Skip to content

Script to add iptables rules (on a linux system) that force all traffic through tor

Notifications You must be signed in to change notification settings

ericpaulbishop/iptables_torify

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 

Repository files navigation

iptables_torify: Send all traffic through Tor using iptables

This is a script that adds iptables rules that force all traffic including DNS requests through Tor. Only traffic other than DNS requests destined for local/loopback addresses is not passed through Tor.

All non-local UDP/ICMP traffic is blocked

This is a way to make a really light-weight version of Tails. If you don't need everything to be extremely secure (e.g. no javascript, no persistent storage), but do want to make sure traffic goes through Tor this is a good way to achieve this fairly simply. Tor will need to be running.

Right now the script assumes a transparent proxy port of 9051 and a dns proxy port of 9061, with the tor username of debian-tor. You'll need to change these variables in the script if you have a different configuration. An example torrc file is included, to show how to configure Tor. This was tested on Xubuntu 12.04.

There is an install script which, if you run it as root from a directory where you have the project files (torrc, torify.init), will install tor, configure it with the associated torrc file and then setup the iptables script to run on boot. Thus these rules will be enabled at system boot, and all traffic will be anonymized.

About

Script to add iptables rules (on a linux system) that force all traffic through tor

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages