Sajid Ali
Sajid Ali
Linux & Windows Server Administrator | Cloud Architect: I possess 10 years of professional experience with administration of different hosting provider’s Linux and Windows based servers on a large production level.

I2P SETUP FOR SQUID OUTPROXY

- Advertisement -

This post is about I2P SETUP FOR SQUID OUTPROXY.

I2P INSTALLATION ON DEBIAN 10

The Invisible Internet Project (I2P) is a fully encrypted private network layer that has been developed with privacy and security by design in order to provide protection for your activity, location and your identity. The software ships with a router that connects you to the network and applications for sharing, communicating and building.

sudo apt-get update

sudo apt-get install apt-transport-https curl

sudo nano /etc/apt/sources.list.d/i2p.list

deb https://deb.i2p2.de/ buster main

deb-src https://deb.i2p2.de/ buster main

sudo curl -o i2p-debian-repo.key.asc https://geti2p.net/_static/i2p-debian-repo.key.asc

gpg -n --import --import-options import-show i2p-debian-repo.key.asc

sudo apt-key add i2p-debian-repo.key.asc

- Advertisement -

sudo apt-get update

sudo apt-get install i2p i2p-keyring

IPTABLES CONFIGURATION FOR I2P:

ip ables -I INPUT t -p tcp -m tcp --dport 7657 -j ACCEPT

iptables -I INPUT -p tcp -m tcp --dport 7658 -j ACCEPT

iptables -I INPUT -p tcp -m tcp --dport 7657 -j ACCEPT

iptables -I INPUT -p tcp -m tcp --dport 7658 -j ACCEPT

vi /etc/sysctl.conf

(Add following line at bottom of sysctl.conf)

net.ipv4.conf.eth0.route_localnet=1

(Save and exit)

(Run Following commands):

sysctl -p

iptables -t nat -I PREROUTING -p tcp -d 0.0.0.0/0 --dport 7657 -j DNAT --to-destination 127.0.0.1:7657

iptables -t nat -I PREROUTING -p tcp -d 0.0.0.0/0 --dport 7658 -j DNAT --to-destination 127.0.0.1:7658

iptables-save > /etc/iptables.rules

crontab  -e

@reboot sudo  iptables-restore -n < /etc/iptables.rules

SET I2P SERVICE TO START AT REBOOT:

systemctl enable i2p

systemctl start i2p

I2P TUNNEL CONFIGURATION FOR OUTPROXY

http://195.15.218.182:7657/home

Click on Hidden Service Manager

Click the Server Tunnel

Select tunnel type Standard

Type name of tunnel

Type Host IP and destination port

Put check on Automatically start tunnel when router starts and click on finish

I2P SETUP FOR SQUID
I2P SETUP FOR SQUID

Tunnel is created as show below.  xzxmfhs5px4njqluhmxbgm3vg6gscsbjtforai5synaets3sl7nq.b32.i2p is your outproxy I2P address that can be used by client

CONFIGURATION OF USING SQUID AUTHENTICATION IN I2P

nano /etc/i2p/wrapper.config

“Now add following line in wrapper.conf”

i2p.disableSSLHostnameVerification=true

Save and exit

Now restart i2p service as :

service i2p restart

I2P CONFIGURATION AT CLIENT SIDE (ANDROID MOBILE)

Download I2P from Playstore

Open and run I2P. After starting I2P Service it will take 2 to 3 minutes to initialize service and tunnels. After successful run of I2P it will be shown as below

Now to set the outproxy URL go to the tunnel tab as shown below

Then click on I2P HTTP/HTTPS Proxy

Now click on Outproxies and SSL outproxies and set i2p outproxy url xzxmfhs5px4njqluhmxbgm3vg6gscsbjtforai5synaets3sl7nq.b32.i2p

Scroll down and click on Advanced button.

Set the tunnel parameter as shown below (This is optional and for have some better performance)

Now scroll down and find the outproxy authorization option and enable it. Then set credentials as shown below

Now  press the back button and restart the tunnel or may restart I2P

I2P Web browsing

I2P needs some application that defines required proxy setting. In normal web browser available in Android couldn’t find proxy setting option.

So Mozilla Firefox we used here for testing purpose. It has FoxyProxy Add-on Which fulfill the requirements to define proxy options:

Download Firefox and Go to the Add-on options. Then search and add the Foxyproxy Add-on. Following is the Firefox Add-on Screen:

After adding Foxyproxy, click on it. Then Enabled and go to the settings

In settings, click on Add

Do the following configuration and save it (Proxy type: HTTP, Proxy IP: 127.0.0.1, Port: 4444)

Click on Add Again

Do the following configuration and save it (Proxy type: HTTPS/SSL, Proxy IP: 127.0.0.1, Port: 4444)

After Saving, Turn this proxy on as shown below

Now try to browse https://dcorp.cloud

If face problem in browsing like time out or proxy refuse connection then make sure I2P Client is running or restart it

This proxy is restricted to open only below websites:

google.com

dcorp.cloud

speedtest.net

whatismyipaddress.com

I2P CONFIGURATION FOR WINDOWS CLIENT

Download I2P for windows from here (Latest version of Java would be required. Make sure it is already installed in windows PC)

https://geti2p.net/en/download

After Download I2P run the setup

Just Click ok

Then, you have to Click on Next

Select the destination folder or leave default. So, Click on next

Click on next

Finally, Click on Next and finish the setup

To Start I2p Service double click on I2P icon named Start I2P (restartable)  

Below screen will appear when I2P initialize service (wait 2 to 3 minutes to initialize the tunnels)

Open Mozilla Firefox and configure its proxy setting as shown below

Access I2P console http://127.0.0.1:7657/home

Click on Hidden Service Manager

Click on I2P HTTP Proxy and paste the outproxy address in outproxies and SSL outproxies section

xzxmfhs5px4njqluhmxbgm3vg6gscsbjtforai5synaets3sl7nq.b32.i2p

Now scroll down and enable outproxy authorization and set the credentials and save the tunnel

Then stop and start the tunnel “I2P HTTP Proxy” again

Now try to browse http://dcorp.cloud

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest articles

Join us on Facebook

x