How to configure routing through vpn tunnel to get rid of squid proxy?

B

berkutxxx2016-04-07 21:38:44

linux

berkutxxx, 2016-04-07 21:38:44

Client1 must access the Internet through the installation of a proxy server (client2).
The two clients are connected via a VPN that allocates a 10.15.0.* subnet for them. Right now it's done through squid without a password (it's not needed). I would like to remove it altogether. Client2 has the following network parameters:

➜  ~ ifconfig
eth0      Link encap:Ethernet  HWaddr 1c:6f:65:f8:04:4e
          inet addr:192.168.1.67  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:34890197 errors:0 dropped:0 overruns:0 frame:0
          TX packets:30758743 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:25103690690 (23.3 GiB)  TX bytes:19389664929 (18.0 GiB)
          Interrupt:40 Base address:0x2000

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:9452047 errors:0 dropped:0 overruns:0 frame:0
          TX packets:9452047 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:1174900749 (1.0 GiB)  TX bytes:1174900749 (1.0 GiB)

tun0      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
          inet addr:10.15.0.2  P-t-P:10.15.0.2  Mask:255.255.255.0
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:5335616 errors:0 dropped:0 overruns:0 frame:0
          TX packets:5627558 errors:0 dropped:7688 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:325573774 (310.4 MiB)  TX bytes:553888912 (528.2 MiB)

➜  ~ route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
default         KEENETIC_LITE   0.0.0.0         UG    0      0        0 eth0
10.15.0.0       *               255.255.255.0   U     0      0        0 tun0
192.168.1.0     *               255.255.255.0   U     0      0        0 eth0
➜

Client1 - any computer on any OS with a browser where you can enter a proxy for access. Right now, the address Client2 is entered: 10.15.0.2

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

A

Alexander Aksentiev, 2016-04-07
@berkutxxx

But in order to proxy traffic, you need a proxy server.
And you want to remove the proxy server from this chain.
And get proxy without proxy?
How should it work?

V

Valentin, 2016-04-07
@vvpoloskin

it is necessary to include nat and routing on the client two. And you need to understand that nat and proxy are two completely different things. The first technology changes the packet headers, the second sends a request instead of the client.

K

kresska, 2016-04-08
@kresska

How do you raise vpn? for example, in OpenVPN, you can wrap all traffic in a tunnel, thus natit it through a client2
And what is the sacred meaning of these dances with tambourines? hide client1 IP?