Librenix
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

ssh: Use Linux as a SOCKS5 proxy

Up
vote
Down

Did you know you could use ssh to create a SOCKS5 server?

This article explains how to create a SOCKS5 server in 1 command and how to add ip-based access control to it via iptables and tcp forwarder. read more...
permapage | score:9280 | -pkrumins, May 7, 2010

Tutorial: Squid proxy server with DansGuardian, ClamAV, WPAD on Ubuntu 9.04

Up
vote
Down

This tutorial will demonstrate how to set up a Squid Proxy server on Ubuntu 9.04 Server with DansGuardian (for content filtering) and ClamAV (for Virus scanning); in addition, we will set up Web Proxy AutoDetection (WPAD) through DHCP (in this case, the Windows Server 2003 DHCP server) or DNS so that the only configuration necessary on the client side is to check "Auto-detect proxy settings for this network" in Firefox or Internet Explorer. At the end of the tutorial, users will have a fully functional and secure proxy for HTTP access. read more...
mail this link | permapage | score:8876 | -falko, July 3, 2009

Tutorial: nginx as a reverse proxy for Apache2 on Ubuntu 12.04

Up
vote
Down

nginx (pronounced "engine x") is a free, open-source, high-performance HTTP server. nginx is known for its stability, rich feature set, simple configuration, and low resource consumption. This tutorial shows how you can set up nginx as a reverse proxy on front of an Apache2 web server on Ubuntu 12.04. read more...
permapage | score:8843 | -falko, October 7, 2012

Using an ISA Proxy server in Linux

Up
vote
Down

NTLM (NT LAN Manager) is a Microsoft authentication protocol. It is used extensively in older versions of Windows, and Microsoft has embedded the NTLM authentication into several communication protocols, such as HTTP, POP3 and SMTP. One benefit of NTLM authentication is that Windows users can get transparent access through an ISA proxy server. While the proxy does require a username and password, IE will happily send the users current credentials without any additional prompt.

Linux users don't tend to be so lucky. Most web browsers will support NTLM authentication when using an ISA proxy, but there are some cases, like when using the proxy settings in OpenSuse 11.2, where the lack of support for NTLM can effectively prevent internet access.

Fortunately there is a fairly simple way around this limitation. A small Python utility called NTLM Authorization Proxy Server can be used to ferry internet traffic between the OS and a ISA proxy server. read more...
mail this link | permapage | score:8758 | -mcasperson, July 7, 2010

HA load balancer with HAProxy/Keepalived on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and keepalived on Debian Lenny. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using keepalived, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:8589 | -falko, June 17, 2009

Squid Proxy HowTo: Listen Pandora to In Europe

Up
vote
Down

I have Pandora Internet Radio One subscription, and recently I moved to Europe for a few months as part of my work schedule. The service fully available only in the United States. How do I access Pandora one service in Europe? Can I get around it by using a proxy server installed on my own server located in USA at home or ISP data center? read more...
permapage | score:8402 | -nixcraft, November 22, 2012

Set up a Load Balancer with Failover using HAProxy / Heartbeat on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and heartbeat on Debian Etch. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using heartbeat, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:8352 | -falko, November 7, 2007

Howto: Squid reverse proxy

Up
vote
Down

This article explains how you can set up a caching reverse proxy with Squid 2.6 in front of your web server on Debian Etch. If you have a high-traffic dynamic web site that generates lots of database queries on each request, you can decrease the server load dramatically by caching your content for a few minutes or more (that depends on how often you update your content).

(here's a bit of dramatic digital art) read more...
mail this link | permapage | score:8190 | -falko, December 28, 2008 (Updated: April 24, 2012)

Set up an HA load balancer with HAProxy, Wackamole, Spread on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy, Wackamole, and Spread on Debian Etch. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using Wackamole and Spread, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:7970 | -falko, January 6, 2009

SSH as a SOCKS proxy

Up
vote
Down

Yet another sweet ability of OpenSSH...
The -D arg tells OpenSSH to be a SOCKS proxy. So you simply log in to the endpoint via SSH with the -D arg like:

ssh -D 1234 user@host.example.com

And then tell your web browser to use a SOCKS v5 proxy on localhost at the specified port and bingo, you have a secure connection to your endpoint.
read more...
permapage | score:7969 | -Ray, January 23, 2009

Transparent Proxy with Squid on Mandrake 10

Up
vote
Down

Keep the bad stuff out -- web filtering in 7 steps. [This workshop is in the form of a .pdf file. -Ed.]
How to install a transparent Squid proxy server with real-time HTTP virus scanning on Mandrake 10.0 using DansGuardian and ClamAV?

People quickly and easily access volumes of research on the Internet and correspond with a mouse click. For more and more companies, content filtering is part of the large battle to combat all kinds of online threats, including hackers, worms and viruses. Linux content filtering allows administrators to configure and manage Internet access across the entire network and to block unwanted Web content like pornography, shopping Web sites, games and gambling.

This guide contains all the necessary information for installing and understanding the architectural layout of the implementation.
read more...
mail this link | permapage | score:7872 | -fn-eagle, March 8, 2004 (Updated: September 20, 2004)

Tutorial: Fast web browsing with a Linux caching proxy

Up
vote
Down

This tutorial shows you how to compile, install, and configure oops, an open source, high-performance, multi-threaded Web proxy under Linux. Caching Web proxies are especially useful for accelerating Web browsing performance while at the same time conserving your network bandwidth.

[As is normal with IBM tutorials, this one requires you to create a (free) account. -Ed.] read more...
permapage | score:7810 | -Idean Momtaheni, May 4, 2005

Web Filtering on Squid Proxy

Up
vote
Down

This HOWTO describes how to protect your home / small enterprise network users from objectionable internet contents with help of HTTP proxy. Our goal is to set up a free Linux based server running Squid and deploy web filtering application on it saving bandwidth, speeding up web access and blocking obsessive and potentially illegal and malicious web files. read more...
permapage | score:7575 | -falko, April 16, 2012

Use SSH via HTTP Proxy with Corkscrew

Up
vote
Down

If you want to ssh your vps server or your home computer from your work place (assuming you are using http proxy). You need to use Corkscrew. Corkscrew is a simple tool to tunnel TCP connections through an HTTP proxy supporting the CONNECT method. It reads stdin and writes to stdout during the connection, just like netcat. read more...
permapage | score:7557 | -gg234, December 29, 2008

Apt-Cacher-NG: HTTP download proxy

Up
vote
Down

Apt-Cacher-ng is a software package that keeps a cache, on the disk, of Debian/Ubuntu Packages and Release files. When an apt-get like client issues a request for a file, Apt-Cacher intercepts it and if the file is already cached it serves it to the client immediately, otherwise it fetches the file from the Internet, saves it on the cache, and then serves it to the client. This means that several Debian machines can be upgraded but each package need to be downloaded only once. read more...
permapage | score:7434 | -gg234, February 25, 2009

Tiny web proxy and content filtering virtual machine on CentOS 6

Up
vote
Down

This small HOWTO will show you how to set up a small virtual machine to speed up and secure your home / small enterprise web surfing network using CentOS 6, Squid 3.1 and QuintoLabs Content Security 1.4 applications deployed in a VMware Virtual Player running on Windows 7 x64 as a host operating system. This howto is targeted at novice users and may sometimes seem too thorough for more advanced gurus. read more...
permapage | score:7414 | -falko, September 21, 2011

Anonymous Squid Proxy on CentOS 5.x

Up
vote
Down

This howto describes a method to install a Squid 3 server as an anonymous proxy. An anonymous proxy is a tool that attempts to make activity on the Internet untraceable. It accesses the Internet on the user's behalf, protecting personal information by hiding the source computer's identifying information. Simply say to hide your IP. read more...
permapage | score:7287 | -falko, November 21, 2008

Load balancer with HAProxy/Heartbeat on Debian

Up
vote
Down

This article explains how to set up a two-node load balancer in an active/passive configuration with HAProxy and heartbeat on Debian Lenny. The load balancer sits between the user and two (or more) backend Apache web servers that hold the same content. Not only does the load balancer distribute the requests to the two backend Apache servers, it also checks the health of the backend servers. If one of them is down, all requests will automatically be redirected to the remaining backend server. In addition to that, the two load balancer nodes monitor each other using heartbeat, and if the master fails, the slave becomes the master, which means the users will not notice any disruption of the service. HAProxy is session-aware, which means you can use it with any web application that makes use of sessions (such as forums, shopping carts, etc.). read more...
mail this link | permapage | score:7286 | -falko, July 14, 2009

Configuring and Using an FTP Proxy

Up
vote
Down

Need an ftp server but don't want to open a hole through your firewall into your network?
One important technique is to run an FTP proxy on your firewall. Whereas the standard Netfilter code in the Linux kernel only inspects packets, an FTP proxy lets your firewall act as an intermediary in all FTP transactions. This increases your protection against buffer overflows and many other kinds of FTP attacks. It also allows you to restrict which FTP commands are executed by FTP clients.

This month I explain how to run SuSE's free (and non-SuSE-Linux-specific) Proxy-Suite FTP proxy on your Linux firewall, adding transparent but strong protection to all your FTP transactions.
read more...
mail this link | permapage | score:7122 | -Ray, November 16, 2002

Use eBox as a Gateway: Firewall, Traffic Shaping, HTTP Proxy

Up
vote
Down

eBox Platform is the Linux small business server that allows you to manage all your network services like firewall, DHCP, DNS, VPN, proxy, IDS, mail, file and printer sharing, VoIP, IM and much more. These functionalities are tightly integrated, automating most tasks, avoiding mistakes and saving time for system administrators. This article will show you step by step how to use eBox as a Gateway, featuring network configuration, load balancing between two Internet connections with WAN failover and multigateway rules for policy routing, traffic shaping, DHCP and DNS cache for the LAN network and HTTP proxy with different content filtering policies and antivirus. read more...
mail this link | permapage | score:7102 | -falko, June 11, 2010
More articles...
Buy Large Wall Art Prints

Recent headlines

Tahoe Least-Authority File System for secure, distributed data storage

Ubuntu Edge: Is there life after an unsuccessful crowd-funding campaign?

Dual-boot Windows 7 and Ubuntu 12.04 on a PC with UEFI board, SSD and HDD

Tutorial: Install Debian 7 (testing) with debootstrap from a Grml live Linux

LinSSID Graphical wireless scanning for Linux

Hand of Thief trojan and your favorite Linux distribution

Does disk encryption really protect your data?

LG 8-inch G Pad 8.3 Android tablet

Tutorial: Install SugarCRM CE on Fedora 10

How to install Ajenti on Ubuntu 13.04 server

vsftpd: Local, Virtual users with bash script maintainance

Usability, user-friendliness and the Linux desktop

Tutorial: Debian 7 Samba Server with tdbsam

How to replace Ufw with Firewalld in Linux Mint 15

Debian 6, Squid, Kerberos/LDAP authentication, Active Directory integration, Cyfin Reporter

4 third-party repositories for Fedora 19

Tutorial: Fedora 19 Samba server with tdbsam

Tutorial: Automatically add a disclaimer to emails with alterMIME (Postfix on Debian 6)

StartOS 6 GNOME 3 and KDE preview

Encrypt mail with SSL certificates

Linux Iptables Examples

Virtual Users/Domains with Postfix/Courier/MySQL/SquirrelMail (Debian 7)

Install Apache2, PHP5, MySQL on CentOS 5.7

Plasma Media Center 1.1 and digiKam 3.3

OpenShift Online: a non-developer guide

Python Client/Server Tutorial

Tutorial: Replace Windows with Pinguy OS 11.10

Run Unity desktop on Linux Mint 12

Tutorial: Webcam streaming your desktop plus audio with ffmpeg, crtmpserver, Flowplayer

Using Multiple PHP Versions (PHP-FPM FastCGI) With ISPConfig 3 (Ubuntu 12.04)

webOS: The latest Linux distribution

The Coming HTML 5 Revolution in Linux

HowTo: HTTP Status: 206 Partial Content and Range Requests Using Curl

Tutorial: Run Joomla 1.7 on Nginx on Debian 6, Ubuntu 11.10

PDNSD HowTo: A DNS Caching Personal Server

Tutorial: Install Postfix, Courier, MySQL, SquirrelMail on CentOS 6.2

Tutorial: Install Lighttpd, PHP5, MySQL on CentOS 6.0

Reviewing Kali Linux - the distro for security geeks

Tutorial: USB-Over-IP server, Client on Ubuntu 10.04

GhostBSD 2.5 review

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin