Created
May 16, 2019 08:35
-
-
Save lucasscariot/6f6d4fa98fb9693f5e2e546c8271d19c to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#logging | |
logoutput: /var/log/sockd.log | |
#debug: 1 | |
#server address specification | |
internal: 192.0.2.1 port = 1080 | |
external: eth1 | |
#server identities (not needed on solaris) | |
#user.privileged: root | |
user.notprivileged: socks | |
#user.libwrap: libwrap | |
#reverse dns lookup | |
#srchost: nodnsmismatch | |
#authentication methods | |
clientmethod: none | |
method: none | |
## | |
## SOCKS client access rules | |
## | |
#rule processing stops at the first match, no match results in blocking | |
#block access to socks server from 192.0.2.22 (exception for pass rule below) | |
# client block { | |
# #block connections from 192.0.2.22/32 | |
# from: 192.0.2.22/24 to: 0.0.0.0/0 | |
# log: error # connect disconnect | |
# } | |
#allow connections from local network (192.0.2.0/24) | |
client pass { | |
from: 192.0.2.0/24 to: 0.0.0.0/0 | |
log: error # connect disconnect | |
} | |
## | |
## SOCKS command rules | |
## | |
#rule processing stops at the first match, no match results in blocking | |
#block communication with www.example.org | |
# block { | |
# from: 0.0.0.0/0 to: www.example.org | |
# command: bind connect udpassociate | |
# log: error # connect disconnect iooperation | |
# } | |
#generic pass statement - bind/outgoing traffic | |
pass { | |
from: 0.0.0.0/0 to: 0.0.0.0/0 | |
command: bind connect udpassociate | |
log: error # connect disconnect iooperation | |
} | |
#block incoming connections/packets from ftp.example.org | |
# block { | |
# from: 0.0.0.0/0 to: ftp.example.org | |
# command: bindreply udpreply | |
# log: error # connect disconnect iooperation | |
# } | |
#generic pass statement for incoming connections/packets | |
pass { | |
from: 0.0.0.0/0 to: 0.0.0.0/0 | |
command: bindreply udpreply | |
log: error # connect disconnect iooperation | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment