dp79
08-08-2009, 19:38
Hi everybody,
I was trying to follow several tutorials online about how to get around corporate proxies. My company for example is using websense to block private web access. I have squid and dropbear running on my asus and what I'm trying to do is to set up a secure ssh tunnel and use it to connect from firefox on my company PC to squid proxy on my asus at home. Since my company blocks almost all outgoing ports, I used port 443 (https) for the ssh channel (in my router I forwarded port 443 to port 22). It works like a charm.
I also installed squid - many thanks for wpte for his help on that!
Squid is listening to port 9091 and I forwarded port 80 to 9091, so that I can connect to squid from work. It works like a charm as well.
Squid by itself can fool websense in some cases, so even by using the simple proxy "feature" I can visit previously blocked sites. Unfortunately not all, because wesense is blind on IP filtering, but not on text filtering, since the connection between firefox and squid is not encrypted.
My question is, how can I create a ssh tunnel to squid?
I was trying to follow this tutorial, but I got stuck at the authentication feature of squid (without authentication, the ssh -L* command doesn't work).
http://www.howtoforge.com/linux_secure_browsing_squid
Any advise is greatly appreciated.
Cheers,
dp79
BE AWARE: You might get fired if getting caught on doing this at work!
I was trying to follow several tutorials online about how to get around corporate proxies. My company for example is using websense to block private web access. I have squid and dropbear running on my asus and what I'm trying to do is to set up a secure ssh tunnel and use it to connect from firefox on my company PC to squid proxy on my asus at home. Since my company blocks almost all outgoing ports, I used port 443 (https) for the ssh channel (in my router I forwarded port 443 to port 22). It works like a charm.
I also installed squid - many thanks for wpte for his help on that!
Squid is listening to port 9091 and I forwarded port 80 to 9091, so that I can connect to squid from work. It works like a charm as well.
Squid by itself can fool websense in some cases, so even by using the simple proxy "feature" I can visit previously blocked sites. Unfortunately not all, because wesense is blind on IP filtering, but not on text filtering, since the connection between firefox and squid is not encrypted.
My question is, how can I create a ssh tunnel to squid?
I was trying to follow this tutorial, but I got stuck at the authentication feature of squid (without authentication, the ssh -L* command doesn't work).
http://www.howtoforge.com/linux_secure_browsing_squid
Any advise is greatly appreciated.
Cheers,
dp79
BE AWARE: You might get fired if getting caught on doing this at work!