summaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorJakub Sławiński2005-03-15 01:22:55 +0100
committerJoshua Judson Rosen2014-07-17 21:14:58 +0200
commit1adde65db245ec1fca752cfee4c198badf40fb5f (patch)
treebba33f3b1fe7d469f9df7a89af9dac77b27fa3bb /docs
parentudp_patch (diff)
downloadapf-1adde65db245ec1fca752cfee4c198badf40fb5f.tar.gz
v0.6
- Fixed: default password incompatibilities from config file - Added: "client's id" option - Lightly Modified: verbose mode - Added: temporary listen ports - Fixed: bug in printing "client's id" - Added: 'dateformat' option to set format of the date in the logs - Modified: command line option and config file behaviour - Added: logging to a socket - Fixed: parsing config file - Fixed: major bug in packet buffering - Added: several clients-users in one realm - Modified: default hostname used by afserver - Modified: server listening behaviour (for clients) - Fixed: bug in checking options values - Modified: verbose mode - Modified: client initial connection to server - Added: connection time / uptime statistics - Added: first version of remote administration (statistics only) - Fixed: major bug in remove_client routine - Added: 'raclients' option - Added: use of automake/autoconf - Added: creating ~/.apf directory - Modified: the way of creating/managing keys/certificates - Added: 'dnslookups' option - Modified: usage functions - Fixed: no handling of missing 'listen' option after 'newrealm' in config file - Added: 'quit' command in remote administration mode - Modified: logging error messages during initialization - Modified: 'newrealm' changed to 'realm' in config file - Added: realm names - Modified: connection time / uptime - Added: client names / unique numbers - Added: user unique numbers - Fixed: segmentation fault after 'quit' command
Diffstat (limited to 'docs')
-rw-r--r--docs/en/README308
-rw-r--r--docs/fr/fr_README102
-rw-r--r--docs/ru/ru_README294
3 files changed, 0 insertions, 704 deletions
diff --git a/docs/en/README b/docs/en/README
deleted file mode 100644
index 8901699..0000000
--- a/docs/en/README
+++ /dev/null
@@ -1,308 +0,0 @@
-AF - Active Port Forwarder v0.5.5 - README
-Copyright (C) 2003,2004 jeremian - <jeremian [at] poczta.fm>
-===================
-
-================================================================================
-
-GRAY-WORLD.NET / Active Port Forwarder
-==========================
-
- The Active Port Forwarder program is part of the Gray-World.net projects.
-
- Our Gray-World Team presents on the http://gray-world.net website the projects
- and publications we are working on which are related to the NACS (Network
- Access Control System) bypassing research field and to the computer and
- network security topics.
-
-================================================================================
-
-=======
-SUMMARY
-=======
-
-INTRO
-
-1. INSTALLATION
- 1.1 Instructions
- 1.2 Required libs
- 1.3 Tested platforms
-2. USAGE
- 2.1 afserver
- 2.2 afclient
-3. EXAMPLES
- 3.1 tcp mode
- 3.2 reverse udp mode
-4. BUGS/PROBLEMS
-
-NOTES
-
-THANKS
-
-================================================================================
-
-=====
-INTRO
-=====
-
-Active port forwarder is a software tool for secure port forwarding.
-It uses ssl to increase security of communication between a server and a client.
-Originally, it was developed to forward data point to point. However, the need
-for bypassing firewalls in order to connect to internally located computers
-influenced the further development of the project.
-
-AF is dedicated for people, who don't have an external ip number and want to
-make some services available across the net.
-
-Moreover, zlib is used to compress the transferred data.
-
-Using one, permanent data/control channel with flow control / packet buffering
-provides good performance and reasonably small latency.
-
-Multiple clients allow to create more sophisticated tunneling scheme.
-
-================================================================================
-
-===============
-1. INSTALLATION
-===============
-
- 1.1 Instructions
- ----------------
-
-1. Download the compressed sources from http://www.gray-world.net/pr_af.shtml
-2. Unpack them with tar zxvf
-3. Type "make".
-4. If something goes wrong - mail the author or post a message on
- http://gray-world.net/board/
-
- 1.2 Required libs
- -----------------
-
-1. openssl - http://www.openssl.org/
-2. zlib - http://www.gzip.org/zlib/
-
- 1.3 Tested platforms
- --------------------
-
-1. Linux:
- Gentoo, Slackware, Mandrake - built without any problems
-2. Freebsd:
- 4.4, 4.9 - have to use patch from project homepage
-3. Windows:
- win32 - cygwin version is available on the project homepage
-
-================================================================================
-
-========
-2. USAGE
-========
-
- 2.1 afserver
- ------------
-
- Options:
- -n, --hostname - it's used when creating listening sockets
- (default: name returned by hostname function)
- -l, --listenport - listening port number - users connect
- to it (default: 50127)
- -m, --manageport - manage port number - second part of the active
- port forwarder connects to it (default: 50126)
- -t, --timeout - the timeout value for the client's connection
- (default: 5)
- -u, --users - the amount of users allowed to use this server
- (default: 5)
- -C, --clients - the number of allowed clients to use this server
- (default: 1)
- -U, --usrpcli - the number of allowed users per client (default: $users)
- -M, --climode - strategy used for connecting users with clients (default: 1)
- Available strategies:
- 1. fill first client before go to next
-
- -c, --cerfile - the name of the file with certificate
- (default: cacert.pem)
- -k, --keyfile - the name of the file with RSA key (default: server.rsa)
- -f, --cfgfile - the name of the file with the configuration for the
- active forwarder (server)
- -p, --proto - type of server (tcp|udp) - for which protocol it will be
- operating (default: tcp)
- -O, --heavylog - logging everything to a logfile
- -o, --lightlog - logging some data to a logfile
- -v, --verbose - to be verbose - program won't enter the daemon mode
- (use several times for greater effect)
-
- --nossl - ssl is not used for transfering data (but it's still
- used to establish a connection) (default: ssl is used)
- --nozlib - zlib is not used for compressing data (default:
- zlib is used)
- --pass - set the password used for client identification
- (default: no password)
-
- -4, --ipv4 - use ipv4 only
- -6, --ipv6 - use ipv6 only
-
- -h, --help - prints this help
-
- 2.2 afclient
- ------------
-
- Options:
- -h, --help - prints this help
- -n, --servername - where the second part of the active
- port forwarder is running (required)
- -m, --manageport - manage port number - server must be
- listening on it (default: 50126)
- -d, --hostname - the name of this host/remote host - the final
- destination of the packets (default: the name
- returned by hostname function)
- -p, --portnum - the port we are forwarding connection to (required)
- -k, --keyfile - the name of the file with RSA key (default: (none))
- -u, --udpmode - udp mode - client will use udp protocol to
- communicate with the hostname
- -U, --reverseudp - reverse udp forwarding. Udp packets will be forwarded
- from hostname:portnum (-p) to the server name:portnum
- (-m)
- -O, --heavylog - logging everything to a logfile
- -o, --lightlog - logging some data to a logfile
- -v, --verbose - to be verbose - program won't enter the daemon mode
- (use several times for greater effect)
- --pass - set the password used for client identification
- (default: no password)
- -4, --ipv4 - use ipv4 only
- -6, --ipv6 - use ipv6 only
- -l, --load - load a module for user's packets filtering
- -L, --Load - load a module for service's packets filtering
-
-================================================================================
-
-===========
-3. EXAMPLES
-===========
-
- 3.1 tcp mode
- ------------
-
- local network |FireWall| Internet
- ||
- || User 1
- || /(tcp)
- AF Client <---Encrypted/Compressed channel---> AF Server
- / || | \(tcp)
- /(tcp) || (tcp)| User 2
- / || \
- Http server || User 3
- ||
-
-
-The use of it is extremely simple. Let's suppose we want to create a http server
-on our computer and we are behind a masquerade or a firewall:
-
-1) We have to find some machine on the net with an external ip and a shell
- account.
-
-2) Use "make" to compile everything on that machine. (you can freely remove the
- afclient and client.rsa files)
-
-3) You can edit the config file or just type from the console (to use the config
- type -f <cfgfile>) :
- $ ./afserver
- This will work, if you want to use default values:
- - hostname will be taken from hostname function (it would be ideally, if
- there is appropriate registration in /etc/hosts)
- - server will be listening for users on port 50127
- - server will be listening for client on port 50126
- - server will be for maximum 5 users
- - server will forward tcp packets
- - there will be no logging and no verbose messages
- - there will be no password identification
- - ip protocol family will be unspecified
-
-4) We use "make" on our machine (we can delete everything apart from afclient
- and client.rsa)
-
-5) We are typing from the console:
- $ ./afclient -n <name of the server> -p 80
- Where <name of the server> is a string like : 'bastion.univ.gda.pl' or
- '153.19.7.200'
-
-6) We can now enter with a web-browser to: <name of the server>:50127 and we
- will enter to our computer in the fact.
-
- 3.2 reverse udp mode
- --------------------
-
- local network |FireWall| Internet
- || (udp)
- || User 1-------AF Client
- || /(tcp)
- AF Client <---Encrypted/Compressed channel---> AF Server
- / || |
- /(udp) || (tcp)|
- / || /
- Game server || AF Client-------User 2
- || (udp)
-
-
-Let's see how to use af to forward udp packets. Suppose we want to create a game
-server on our computer (udp port 27960 on our machine):
-
-1) - 4) is the same like in example 1. (but we add option: -p udp)
-
-5) We are typing from the console:
- $ ./afclient -u -n <name of the server> -p 27960
- Where <name of the server> is a name (or ip) of a host where our server is
- running.
-
-6) Connecting to our game is more complicated. The user must use afclient to do
- this. He has to specify the server he is connecting to and the port, which
- his program will be listening on:
- $ ./afclient -U -d <hostname> -p <portnum> -n <name of the server> \
- -m <server port>
- Where <hostname> is the name of the user machine (who wants to connect to our
- game). <portnum> is the port he will be connecting to. <name of the server>
- is the name of the host where our server is running. <server port> is the
- port on which the server is listening for users. In order to connect to our
- game, the user has to connect to <hostname>:<portnum>.
-
-================================================================================
-
-================
-4. BUGS/PROBLEMS
-================
-
-There are no known/open bugs at the moment.
-
-================================================================================
-
-=====
-NOTES
-=====
-
-Active port forwarder is still under development, so please sent any comments,
-bugs notices and suggestions about it to <jeremian [at] poczta.fm>
-
-If you have some problems or want to share your opinions with others, feel free
-to post a message at http://gray-world.net/board/
-
-================================================================================
-
-======
-THANKS
-======
-
- Big thanks to the GW Team:
-
- to Alex <alex [at] gray-world.net>
- and Simon <scastro [at] entreelibre.com> for testing AF and a lot of advices.
-
- Thanks to Ilia Perevezentsev <iliaper [at] mail.ru> who read and corrected the
-README file.
-
- And thanks for using this software!
-
-LICENSE
--------
-
- Active Port Forwarder is distributed under the terms of the GNU General
- Public License v2.0 and is copyright (c) 2003,2004 jeremian <jeremian [at]
- poczta.fm>. See the file COPYING for details.
-
diff --git a/docs/fr/fr_README b/docs/fr/fr_README
deleted file mode 100644
index 56e87b1..0000000
--- a/docs/fr/fr_README
+++ /dev/null
@@ -1,102 +0,0 @@
-AF - Active Port Forwarder v0.5.2 - fr_README
-Copyright (C) 2003 jeremian - jeremian@poczta.fm
-================================================
-
-================================================================================
-
-GRAY-WORLD.NET / Active Port Forwarder
-======================================
-
- Le programme Active Port Forwarder est partie intégrante des projets
- Gray-World.net.
-
- Notre équipe présente sur le site http://gray-world.net les projets et
- publications sur lesquels nous travaillons. Ces projets et publications sont
- relatifs au contournement des systèmes de contrôle d'accès réseau (NACS
- bypassing) ainsi qu'à la sécurité des systèmes et réseaux.
-
-================================================================================
-
-Active port forwarder est un programme permettant de réaliser du forwarding de
-port sécurisé.
-Il utilise le protocole SSL pour augmenter le niveau de sécurité des
-communications entre serveur et client.
-
-Af est destiné aux personnes sans adresse IP publique externe qui désirent
-offrir des services accessibles depuis le net.
-
-EXEMPLE 1:
-
-L'utilisation de Af est extrèmement simple. Supposons que nous voulons mettre en
-place un serveur http sur notre station et que nous sommes masqueradés ou placé
-derrière un firewall:
-
-1) Nous devons tout d'abord trouver une station sur internet avec une IP
-publique et un shell.
-
-2) Utilisez ensuite make pour compiler Af sur cette machine. (Vous pouvez par la
-suite supprimer les fichiers afclient et client.rsa)
-
-3) Editez le fichier de configuration ou entrez sur la console: (pour utiliser
-la configuration, entrez type -f <cfgfile>)
- $ ./afserver
- Si vous voulez utiliser les valeurs par défaut:
- - Le nom d'hôte sera pris en compte par la fonction hostname (Il serait idéal
- qu'il soit référencé dans le fichier /etc/hosts)
- - Le serveur sera en écoute pour les utilisateurs sur le port 50127
- - Le serveur sera en écoute pour le client sur le port 50126
- - Le serveur sera limité à 5 utilisateurs
- - Le serveur retransmettra les paquets tcp
- - Aucun log ou message verbeux ne sera activé
-
-4) Nous utilisons make sur notre propre station (Nous pouvons ensuite supprimer
-tous les fichiers sauf afclient et client.rsa)
-
-5) Nous entrons sur la console:
- $ ./afclient -n <name of the server> -p 80
- Où <name of the server> est une chaîne du type : 'bastion.univ.gda.pl' ou
- '153.19.7.200'
-
-6) Nous pouvons ensuite utiliser notre navigateur web avec :
- <name of the server>:50127 et nous atteindrons notre propre station.
-
-EXEMPLE 2:
-
-Regardons comment nous pouvons utiliser af pour forwarder des paquets udp.
-Supposez que nous voulons mettre en place un serveur de jeu sur notre station
-(port udp 27960 sur notre station):
-
-1) - 4) sont les mêmes que pour l'exemple 1. (mais nous utilisons l'option:
--t udp)
-
-5) Nous entrons sur la console:
- $ ./afclient -u -n <name of the server> -p 27960
- Où <name of the server> est un nom (ou une ip) d'un hôte sur lequel notre
- serveur tourne.
-
-6) Nous connecter à notre jeu est un peu plus compliqué. L'utilisateur doit se
- servir de afclient pour cela.
- Il doit spécifier le serveur auquel il veut se connecter et le port sur
- lequel son programme sera en écoute:
- $ ./afclient -U -d <hostname> -p <portnum> -n <name of the server> -m\
- <server port>
- Où <hostname> est le nom de la station utilisateur (qui veut se connecter à
- notre jeu). <portnum> est le port auquel il se connectera. <name of the
- server> est le nom de l'hôte sur lequel notre serveur tourne. <server port>
- est le port sur lequel notre serveur est en écoute pour les utilisateurs.
- Pour se connecter à notre jeu, l'utilisateur doit se connecter à <hostname>:
- <portnum>.
-
-Active port forwarder est toujours en phase en développement, alors envoyez moi
-vos commentaires, les bugs que vous rencontrez et vos suggestions à
-<jeremian [at] poczta.fm>
-
-Et merci pour votre utilisation de ce programme!
-
-LICENCE
--------
-
- Active Port Forwarder est distribué sous les termes de la licence GNU -
- General Public Licence version 2.0 et est copyright (c) 2003 jeremian
- <jeremian [at] poczta.fm>.
- Consultez le fichier COPYING pour plus de details.
diff --git a/docs/ru/ru_README b/docs/ru/ru_README
deleted file mode 100644
index 4e825f7..0000000
--- a/docs/ru/ru_README
+++ /dev/null
@@ -1,294 +0,0 @@
-AF - Active Port Forwarder v0.5.4 - README
-Copyright (C) 2003,2004 jeremian - &lt;jeremian [at] poczta.fm&gt;
-===================
-
-================================================================================
-
-GRAY-WORLD.NET / Active Port Forwarder
-==========================
-
- Ïðîãðàììà Active Port Forwarder ÿâëÿåòñÿ ÷àñòüþ ïðîåêòà Gray-World.net.
-
- Íàøà êîìàíäà Gray-World ïðåäñòàâëÿåò íà ñàéòå http://gray-world.net ïðîåêòû è
- ïóáëèêàöèè, íàä êîòîðûìè ìû ðàáîòàåì, îòíîñÿùèåñÿ ê îáëàñòè èññëåäîâàíèÿ
- NACS (Ñèñòåì Êîíòðîëÿ Ñåòåâîãî Äîñòóïà), à òàêæå ê òåìå êîìïüþòåðíîé è
- ñåòåâîé áåçîïàñíîñòè.
-
-================================================================================
-
-==========
-ÑÎÄÅÐÆÀÍÈÅ
-==========
-
-ÎÏÈÑÀÍÈÅ
-
-1. ÓÑÒÀÍÎÂÊÀ
- 1.1 Èíñòðóêöèè
- 1.2 Íåîáõîäèìûå áèáëèîòåêè
- 1.3 Òåñòîâûå ïëàòôîðìû
-2. ÈÑÏÎËÜÇÎÂÀÍÈÅ
- 2.1 afserver
- 2.2 afclient
-3. ÏÐÈÌÅÐÛ
- 3.1 tcp-ðåæèì
- 3.2 îáðàòíûé udp-ðåæèì
-4. ÈÇÂÅÑÒÍÛÅ ÎØÈÁÊÈ/ÏÐÎÁËÅÌÛ
-
-ÇÀÌÅ×ÀÍÈß
-
-ÁËÀÃÎÄÀÐÍÎÑÒÈ
-
-================================================================================
-
-========
-ÎÏÈÑÀÍÈÅ
-========
-
-Active port forwarder ýòî ïðîãðàììíûé èíñòðóìåíò äëÿ áåçîïàñíîãî òóíåëèðîâàíèÿ
-äàííûõ. Îí èñïîëüçóåò SSL äëÿ çàùèòû ñîåäèíåíèÿ ìåæäó êëèåíòîì è ñåðâåðîì.
-Èçíà÷àëüíî, ïðîãðàììà áûëà ðàçðàáîòàíà äëÿ ïðîñòîé ïåðåñûëêè äàííûõ îò òî÷êè ê
-òî÷êå. Îäíàêî íåîáõîäèìîñòü îáõîäà áðàíäìàóýðà ñ öåëüþ ñäåëàòü êîìïüþòåðû
-ëîêàëüíîé ñåòè äîñòóïíûìè èçâíå, ïîâëèÿëà íà äàëüíåéøåå ðàçâèòèå ïðîåêòà.
-
-AF ïðåäíàçíà÷åí äëÿ ëþäåé, íå èìåþùèõ âíåøíåãî IP àäðåñà è êîòîðûå õîòÿò ñäåëàòü
-íåêîòîðûå ëîêàëüíûå ñåðâèñû äîñòóïíûìè â ñåòè.
-
-Â ïðîãðàììå èñïîëüçîâàíà áèáëèîòåêà zlib äëÿ ñæàòèÿ ïåðåäàâàåìûõ äàííûõ.
-
-Èñïîëüçîâàíèå åäèíîãî êàíàëà äëÿ ïåðåäà÷è äàííûõ è êîìàíä óïðàâëåíèÿ â ñî÷åòàíèè
-ñ áóôåðèçàöèåé ïåðåñûëàåìûõ ïàêåòîâ îáåñïå÷èâàåò õîðîøóþ ïðîèçâîäèòåëüíîñòü è
-ìàëîå âðåìÿ îòêëèêà ñèñòåìû.
-
-Äëÿ çàïóñêà afserver íå òðåáóåòñÿ ïðèâèëåãèé root, òàêæå îí íå èñïîëüçóåò
-thread-û èëè äðóãèå ïðîöåññû.
-
-================================================================================
-
-============
-1. ÓÑÒÀÍÎÂÊÀ
-============
-
- 1.1 Èíñòðóêöèè
- --------------
-
-1. Çàãðóçèòå óïàêîâàííûé èñõîäíûé êîä ñ http://www.gray-world.net/pr_af.shtml
-2. Ðàñïàêóéòå - tar zxvf
-3. Âûïîëíèòå êîìàíäó "make".
-4. Åñëè ÷òî-òî ïîøëî íå òàê - íàïèøèòå ïèñüìî àâòîðó èëè îñòàâüòå ñîîáùåíèå íà
- http://gray-world.net/board/
-
- 1.2 Íåîáõîäèìûå áèáëèîòåêè
- --------------------------
-
-1. openssl - http://www.openssl.org/
-2. zlib - http://www.gzip.org/zlib/
-
- 1.3 Òåñòîâûå ïëàòôîðìû
- ----------------------
-
-1. Linux:
- Gentoo, Slackware, Mandrake - áûëî ñîáðàíî áåç êàêèõ-ëèáî ïðîáëåì
-2. Freebsd:
- 4.4, 4.9 - Íåîáõîäèì patch ñ äîìàøíåé ñòðàíèöû ïðîåêòà
-3. Windows:
- win32 - Âåðñèÿ ñ cygwin äîñòóïíà íà äîìàøíåé ñòðàíèöå ïðîåêòà
-
-================================================================================
-
-================
-2. ÈÑÏÎËÜÇÎÂÀÍÈÅ
-================
-
- 2.1 afserver
- ------------
-
- Ïàðàìåòðû:
- -h, --help - ïå÷àòàåò ýòó ñïðàâêó
- -n, --hostname - èñïîëüçóåòñÿ ïðè ñîçäàíèè "ñëóøàþùèõ" ñîêåòîâ
- (ïî óìîë÷àíèþ: èìÿ âîçâðàùàåìîå ôóíêöèåé hostname)
- -l, --listenport - ïîðò ñåðâåðà - ïîëüçîâàòåëè ñîåäèíÿþòñÿ
- ñ íèì (ïî óìîë÷àíèþ: 50127)
- -m, --manageport - ïîðò äëÿ óïðàâëåíèÿ - äðóãàÿ ÷àñòü active
- port forwarder ñîåäèíÿåòñÿ ñ íèì (ïî óìîë÷àíèþ: 50126)
- -u, --users - êîëè÷åñòâî ïîëüçîâàòåëåé, èñïîëüçóþùèõ ñåðâåð
- (ïî óìîë÷àíèþ: 5)
- -c, --cerfile - èìÿ ôàéëà ñ ñåðòèôèêàòîì
- (ïî óìîë÷àíèþ: cacert.pem)
- -k, --keyfile - èìÿ ôàéëà ñ êëþ÷îì RSA (ïî óìîë÷àíèþ: server.rsa)
- -f, --cfgfile - èìÿ ôàéëà ñ êîíôèãóðàöèåé äëÿ active forwarder (ñåðâåð)
- -p, --proto - òèï ñåðâåðà (tcp|udp) - ñ êàêèì ïðîòîêîëîì îí áóäåò
- ðàáîòàòü (ïî óìîë÷àíèþ: tcp)
- -O, --heavylog - ïèñàòü âñå ñîîáùåíèÿ â logfile
- -o, --lightlog - ïèñàòü íåêîòîðûå ñîîáùåíèÿ â logfile
- -v, --verbose - âûâîä ñîîáùåíèé â êîíñîëü - ïðîãðàìà íå áóäåò ðàáîòàòü
- êàê daemon.
- --nossl - ïðîòîêîë ssl íå áóäåò èñïîëüçîâàí äëÿ ïåðåäà÷è äàííûõ (íî
- áóäåò èñïîëüçîâàí äëÿ óñòàíîâêè ñîåäèíåíèé) (ïî óìîë÷àíèþ:
- ssl èñïîëüçóåòñÿ âñåãäà)
- --nozlib - zlib íå áóäåò èñïîëüçîâàòüñÿ äëÿ ñæàòèÿ äàííûõ
- (ïî óìîë÷àíèþ: zlib èñïîëüçóåòñÿ)
- --pass - çàäàòü ïàðîëü äëÿ èäåíòèôèêàöèè êëèåíòà
- (ïî óìîë÷àíèþ: íåò ïàðîëÿ)
- -4, --ipv4 - èñïîëüçîâàòü òîëüêî ipv4
- -6, --ipv6 - èñïîëüçîâàòü òîëüêî ipv6
-
- 2.2 afclient
- ------------
-
- Options:
- -h, --help - ïå÷àòàåò ýòó ñïðàâêó
- -n, --servername - ãäå ðàáîòàåò âòîðàÿ ÷àñòü active port
- forwarder (íåîáõîäèìî)
- -m, --manageport - ïîðò äëÿ óïðàâëåíèÿ - ñåðâåð ñîåäèíÿåòñÿ ñ íèì
- (ïî óìîë÷àíèþ: 50126)
- -d, --hostname - èìÿ ëîêàëüíîãî/óäàëåííîãî ñåðâåðà - äàííûå áóäóò òóíåëèðîâàíû
- íà íåãî (ïî óìîë÷àíèþ: èìÿ âîçâðàùàåìîå ôóíöèåé hostname)
- -p, --portnum - ïîðò íà êîòîðûé áóäóò òóíåëèðîâàíû äàííûå (íåîáõîäèìî)
- -k, --keyfile - èìÿ ôàéëà ñ êëþ÷îì RSA (ïî óìîë÷àíèþ: client.rsa)
- -u, --udpmode - udp-ðåæèì - êëèåíò áóäåò èñïîëüçîâàòü udp ïðîòîêîë äëÿ
- êîììóíèêàöèè ñ hostname
- -U, --reverseudp - îáðàòíûé udp-ðåæèì. Udp ïàêåòû áóäóò ïåðåíàïðàâëÿòüñÿ
- ñ hostname:portnum (-p) íà ñåðâåð name:portnum (-m)
- -O, --heavylog - ïèñàòü âñå ñîîáùåíèÿ â logfile
- -o, --lightlog - ïèñàòü íåêîòîðûå ñîîáùåíèÿ â logfile
- -v, --verbose - âûâîä ñîîáùåíèé â êîíñîëü - ïðîãðàìà íå áóäåò ðàáîòàòü
- êàê daemon.
- --pass - çàäàòü ïàðîëü äëÿ èäåíòèôèêàöèè êëèåíòà
- (ïî óìîë÷àíèþ: íåò ïàðîëÿ)
- -4, --ipv4 - èñïîëüçîâàòü òîëüêî ipv4
- -6, --ipv6 - èñïîëüçîâàòü òîëüêî ipv6
- -l, --load - çàãðóçèòü ìîäóëü äëÿ ôèëüòðàöèè ïàêåòîâ
-
-================================================================================
-
-==========
-3. ÏÐÈÌÅÐÛ
-==========
-
- 3.1 tcp-ðåæèì
- -------------
-
- local network |FireWall| Internet
- ||
- || User 1
- || /(tcp)
- AF Client &lt;---Encrypted/Compressed channel---&gt; AF Server
- / || | \(tcp)
- /(tcp) || (tcp)| User 2
- / || \
- Http server || User 3
- ||
-
-
-Èñïîëüçîâàíèå ýòîãî ðåæèìà ÷åðåçâû÷àíî ïðîñòîå. Äàâàéòå ïðåäïîëîæèì, ÷òî ìû
-õîòèì ñîçäàò http ñåðâåð íà íàøåì êîìïüþòåðå, íàõîäÿùåìñÿ â ëîêàëüíîé ñåòè çà
-áðàíäìàóýðîì:
-
-1) Ìû äîëæíû íàéòè ìàøèíó ñ âíåøíèì IP àäðåñîì è äîñòóïîì ê shell.
-
-2) Èñïîëüçîâàòü "make" ÷òîáû ñêîìïèëèðîâàòü AF íà íåé. (âû ìîæåòå ñïîêîéíî
- óäàëÿòü ôàéëû afclient è client.rsa)
-
-3) Âû ìîæåòå îòðåäàêòèðîâàòü êîíôèãóðàöèîííûé ôàéë èëè ïåðåäàòü ïðîãðàììå âñå
- ïàðàìåòðû èç êîíñîëè (äëÿ èñïîëüçîâàíèÿ ôàéëà íàáåðèòå -f <cfgfile>) :
- $ ./afserver
- Ýòî áóäåò ðàáîòàòü, åñëè âû õîòèòå èñïîëüçîâàòü íàñòðîéêè ïî óìîë÷àíèþ:
- - hostname áóäåò âçÿò èç ôóíêöèè hostname (ýòî ðàáîòàåò çàìå÷àòåëüíî, åñëè
- åñòü ñîîòâåòñòâóþùàÿ çàïèñü â /etc/hosts)
- - ñåðâåð áóäåò æäàòü ïîëüçîâàòåëåé íà ïîðòó 50127
- - ñåðâåð áóäåò æäàòü êëèåíòà íà ïîðòó 50126
- - ñåðâåð áóäåò îáñëóæèâàòü ìàêèìóì 5 ïîëüçîâàòåëåé
- - ñåðâåð áóäåò ïåðåíàïðàâëÿòü tcp ñîåäèíåíèÿ
- - îòëàäî÷íûõ ñîîáùåíèé íå áóäåò
- - èäåíòèôèêàöèé ïî ïàðîëþ íå áóäåò
- - âåðñèÿ ïðîòîêîëà ip íå áóäåò çàäàíà
-
-4) Ìû èñïîëüçóåì "make" íà íàøåé ìàøèíå (ìîæíî óäàëèòü âñå êðîìå afclient è
- client.rsa)
-
-5) Íàáèðàåì â êîíñîëè:
- $ ./afclient -n <èìÿ ñåðâåðà> -p 80
- Ãäå <èìÿ ñåðâåðà> ñòðîêà òèïà: 'bastion.univ.gda.pl' èëè '153.19.7.200'
-
-6) Òåïåðü â áðàóçåðå ìû ìîæåì íàáðàòü: <èìÿ ñåðâåðà>:50127 è ïîïàäåì íà íàø
- êîìïüþòåð.
-
- 3.2 îáðàòíûé udp-ðåæèì
- ----------------------
-
- local network |FireWall| Internet
- || (udp)
- || User 1-------AF Client
- || /(tcp)
- AF Client &lt;---Encrypted/Compressed channel---&gt; AF Server
- / || |
- /(udp) || (tcp)|
- / || /
- Game server || AF Client-------User 2
- || (udp)
-
-
-Äàâàéòå òåïåðü ïîñìîòðèì êàê ìû ìîæåì èñïîëüçîâàòü af äëÿ ïåðåíàïðàâëåíèÿ udp
-ïàêåòîâ. Ïðåäïîëîæèì, ÷òî ìû õîòèì ñîçäàòü èãðîâîé ñåðâåð íà íàøåì êîìïüþòåðå
-(udp ïîðò 27960):
-
-1) - 4) òîæå ñàìîå, ÷òî è â ïåðâîì ïðèìåðå. (íî äîáàâëÿåì ïàðàìåòð: -p udp)
-
-5) Íàáèðàåì â êîíñîëè:
- $ ./afclient -u -n <èìÿ ñåðâåðà> -p 27960
- Ãäå <èìÿ ñåðâåðà> ýòî èìÿ (èëè ip) êîìïþòåðà ãäå ðàáîòàåò íàø ñåðâåð.
-
-6) Ïðîöåññ ñîåäèíåíèÿ ñ èãðîâûì ñåðâåðîì áîëåå ñëîæíûé. Ïîëüçîâàòåëü äîëæåí
- çàïóñòèòü fclient ÷òîáû ñäåëàòü ýòî. Îí äîëæåí óêàçàòü ñåðâåð ñ êîòîðûì îí
- áóäåò ñîåäèíÿòüñÿ è ïîðò, íà êîòîðîì åãî ïðîãðàììà áóäåò ñëóøàòü:
- $ ./afclient -U -d <hostname> -p <ïîðò> -n <èìÿ ñåðâåðà> \
- -m <ïîðò ñåðâåðà>
-
- Ãäå <hostname> èìÿ ìàøèíû ïîëüçîâàòåëÿ (êîòîðûé ñîåäèíÿåòñÿ ñ èãðîâûì
- ñåðâåðîì), <ïîðò> - ëîêàëüíûé ïîðò, <èìÿ ñåðâåðà> - èìÿ ñåðâåðà, <ïîðò
- ñåðâåðà> - ïîðò íà êîòîðîì ñåðâåð æäåò ïîëüçîâàòåëåé.Òåïåðü, ÷òîáû ïîïàñòü íà
- èãðîâîé ñåðâåð, ïîëüçîâàòåëü äîëæåí ñîåäèíÿòñÿ ñ <hostname>:<ïîðò>.
-
-================================================================================
-
-============================
-4. ÈÇÂÅÑÒÍÛÅ ÎØÈÁÊÈ/ÏÐÎÁËÅÌÛ
-============================
-
-Íà äàííûé ìîìåíò, íåò íèêàêèõ èçâåñòíûõ ïðîáëåì.
-
-================================================================================
-
-=========
-ÇÀÌÅ×ÀÍÈß
-=========
-
-Active port forwarder íàõîäèòñÿ â ðàçðàáîòêå, òàê ÷òî ïîæàëóéñòà, ïðèñûëàéòå
-ñâîè êîììåíòàðèè, çàìå÷àíèÿ îá îøèáêàõ è ïðåäëîæåíèÿ íà jeremian [at] poczta.fm
-
-Åñëè ó âàñ åñòü êàêèå-ëèáî ïðîáëåìû ñ èñïîëüçîâàíèåì ïðîãðàììû èëè âû õîòèòå
-ïîäåëèòüñÿ ñâîèì ìíåíèåì î íåé, ïîæàëéñòà îñòàâëÿéòå ñâîè ñîîáùåíèÿ íà:
-http://gray-world.net/board/
-
-================================================================================
-
-=============
-ÁËÀÃÎÄÀÐÍÎÑÒÈ
-=============
-
- Áîëüøîå ñïàñèáî êîìàíäå GW:
-
- Alex <alex [at] gray-world.net>
- è Simon <scastro [at] entreelibre.com> çà òåñòèðîâàíèå AF è ìíîæåñòâî ñîâåòîâ.
-
- Ñïàñèáî Ilia Perevezentsev <iliaper [at] mail.ru> çà êîððåêòèðîâêó àíãëèéñêîé
- âåðñèè ýòîãî ôàéëà.
-
- È ñïàñèáî çà èñïîëüçîâàíèå AF!
-
-ËÈÖÅÍÇÈß
---------
-
- Active Port Forwarder is distributed under the terms of the GNU General
- Public License v2.0 and is copyright (c) 2003,2004 jeremian <jeremian [at]
- poczta.fm>. See the file COPYING for details.