proxy
Configure Tor
Configure your web browser
Check if it works
Navigate your browser to check.torproject.org. With a proper setup you'll get a page announcing:
Congratulations. Your browser is configured to use Tor plus some additional information.
If it doesn't work, you'll see:
Sorry. You are not using Tor.
Using Tor as HTTP/S proxy
Configure Tor
Use the configuration as provided with the tor
Package.
Configure Privoxy
Change the configuration directive listen-address in /etc/privoxy/config
to enable privoxy
listening on routers LAN interface at port 8118:
# Your local interface listen-address 192.168.10.254:8118
Also add the following line to /etc/privoxy/config
:
# Tor listens as a SOCKS4a proxy here: forward-socks4a / 127.0.0.1:9050 .
Configure your web browser
To access the Internet via tor, enable the proxy configuration for your preferred browser and point it to your routers LAN address at port 8118.
Configure shorewall
Edit the shorewall rules (/etc/shorewall/rules
) and open the port 8118 on your firewall for access from the LAN to your proxy server. Additionally open the firewall to allow traffic from the router to the net zone for the usual tor
ports (9001-9033).
# access privoxy proxy from LAN ACCEPT loc fw tcp 8118 # tor ports fw to net zone ACCEPT fw net tcp 9001:9033
Check if it works
Navigate your browser to check.torproject.org. With a proper setup you'll get a page announcing:
Congratulations. Your browser is configured to use Tor plus some additional information.
If it doesn't work, you'll see:
Sorry. You are not using Tor.
Additional reading
Prev | Up | Next |