Librenix
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

ssh: Use Linux as a SOCKS5 proxy

Up
vote
Down

Did you know you could use ssh to create a SOCKS5 server?

This article explains how to create a SOCKS5 server in 1 command and how to add ip-based access control to it via iptables and tcp forwarder. read more...
permapage | score:9484 | -pkrumins, May 7, 2010

Tutorial: Squid proxy server with DansGuardian, ClamAV, WPAD on Ubuntu 9.04

Up
vote
Down

This tutorial will demonstrate how to set up a Squid Proxy server on Ubuntu 9.04 Server with DansGuardian (for content filtering) and ClamAV (for Virus scanning); in addition, we will set up Web Proxy AutoDetection (WPAD) through DHCP (in this case, the Windows Server 2003 DHCP server) or DNS so that the only configuration necessary on the client side is to check "Auto-detect proxy settings for this network" in Firefox or Internet Explorer. At the end of the tutorial, users will have a fully functional and secure proxy for HTTP access. read more...
mail this link | permapage | score:9167 | -falko, July 3, 2009

Using an ISA Proxy server in Linux

Up
vote
Down

NTLM (NT LAN Manager) is a Microsoft authentication protocol. It is used extensively in older versions of Windows, and Microsoft has embedded the NTLM authentication into several communication protocols, such as HTTP, POP3 and SMTP. One benefit of NTLM authentication is that Windows users can get transparent access through an ISA proxy server. While the proxy does require a username and password, IE will happily send the users current credentials without any additional prompt.

Linux users don't tend to be so lucky. Most web browsers will support NTLM authentication when using an ISA proxy, but there are some cases, like when using the proxy settings in OpenSuse 11.2, where the lack of support for NTLM can effectively prevent internet access.

Fortunately there is a fairly simple way around this limitation. A small Python utility called NTLM Authorization Proxy Server can be used to ferry internet traffic between the OS and a ISA proxy server. read more...
mail this link | permapage | score:8836 | -mcasperson, July 7, 2010

HA load balancer with HAProxy/Keepalived on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and keepalived on Debian Lenny. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using keepalived, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:8690 | -falko, June 17, 2009

Tutorial: nginx as a reverse proxy for Apache2 on Ubuntu 12.04

Up
vote
Down

nginx (pronounced "engine x") is a free, open-source, high-performance HTTP server. nginx is known for its stability, rich feature set, simple configuration, and low resource consumption. This tutorial shows how you can set up nginx as a reverse proxy on front of an Apache2 web server on Ubuntu 12.04. read more...
permapage | score:8559 | -falko, October 7, 2012

Squid Proxy HowTo: Listen Pandora to In Europe

Up
vote
Down

I have Pandora Internet Radio One subscription, and recently I moved to Europe for a few months as part of my work schedule. The service fully available only in the United States. How do I access Pandora one service in Europe? Can I get around it by using a proxy server installed on my own server located in USA at home or ISP data center? read more...
permapage | score:8515 | -nixcraft, November 22, 2012

Howto: Squid reverse proxy

Up
vote
Down

This article explains how you can set up a caching reverse proxy with Squid 2.6 in front of your web server on Debian Etch. If you have a high-traffic dynamic web site that generates lots of database queries on each request, you can decrease the server load dramatically by caching your content for a few minutes or more (that depends on how often you update your content).

(here's a bit of dramatic digital art) read more...
mail this link | permapage | score:8388 | -falko, December 28, 2008 (Updated: April 24, 2012)

Set up an HA load balancer with HAProxy, Wackamole, Spread on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy, Wackamole, and Spread on Debian Etch. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using Wackamole and Spread, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:8190 | -falko, January 6, 2009

Tiny web proxy and content filtering virtual machine on CentOS 6

Up
vote
Down

This small HOWTO will show you how to set up a small virtual machine to speed up and secure your home / small enterprise web surfing network using CentOS 6, Squid 3.1 and QuintoLabs Content Security 1.4 applications deployed in a VMware Virtual Player running on Windows 7 x64 as a host operating system. This howto is targeted at novice users and may sometimes seem too thorough for more advanced gurus. read more...
permapage | score:8021 | -falko, September 21, 2011

Setup a transparent proxy with Squid on Linux

Up
vote
Down

Main benefit of setting transparent proxy is you do not have to setup up individual browsers to work with proxies. This nice and simple guide explains how to setup a transparent proxy with Squid and iptables (DNAT) firewall in three easy steps. read more...
permapage | score:8001 | -nixcraft, May 28, 2006

Tutorial: Fast web browsing with a Linux caching proxy

Up
vote
Down

This tutorial shows you how to compile, install, and configure oops, an open source, high-performance, multi-threaded Web proxy under Linux. Caching Web proxies are especially useful for accelerating Web browsing performance while at the same time conserving your network bandwidth.

[As is normal with IBM tutorials, this one requires you to create a (free) account. -Ed.] read more...
permapage | score:7938 | -Idean Momtaheni, May 4, 2005

Apache load balancing with Pound Reverse Proxy

Up
vote
Down

Pound is a reverse-proxy load balancing server. It accepts requests from HTTP / HTTPS clients and distributes them to one or more Web servers. The HTTPS requests are decrypted and passed to the back-ends as plain HTTP. It will act as:

a) Server load balancer
b) Reverse proxy server
c) Apache reverse proxy etc
d) It can detects when a backend server fails or recovers, and bases its load balancing decisions on this information: if a backend server fails, it will not receive requests until it recovers
e) It can decrypts https requests to http ones
f) Rejects incorrect requests
h) It can be used in a chroot environment (security feature) read more...
mail this link | permapage | score:7912 | -nixcraft, December 14, 2007

SSH as a SOCKS proxy

Up
vote
Down

Yet another sweet ability of OpenSSH...
The -D arg tells OpenSSH to be a SOCKS proxy. So you simply log in to the endpoint via SSH with the -D arg like:

ssh -D 1234 user@host.example.com

And then tell your web browser to use a SOCKS v5 proxy on localhost at the specified port and bingo, you have a secure connection to your endpoint.
read more...
permapage | score:7812 | -Ray, January 23, 2009

Web Filtering on Squid Proxy

Up
vote
Down

This HOWTO describes how to protect your home / small enterprise network users from objectionable internet contents with help of HTTP proxy. Our goal is to set up a free Linux based server running Squid and deploy web filtering application on it saving bandwidth, speeding up web access and blocking obsessive and potentially illegal and malicious web files. read more...
permapage | score:7743 | -falko, April 16, 2012

Load balancer with HAProxy/Heartbeat on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and heartbeat on Debian Lenny. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using heartbeat, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:7615 | -falko, July 14, 2009

Set up a Load Balancer with Failover using HAProxy / Heartbeat on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and heartbeat on Debian Etch. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using heartbeat, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:7580 | -falko, November 7, 2007

Transparent Proxy with Squid on Mandrake 10

Up
vote
Down

Keep the bad stuff out -- web filtering in 7 steps. [This workshop is in the form of a .pdf file. -Ed.]
How to install a transparent Squid proxy server with real-time HTTP virus scanning on Mandrake 10.0 using DansGuardian and ClamAV?

People quickly and easily access volumes of research on the Internet and correspond with a mouse click. For more and more companies, content filtering is part of the large battle to combat all kinds of online threats, including hackers, worms and viruses. Linux content filtering allows administrators to configure and manage Internet access across the entire network and to block unwanted Web content like pornography, shopping Web sites, games and gambling.

This guide contains all the necessary information for installing and understanding the architectural layout of the implementation.
read more...
mail this link | permapage | score:7466 | -fn-eagle, March 8, 2004 (Updated: September 20, 2004)

Configuring and Using an FTP Proxy

Up
vote
Down

Need an ftp server but don't want to open a hole through your firewall into your network?
One important technique is to run an FTP proxy on your firewall. Whereas the standard Netfilter code in the Linux kernel only inspects packets, an FTP proxy lets your firewall act as an intermediary in all FTP transactions. This increases your protection against buffer overflows and many other kinds of FTP attacks. It also allows you to restrict which FTP commands are executed by FTP clients.

This month I explain how to run SuSE's free (and non-SuSE-Linux-specific) Proxy-Suite FTP proxy on your Linux firewall, adding transparent but strong protection to all your FTP transactions.
read more...
mail this link | permapage | score:7119 | -Ray, November 16, 2002

Use SSH via HTTP Proxy with Corkscrew

Up
vote
Down

If you want to ssh your vps server or your home computer from your work place (assuming you are using http proxy). You need to use Corkscrew. Corkscrew is a simple tool to tunnel TCP connections through an HTTP proxy supporting the CONNECT method. It reads stdin and writes to stdout during the connection, just like netcat. read more...
permapage | score:7030 | -gg234, December 29, 2008

Apt-Cacher-NG: HTTP download proxy

Up
vote
Down

Apt-Cacher-ng is a software package that keeps a cache, on the disk, of Debian/Ubuntu Packages and Release files. When an apt-get like client issues a request for a file, Apt-Cacher intercepts it and if the file is already cached it serves it to the client immediately, otherwise it fetches the file from the Internet, saves it on the cache, and then serves it to the client. This means that several Debian machines can be upgraded but each package need to be downloaded only once. read more...
permapage | score:6985 | -gg234, February 25, 2009
More articles...
Abstract Art Prints for Sale

Recent headlines

10 basic examples of Linux ps command

Tutorial: Install Debian 7 (testing) with debootstrap from a Grml live Linux

Tutorial: Running CS-Cart on Nginx on Debian 7/Ubuntu 13.04

Setup Nginx + php-FPM + apc + MariaDB on Debian: The perfect LEMP server

Install openQRM 5.1 on Debian 7

Tutorial: Automatically add a disclaimer to emails with alterMIME (Postfix on Debian 6)

PC-BSD 9.1 preview

Virtual Users/Domains with Postfix/Courier/MySQL/SquirrelMail (Debian 7)

LinSSID – Graphical wireless scanning for Linux

Stella: RH/CentOS 6.3 based Desktop OS

Tutorial: Debian 7 Samba Server with tdbsam

Debian 6, Squid, Kerberos/LDAP authentication, Active Directory integration, Cyfin Reporter

Upgrade Fedora 18 to 19 With FedUp

LG 8-inch G Pad 8.3 Android tablet

How to install Ajenti on Ubuntu 13.04 server

Tutorial: Create an NFS-like Storage Server with GlusterFS on Ubuntu 12.10

HowTo: HTTP Status: 206 Partial Content and Range Requests Using Curl

Pre-release Ubuntu 12.10 has partial support for manual LVM and disk encryption

Pipelight – Using Silverlight in Linux browsers

Giada – Audio tool for DJs, live performers and electronic musicians

Tutorial: Webcam streaming your desktop plus audio with ffmpeg, crtmpserver, Flowplayer

Linux Mint Debian 201204 MATE/Cinnamon review

Dual-boot Windows 7 and Ubuntu 12.04 on a PC with UEFI board, SSD and HDD

Nuvola Player: Enjoy all your Cloud music services from one interface

I quit using Linux because…

Ubuntu Edge: Is there life after an unsuccessful crowd-funding campaign?

Epoptes – Open source computer lab management and monitoring tool

webOS: The latest Linux distribution

ROSA Desktop Fresh R1: For advanced users, but even better for new users

Tutorial: Replace Windows with Ubuntu 13.04

Install Cinnamon on Fedora 19

ATA over Ethernet (AoE) (Ubuntu 12.04)

Plasma Media Center 1.1 and digiKam 3.3

Tahoe Least-Authority File System for secure, distributed data storage

OpenShift Online: a non-developer guide

Server Monitoring With munin And monit On Debian Wheezy

Unix: Shell Script Wrapper Examples

Hand of Thief trojan and your favorite Linux distribution

Server monitoring with Icinga (Debian 6)

Installing FreeIPA with Replication

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin