You are not logged in.
My laptop uses TOR with Privoxy, and the Iptables "Simple Stateful Firewall" script from these Arch wiki pages:
https://wiki.archlinux.org/index.php/Pr … nd_Privoxy
https://wiki.archlinux.org/index.php/Si … le_machine
I followed both wiki pages correctly, but I did skip this one part bellow in the Simple_Stateful_Firewall wiki:
# iptables -A TCP -p tcp --dport 80 -j ACCEPT
# iptables -A UDP -p udp --dport 53 -j ACCEPT
I skipped this part above because I wasn't sure if I needed to open those ports if I was running everything through TOR and Privoxy. (and hopefully Polipo soon)
I'm not sure if I really needed to include those two rules in my iptables script, but my internet works without them when using TOR and Privoxy (very slowly) on 8118 and 9050.
# iptables -nvL
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP all -- eth0 * 127.0.0.0/8 0.0.0.0/0
5581 1881K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
2 88 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
2503 2224K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 state NEW
1146 374K UDP udp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW
23 928 TCP tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 state NEW
1146 374K REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
23 928 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-proto-unreachable
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 7831 packets, 2444K bytes)
pkts bytes target prot opt in out source destination
Chain TCP (1 references)
pkts bytes target prot opt in out source destination
Chain UDP (1 references)
pkts bytes target prot opt in out source destination
# netstat -nlp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:8118 0.0.0.0:* LISTEN 5298/privoxy
tcp 0 0 127.0.0.1:9050 0.0.0.0:* LISTEN 5309/tor
Active UNIX domain sockets (only servers)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 9148 3633/nepomukservice /tmp/ksocket-twofoottwohand/nepomuk-socket
unix 2 [ ACC ] STREAM LISTENING 5661 3220/syslog-ng /var/run/syslog-ng.ctl
unix 2 [ ACC ] STREAM LISTENING 4893 3230/dbus-daemon /var/run/dbus/system_bus_socket
unix 2 [ ACC ] STREAM LISTENING 8347 3239/acpid /var/run/acpid.socket
unix 2 [ ACC ] STREAM LISTENING 7575 3358/X @/tmp/.X11-unix/X0
unix 2 [ ACC ] STREAM LISTENING 30557 4426/kdeinit4: kio_ /tmp/ksocket-twofoottwohand/kio_http_cache_cleaner
unix 2 [ ACC ] STREAM LISTENING 8595 3486/kdeinit4: kdei /tmp/ksocket-twofoottwohand/kdeinit4__0
unix 2 [ ACC ] STREAM LISTENING 5877 3487/kdeinit4: klau /tmp/ksocket-twofoottwohand/klauncherhX3487.slave-socket
unix 2 [ ACC ] STREAM LISTENING 8733 3518/kdeinit4: ksms /tmp/.ICE-unix/3518
unix 2 [ ACC ] STREAM LISTENING 5030 3478/dbus-daemon @/tmp/dbus-oaLz5ykaFz
unix 2 [ ACC ] STREAM LISTENING 5025 3458/gpg-agent /tmp/gpg-ioAdGV/S.gpg-agent
unix 2 [ ACC ] STREAM LISTENING 5977 3566/mysqld /home/twofoottwohand/.local/share/akonadi/socket-2.777101010/mysql.socket
unix 2 [ ACC ] STREAM LISTENING 10013 3564/akonadiserver /home/twofoottwohand/.local/share/akonadi/socket-2.777101010/akonadiserver.socket
unix 2 [ ACC ] STREAM LISTENING 9254 3461/ssh-agent /tmp/ssh-wRbJorGQ3460/agent.3460
unix 2 [ ACC ] STREAM LISTENING 7576 3358/X /tmp/.X11-unix/X0
unix 2 [ ACC ] STREAM LISTENING 10450 3692/virtuoso-t /tmp/virt_1111
unix 2 [ ACC ] STREAM LISTENING 8732 3518/kdeinit4: ksms @/tmp/.ICE-unix/3518
So lately I've been trying to install and configure Polipo to use with both Privoxy and TOR (and my iptables firewall), or just with TOR (and my iptables Stateful script).
I can't get polipo to start (both the DAEMONS and the sudo /etc/rc.d/polipo start both FAIL)
I've followed each of these wiki pages:
https://wiki.archlinux.org/index.php/Tor
https://wiki.archlinux.org/index.php/Polipo
and I find this part a bit confusing: https://wiki.archlinux.org/index.php/Po … nated_user
It is then also necessary to change ownership and/or permissions of several files and directories written by polipo:
the log file /var/log/polipo. Although a better choice is to create a directory /var/log/polipo owned by the designated user and set polipo's log file to /var/log/polipo/polipo.log via the logFile variable in the config file.
the pid file at /var/run/polipo/polipo.pid and the directory that hosts it
the cache directory /var/cache/polipo and all of the contained files
I made my new log directory with "sudo mkdirv /var/log/polipo" but I'm not sure how to add the new settings into the config file because there were no prior settings in the config and no commands written above for modifing the config file.
Any info would be appreciated, thnx.
Offline