1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Using SRelay on router to send outgoing traffic over VPN?

Discussion in 'Tomato Firmware' started by JoeKamel, Apr 21, 2013.

  1. JoeKamel

    JoeKamel Serious Server Member

    Hey, just had some questions about setting up an SRelay proxy on my router to send traffic from internal PCs on my network over my VPN connection. I was originally hoping to do it based on the ports being used by each application, however I've been made aware that I might still be leaking DNS information and some of the apps can't be configured to use specific port ranges. So from the looks of things, having a local proxy that routes only thru my VPN provider would be the most effective way to reach my goal of only having the P2P traffic over the VPN, as well as make it relatively easy to kill P2P traffic in the event of a VPN disconnect.

    Unfortunately I only have an inkling of an idea idea how to set up SRelay, or to ensure that SRelay is using the DNS from the VPN and route it over the VPN.

    Judging from this (http://www.linksysinfo.org/index.php?threads/a-socks-proxy-server-for-tomato.23898/) link as well as this (http://wiki.openwrt.org/doc/howto/proxy.overview) one, I should be able to set it up so that as part of the VPN up script I can direct over the VPN using the $VPN_Gateway environment variable, and that will route it out over the VPN.

    I'm at a loss however on how to make sure that srelay uses the VPN's DNS server. That and how to configure SRelay or find its man pages (the link on openwrt is 404ing).

    Any help would be really appreciated.
     
  2. JoeKamel

    JoeKamel Serious Server Member

    BUMP. Some questions:

    I've gotten srelay to start, and I thought I had it set up properly but nope. For now I was just checking if I could route over the VPN - Iwas going to deal with the DNS stuff later. So I tried two things.


    First idea was route to an unused address, that I could script to go over the VPN as part of route-up.

    Code:
    #  mysrelay.conf
    #  $Id: srelay.conf,v 1.5 2009/12/09 04:07:53 bulkstream Exp $
    #
    # this line is comment.
    # destination                port range            next-hop/port
    any                    any                10.10.10.1
    I verified that the route was in, however it still was showing my ISP IP as opposed to the VPN IP when checking. So I tried to send it over the proxy given by my VPN provider:

    Code:
    #  mysrelay.conf
    #  $Id: srelay.conf,v 1.5 2009/12/09 04:07:53 bulkstream Exp $
    #
    # this line is comment.
    # destination                port range            next-hop/port
    any                    any                proxy-nl.privateinternetaccess.com:1090
    Code:
    # PIA Proxy Auth info
    # next-hop server                username        password
    proxy-nl.privateinternetaccess.com        xxxxxxxx        xxxxxxx
    Still no good. Any suggestions?
     

Share This Page