歡迎您光臨本站 註冊首頁

debian下dante的配置疑問

←手機掃碼閱讀     火星人 @ 2014-03-05 , reply:0

debian下dante的配置疑問

我在debian下apt-get install dante后一直不能成功配置好socks代理伺服器.
參照網上搜到一篇說明,配置如下.但是還是不能連接.
另外還有兩個疑問
(1)server上已存在的用戶名/密碼   OS上的普通用戶行嗎?
(2)怎樣配置可以連接代理伺服器時不需用戶名 密碼


配置文件如下,希望高手能夠指點一下.
#debian下socks5服務配置:dante

#Author:SanL, 7/5/2005

# /etc/danted.conf

# the server will log both via syslog, to stdout and to /var/log/lotsoflogs
logoutput: stderr

#socks5服務的interface name(ip地址)和埠
internal: eth0 port = 1080

# outgoing connection的ip地址
external: eth0



# methods for socks-rules.only users of this server can use socks5
method: username

# methods for client-rules.
clientmethod: none



# An important section, pay attention.
#

# when doing something that can require privilege, it will use the
# userid:
#user.privileged:bmelab

# when running as usual, it will use the unprivileged userid of:
user.notprivileged: nobody

# If you compiled with libwrap support, what userid should it use
# when executing your libwrap commands?  "libwrap".
user.libwrap:nobody


# enable the bind extension.
extension: bind


connecttimeout: 30   # on a lan, this should be enough if method is "none".

iotimeout: 0 # or perhaps 86400, for a day.



# the "client" rules.  All our clients come from the net 10.0.0.0/8.


#hosts from dorms
client pass {
from: 211.65.60.129/254 port 1-65535 to: 0.0.0.0/0
}

#host from zy
client pass {
from: 172.22.132.0/254 port 1-65535 to: 0.0.0.0/0
}


# drop everyone else as soon as we can and log the connect

client block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}


# the rules controlling what clients are allowed what requests
#

# you probably don't want people connecting to loopback addresses,
# who knows what could happen then.
block {
from: 0.0.0.0/0 to: 127.0.0.0/8
log: connect error
}

#在client rules裡面已經搞定,這裡只要pass就ok了
pass  {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}


//通過這樣的配置,就可以提供基本的socks5代理服務;對指定ip地址提供服務,用戶需要提供server上已存在的用戶名/密碼,etc.
《解決方案》

debian下dante的配置疑問

總算好了.
今天來時,一開機發現danted提示配置錯誤.
我明明記得昨天晚上走的時候,每次配置完後用/etc/init.d/danted restart
都沒有提示錯誤.
從新配置一下,然後restart,又沒有提示錯誤,但還是不行.於是重啟居然好了.
linux下的服務還是第一回見到需要重啟計算機才能重新更改配置的.

設置匿名訪問只需
method: username none
《解決方案》

如何限制客戶端通過danted socks server 訪問的目的伺服器;
《解決方案》

我發現Dante好象不支持socks5下用udp連接。比如用qq通過Dante就不能連接。但是能打開網頁
《解決方案》

# the "client" rules. All our clients come from the net 10.0.0.0/8.


#hosts from dorms
client pass {
from: 211.65.60.129/254 port 1-65535 to: 0.0.0.0/0
}

#host from zy
client pass {
from: 172.22.132.0/254 port 1-65535 to: 0.0.0.0/0
}


我想問一下211.65.60.129/254 port 1-65535 to: 0.0.0.0/0 這句是什麼意思
特別是 211.65.60.129/254 ,為什麼 要加 /254 這裡又代表什麼?
《解決方案》

原帖由 wsgtrsys 於 2006-9-20 20:18 發表
我發現Dante好象不支持socks5下用udp連接。比如用qq通過Dante就不能連接。但是能打開網頁
可以得,我一直在用,包括udp的遊戲都能很好的運行,估計是你配置文件里許可權沒弄對

[火星人 ] debian下dante的配置疑問已經有738次圍觀

http://coctec.com/docs/service/show-post-43877.html