Difference between revisions of "Bering-uClibc 4.x - User Guide - Advanced Topics - Setting Up Tor"

From bering-uClibc
Jump to: navigation, search
m (Additional reading)
m (Added to Bering-uClibc_4.x and User_Guide categories)
Line 91: Line 91:
 
| width="40%" align="right"  | [[Bering-uClibc 4.x - User Guide - Advanced Topics - Setting Up Remote Monitoring|Next]]
 
| width="40%" align="right"  | [[Bering-uClibc 4.x - User Guide - Advanced Topics - Setting Up Remote Monitoring|Next]]
 
|}
 
|}
 +
 +
[[Category:Bering-uClibc_4.x]]
 +
[[Category:User_Guide]]

Revision as of 12:54, 23 February 2011

Advanced Topics - Setting Up Tor
Prev Bering-uClibc 4.x - User Guide Next

This is just a skeleton

What is Tor?

Tor is free software and an open network that helps you defend against a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security known as traffic analysis.

You can configure Tor to run either as a SOCKS proxy or, together with the privoxy Package, as HTTP/S proxy. Both methods are described below.

Load the necessary package to run Tor

To run tor on your router you need to load the following Packages in leaf.cfg:

  • tor.lrp
  • libssl.lrp
  • libcrpto.lrp
  • lpthread.lrp
  • libz.lrp
  • libevent.lrp
  • privoxy.lrp (only required, if you want to run tor with a http/s proxy instead of a SOCKS proxy)

Using Tor as SOCKS proxy

tbd

Configure Tor

tbd

Configure your web browser

tbd

Configure shorewall

tbd

Check if it works

Navigate your browser to check.torproject.org. With a proper setup you'll get a page announcing:

Congratulations. Your browser is configured to use Tor plus some additional information.

If it doesn't work, you'll see:

Sorry. You are not using Tor.

Using Tor as HTTP/S proxy

Configure Tor

Use the configuration as provided with the tor Package.

Configure Privoxy

Change the configuration directive listen-address in /etc/privoxy/config to enable privoxy listening on routers LAN interface at port 8118:

# Your local interface
listen-address  192.168.10.254:8118 

Also add the following line to /etc/privoxy/config:

# Tor listens as a SOCKS4a proxy here:
forward-socks4a / 127.0.0.1:9050 .

Configure your web browser

To access the Internet via tor, enable the proxy configuration for your preferred browser and point it to your routers LAN address at port 8118.

Configure shorewall

Edit the shorewall rules (/etc/shorewall/rules) and open the port 8118 on your firewall for access from the LAN to your proxy server. Additionally open the firewall to allow traffic from the router to the net zone for the usual tor ports (9001-9033).

# access privoxy proxy from LAN
ACCEPT        loc       fw            tcp      8118
# tor ports fw to net zone                                                                 
ACCEPT        fw        net           tcp      9001:9033 

Check if it works

Navigate your browser to check.torproject.org. With a proper setup you'll get a page announcing:

Congratulations. Your browser is configured to use Tor plus some additional information.

If it doesn't work, you'll see:

Sorry. You are not using Tor.

Additional reading


Prev Up Next