Coder Social home page Coder Social logo

rtradeltd / libanonvpn Goto Github PK

View Code? Open in Web Editor NEW
39.0 6.0 9.0 144.43 MB

Library for TUN and TAP devices over I2P in Go Applications

License: GNU Affero General Public License v3.0

Makefile 15.54% Dockerfile 1.35% Go 78.12% Batchfile 0.45% Shell 1.90% NSIS 2.65%
i2p i2p-vpn vpn tuntap tun-device tap-device multihop-vpn anonymity

libanonvpn's Introduction

libanonvpn (home)

Library for providing and connecting to VPN's over the I2P network. Daemon, web client, and terminal client. This is an automatically configuring, automatically deploying, automatically multihopping pseudonymous VPN.

Installation

For now, the recommended way to install is with go get

   go get -u -d -tags cli github.com/RTradeLtd/libanonvpn/cmd/anonvpn

Example Usage

Server-Side

Start by creating a server configuration file like the one found in /etc/anonvpn/anonvpn.ini. Then run the server using that file:

    ./anonvpn -file server.ini

Client-Side

When the server is started, it will create a minimum viable configuration file for clients. You can run with a similar command:

    ./anonvpn -file client.ini

Usage of ./cmd/anonvpn/anonvpn:
  -accesslist string
    	Type of access list to use, can be "whitelist" "blacklist" or "none". (default "none")
  -addr string
    	(client) IP address of virtual network interface (default "10.79.0.2")
  -canal
    	Run the canal subcommand to configure firewall rules(Experimental).
  -chromeuser string
    	user to run Chrome as, usually your desktop user (default "idk")
  -client
    	Client mode(true or false). (default true)
  -clientconf string
    	(Server Only) Output a client config file to the specified path (default "client.ini")
  -closeidle
    	Close tunnel after idle for a specified time(true or false).
  -closeidletime int
    	Close tunnel group after X (milliseconds). (default 600000)
  -compression
    	Uze gzip(true or false).
  -css string
    	custom CSS for web interface (default "css/styles.css")
  -destination string
    	Destination to connect client's to by default.
  -directory string
    	Directory to save tunnel configuration file in.
  -encryptleaseset
    	Use an encrypted leaseset(true or false). (default true)
  -file string
    	Use an ini file for configuration(config file options override passed arguments for now). (default "none")
  -hashhash string
    	32-word mnemonic representing a .b32.i2p address(will output .b32.i2p address and quit)
  -host string
    	(server) IP address of virtual network interface (default "10.79.0.1")
  -inbackups int
    	Set inbound tunnel backup quantity(0 to 5). (default 3)
  -inlength int
    	Set inbound tunnel length(0 to 7). (default 1)
  -inquantity int
    	Set inbound tunnel quantity(0 to 15). (default 5)
  -invariance int
    	Set inbound tunnel length variance(-7 to 7).
  -javascript string
    	custom JS for web interface (default "js/scripts.js")
  -k string
    	key for encrypted leaseset (default "none")
  -littleboss string
    	instruct the littleboss:
    	
    	start:		start and manage this process using service name "name"
    	stop:		signal the littleboss to shutdown the process
    	status:		print statistics about the running littleboss
    	reload:		restart the managed process using the executed binary
    	bypass:		disable littleboss, run the program directly (default "bypass")
  -name string
    	Tunnel name, this must be unique but can be anything. (default "anonvpn")
  -outbackups int
    	Set outbound tunnel backup quantity(0 to 5). (default 3)
  -outlength int
    	Set outbound tunnel length(0 to 7). (default 1)
  -outquantity int
    	Set outbound tunnel quantity(0 to 15). (default 5)
  -outvariance int
    	Set outbound tunnel length variance(-7 to 7).
  -password string
    	password for web admin panel
  -persistident
    	Use saved file and persist tunnel(If false, tunnel will not persist after program is stopped.
  -pk string
    	private key for encrypted leaseset (default "none")
  -psk string
    	private signing key for encrypted leaseset (default "none")
  -reduceidle
    	Reduce tunnel quantity when idle for a specified time(true or false).
  -reduceidlequantity int
    	Reduce idle tunnel quantity to X (0 to 5). (default 3)
  -reduceidletime int
    	Reduce tunnel quantity after X (milliseconds). (default 600000)
  -samhost string
    	SAM host (default "127.0.0.1")
  -samport string
    	SAM port (default "7656")
  -signaturetype string
    	Signature type
  -skipi2cp
    	Skip I2CP Port check for standalone router
  -start
    	Start a tunnel with the passed parameters(Otherwise, they will be treated as default values). (default true)
  -string string
    	Gateway to forward requests recieved by the server with canal(Experimental) (default "192.168.0.1")
  -username string
    	username for web admin panel (default "go-anonvpn")
  -webface
    	Start web administration interface (default true)
  -webport string
    	Web interface port (default "7959")
  -zeroin
    	Allow zero-hop, non-anonymous tunnels in(true or false).
  -zeroout
    	Allow zero-hop, non-anonymous tunnels out(true or false).

libanonvpn's People

Contributors

bonedaddy avatar dependabot-preview[bot] avatar eyedeekay avatar mend-bolt-for-github[bot] avatar nokidev avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar

Forkers

nokidev jumpersdevice idaniellaw bonedaddy eyedeekay jacobjohansen tunwq pinkdiamond1

libanonvpn's Issues

Windows rules for directing traffic over the VPN

The primary purpose of this library is to create network interfaces that applications that want to use I2P to hide their physical location from a peer on a peer-to-peer network can attach to. It goes from IP->I2P and I2P<-IP and it works as a way of adapting applications by simulating a private network on top of an anonymous network.

But it doesn't do something most people seem to expect of their VPN's, which is create rules that route all of a specific type of traffic over the VPN. Usually the "type" of traffic is defined by the user running applications, i.e. all traffic originating from applications started by the user. This involves writing firewall rules for platforms that I know basically nothing about, usually by asking for privileges on platforms who's architecture I know very little about. A person who knows about Windows networking would probably find this very easy.

Start as non-root using capabilities

Is your feature request related to a problem? Please describe.
This application can be run without root and without docker using capabilities. This should be facilitated when the user installs the application.

Describe the solution you'd like
Capabilities required for creating TUN devices on linux should be made available to this application when installed on Linux.

Describe alternatives you've considered
Dropping privileges is unsupported in Go. Go uses capabilities.

Integrate With CI

Integrate this codebase with Travis CI for automated testing against pull requests, and integrate with dockerhub to automatically build docker images

Detect if using i2p-zero, disable I2CP Check in that case

If the user is using i2p-zero for I2P, chances are they don't have an I2CP port exposed, which we use to detect the presence of an I2P router before attempting to connect to SAM. That way if the router is present but SAM isn't enabled we can advise the user to enable it. So instead, we need to check for I2CP, then attempt to connect to SAM. That way we have 4 states. No I2CP or SAM, I2CP but not SAM, SAM but not I2CP, and I2CP and SAM. We can adjust the action we take or advise for the user based on this state, in the case of SAM but not I2CP we can assume the I2P router is i2p-zero.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.