diff options
author | Jakub Sławiński | 2005-03-15 01:22:55 +0100 |
---|---|---|
committer | Joshua Judson Rosen | 2014-07-17 21:14:58 +0200 |
commit | 1adde65db245ec1fca752cfee4c198badf40fb5f (patch) | |
tree | bba33f3b1fe7d469f9df7a89af9dac77b27fa3bb /docs | |
parent | udp_patch (diff) | |
download | apf-1adde65db245ec1fca752cfee4c198badf40fb5f.tar.gz |
v0.6
- Fixed: default password incompatibilities from config file
- Added: "client's id" option
- Lightly Modified: verbose mode
- Added: temporary listen ports
- Fixed: bug in printing "client's id"
- Added: 'dateformat' option to set format of the date in the logs
- Modified: command line option and config file behaviour
- Added: logging to a socket
- Fixed: parsing config file
- Fixed: major bug in packet buffering
- Added: several clients-users in one realm
- Modified: default hostname used by afserver
- Modified: server listening behaviour (for clients)
- Fixed: bug in checking options values
- Modified: verbose mode
- Modified: client initial connection to server
- Added: connection time / uptime statistics
- Added: first version of remote administration (statistics only)
- Fixed: major bug in remove_client routine
- Added: 'raclients' option
- Added: use of automake/autoconf
- Added: creating ~/.apf directory
- Modified: the way of creating/managing keys/certificates
- Added: 'dnslookups' option
- Modified: usage functions
- Fixed: no handling of missing 'listen' option after 'newrealm' in config file
- Added: 'quit' command in remote administration mode
- Modified: logging error messages during initialization
- Modified: 'newrealm' changed to 'realm' in config file
- Added: realm names
- Modified: connection time / uptime
- Added: client names / unique numbers
- Added: user unique numbers
- Fixed: segmentation fault after 'quit' command
Diffstat (limited to 'docs')
-rw-r--r-- | docs/en/README | 308 | ||||
-rw-r--r-- | docs/fr/fr_README | 102 | ||||
-rw-r--r-- | docs/ru/ru_README | 294 |
3 files changed, 0 insertions, 704 deletions
diff --git a/docs/en/README b/docs/en/README deleted file mode 100644 index 8901699..0000000 --- a/docs/en/README +++ /dev/null @@ -1,308 +0,0 @@ -AF - Active Port Forwarder v0.5.5 - README -Copyright (C) 2003,2004 jeremian - <jeremian [at] poczta.fm> -=================== - -================================================================================ - -GRAY-WORLD.NET / Active Port Forwarder -========================== - - The Active Port Forwarder program is part of the Gray-World.net projects. - - Our Gray-World Team presents on the http://gray-world.net website the projects - and publications we are working on which are related to the NACS (Network - Access Control System) bypassing research field and to the computer and - network security topics. - -================================================================================ - -======= -SUMMARY -======= - -INTRO - -1. INSTALLATION - 1.1 Instructions - 1.2 Required libs - 1.3 Tested platforms -2. USAGE - 2.1 afserver - 2.2 afclient -3. EXAMPLES - 3.1 tcp mode - 3.2 reverse udp mode -4. BUGS/PROBLEMS - -NOTES - -THANKS - -================================================================================ - -===== -INTRO -===== - -Active port forwarder is a software tool for secure port forwarding. -It uses ssl to increase security of communication between a server and a client. -Originally, it was developed to forward data point to point. However, the need -for bypassing firewalls in order to connect to internally located computers -influenced the further development of the project. - -AF is dedicated for people, who don't have an external ip number and want to -make some services available across the net. - -Moreover, zlib is used to compress the transferred data. - -Using one, permanent data/control channel with flow control / packet buffering -provides good performance and reasonably small latency. - -Multiple clients allow to create more sophisticated tunneling scheme. - -================================================================================ - -=============== -1. INSTALLATION -=============== - - 1.1 Instructions - ---------------- - -1. Download the compressed sources from http://www.gray-world.net/pr_af.shtml -2. Unpack them with tar zxvf -3. Type "make". -4. If something goes wrong - mail the author or post a message on - http://gray-world.net/board/ - - 1.2 Required libs - ----------------- - -1. openssl - http://www.openssl.org/ -2. zlib - http://www.gzip.org/zlib/ - - 1.3 Tested platforms - -------------------- - -1. Linux: - Gentoo, Slackware, Mandrake - built without any problems -2. Freebsd: - 4.4, 4.9 - have to use patch from project homepage -3. Windows: - win32 - cygwin version is available on the project homepage - -================================================================================ - -======== -2. USAGE -======== - - 2.1 afserver - ------------ - - Options: - -n, --hostname - it's used when creating listening sockets - (default: name returned by hostname function) - -l, --listenport - listening port number - users connect - to it (default: 50127) - -m, --manageport - manage port number - second part of the active - port forwarder connects to it (default: 50126) - -t, --timeout - the timeout value for the client's connection - (default: 5) - -u, --users - the amount of users allowed to use this server - (default: 5) - -C, --clients - the number of allowed clients to use this server - (default: 1) - -U, --usrpcli - the number of allowed users per client (default: $users) - -M, --climode - strategy used for connecting users with clients (default: 1) - Available strategies: - 1. fill first client before go to next - - -c, --cerfile - the name of the file with certificate - (default: cacert.pem) - -k, --keyfile - the name of the file with RSA key (default: server.rsa) - -f, --cfgfile - the name of the file with the configuration for the - active forwarder (server) - -p, --proto - type of server (tcp|udp) - for which protocol it will be - operating (default: tcp) - -O, --heavylog - logging everything to a logfile - -o, --lightlog - logging some data to a logfile - -v, --verbose - to be verbose - program won't enter the daemon mode - (use several times for greater effect) - - --nossl - ssl is not used for transfering data (but it's still - used to establish a connection) (default: ssl is used) - --nozlib - zlib is not used for compressing data (default: - zlib is used) - --pass - set the password used for client identification - (default: no password) - - -4, --ipv4 - use ipv4 only - -6, --ipv6 - use ipv6 only - - -h, --help - prints this help - - 2.2 afclient - ------------ - - Options: - -h, --help - prints this help - -n, --servername - where the second part of the active - port forwarder is running (required) - -m, --manageport - manage port number - server must be - listening on it (default: 50126) - -d, --hostname - the name of this host/remote host - the final - destination of the packets (default: the name - returned by hostname function) - -p, --portnum - the port we are forwarding connection to (required) - -k, --keyfile - the name of the file with RSA key (default: (none)) - -u, --udpmode - udp mode - client will use udp protocol to - communicate with the hostname - -U, --reverseudp - reverse udp forwarding. Udp packets will be forwarded - from hostname:portnum (-p) to the server name:portnum - (-m) - -O, --heavylog - logging everything to a logfile - -o, --lightlog - logging some data to a logfile - -v, --verbose - to be verbose - program won't enter the daemon mode - (use several times for greater effect) - --pass - set the password used for client identification - (default: no password) - -4, --ipv4 - use ipv4 only - -6, --ipv6 - use ipv6 only - -l, --load - load a module for user's packets filtering - -L, --Load - load a module for service's packets filtering - -================================================================================ - -=========== -3. EXAMPLES -=========== - - 3.1 tcp mode - ------------ - - local network |FireWall| Internet - || - || User 1 - || /(tcp) - AF Client <---Encrypted/Compressed channel---> AF Server - / || | \(tcp) - /(tcp) || (tcp)| User 2 - / || \ - Http server || User 3 - || - - -The use of it is extremely simple. Let's suppose we want to create a http server -on our computer and we are behind a masquerade or a firewall: - -1) We have to find some machine on the net with an external ip and a shell - account. - -2) Use "make" to compile everything on that machine. (you can freely remove the - afclient and client.rsa files) - -3) You can edit the config file or just type from the console (to use the config - type -f <cfgfile>) : - $ ./afserver - This will work, if you want to use default values: - - hostname will be taken from hostname function (it would be ideally, if - there is appropriate registration in /etc/hosts) - - server will be listening for users on port 50127 - - server will be listening for client on port 50126 - - server will be for maximum 5 users - - server will forward tcp packets - - there will be no logging and no verbose messages - - there will be no password identification - - ip protocol family will be unspecified - -4) We use "make" on our machine (we can delete everything apart from afclient - and client.rsa) - -5) We are typing from the console: - $ ./afclient -n <name of the server> -p 80 - Where <name of the server> is a string like : 'bastion.univ.gda.pl' or - '153.19.7.200' - -6) We can now enter with a web-browser to: <name of the server>:50127 and we - will enter to our computer in the fact. - - 3.2 reverse udp mode - -------------------- - - local network |FireWall| Internet - || (udp) - || User 1-------AF Client - || /(tcp) - AF Client <---Encrypted/Compressed channel---> AF Server - / || | - /(udp) || (tcp)| - / || / - Game server || AF Client-------User 2 - || (udp) - - -Let's see how to use af to forward udp packets. Suppose we want to create a game -server on our computer (udp port 27960 on our machine): - -1) - 4) is the same like in example 1. (but we add option: -p udp) - -5) We are typing from the console: - $ ./afclient -u -n <name of the server> -p 27960 - Where <name of the server> is a name (or ip) of a host where our server is - running. - -6) Connecting to our game is more complicated. The user must use afclient to do - this. He has to specify the server he is connecting to and the port, which - his program will be listening on: - $ ./afclient -U -d <hostname> -p <portnum> -n <name of the server> \ - -m <server port> - Where <hostname> is the name of the user machine (who wants to connect to our - game). <portnum> is the port he will be connecting to. <name of the server> - is the name of the host where our server is running. <server port> is the - port on which the server is listening for users. In order to connect to our - game, the user has to connect to <hostname>:<portnum>. - -================================================================================ - -================ -4. BUGS/PROBLEMS -================ - -There are no known/open bugs at the moment. - -================================================================================ - -===== -NOTES -===== - -Active port forwarder is still under development, so please sent any comments, -bugs notices and suggestions about it to <jeremian [at] poczta.fm> - -If you have some problems or want to share your opinions with others, feel free -to post a message at http://gray-world.net/board/ - -================================================================================ - -====== -THANKS -====== - - Big thanks to the GW Team: - - to Alex <alex [at] gray-world.net> - and Simon <scastro [at] entreelibre.com> for testing AF and a lot of advices. - - Thanks to Ilia Perevezentsev <iliaper [at] mail.ru> who read and corrected the -README file. - - And thanks for using this software! - -LICENSE -------- - - Active Port Forwarder is distributed under the terms of the GNU General - Public License v2.0 and is copyright (c) 2003,2004 jeremian <jeremian [at] - poczta.fm>. See the file COPYING for details. - diff --git a/docs/fr/fr_README b/docs/fr/fr_README deleted file mode 100644 index 56e87b1..0000000 --- a/docs/fr/fr_README +++ /dev/null @@ -1,102 +0,0 @@ -AF - Active Port Forwarder v0.5.2 - fr_README -Copyright (C) 2003 jeremian - jeremian@poczta.fm -================================================ - -================================================================================ - -GRAY-WORLD.NET / Active Port Forwarder -====================================== - - Le programme Active Port Forwarder est partie intégrante des projets - Gray-World.net. - - Notre équipe présente sur le site http://gray-world.net les projets et - publications sur lesquels nous travaillons. Ces projets et publications sont - relatifs au contournement des systèmes de contrôle d'accès réseau (NACS - bypassing) ainsi qu'à la sécurité des systèmes et réseaux. - -================================================================================ - -Active port forwarder est un programme permettant de réaliser du forwarding de -port sécurisé. -Il utilise le protocole SSL pour augmenter le niveau de sécurité des -communications entre serveur et client. - -Af est destiné aux personnes sans adresse IP publique externe qui désirent -offrir des services accessibles depuis le net. - -EXEMPLE 1: - -L'utilisation de Af est extrèmement simple. Supposons que nous voulons mettre en -place un serveur http sur notre station et que nous sommes masqueradés ou placé -derrière un firewall: - -1) Nous devons tout d'abord trouver une station sur internet avec une IP -publique et un shell. - -2) Utilisez ensuite make pour compiler Af sur cette machine. (Vous pouvez par la -suite supprimer les fichiers afclient et client.rsa) - -3) Editez le fichier de configuration ou entrez sur la console: (pour utiliser -la configuration, entrez type -f <cfgfile>) - $ ./afserver - Si vous voulez utiliser les valeurs par défaut: - - Le nom d'hôte sera pris en compte par la fonction hostname (Il serait idéal - qu'il soit référencé dans le fichier /etc/hosts) - - Le serveur sera en écoute pour les utilisateurs sur le port 50127 - - Le serveur sera en écoute pour le client sur le port 50126 - - Le serveur sera limité à 5 utilisateurs - - Le serveur retransmettra les paquets tcp - - Aucun log ou message verbeux ne sera activé - -4) Nous utilisons make sur notre propre station (Nous pouvons ensuite supprimer -tous les fichiers sauf afclient et client.rsa) - -5) Nous entrons sur la console: - $ ./afclient -n <name of the server> -p 80 - Où <name of the server> est une chaîne du type : 'bastion.univ.gda.pl' ou - '153.19.7.200' - -6) Nous pouvons ensuite utiliser notre navigateur web avec : - <name of the server>:50127 et nous atteindrons notre propre station. - -EXEMPLE 2: - -Regardons comment nous pouvons utiliser af pour forwarder des paquets udp. -Supposez que nous voulons mettre en place un serveur de jeu sur notre station -(port udp 27960 sur notre station): - -1) - 4) sont les mêmes que pour l'exemple 1. (mais nous utilisons l'option: --t udp) - -5) Nous entrons sur la console: - $ ./afclient -u -n <name of the server> -p 27960 - Où <name of the server> est un nom (ou une ip) d'un hôte sur lequel notre - serveur tourne. - -6) Nous connecter à notre jeu est un peu plus compliqué. L'utilisateur doit se - servir de afclient pour cela. - Il doit spécifier le serveur auquel il veut se connecter et le port sur - lequel son programme sera en écoute: - $ ./afclient -U -d <hostname> -p <portnum> -n <name of the server> -m\ - <server port> - Où <hostname> est le nom de la station utilisateur (qui veut se connecter à - notre jeu). <portnum> est le port auquel il se connectera. <name of the - server> est le nom de l'hôte sur lequel notre serveur tourne. <server port> - est le port sur lequel notre serveur est en écoute pour les utilisateurs. - Pour se connecter à notre jeu, l'utilisateur doit se connecter à <hostname>: - <portnum>. - -Active port forwarder est toujours en phase en développement, alors envoyez moi -vos commentaires, les bugs que vous rencontrez et vos suggestions à -<jeremian [at] poczta.fm> - -Et merci pour votre utilisation de ce programme! - -LICENCE -------- - - Active Port Forwarder est distribué sous les termes de la licence GNU - - General Public Licence version 2.0 et est copyright (c) 2003 jeremian - <jeremian [at] poczta.fm>. - Consultez le fichier COPYING pour plus de details. diff --git a/docs/ru/ru_README b/docs/ru/ru_README deleted file mode 100644 index 4e825f7..0000000 --- a/docs/ru/ru_README +++ /dev/null @@ -1,294 +0,0 @@ -AF - Active Port Forwarder v0.5.4 - README -Copyright (C) 2003,2004 jeremian - <jeremian [at] poczta.fm> -=================== - -================================================================================ - -GRAY-WORLD.NET / Active Port Forwarder -========================== - - Ïðîãðàììà Active Port Forwarder ÿâëÿåòñÿ ÷àñòüþ ïðîåêòà Gray-World.net. - - Íàøà êîìàíäà Gray-World ïðåäñòàâëÿåò íà ñàéòå http://gray-world.net ïðîåêòû è - ïóáëèêàöèè, íàä êîòîðûìè ìû ðàáîòàåì, îòíîñÿùèåñÿ ê îáëàñòè èññëåäîâàíèÿ - NACS (Ñèñòåì Êîíòðîëÿ Ñåòåâîãî Äîñòóïà), à òàêæå ê òåìå êîìïüþòåðíîé è - ñåòåâîé áåçîïàñíîñòè. - -================================================================================ - -========== -ÑÎÄÅÐÆÀÍÈÅ -========== - -ÎÏÈÑÀÍÈÅ - -1. ÓÑÒÀÍÎÂÊÀ - 1.1 Èíñòðóêöèè - 1.2 Íåîáõîäèìûå áèáëèîòåêè - 1.3 Òåñòîâûå ïëàòôîðìû -2. ÈÑÏÎËÜÇÎÂÀÍÈÅ - 2.1 afserver - 2.2 afclient -3. ÏÐÈÌÅÐÛ - 3.1 tcp-ðåæèì - 3.2 îáðàòíûé udp-ðåæèì -4. ÈÇÂÅÑÒÍÛÅ ÎØÈÁÊÈ/ÏÐÎÁËÅÌÛ - -ÇÀÌÅ×ÀÍÈß - -ÁËÀÃÎÄÀÐÍÎÑÒÈ - -================================================================================ - -======== -ÎÏÈÑÀÍÈÅ -======== - -Active port forwarder ýòî ïðîãðàììíûé èíñòðóìåíò äëÿ áåçîïàñíîãî òóíåëèðîâàíèÿ -äàííûõ. Îí èñïîëüçóåò SSL äëÿ çàùèòû ñîåäèíåíèÿ ìåæäó êëèåíòîì è ñåðâåðîì. -Èçíà÷àëüíî, ïðîãðàììà áûëà ðàçðàáîòàíà äëÿ ïðîñòîé ïåðåñûëêè äàííûõ îò òî÷êè ê -òî÷êå. Îäíàêî íåîáõîäèìîñòü îáõîäà áðàíäìàóýðà ñ öåëüþ ñäåëàòü êîìïüþòåðû -ëîêàëüíîé ñåòè äîñòóïíûìè èçâíå, ïîâëèÿëà íà äàëüíåéøåå ðàçâèòèå ïðîåêòà. - -AF ïðåäíàçíà÷åí äëÿ ëþäåé, íå èìåþùèõ âíåøíåãî IP àäðåñà è êîòîðûå õîòÿò ñäåëàòü -íåêîòîðûå ëîêàëüíûå ñåðâèñû äîñòóïíûìè â ñåòè. - - ïðîãðàììå èñïîëüçîâàíà áèáëèîòåêà zlib äëÿ ñæàòèÿ ïåðåäàâàåìûõ äàííûõ. - -Èñïîëüçîâàíèå åäèíîãî êàíàëà äëÿ ïåðåäà÷è äàííûõ è êîìàíä óïðàâëåíèÿ â ñî÷åòàíèè -ñ áóôåðèçàöèåé ïåðåñûëàåìûõ ïàêåòîâ îáåñïå÷èâàåò õîðîøóþ ïðîèçâîäèòåëüíîñòü è -ìàëîå âðåìÿ îòêëèêà ñèñòåìû. - -Äëÿ çàïóñêà afserver íå òðåáóåòñÿ ïðèâèëåãèé root, òàêæå îí íå èñïîëüçóåò -thread-û èëè äðóãèå ïðîöåññû. - -================================================================================ - -============ -1. ÓÑÒÀÍÎÂÊÀ -============ - - 1.1 Èíñòðóêöèè - -------------- - -1. Çàãðóçèòå óïàêîâàííûé èñõîäíûé êîä ñ http://www.gray-world.net/pr_af.shtml -2. Ðàñïàêóéòå - tar zxvf -3. Âûïîëíèòå êîìàíäó "make". -4. Åñëè ÷òî-òî ïîøëî íå òàê - íàïèøèòå ïèñüìî àâòîðó èëè îñòàâüòå ñîîáùåíèå íà - http://gray-world.net/board/ - - 1.2 Íåîáõîäèìûå áèáëèîòåêè - -------------------------- - -1. openssl - http://www.openssl.org/ -2. zlib - http://www.gzip.org/zlib/ - - 1.3 Òåñòîâûå ïëàòôîðìû - ---------------------- - -1. Linux: - Gentoo, Slackware, Mandrake - áûëî ñîáðàíî áåç êàêèõ-ëèáî ïðîáëåì -2. Freebsd: - 4.4, 4.9 - Íåîáõîäèì patch ñ äîìàøíåé ñòðàíèöû ïðîåêòà -3. Windows: - win32 - Âåðñèÿ ñ cygwin äîñòóïíà íà äîìàøíåé ñòðàíèöå ïðîåêòà - -================================================================================ - -================ -2. ÈÑÏÎËÜÇÎÂÀÍÈÅ -================ - - 2.1 afserver - ------------ - - Ïàðàìåòðû: - -h, --help - ïå÷àòàåò ýòó ñïðàâêó - -n, --hostname - èñïîëüçóåòñÿ ïðè ñîçäàíèè "ñëóøàþùèõ" ñîêåòîâ - (ïî óìîë÷àíèþ: èìÿ âîçâðàùàåìîå ôóíêöèåé hostname) - -l, --listenport - ïîðò ñåðâåðà - ïîëüçîâàòåëè ñîåäèíÿþòñÿ - ñ íèì (ïî óìîë÷àíèþ: 50127) - -m, --manageport - ïîðò äëÿ óïðàâëåíèÿ - äðóãàÿ ÷àñòü active - port forwarder ñîåäèíÿåòñÿ ñ íèì (ïî óìîë÷àíèþ: 50126) - -u, --users - êîëè÷åñòâî ïîëüçîâàòåëåé, èñïîëüçóþùèõ ñåðâåð - (ïî óìîë÷àíèþ: 5) - -c, --cerfile - èìÿ ôàéëà ñ ñåðòèôèêàòîì - (ïî óìîë÷àíèþ: cacert.pem) - -k, --keyfile - èìÿ ôàéëà ñ êëþ÷îì RSA (ïî óìîë÷àíèþ: server.rsa) - -f, --cfgfile - èìÿ ôàéëà ñ êîíôèãóðàöèåé äëÿ active forwarder (ñåðâåð) - -p, --proto - òèï ñåðâåðà (tcp|udp) - ñ êàêèì ïðîòîêîëîì îí áóäåò - ðàáîòàòü (ïî óìîë÷àíèþ: tcp) - -O, --heavylog - ïèñàòü âñå ñîîáùåíèÿ â logfile - -o, --lightlog - ïèñàòü íåêîòîðûå ñîîáùåíèÿ â logfile - -v, --verbose - âûâîä ñîîáùåíèé â êîíñîëü - ïðîãðàìà íå áóäåò ðàáîòàòü - êàê daemon. - --nossl - ïðîòîêîë ssl íå áóäåò èñïîëüçîâàí äëÿ ïåðåäà÷è äàííûõ (íî - áóäåò èñïîëüçîâàí äëÿ óñòàíîâêè ñîåäèíåíèé) (ïî óìîë÷àíèþ: - ssl èñïîëüçóåòñÿ âñåãäà) - --nozlib - zlib íå áóäåò èñïîëüçîâàòüñÿ äëÿ ñæàòèÿ äàííûõ - (ïî óìîë÷àíèþ: zlib èñïîëüçóåòñÿ) - --pass - çàäàòü ïàðîëü äëÿ èäåíòèôèêàöèè êëèåíòà - (ïî óìîë÷àíèþ: íåò ïàðîëÿ) - -4, --ipv4 - èñïîëüçîâàòü òîëüêî ipv4 - -6, --ipv6 - èñïîëüçîâàòü òîëüêî ipv6 - - 2.2 afclient - ------------ - - Options: - -h, --help - ïå÷àòàåò ýòó ñïðàâêó - -n, --servername - ãäå ðàáîòàåò âòîðàÿ ÷àñòü active port - forwarder (íåîáõîäèìî) - -m, --manageport - ïîðò äëÿ óïðàâëåíèÿ - ñåðâåð ñîåäèíÿåòñÿ ñ íèì - (ïî óìîë÷àíèþ: 50126) - -d, --hostname - èìÿ ëîêàëüíîãî/óäàëåííîãî ñåðâåðà - äàííûå áóäóò òóíåëèðîâàíû - íà íåãî (ïî óìîë÷àíèþ: èìÿ âîçâðàùàåìîå ôóíöèåé hostname) - -p, --portnum - ïîðò íà êîòîðûé áóäóò òóíåëèðîâàíû äàííûå (íåîáõîäèìî) - -k, --keyfile - èìÿ ôàéëà ñ êëþ÷îì RSA (ïî óìîë÷àíèþ: client.rsa) - -u, --udpmode - udp-ðåæèì - êëèåíò áóäåò èñïîëüçîâàòü udp ïðîòîêîë äëÿ - êîììóíèêàöèè ñ hostname - -U, --reverseudp - îáðàòíûé udp-ðåæèì. Udp ïàêåòû áóäóò ïåðåíàïðàâëÿòüñÿ - ñ hostname:portnum (-p) íà ñåðâåð name:portnum (-m) - -O, --heavylog - ïèñàòü âñå ñîîáùåíèÿ â logfile - -o, --lightlog - ïèñàòü íåêîòîðûå ñîîáùåíèÿ â logfile - -v, --verbose - âûâîä ñîîáùåíèé â êîíñîëü - ïðîãðàìà íå áóäåò ðàáîòàòü - êàê daemon. - --pass - çàäàòü ïàðîëü äëÿ èäåíòèôèêàöèè êëèåíòà - (ïî óìîë÷àíèþ: íåò ïàðîëÿ) - -4, --ipv4 - èñïîëüçîâàòü òîëüêî ipv4 - -6, --ipv6 - èñïîëüçîâàòü òîëüêî ipv6 - -l, --load - çàãðóçèòü ìîäóëü äëÿ ôèëüòðàöèè ïàêåòîâ - -================================================================================ - -========== -3. ÏÐÈÌÅÐÛ -========== - - 3.1 tcp-ðåæèì - ------------- - - local network |FireWall| Internet - || - || User 1 - || /(tcp) - AF Client <---Encrypted/Compressed channel---> AF Server - / || | \(tcp) - /(tcp) || (tcp)| User 2 - / || \ - Http server || User 3 - || - - -Èñïîëüçîâàíèå ýòîãî ðåæèìà ÷åðåçâû÷àíî ïðîñòîå. Äàâàéòå ïðåäïîëîæèì, ÷òî ìû -õîòèì ñîçäàò http ñåðâåð íà íàøåì êîìïüþòåðå, íàõîäÿùåìñÿ â ëîêàëüíîé ñåòè çà -áðàíäìàóýðîì: - -1) Ìû äîëæíû íàéòè ìàøèíó ñ âíåøíèì IP àäðåñîì è äîñòóïîì ê shell. - -2) Èñïîëüçîâàòü "make" ÷òîáû ñêîìïèëèðîâàòü AF íà íåé. (âû ìîæåòå ñïîêîéíî - óäàëÿòü ôàéëû afclient è client.rsa) - -3) Âû ìîæåòå îòðåäàêòèðîâàòü êîíôèãóðàöèîííûé ôàéë èëè ïåðåäàòü ïðîãðàììå âñå - ïàðàìåòðû èç êîíñîëè (äëÿ èñïîëüçîâàíèÿ ôàéëà íàáåðèòå -f <cfgfile>) : - $ ./afserver - Ýòî áóäåò ðàáîòàòü, åñëè âû õîòèòå èñïîëüçîâàòü íàñòðîéêè ïî óìîë÷àíèþ: - - hostname áóäåò âçÿò èç ôóíêöèè hostname (ýòî ðàáîòàåò çàìå÷àòåëüíî, åñëè - åñòü ñîîòâåòñòâóþùàÿ çàïèñü â /etc/hosts) - - ñåðâåð áóäåò æäàòü ïîëüçîâàòåëåé íà ïîðòó 50127 - - ñåðâåð áóäåò æäàòü êëèåíòà íà ïîðòó 50126 - - ñåðâåð áóäåò îáñëóæèâàòü ìàêèìóì 5 ïîëüçîâàòåëåé - - ñåðâåð áóäåò ïåðåíàïðàâëÿòü tcp ñîåäèíåíèÿ - - îòëàäî÷íûõ ñîîáùåíèé íå áóäåò - - èäåíòèôèêàöèé ïî ïàðîëþ íå áóäåò - - âåðñèÿ ïðîòîêîëà ip íå áóäåò çàäàíà - -4) Ìû èñïîëüçóåì "make" íà íàøåé ìàøèíå (ìîæíî óäàëèòü âñå êðîìå afclient è - client.rsa) - -5) Íàáèðàåì â êîíñîëè: - $ ./afclient -n <èìÿ ñåðâåðà> -p 80 - Ãäå <èìÿ ñåðâåðà> ñòðîêà òèïà: 'bastion.univ.gda.pl' èëè '153.19.7.200' - -6) Òåïåðü â áðàóçåðå ìû ìîæåì íàáðàòü: <èìÿ ñåðâåðà>:50127 è ïîïàäåì íà íàø - êîìïüþòåð. - - 3.2 îáðàòíûé udp-ðåæèì - ---------------------- - - local network |FireWall| Internet - || (udp) - || User 1-------AF Client - || /(tcp) - AF Client <---Encrypted/Compressed channel---> AF Server - / || | - /(udp) || (tcp)| - / || / - Game server || AF Client-------User 2 - || (udp) - - -Äàâàéòå òåïåðü ïîñìîòðèì êàê ìû ìîæåì èñïîëüçîâàòü af äëÿ ïåðåíàïðàâëåíèÿ udp -ïàêåòîâ. Ïðåäïîëîæèì, ÷òî ìû õîòèì ñîçäàòü èãðîâîé ñåðâåð íà íàøåì êîìïüþòåðå -(udp ïîðò 27960): - -1) - 4) òîæå ñàìîå, ÷òî è â ïåðâîì ïðèìåðå. (íî äîáàâëÿåì ïàðàìåòð: -p udp) - -5) Íàáèðàåì â êîíñîëè: - $ ./afclient -u -n <èìÿ ñåðâåðà> -p 27960 - Ãäå <èìÿ ñåðâåðà> ýòî èìÿ (èëè ip) êîìïþòåðà ãäå ðàáîòàåò íàø ñåðâåð. - -6) Ïðîöåññ ñîåäèíåíèÿ ñ èãðîâûì ñåðâåðîì áîëåå ñëîæíûé. Ïîëüçîâàòåëü äîëæåí - çàïóñòèòü fclient ÷òîáû ñäåëàòü ýòî. Îí äîëæåí óêàçàòü ñåðâåð ñ êîòîðûì îí - áóäåò ñîåäèíÿòüñÿ è ïîðò, íà êîòîðîì åãî ïðîãðàììà áóäåò ñëóøàòü: - $ ./afclient -U -d <hostname> -p <ïîðò> -n <èìÿ ñåðâåðà> \ - -m <ïîðò ñåðâåðà> - - Ãäå <hostname> èìÿ ìàøèíû ïîëüçîâàòåëÿ (êîòîðûé ñîåäèíÿåòñÿ ñ èãðîâûì - ñåðâåðîì), <ïîðò> - ëîêàëüíûé ïîðò, <èìÿ ñåðâåðà> - èìÿ ñåðâåðà, <ïîðò - ñåðâåðà> - ïîðò íà êîòîðîì ñåðâåð æäåò ïîëüçîâàòåëåé.Òåïåðü, ÷òîáû ïîïàñòü íà - èãðîâîé ñåðâåð, ïîëüçîâàòåëü äîëæåí ñîåäèíÿòñÿ ñ <hostname>:<ïîðò>. - -================================================================================ - -============================ -4. ÈÇÂÅÑÒÍÛÅ ÎØÈÁÊÈ/ÏÐÎÁËÅÌÛ -============================ - -Íà äàííûé ìîìåíò, íåò íèêàêèõ èçâåñòíûõ ïðîáëåì. - -================================================================================ - -========= -ÇÀÌÅ×ÀÍÈß -========= - -Active port forwarder íàõîäèòñÿ â ðàçðàáîòêå, òàê ÷òî ïîæàëóéñòà, ïðèñûëàéòå -ñâîè êîììåíòàðèè, çàìå÷àíèÿ îá îøèáêàõ è ïðåäëîæåíèÿ íà jeremian [at] poczta.fm - -Åñëè ó âàñ åñòü êàêèå-ëèáî ïðîáëåìû ñ èñïîëüçîâàíèåì ïðîãðàììû èëè âû õîòèòå -ïîäåëèòüñÿ ñâîèì ìíåíèåì î íåé, ïîæàëéñòà îñòàâëÿéòå ñâîè ñîîáùåíèÿ íà: -http://gray-world.net/board/ - -================================================================================ - -============= -ÁËÀÃÎÄÀÐÍÎÑÒÈ -============= - - Áîëüøîå ñïàñèáî êîìàíäå GW: - - Alex <alex [at] gray-world.net> - è Simon <scastro [at] entreelibre.com> çà òåñòèðîâàíèå AF è ìíîæåñòâî ñîâåòîâ. - - Ñïàñèáî Ilia Perevezentsev <iliaper [at] mail.ru> çà êîððåêòèðîâêó àíãëèéñêîé - âåðñèè ýòîãî ôàéëà. - - È ñïàñèáî çà èñïîëüçîâàíèå AF! - -ËÈÖÅÍÇÈß --------- - - Active Port Forwarder is distributed under the terms of the GNU General - Public License v2.0 and is copyright (c) 2003,2004 jeremian <jeremian [at] - poczta.fm>. See the file COPYING for details. |