[tor-dev] using obfs4 to tunnel to a SOCKS proxy server

Yawning Angel yawning at schwanenlied.me
Wed Jan 23 11:41:42 UTC 2019

On 1/23/19 10:42 AM, Hans-Christoph Steiner wrote:
> uniqx got the setup working with obfs4 connecting to a port on the
> server side, like a webserver. Weŕe trying to figure out a way to make
> this obfs4 setup to behave like an SSH port forward, but weŕe banging
> our heads against the concept.

You don't/can't, with mainline obfs4proxy.

> For example, could the obfs4 server side provide a generic SOCKS proxy?

There is no functionality for doing such a thing in mainline obfs4proxy.

What currently will work is any one of:

 * Stick a proxy server of your choice behind the obfs4proxy server.
From the application end it will essentially be connecting to a (for
example) SOCKS5 proxy over another SOCKS5 proxy.

 * Connect the obfs4proxy server to a load-balancer or reverse-proxy
that re-dispatches requests to the correct location based on the SNI
block or `Host` header (depending on how you want to treat TLS).


Yawning Angel

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-dev/attachments/20190123/cb758d25/attachment.sig>

More information about the tor-dev mailing list