Jump to: navigation, search

Tunnels/Connecting to SSH before Tor

This page contains changes which are not marked for translation.


Connecting to SSH before Tor


User -> SSH -> Tor -> Internet

The SSH tunnel be configured on the host or inside Whonix-Gateway.

Install SSH Client[edit]

sudo apt-get update

sudo apt-get install ssh

Test Connection[edit]

ssh yourusername@your.ssh.server

  • TODO: Public key authentication steps

apt-get install lynx

lynx check.torproject.org

exit

Configure Local Server[edit]

ssh -D 1080 your.ssh.server

  • TODO: Run in background on each start up before Tor.
  • TODO: Public Key authentication steps

Configure torrc[edit]

Option 1: Use Anon Connection Wizard[edit]

Beginning with Whonix 14, a prefixed proxy can be configured easily using Anon Connection Wizard.

Step 1: Start Anon Connection Wizard[edit]

If you are using Qubes-Whonix, complete the following steps.

Qubes App Launcher (blue/grey "Q") -> Whonix-Gateway ProxyVM (commonly named sys-whonix) -> Anon Connection Wizard

If you are using a graphical Whonix-Gateway, complete the following steps.

Start Menu -> Applications -> System -> Anon Connection Wizard

If you are using a terminal Whonix-Gateway, type.

kdesudo anon-connection-wizard

Step 2: Use Proxy Configuration Page[edit]

Select "Use proxy before connecting to the Tor network" on the Proxy Configuration page -> Choose the proxy type -> Fill out other necessary information

Option 2: Manually Configure Proxy[edit]

Open /etc/tor/torrc.

If you are using Qubes-Whonix, complete the following steps.

Qubes App Launcher (blue/grey "Q") -> Whonix-Gateway ProxyVM (commonly named sys-whonix) -> Tor User Config (Torrc)

If you are using a graphical Whonix-Gateway, complete the following steps.

Start Menu -> Applications -> Settings -> /etc/tor/torrc

If you are using a terminal-only Whonix-Gateway, complete the following steps.

sudo nano /etc/tor/torrc

  • If SSH tunnel was setup from Whonix-Gateway:

Socks5Proxy 127.0.0.1:1080

  • If SSH tunnel was setup from host operating system, change IP:PORT as needed:

Socks5Proxy IP:PORT


  • TODO: if running inside Whonix-Gateway, new firewall rules are probably required.

Footnotes[edit]



Random News:

Please help in testing new features and bug fixes in Whonix.


Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.

Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself. (Why?)