java多线程    Java入门    vsftp    ftp    linux配置    centos    FRP教程    HBase    Html5缓存    webp    zabbix    分布式    neo4j图数据库    

stunnel+squid 配置访问google笔记

发表于 2020-02-18 11:32:37 by 月小升

Squid 配置请看上一个文章
核心理解:
1. squid 是个帮助转发的工具
2. stunnel 是个加密工具,将转发过程的数据进行加密处理。
https://java-er.com/blog/squid-install/
1.服务器配置
生成服务器加密文件

CentOS 下安装stunnel

yum -y install stunnel openssl openssl-devel
openssl req -new -x509 -days 365 -nodes -out stunnel.pem -keyout stunnel.pem
openssl gendh 512>> stunnel.pem   #不是必须的
vi /etc/stunnel/stunnel_ser.conf
cert = /etc/stunnel/stunnel.pem
CAfile = /etc/stunnel/stunnel.pem
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
;;;chroot = /var/run/stunnel
pid = /tmp/stunnel_server.pid
verify = 3
;;; CApath = certs
;;; CRLpath = crls
;;; CRLfile = crls.pem
;setuid = web
;setgid = web
;;; client=yes
compression = zlib
;;; taskbar = no
delay = no
;;; failover = rr
;;; failover = prio
;;; sslVersion = TLSv1
;;; fips=no
sslVersion = all
;;; options = NO_SSLv2
;;; options = NO_SSLv3
debug = 7
syslog = no
output = /var/log/stunnel/server.log
client = no
[sproxy]
accept = 8889
connect = 49.253.31.19:8888

配置文件重点说明
accept = 8889 为squid 端口
connect = 49.253.31.19:8888 为stunnel接受外部信息的端口

启动服务 

stunnel /etc/stunnel/stunnel_ser.conf

2. 客户端安装sunnel
MAC 系统

brew install stunnel
cp /usr/local/etc/stunnel/stunnel.conf-sample /usr/local/etc/stunnel/stunnel.conf
vi /usr/local/etc/stunnel/stunnel.conf
cert = /usr/local/etc/stunnel/stunnel.pem
CAfile = /usr/local/etc/stunnel/stunnel.pem
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1

;;;chroot = /var/run/stunnel
pid = /tmp/stunnel.pid
verify = 3

;;; CApath = certs
;;; CRLpath = crls
;;; CRLfile = crls.pem

;setuid = web
;setgid = web

;;; client=yes
;compression = zlib
;;; taskbar = no
delay = no
;;; failover = rr
;;; failover = prio
;;; fips=no
sslVersion = all
;;; options = NO_SSLv2
;;; options = NO_SSLv3

debug = 7
syslog = no
output = /data/logs/stunnel.log
client = yes

[sproxy]
accept = 0.0.0.0:7071
connect = 49.253.31.19:8889

重点说明:
connect = 49.253.31.19:8889 ;;;服务器的stunnel端口
accept = 0.0.0.0:7071 ;;;本地代理浏览器用来访问的端口

stunnel /usr/local/etc/stunnel/stunnel.conf

3. Chrome浏览器
用插件SwitchySharp
配置如下

具体怎么安装设置,请看上个文章https://java-er.com/blog/ssh-suidao/

This entry was posted in Linux and tagged , . Bookmark the permalink.
月小升QQ 2651044202, 技术交流QQ群 178491360
首发地址:月小升博客https://java-er.com/blog/stunnel-and-squid-note/
无特殊说明,文章均为月小升原创,欢迎转载,转载请注明本文地址,谢谢
您的评论是我写作的动力.

Leave a Reply

近期文章

  1. Centos安装mysql9
  2. certbot 申请Let’s Encrypt泛域名SSL证书
  3. php8 编译zip
  4. docker 快速操作笔记
  5. 软件概要设计和详细设计的区别
  6. Spring AOP理解
  7. Spring IOC的理解
  8. Java的双亲委派模型
  9. JVM中引用的分类
  10. 柔性事务是什么,分布式环境为何要放弃传统事务

标签

    Android Apache cookie frp FTP google HBase html5 iphone java java基础教程 java教程 jQuery linux Linux命令 mac mac软件 MongoDB mysql neo4j nginx nosql php php-fpm php函数 python redis shell SVN swift Ubuntu Windows wordpress wordpress插件 xcode zabbix 值得记忆 图片 多线程 密码 插件 数据库 日志 服务器 缓存

分类

  1. JAVA
  2. Linux
  3. MAC
  4. Perl
  5. PHP
  6. Python
  7. WEB前端
  8. Windows
  9. 互联网观察
  10. 吐槽
  11. 技术管理
  12. 数学与算法
  13. 数据库
  14. 日常随笔
  15. 月小升软件
  16. 电商运营
  17. 科技精品
  18. 程序视点
  19. 网络推广
  20. 运营
  21. 阅读笔记
  22. 高并发与大数据