Personal Proxy Server

[prn1357]

Hey. My job blocks a lot of websites on their network, Even [H] is blocked for some reason. Is there a way I can set up my home server to be a proxy server, where I log in to it, and I search the internet from there? So My server is accessing the website, and then sending it to my work laptop? I don't care if I have to type in my IP address. I would require some kind of login so some random person doesn't use it. I might tell some of my friends the IP if they need access, so it would need to support 5-10 people MAX. Also, What kind of security issues would something like this have? What would I need to do this?

Thanks.

 

[stiltner]

Try RDP, its the easiest thing.

www.dyndns.org - grab a free dns name for yourself. Get the client that runs in the taskbar for updating the IP for you easily.

Open port 3389 on your firewall and your router to direct it to your PC.

Connect, profit.

 

[jadams]

Try RDP, its the easiest thing.

www.dyndns.org - grab a free dns name for yourself. Get the client that runs in the taskbar for updating the IP for you easily.

Open port 3389 on your firewall and your router to direct it to your PC.

Connect, profit.

While it doesnt bother me, you might catch some flak about opening 3389. However using some common sense youll be fine.

There are other options to RDP such as logmein/teamviewer. However we use teamviewer for to remotely access some customer's sites and teamviewer is blocked by two. We're forced to keep open our gotoassist subscription cuz of these two pita customers. OP very well might run into the same problem. If so move on to plan B

 

[prestonrichmond]

Or open a different port, and have it forwarded to the 3389 port internally.

 

[jadams]

If someone scans your IP address they can easily see that RDP is open just as easily. Querying a port will still generate a response as to what service is running on it by most decent scanners.

 

[/usr/home]

If you are THAT worried about leaving that port open, you could pick a completely random port and then forward that to 3389 on the internal computer. Yes, you still have that port open, but it's not a default port and would be less likely to be scanned. It's still a vulnerability, but I have never had issues with leaving RDP open for probably a dozen or so clients.

 

[vraa]

RDP is overkill

Use putty to create a ssh tunnel and set your mozilla proxy settings to localhost

That'll work for torrents too (for peer connection information)

 

[dave99]

Keep in mind that at a lot of firms, bypassing network restrictions like these are a terminable offense.

 

[Neb]

Keep in mind that at a lot of firms, bypassing network restrictions like these are a terminable offense.

I was going to mention that. It's also extremely easy for any decent netadmin to see the connection.

 

[MrGuvernment]

If someone scans your IP address they can easily see that RDP is open just as easily. Querying a port will still generate a response as to what service is running on it by most decent scanners.

most people who do IP scanning do so in ranges and with that they only scan specific known ports, using a different external IP and then forwarding internally works well.

 

[prn1357]

The problem is that the laptop is given to me by the company. I want something like this, except without a huge piece of bacon going through the screen:
http://bacolicio.us/http://hardforum.com
Can I run anything like this?

 

[C7J0yc3]

SSH tunnels, TOR, RDP and VPN with split tunneling, these are all ways I have gotten around company web filters. SSH or VPN are usually the two easiest to explain, and usually most admins of larger shops I know just ignore that traffic. RDP usually raises a few red flags, however usually not enough of one that unless someone is pulling reports on your traffic they wouldn't notice. I have also used my phone as an access point, set a static IP for myself on my LAN interface without a default gateway, and then used the phone as my internet access on my WLAN or USB Modem interface. That way I can still get to all the company stuff on my normal internal interface, but all web traffic is passing through my cell phone.

 

[MrGuvernment]

be careful, if your sys admin have half a brain they can easily see you using proxy services and other connections they are likely blocking, which in turn could end up badly for you.