You are not logged in.
I have this post about sharing the connection of sshuttle to clients:
[SOLVED] network sharing doesn't work after iptables REDIRECT
What I did is basically this:
I have two network cards in my local server:
ens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.31.131 netmask 255.255.255.0 broadcast 192.168.31.255
(This is the network card that provides access to the internet)
enp3s10: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500
inet 169.254.31.131 netmask 255.255.255.0 broadcast 169.254.31.255
(This is the network sharing interface)I run this command to proxy the network sharing of the remote server(excludes remote server itself):
sshuttle -l 169.254.31.131 -r [user]@[server_ip] -x 192.168.31.131:22 --dns 0/0 -v
iptables -t nat -I sshuttle-12300 -s 192.168.31.0/24 -j RETURNAnd the clients of the network sharing are proxied. I checked http://icanhazip.com and found my IP changed. Even when I open the Netflix page, it told me I can watch the videos that are actually not allowed in my country.
But when I tried to open google page https://www.google.com using chrome in my client(an android TV), chrome told me this:
Your connection is not private
Attackers might be trying to steal your information from www.google.com (for example, password, messages, or credit card). NET::ERR_CERT_COMMON_NAME_INVALID
... ...
You cannot visit www.google.com right now because the website uses HSTS.
The same error also happened when I tried to use socks5 proxy in my android phone, but it doesn't matter. I've already given up on it.
But the thing is that I have a Mac. And I enable network share in Mac, then run sshuttle. The clients of the network share of Mac works fine !!!
Maybe it's because Mac OS uses pf instead of iptables??? But I know nothing about pf and only little about iptables... I'm happy to test this for you because I really need to solve this problem.
How can I proxy the network share without having the error?
Offline