howto_tunnel_almost_any_application.

txt
HowTo for BarracudaDrive, goto http://barracudaserver.com/products/HomeServer/

You want to use applications not supporting a proxy configuration and/or your
corporate proxy blocks the ports needed for the application. Well, this can be

done.
There are some limitations, there are some application that can not be
"socksyfied" and also when application needs UDP support it can not be done,

because BD tunnel does not support UDP as is. (A lot of games need UDP support,
see here to find out more about your application:
http://www.portforward.com/cports.htm
You need to install a proxy supporting socks at your home server.
Here a diagram of the setup we want to do
http://tunnel-socks-01.coololdman.com
(maybe my server is down, then try again later)

For example use CCproxy and/or AnalogX proxy. I suggest you install both and you

use the proxy working better for you.

Download CCproxy from
http://www.youngzsoft.net/ccproxy/ccproxysetup.exe

and AnalogX proxy from

http://www.analogx.com/contents/download/network/proxy.htm

When both proxy are configured with same ports, you can only run one at a time to

avoid conflicting ports. AnalogX proxy ports are fixed and can not be changed. To
use either proxy without reconfiguration, it is advisable to use same port

config, this means configure CCproxy for port 1080 for socks protocoll. Now you
must configure your tunnel. Your tunnel shall be always configured asymmetric to

avoid conflicting ports on the client side. This means set the tunnel (when used
with the jar file) to:
java -jar httpsTunnel.jar -ssl companyproxy.com:8080 yourdomain.com
51080:localhost:1080
What means:
companyproxy = when you at work you must configure the proxy used at work, go to
IE, tool - internet options - connections - Lan settings and you will see what
proxy domain and also wich port is used (if a configuration script is configured,
copy this URL and past it in your browser and you will see the file with the

Page 1
 howto_tunnel_almost_any_application.txt
proxy info, based on your IP adress you will be able to identify your company
proxy)
yourdomain.com = your domain name at home or your IP adress of your homerouter
(you must forward port 443 on your home router to your BD server)
51080:localhost:1080 = the port 51080 is the entry point of your tunnel at your
work PC and localhost in this case is your home PC and 1080 is on your home PC

the exitpoint of your tunnel and will connect to your socks proxy on port 1080
You have to configure the tunnel database. Create a rule:
called: tunnel_socks
/localhost/1080/
/127.0.0.1/1080/
each user you want to give permission you have to give access to tunnel_socks
Now we need to get your application to enable to use a socks proxy, called
socksify. For this we need following program called freecap.

http://www.freecap.ru/eng/

Install freecap and configure to use proxy: localhost and the port for it 51080
(it will use the tunnel as proxy)

Then any program "started within" freecap will be proxified and tunnel out to

your socks proxy.

Before you start with your application to socksify, its advisable to test your

setup with a proven working setup. Install PixaMSN, this is a free MSN messenger

client without any proxy support. This means it will at normal not work behind a
corporate firewall. We will install it and make it working with freecap via your

tunnel and socks proxy. Download from:

http://usuarios.lycos.es/pixador/PixaMSN.zip
Its a portable softwae, so needs no installation, just run the exe file, but not
within windows. You must open freecap and click add application, add Pixamsn,
then start Pixamsn within freecap, now add your MSN user ID and password and
Pixamsn will login to MSN via your tunnel when all is setup right. If pixaMSN
works right try to add your application you want to use to freecap and you should
be able to use it via the tunnel.
Well have fun, keep in mind, when avoiding a firewall you need to get permission
of the network operator! You have been warned!
Page 2
 howto_tunnel_almost_any_application.txt
Keep in mind, using your application via a encrypted SSL tunnel, can not be
identified what you are doing, but to what servers you connect is still
traceable! At normal your application/PC will make a DNS request for the server
you want to go, and the DNS server used will be at normal the DNS server at work,
so your DNS requests are still visible in the DNS server logfile (and your IP
adress)

//Wolfgang
Back to top

wolfgang

Joined: 10 Oct 2006

Posts: 35
Location: Montreal/Canada
Posted: Tue Jan 02, 2007 1:47 pm Post subject:

--------------------------------------------------------------------------------
Ooohps, forgot some details about freecap configuration!
dwnload from http://www.freecap.ru/eng/

download the version without installer, it will run like a portable application

from USB stick.

Configuration:

Note: when you are in setting in freecap, use only selection of tabs on top, the

vertical selections have bug and are misleading, going to wrong window
freecap - file - settings - now set following

default proxy = localhost

port = 1080
select socks v5 and do NOT check the field user ID

thats basically it.

When all is working, you can try (also DNS proxying must be set at ome on
CCproxy) to configure following:
freecap - file - settings - program
now you can set also DNS resolution to local or remote, if set to remote the DNS
server at home configured would be used (avoiding that your activity will be in
logfile of your work location). Do this only if all works, this will be slower,
Page 3
 howto_tunnel_almost_any_application.txt
because it goes via tunnel, maybe does not work with all programs.

If you have problems, you can setup logfile under:

freecap - file - settings - log settings
Guess, this should be all, Wolfgang

Back to top

wolfgang

Joined: 10 Oct 2006

Posts: 35
Location: Montreal/Canada
Posted: Tue Jan 02, 2007 4:40 pm Post subject:
--------------------------------------------------------------------------------

you can also use tunnel with freecap to use Telnet.

You must open windows telnet client via freecap. In freecap - file - new

application - browse

now go to c:\windows\system32 and click telent.exe

when you start now telnet via icon in freecap you can telent to any server on

internet.
for test, you can find some telnet bbs:

http://www.dmine.com/telnet/newbbs.asp

keep in mind, not all are up all the time.

//Wolfgang

Page 4