From 31d716beafe8da9ef01e5e3153a79ddaaaa58b4d Mon Sep 17 00:00:00 2001 From: LoveIsGrief Date: Mon, 22 Jul 2019 17:43:15 +0200 Subject: [PATCH] Trying to make `curl stats.i2p` work - Log the packet filtering - dump the packets from all interfaces #1 Figure out why packets aren't being forwarded using iptables and pr0xy --- Dockerfile | 1 + docker-compose.yml | 11 ++++++++++- exec.sh | 13 +++++++++---- 3 files changed, 20 insertions(+), 5 deletions(-) diff --git a/Dockerfile b/Dockerfile index 685478d..2b41706 100644 --- a/Dockerfile +++ b/Dockerfile @@ -6,6 +6,7 @@ RUN apk add --no-cache \ dumb-init \ iptables \ git \ + netcat-openbsd \ python3 \ ulogd \ tcpdump \ diff --git a/docker-compose.yml b/docker-compose.yml index d4aca23..3d87e74 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -10,6 +10,15 @@ services: - i2pd contained: build: . + #command: + # - "/bin/bash" + # - "-c" + # - "while true ; do sleep 30 ; done" + #command: + # - "python3" + # - "/opt/pr0cks/pr0cks.py" + # - "--proxy" + # - "socks5:172.16.200.10:4447" hostname: contained # Required for [iptables] cap_add: @@ -20,7 +29,7 @@ services: volumes: - /tmp/contained:/mount extra_hosts: - - "stats.i2p:127.0.0.1" + - "stats.i2p:172.16.200.10" networks: i2p_net: ipv4_address: 172.16.200.20 diff --git a/exec.sh b/exec.sh index 94d43a5..d78ba89 100644 --- a/exec.sh +++ b/exec.sh @@ -4,14 +4,19 @@ IFS=$'\n\t' # https://websistent.com/linux-iptables-log-everything/ +iptables -I INPUT 1 -s 172.16.200.10 -j NFLOG +iptables -t nat -I INPUT 1 -s 172.16.200.10 -j NFLOG iptables -I OUTPUT 1 -j NFLOG iptables -t nat -I OUTPUT 1 -j NFLOG -iptables -t nat -A OUTPUT -p tcp -j REDIRECT --to-ports 10080 +iptables -t nat -A OUTPUT -o eth0 -p tcp --dport 4444 -j ACCEPT + +iptables -t nat -A OUTPUT -o eth0 -p tcp -j REDIRECT --to-ports 10080 iptables -t nat -A OUTPUT -o eth0 -p udp -m udp --dport 53 -j REDIRECT --to-port 1053 ulogd -d -tcpdump -w /mount/tcp.dmp & - -/opt/pr0cks/pr0cks.py --proxy http:176.16.200.10:4444 +tcpdump -i any -w /mount/tcp.dmp & +#python3 /opt/pr0cks/pr0cks.py --proxy socks5:172.16.200.10:4447 +python3 /opt/pr0cks/pr0cks.py --proxy http:172.16.200.10:4444 +#curl --proxy 172.16.200.10:4444 stats.i2p