is it possible to use tomato router as web proxy using ssh or similar?

Discussion in 'Tomato Firmware' started by vibe666, Dec 11, 2009.

  1. vibe666

    vibe666 Network Guru Member

    i know i could use a web proxy app and ssh on a PC on my own LAN to do it and just have that accessible over the internet, but i was wondering if it's possible to take the PC out of the equation altogether and just use my tomato router instead?

    basically, i'm currently working at multiple client sites with each of them having all sorts of different web proxy configurations to block their users from accessing this or that website but from time to time i have the problem that some of the blocked sites are ones that I need to get to like support forums (just because they're forums) or sites with drivers and patches etc. so getting to them to get the solutions to various problems is often difficult particularly if the solution is a large download of some sort.

    at the moment, if all else fails i'm using a 3G dongle with my laptop, but it's not exactly free unless you have a huge data plan and i'd rather try and keep down (or eliminate) costs if at all possible.

    i know i can access tomato remotely via https (and i do from time to time) and i know i could use SSH to do that if i wanted, but is it possible to set up tomato as some kind of web proxy via SSH or something like that so that I can create a tunnel from a customer site to the router and then set my browser to use the tunnel for web access via the port that ssh is running on and just have tomato redirect all the web traffic?

    its either that or leave a PC on and set it all up on that, but i'd rather not have to if at all possible.

    what about that neorouter mod i've seen, would that be able to do that or is there something else that would do the job?
  2. david3

    david3 LI Guru Member

    I did something like this with the stock Tomato firmware (v1.25), and it also works with the Tomato RAF version I'm using now (v1.25.8515 .2RAF ND).

    I've only tested it locally, though. I don't see any reason why it wouldn't work from a remote location if remote ssh access is enabled, though.

    First I enabled SSH access in Tomato (local only for me). Then I set up an ssh tunnel using putty:

    The host name in putty is the ip address of the router (on port 22). Then under SSH -> Tunnels I added a forwarded port destination=8080, with the Dynamic button checked.

    Then I added a proxy in Firefox (I used the multiproxy switch addon) for a Socks proxy at on port 8080.

    This works for me. Like I said, I haven't tried it remotely, but I don't see any reason it wouldn't work.

    Also, with this new Tomato RAF ND version I'm using, I noticed a new option under the "SSH Daemon" configuration to allow Port Forwarding or not. I noticed if you uncheck that, it won't work anymore, so you'd want to leave it checked.
  3. river100

    river100 Addicted to LI Member

    i wanted the same. i did a search using " ssh tunnel proxy " most of the how to pages i read were using a linux ssh server. i have 2 open source routers and one linux server and it works on all of them.
    i use a ddns service with tomato router and haven't had any problems with the obvious exception of your bandwith being limited to your server site's upload.

    you may want to look into forwarding dns also
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice