howto_browse_via_tunnel.

txt
HowTo for BarracudaDrive, goto http://barracudaserver.com/products/HomeServer/

You want to use your tunnel to avoid browsing restrictions imposed by a corporate
proxy? Well, this can be done. You need to install a proxy at your home server.
Here a diagram of the setup we want to do
http://tunnel-browser-01.coololdman.com
(maybe my server is down, then try again later)

For example use CCproxy and/or AnalogX proxy. I suggest you install both and you use
the proxy working better for you.
Download CCproxy from
http://www.youngzsoft.net/ccproxy/ccproxysetup.exe

and AnalogX proxy from

http://www.analogx.com/contents/download/network/proxy.htm
When both proxy are configured with same ports, you can only run one at a time to
avoid conflicting ports. AnalogX proxy ports are fixed and can not be changed. To
use either proxy without reconfiguration, it is advisable to use same port config,
this means configure CCproxy for port 6588 for http and https protocoll. Now you
must configure your tunnel. Your tunnel shall be always configured asymmetric to
avoid conflicting ports on the client side. This means set the tunnel (when used
with the jar file) to:
java -jar httpsTunnel.jar -ssl companyproxy.com:8080 yourdomain.com
58080:localhost:6588
What means:

companyproxy = when you at work you must configure the proxy used at work, go to IE,
tool - internet options - connections - Lan settings and you will see what proxy
domain and also wich port is used (if a configuration script is configured, copy
this URL and past it in your browser and you will see the file with the proxy info,
based on your IP adress you will be able to identify your company proxy)

yourdomain.com = your domain name at home or your IP adress of your homerouter (you
must forward port 443 on your home router to your BD server)

58080:localhost:6588 = the port 58080 is the entry point of your tnnel at your work
PC and localhost in this case is your home PC and 6588 is on your home PC the
exitpoint of your tunnel and will connect to your proxy on port 6588

You have to configure the tunnel database. Create a rule:

called: tunnel_user
/localhost/6588/
/127.0.0.1/6588/
each user you want to give permission you have to give access to tunnel_user
Now you need a browser on the work PC. Assume you do not have admin rights on your
work PC, so you can not install "normal" software, for this reason you need to
download a "portable" browser running from a USB stick. Use Opera portable and/or
Firefox portable (see
http://en.wikipedia.org/wiki/List_of_Portable_Software
and/or search Google) Now this new browser you have to configure to use a different
Page 1
 howto_browse_via_tunnel.txt
proxy settings then your original company IE browser. Configure Opera or Firefox to
http/https for localhost and the port used to 58080 (do not set any exceptions),
this will make the browser use your tunnel entrypoint as proxy, what will be
forwarded to your home CCproxy or Analogx proxy and then proxied out in the Inernet.

Well have fun, keep in mind, when avoiding a firewall you need to get permission of
the network operator! You have been warned!
Keep in mind, your browsing is via a encrypted SSL tunnel, so can not be identified
what you see or download, but to what websites you go is still traceable! At normal
your browser/PC will make a DNS request for the website you want to go, and the DNS
server used will be at normal the DNS server at work, so your DNS requests are still
visible in the DNS server logfile (and your IP adress)

//Wolfgang

Page 2