debian下dante的配置疑問
我在debian下apt-get install dante后一直不能成功配置好socks代理伺服器.
參照網上搜到一篇說明,配置如下.但是還是不能連接.
另外還有兩個疑問
(1)server上已存在的用戶名/密碼 OS上的普通用戶行嗎?
(2)怎樣配置可以連接代理伺服器時不需用戶名 密碼
配置文件如下,希望高手能夠指點一下.
#debian下socks5服務配置:dante
#Author:SanL, 7/5/2005
# /etc/danted.conf
# the server will log both via syslog, to stdout and to /var/log/lotsoflogs
logoutput: stderr
#socks5服務的interface name(ip地址)和埠
internal: eth0 port = 1080
# outgoing connection的ip地址
external: eth0
# methods for socks-rules.only users of this server can use socks5
method: username
# methods for client-rules.
clientmethod: none
# An important section, pay attention.
#
# when doing something that can require privilege, it will use the
# userid:
#user.privileged:bmelab
# when running as usual, it will use the unprivileged userid of:
user.notprivileged: nobody
# If you compiled with libwrap support, what userid should it use
# when executing your libwrap commands? "libwrap".
user.libwrap:nobody
# enable the bind extension.
extension: bind
connecttimeout: 30 # on a lan, this should be enough if method is "none".
iotimeout: 0 # or perhaps 86400, for a day.
# the "client" rules. All our clients come from the net 10.0.0.0/8.
#hosts from dorms
client pass {
from: 211.65.60.129/254 port 1-65535 to: 0.0.0.0/0
}
#host from zy
client pass {
from: 172.22.132.0/254 port 1-65535 to: 0.0.0.0/0
}
# drop everyone else as soon as we can and log the connect
client block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}
# the rules controlling what clients are allowed what requests
#
# you probably don't want people connecting to loopback addresses,
# who knows what could happen then.
block {
from: 0.0.0.0/0 to: 127.0.0.0/8
log: connect error
}
#在client rules裡面已經搞定,這裡只要pass就ok了
pass {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}
//通過這樣的配置,就可以提供基本的socks5代理服務;對指定ip地址提供服務,用戶需要提供server上已存在的用戶名/密碼,etc.
《解決方案》
debian下dante的配置疑問
總算好了.
今天來時,一開機發現danted提示配置錯誤.
我明明記得昨天晚上走的時候,每次配置完後用/etc/init.d/danted restart
都沒有提示錯誤.
從新配置一下,然後restart,又沒有提示錯誤,但還是不行.於是重啟居然好了.
linux下的服務還是第一回見到需要重啟計算機才能重新更改配置的.
設置匿名訪問只需
method: username none
《解決方案》
如何限制客戶端通過danted socks server 訪問的目的伺服器;
《解決方案》
我發現Dante好象不支持socks5下用udp連接。比如用qq通過Dante就不能連接。但是能打開網頁
《解決方案》
# the "client" rules. All our clients come from the net 10.0.0.0/8.
#hosts from dorms
client pass {
from: 211.65.60.129/254 port 1-65535 to: 0.0.0.0/0
}
#host from zy
client pass {
from: 172.22.132.0/254 port 1-65535 to: 0.0.0.0/0
}
我想問一下211.65.60.129/254 port 1-65535 to: 0.0.0.0/0 這句是什麼意思
特別是 211.65.60.129/254 ,為什麼 要加 /254 這裡又代表什麼?
《解決方案》
原帖由 wsgtrsys 於 2006-9-20 20:18 發表
我發現Dante好象不支持socks5下用udp連接。比如用qq通過Dante就不能連接。但是能打開網頁
可以得,我一直在用,包括udp的遊戲都能很好的運行,估計是你配置文件里許可權沒弄對