Software/tool to route an IP packet to proxy server and capture the Proxy reply as an Post: 302289167

Sponsored Content

Special Forums IP Networking Software/tool to route an IP packet to proxy server and capture the Proxy reply as an Post 302289167 by Rajesh_BK on Thursday 19th of February 2009 01:32:21 AM

02-19-2009

Registered User

Software/tool to route an IP packet to proxy server and capture the Proxy reply as an

Hi,

I am involved in a project on Debian. One of my requirement is to route an IP packet in my application to a proxy server and receive the reply from the proxy server as an IP packet. My application handles data at the IP frame level. My application creates an IP packet(with all the necessary IP header and proper payload). I need to route this IP packet to a proxy server and capture the reply from the proxy server at the IP level as an IP packet.

One of solution that I have in my mind(thought have not tried) is to create a raw socket in my application and establish a connection with the proxy server. Then I would be able to send IP packet to the proxy server via the raw socket. The reply from the proxy server when read via the raw socket in my application would be an IP packet sent by the proxy. But this implementation requires my application to be run with root privilidges. My application would be run by mulitple users and providing them root access is not acceptable.

As an alternative, I am planning to run a different program on a seperate machine(with root privilidge). This new program(let us call it as router for our reference) would listen on UDP ports to which my applications running on different machines would send data(IP packets). This means IP packet is sent as data via a UDP socket(Similar to IP-in-IP). When the router receives the data(IP Packet) it routes it to Proxy server via a Raw socket connection. This means the router would establish a raw socket connection with the Proxy server and send the IP packets on the raw socket(This IP packtes are received as user data on the UDP port). Similarly the data received from the proxy server, the router reads the same via the raw socket as an IP packet. This IP packet is sent via the UDP connection to the machine(machine 1 or 2 in the Diagram).

Please refer the attachments for a graphical view(Graphical textpad.txt for textpad/wordpad and Graphical notepad.txt for notepad)

I looking for a software/package that would perfom the functionality of the router described above. It would be great if it can handle any authenication required with the proxy server also.

In summary the software should accecpt UDP/TCP connections, recieve an IP packet as data from the UDP/TCP port, send the received IP packet to proxy server, receive the reply IP packet from the proxy server

One of my friend suggested to try CIPE for the same. But I could not find CIPE fit my requirements. Could you please provide any pointers to any tool/software that would fit my requirements.

Regards,
Rajesh B.K

Graphical notepad.txt (944 Bytes)

Graphical textpad.txt (544 Bytes)

Last edited by Rajesh_BK; 02-19-2009 at 03:19 AM.. Reason: Format was not proper

Rajesh_BK

View Public Profile for Rajesh_BK

Find all posts by Rajesh_BK

9 More Discussions You Might Find Interesting

1. IP Networking

routing through a proxy server

I'm new to this forum, so please be gentle ! I need to get my IBM RS running AIX4.3 onto the internet to a particular ftp server, through a NT server running proxy services. This NT server is directly connected to our internet router vis a secondary NIC on the NT server. When I add the route...

2. Linux

how to get IP for proxy server

i have installed a proxy server on my linux box . how to get the IP for that proxy . cheers

3. Red Hat

How to get server out through work proxy

Hi, I want to be able to get my server to update via yum through our work proxy. I have tried the usual method of exporting the http_proxy=http://username:password@domain.com but this does not work for me. I opce heard about a guy who set up a proxy on his XP laptop (Don't flame me I have...

4. Cybersecurity

Help with iptables on proxy server

I may be doing this incorrectly, so if you have any suggestions, I'm open to it. So I installed a reverse proxy server on my LAN. It's not on the DMZ because it's coming from a blade running inside a virtual machine. Anyways, so I installed iptables and locked everything down from the outside...

5. Red Hat

Ftp problem on proxy server

Hi all, First of all i would like to say sorry to all for my english. My name is Mastan. We have an proxy server have 2 lan cards. one is for public and another for private. public ip: 182.72.141.... private ip: 192.168.0.0 So, the thing is i configure ftp server in my local for...

6. IP Networking

SQUID Proxy server configuration

Can any one direct me to the resources where I can find in-depth instructions on Squid Proxy server and its configuration? Thanks in advance.:)

7. Shell Programming and Scripting

proxy server using perl

I want to write a perl script on a server to behave like a proxy server. I want to be able to enter the hostname and port on firefox proxy settings (or IE, chrome, whatever) and then go to a site, and have my webserver forward the request to another server, and forward the response back to the...

8. UNIX for Dummies Questions & Answers

enable all operations to use a proxy server , redhat server

Hi, i would like to enable all operations/connections to use a proxy server in a redhat server , witch file should i config to get this for all conections .... Thanks

9. IP Networking

Connecting via proxy chain to Upstream proxy

I need to configure a proxy on my local machine to use an upstream proxy (installed on another machine). The upstream proxy requires Digest/NTLM authorization. I want the local proxy to deal with the upstream proxy's authorization details and provides authorization free access to users that connect...

LEARN ABOUT DEBIAN

udptunnel

UDPTunnel(1)								net							      UDPTunnel(1)

NAME

       udptunnel - Tunnel UDP packets over a TCP connection

SYNTAX

       udptunnel -s TCP-port [-r] [-v] UDP-addr/UDP-port[/ttl]
       udptunnel -c TCP-addr[/TCP-port] [-r] [-v] UDP-addr/UDP-port[/ttl]

DESCRIPTION

       UDPTunnel is a small program which can tunnel UDP packets bi-directionally over a TCP connection. Its primary purpose (and original motiva-
       tion) is to allow multi-media conferences to traverse a firewall which allows only outgoing TCP connections.

USAGE

       UDPTunnel can be run in two modes: a client mode and a server mode. The client mode initiates the TCP connection before relaying  UDP;  the
       server  waits for an incoming connection before doing so. After the TCP connection is established, the behavior of the two modes is identi-
       cal. If you are using UDPTunnel to traverse a firewall as discussed above, the client would be run inside  the  firewall,  and  the  server
       would be run outside it.

OPTIONS

       -s TCP-port
	      Server  mode: If udptunnel is invoked with the -s option, it runs in server mode: the server will wait for an incoming connection on
	      the specified TCP port, and then relay UDP to and from it."

       -c TCP-addr[/TCP-port]
	      Client mode: If udptunnel is invoked with the -c option, it runs in client mode: it will open a TCP connection to the specified  TCP
	      host  and  port,	and then relay UDP on it. The TCP port may be omitted in this case; it will default to the same port number as the
	      UDP port.

       -r     RTP mode: In order to facilitate tunneling both RTP and RTCP traffic for a multi-media conference, this sets up relays on  two  con-
	      secutive	TCP and UDP ports. All specified port numbers in this case must be even. Note that both the client and the server must use
	      the -r flag for this to work; the server will not begin relaying packets until both its connections have been established.

       -v     Verbose output: This flag turns on verbose debugging output about UDPTunnel's actions. It may be given multiple times. With a single
	      -v, information about connection establishment is printed on UDPTunnel's standard error stream; with a second one, per-packet infor-
	      mation is also shown. Note that this latter case can produce a prodigious amount of information. If this flag is not given,  UDPTun-
	      nel will remain silent unless an error occurs.

       One of the two options -c and -s must be given; if not, it is an error.

       In  all	cases, the UDP address and port to tunnel is given after all options. UDPTunnel will listen to this adddress for packets, and will
       send received packets on this address. The address may be a multicast address; in this case, a multicast TTL should be specified, and  tun-
       neled  packets  will  be  sent  with  this  TTL.  All  addresses, TCP and UDP, may be specified either as an IPv4 dotted-quad address (e.g.
       224.2.0.1) or as a host name (e.g. conrail.cs.columbia.edu). Port numbers must be in the range of 1 to 65535; TTLs must be in the  range  0
       to 255.

PACKET FORMAT

       The packets are sent on TCP using the obvious, simple format: a sixteen-bit length field, in network byte order, precedes each data packet.
       This format was proposed in early drafts of RTP for RTP-over-TCP, but was dropped from the final specification.

KNOWN BUGS
/ISSUES
       UDPTunnel does not check incoming UDP packets to verify that they are indeed coming from the address which the user specified; it binds	to
       INADDR_ANY,  and accepts any UDP packet arriving on the specified port. This could potentially allow denial-of-service or spoofing attacks.
       If two or more -v options are given, per-packet identification will be printed of each packet's source address as it is received,  allowing
       such a situation to be diagnosed.

       For  multicast,	UDPTunnel  turns  off  packet loopback, as it has no way to distinguish its own packets it sent out from packets genuinely
       arriving on the multicast group. This means that if you are tunneling traffic from or to a multicast group, both ends of UDPTunnel must	be
       run  on	different  hosts  than	any  member  of  the group. (In general, the only way to distinguish looped packets from packets genuinely
       received from other applications on the local host is with application-layer labeling, as RTP does.)

       UDPTunnel is designed to tunnel RTP-style traffic, in which applications send and receive UDP packets to and from the same port (or pair of
       ports).	It does not support request/response-style traffic, in which a client request is sent from a transient port X to a well-known port
       Y, and the server's response is returned from port Y to port X.

       UDPTunnel deliberately ignores "Connection Refused" errors on the UDP port, clearing the socket error state, so that a tunnel may be set up
       before  conferencing  tools  are started on both ends. This may mean that a mis-typed UDP address or port is not recognized, as no error is
       printed. If two or more -v options are given, a diagnostic will be printed whenever the error state is cleared from the socket.

       Once one endpoint of a tunnel is taken down, closing the socket, the other one exits as well; to re-establish the tunnel, UDPTunnel must be
       restarted on both sides.

       IP version 6 is not supported.

AUTHORS

       UDPTunnel  was  written	by  Jonathan  Lennox  <lennox@cs.columbia.edu>. It incorporates code written by Henning Schulzrinne <hgs@cs.colum-
       bia.edu>.

       This manual page was written by Thomas Scheffczyk <thomas.scheffczyk@verwaltung.uni-mainz.de>, for the Debian GNU/Linux system (but may	be
       used by others).

Jonathan Lennox 							1.1							      UDPTunnel(1)