Web browsing over Obfuscated SSH + OpenVPN

_.:=iTake=:._

Administrator
Staff member
ZeuS
Forum Moderator
+Lifetime VIP+
Contributor
Oct 20, 2018
690
971
93
Credits
8,564
It is possible to configure most browsers to use a SOCKS proxy for outgoing HTTP connections. This makes it possible to forward web browser traffic over an encrypted SSH connection.

The recommended browser for this purpose is Firefox, because it can be configured to resolve DNS names through the SOCKS proxy, so the names of the websites you're browsing don't leak out through DNS queries.

You will need an account at an SSH server which allows you to use port forwarding. Configure Bitvise SSH Client to connect to that SSH server, and enable the SOCKS proxy feature under the Services tab.

In Firefox, configure Bitvise SSH Client as the SOCKS proxy in Tools > Options > Advanced > Network > Connection > Settings. Use Manual proxy configuration, enter 127.0.0.1 under SOCKS proxy, and port 1080. (This is assuming you left SOCKS proxy settings in the SSH client at their defaults.)

Open a blank Firefox tab and navigate to "about:config". Find the setting:

network.proxy.socks_remote_dns

Set this setting to true.

You are now done. Firefox will connect to websites through Bitvise SSH Client's SOCKS proxy feature, and your web traffic will be tunneled over the encrypted SSH connection between your SSH client and the SSH server.

Note that the part of the traffic between the SSH server and the web server(s) will remain unencrypted. By using SSH tunneling, you are shielding your web traffic from prying eyes in your local network or at your local Internet Service Provider. However, the plaintext of your web sessions will now be available to the SSH server administrator, as well as to the ISP through which the SSH server connects to your destination web servers.

Source: https://www.bitvise.com/ssh-web-browsing
 
  • Like
Reactions: Prom3th3uS

_.:=iTake=:._

Administrator
Staff member
ZeuS
Forum Moderator
+Lifetime VIP+
Contributor
Oct 20, 2018
690
971
93
Credits
8,564
You need to configure this with OpenVPN using the TCP Protocol

In client.ovpn file.

Change this

remote SERVER-IP PORT

eg. lets say you have

remote 234.345.34.56 1194

to

remote localhost 1194

Add this line

socks-proxy 127.0.0.1 1080 {It can be any Port}

But it needs to be configure in BitWise SSH under Services to look like

Code:
Options: Use SOCKS

Host: 127.0.0.1

Port: 1080
Launch OpenVPN Gui and Connect to the client.ovpn file you just edited.

It should connect successfully, else there is an issue with your server settings..
 
  • Like
Reactions: Prom3th3uS

_.:=iTake=:._

Administrator
Staff member
ZeuS
Forum Moderator
+Lifetime VIP+
Contributor
Oct 20, 2018
690
971
93
Credits
8,564