Transparent TCP proxy

Juli Mallett juli at clockworksquid.com
Mon May 16 11:40:37 PDT 2016 

Hello, Sreenaath,

Full transparent proxy support is not yet implemented.  There is some
missing configuration glue, some of which is fairly substantial.  It
could be done in a short period of time, but so far there hasn't quite
been enough interest.  Also, there's the matter of the fact that
support for packet interfaces is OS-specific, and where I'm most
familiar with netmap (which would support both FreeBSD and Linux; I've
been maintaining substantial code bases using netmap for years),
there's the matter of users possibly not wanting to be so limited, so
we'd want pcap/BPF as well, and it's a question of which to
prioritize.  Netmap also gives you the option of doing your filtering
in another application and using VALE to route packets to the proxy.
And so on.  If there's an interest in making that work happen, I'm
willing to do it.  I think if you search the mailing list archives you
may find past discussions about this.

It's possible to use OS-provided features usually to redirect some
connections to WANProxy, so you wouldn't have full transparency, but
also wouldn't require configuration of proxies on each client.  I
believe redsocks is one of the more popular mechanisms for routing
traffic into WANProxy, but others may have their own suggestions.

Thanks,
Juli.

On Mon, May 16, 2016 at 11:19 AM, sreenaath vasudevan
<sreenaathkv at gmail.com> wrote:
> Hi
> Has anyone tried to run wanproxy as transparent tcp proxy? Is it possible to
> run wanproxy in transparent proxy mode?
> I saw examples on wanproxy.org link @ here showing how to run it via SSH or
> over SOCKS.
> In my case, I want client side wanproxy to run as transparent tcp proxy.
> This will connect to the server side wan proxy (again running as transparent
> proxy) over regular tcp/udp session.
> In other words, Client <-> Server connection will be broken down in to 3
> connections i.e Client <-> Client_Proxy + Client_Proxy <-> Server_Proxy +
> Server_proxy <-> Server.
> I assume this is possible with wanproxy. Just wanted to know if the example
> already covers this or there is some other configuration needed for the
> above example.
>
> Thanks !
>
> --
> regards
> sreenaath
>
> _______________________________________________
> wanproxy mailing list
> wanproxy at lists.wanproxy.org
> http://lists.wanproxy.org/listinfo.cgi/wanproxy-wanproxy.org
>

More information about the wanproxy mailing list