lls275
commented
2 years ago I'm desperately asking for help right now, I can only hope for now
Open lls275 opened 2 years ago
lls275
commented
2 years ago I'm desperately asking for help right now, I can only hope for now
lls275
commented
2 years ago I extracted a simple example of the core http proxy of the gomitmproxy, which is printed normally in http
func main() {
listenAddr := &net.TCPAddr{
IP: net.IPv4(0, 0, 0, 0),
Port: 8080,
}
l, err := net.ListenTCP("tcp", listenAddr)
if err != nil {
}
log.Printf("start listening to %s", l.Addr())
conn, err := l.Accept()
log.Printf("remote addr is %s", conn.RemoteAddr())
log.Printf("local addr is %s", conn.LocalAddr())
localRW := bufio.NewReadWriter(bufio.NewReader(conn), bufio.NewWriter(conn))
var req *http.Request
reqc := make(chan *http.Request, 1)
errc := make(chan error, 1)
go func() {
r, err := http.ReadRequest(localRW.Reader)
if err != nil {
errc <- err
return
}
reqc <- r
}()
req = <-reqc
log.Println(req)
}It can be obtained normally, but if the proxy is transparent, how should this code be changed?
2022/04/07 15:52:09 start listening to [::]:8080
2022/04/07 15:52:11 remote addr is 192.168.1.23:59812
2022/04/07 15:52:11 local addr is 192.168.1.23:8080
2022/04/07 15:52:11 &{CONNECT //www.google.com:443 HTTP/1.1 1 1 map[Proxy-Connection:[keep-alive] User-Agent:[Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4774.0 Safari/537.36]] {} <nil> 0 [] false www.google.com:443 map[] map[] <nil> map[] www.google.com:443 <nil> <nil> <nil> <nil>}If the official can give a simple example of modification, it would be great, thank you very much
ameshkov
commented
2 years ago Well, the problem is that currently it simply does not support the transparent proxy approach, it expects to be used as a normal proxy. The code requires substantial changes to support this.
lls275
commented
2 years ago Well, the problem is that currently it simply does not support the transparent proxy approach, it expects to be used as a normal proxy. The code requires substantial changes to support this.
If you add a transparent proxy, roughly what you need to do? Is it first to initiate a CONNECT request to gomitmproxy through TCP for iptable traffic, when encountering HTTPS traffic? It seems that if a third-party transparent proxy (support upstream is HTTP https://github.com/xiqingping/transproxy) is connected between iptable and gomitmproxy, it can be used, but I want to integrate the transparent proxy function into gomitmproxy (this way I don’t need to open another program), but due to my limited personal ability, I can’t implement it yet. Can the author provide some ideas?
First of all, I am very grateful to the AdguardTeam team for giving so many excellent open source projects, from which I have learned a lot. Recently, I have been fascinated by the gomitmproxy project. The code of this project is very elegant, but I want to enter gomitmproxy through iptables traffic on Openwrt, but Encountered many setbacks.
So, I would like to ask you to help me, now I will describe the problem in detail:
First of all, there is no problem with HTTP proxying, it works fine. But I wanted to use a transparent proxy, so I replaced
&net.TCPAddrwithnet.ResolveTCPAddr:It seems that the code does not report an error, but when it is actually run, a huge problem occurs. First of all, if you access the content of port 80, there seems to be no big problem, and you can access it normally:
But when accessing the link to 443, it cannot be accessed, and a bunch of garbled characters are prompted:
It should be a CONNECT request, but the above is not.
I have been troubled by this problem for a long time. I hope the official can help me when I see my post, and I will continue to support you with more and better products.