[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[tor-talk] Tor Transparent Setup
- From: "Jeff Newman" <jnewman67 AT gmx.com>
- Subject: [tor-talk] Tor Transparent Setup
- Date: Wed, 27 Dec 2017 19:42:57 -0500
- Arc-authentication-results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of tor-talk-bounces AT lists.torproject.org designates 188.8.131.52 as permitted sender) smtp.mailfrom=tor-talk-bounces AT lists.torproject.org
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=sender:errors-to:content-transfer-encoding:reply-to:list-subscribe :list-help:list-post:list-archive:list-unsubscribe:list-id :precedence:subject:thread-index:mime-version:message-id:date:to :from:arc-authentication-results; bh=UP8wdQTYOiaTKdAS4U5MvfB78DoV6YBdDzuFZ1HXGHA=; b=N1qxHTUKWdIyz2IknPXsoS1ps4s9FZybdU3WKVehHnY+HkO0XJJG3ZNqwnkQQwS3BL p3YtXKz/flBxpRN8gD+kwB8VHlyXoXR4z5jPNX/TguOAO1VBt1lhnuVc+41W2/imeQME y5qLcv16ErZJa4Pwlcq2y0hqnnISTmbH1lKM7A9Rmb0CESnrgBg4aIp5RA8mJzxOYc5i kHV+m0x0/l22vSDhDI504PJR0C5zxT7YjBbAEcgdvZZPoCvMJbcrKVBS0gFWQ8KZ/dOh GWyyzxKR6UIRCIrPGRL5NUN9s5xCVG3kpE/gEz7NBeRTfGIZfnHCEdQ4oxT2I42Y3n9C f9Eg==
- Arc-seal: i=1; a=rsa-sha256; t=1514421886; cv=none; d=google.com; s=arc-20160816; b=EHaEvdmnRf9Ncs5xfL67+S/ZWViLlZFn09Zq1yRUDHTotU5Ww9BH4UTSKDEyDNegq2 hOf1O2zdqaApBoHwdjRL+K7BpUDDRJqlE2l/Wuwm4OrhCWABMHQIeu56iTlMlXsWqYiC 6h79dawHBv8RBmcF6kcFRezycd42Mt+ASjFMHCnlIixCxdZqhTAlbepw0k8YKyShsgOp aejoXXQmJZhb+O3N7ycodykB5t7EFcUHbkdgn/NAzjCYNc3jhyh0SDggCw07zpBzCazx 3q5LtOq5SquoXZtIqgZNuqzBXvMsYQaR4JTeOR47Id6qwU/Kc9mSH2cq4UoDG/HsJrBb ABBw==
- List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
- Reply-to: tor-talk AT lists.torproject.org
- Sender: "tor-talk" <tor-talk-bounces AT lists.torproject.org>
- Thread-index: AdN/dM4kNAH2Ed/xTbiFnHXpK3r5Kw==
- To: <tor-talk AT lists.torproject.org>
I'm new to Tor (and pseudo-new to Iptables), but not a unix newbie (started
in '88) - however, I've literally spent the last 24 hours trying to get the
few complete and/or relevant HowTo's I could find for Tor/IPTables/CentOS to
work - without success.
I'm trying to implement a transparent proxy on a CentOS 6.5 machine that I'm
going to use as a desktop. I don't want to use the Tor Browser, but would
rather have then "entire" system Tor'd (I realize there are leak
potentials). I have a static public IP I am using directly on this single
network port machine.
With a default IPTables config, and no Tor installed/configured, I can ping
the internet and browse without issue.
My system doesn't like the Tor configuration, but the IPTables script seems
to run correctly. After editing resolv.conf to 127.0.0.1, DNS does not
resolve (hangs), so that appears to be a bust.
I pulled the Tor config from this one:
but their IPTables config doesn't seem to hold after restart. Using their
Tor config with the previous IPTables script seems most complete (everything
starts without failures, logs look happy), but still no DNS resolution
Other tutorials I've found have depreciated config options, or are for
different Linux versions, and that seems to create problems. I did finally
figure out that SELinux had to be uninstalled to get past some config file
permission access issues, but other than that, every time I try to connect
to check.torproject.org, it says "sorry" if it can resolve at all.
Anyone know of a good, current set of tutorials that works? I'd really
appreciate the help. The Tor website doesn't seem to have any examples that
are updated, or that I can get to work or are relevant. It does seem like
everyone is saying "it's simple, just do this" but copy/pasting their stuff
doesn't work (I do change the machine IP in scripts as needed). And it
really does seem like it should be simple, as there are only a couple ways
to use it, and a couple options to set.
CentOS 6.5 build (core i7, Tor yum installed, fully yum updated)
Tor 0.2.9.12-1 (EL6)
I also tried a CentOS 7.x build, but had no luck there either (similar
tor-talk mailing list - tor-talk AT lists.torproject.org
To unsubscribe or change other settings go to