bughz/glider
1
0
Fork 0
mirror of https://github.com/nadoo/glider.git synced 2025-11-04 07:42:38 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
glider is a forward proxy with multiple protocols support, and also a dns/dhcp server with ipset management features(like dnsmasq).
30 Commits 2 Branches 53 Tags 6.7 MiB
Go 99.8%
Shell 0.1%
76fbaf2cec
Go to file
nadoo 76fbaf2cec return strategy proxy if no rule file specified.
2017-07-30 12:38:41 +08:00
examples add some example configs 2017-07-30 11:44:34 +08:00
systemd fixed all known bugs 2017-07-29 18:15:22 +08:00
.gitignore add some example configs 2017-07-30 11:44:34 +08:00
conn.go first commit 2017-07-13 21:55:41 +08:00
direct.go add proxy rule file support. 2017-07-30 01:54:19 +08:00
dnstun.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00
glider.conf.example add proxy rule file support. 2017-07-30 01:54:19 +08:00
http.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00
LICENSE Initial commit 2017-07-13 21:53:15 +08:00
main.go 1. add CIDR rule support; 2. update some docs; 3. optimize rule.go codes. 2017-07-30 10:35:11 +08:00
mixed.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00
office.rule.example add some example configs 2017-07-30 11:44:34 +08:00
proxy.go add proxy rule file support. 2017-07-30 01:54:19 +08:00
README.md return strategy proxy if no rule file specified. 2017-07-30 12:38:41 +08:00
redir_linux_386.go parse domain in dns request playload. (prepare for the forward rule and ipset management features.) 2017-07-26 18:56:24 +08:00
redir_linux_other.go parse domain in dns request playload. (prepare for the forward rule and ipset management features.) 2017-07-26 18:56:24 +08:00
redir_linux.go fixed a bug in redir proxy. 2017-07-30 12:03:19 +08:00
redir_other.go parse domain in dns request playload. (prepare for the forward rule and ipset management features.) 2017-07-26 18:56:24 +08:00
rule.go 1. add CIDR rule support; 2. update some docs; 3. optimize rule.go codes. 2017-07-30 10:35:11 +08:00
rules.go return strategy proxy if no rule file specified. 2017-07-30 12:38:41 +08:00
socks5.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00
ss.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00
strategy.go add proxy rule file support. 2017-07-30 01:54:19 +08:00
tcptun.go change "func GetProxy() Proxy" to "GetProxy(dstAddr string) Proxy" so we could add rule based proxy later 2017-07-29 23:20:27 +08:00

README.md

glider

glider is a forward proxy with multiple protocols support.

we can set up local listeners as proxy, and forward requests to internet via forwarders.

                |Forwarder ----------------->|         
   Listener --> |                            | Internet
                |Forwarder --> Forwarder->...|

Features

Listen(local proxy):

  • Socks5 proxy
  • Http proxy
  • SS proxy
  • Linux transparent proxy(iptables redirect)
  • TCP tunnel
  • DNS tunnel(udp2tcp)

Forward(upstream proxy):

  • Socks5 proxy
  • Http proxy
  • SS proxy

General:

  • Http and socks5 on the same port
  • Forward chain
  • HA or RR strategy for multiple forwarders
  • Periodical proxy checking
  • Rule proxy based on destionation: Config Examples

TODO:

  • Specify different remote dns server in rule file
  • IPSet management
  • Improve DNS forwarder to resolve domain name and add ip to ipset
  • TUN/TAP device support
  • Code refactoring: support proxy registering so it can be pluggable
  • Conditional compilation so we can abandon needless proxy type and get a smaller binary size
  • SSH tunnel support

Install

Binary:

Go Get :

go get -u github.com/nadoo/glider

ArchLinux:

sudo pacman -S glider

Run

command line:

glider -listen :8443 -verbose

config file:

glider -config CONFIGPATH

command line with config file:

glider -config CONFIGPATH -listen :8080 -verbose

Usage

glider v0.3 usage:
  -checkduration int
        proxy check duration(seconds) (default 30)
  -checkwebsite string
        proxy check WEBSITE address (default "www.apple.com:443")
  -config string
        config file path
  -forward value
        forward url, format: SCHEMA://[USER|METHOD:PASSWORD@][HOST]:PORT[,SCHEMA://[USER|METHOD:PASSWORD@][HOST]:PORT]
  -listen value
        listen url, format: SCHEMA://[USER|METHOD:PASSWORD@][HOST]:PORT
  -rulefile value
        rule file path
  -strategy string
        forward strategy, default: rr (default "rr")
  -verbose
        verbose mode

Available Schemas:
  mixed: serve as a http/socks5 proxy on the same port. (default)
  ss: ss proxy
  socks5: socks5 proxy
  http: http proxy
  redir: redirect proxy. (used on linux as a transparent proxy with iptables redirect rules)
  tcptun: a simple tcp tunnel
  dnstun: listen on udp port and forward all dns requests to remote dns server via forwarders(tcp)

Available schemas for different modes:
  listen: mixed ss socks5 http redir tcptun dnstun
  forward: ss socks5 http

Available methods for ss:
  AEAD_AES_128_GCM AEAD_AES_192_GCM AEAD_AES_256_GCM AEAD_CHACHA20_POLY1305 AES-128-CFB AES-128-CTR AES-192-CFB AES-192-CTR AES-256-CFB AES-256-CTR CHACHA20-IETF XCHACHA20
  NOTE: chacha20-ietf-poly1305 = AEAD_CHACHA20_POLY1305

Available forward strategies:
  rr: Round Robin mode
  ha: High Availability mode

Config file format(see `glider.conf.example` as an example):
  # COMMENT LINE
  KEY=VALUE
  KEY=VALUE
  # KEY equals to command line flag name: listen forward strategy...

Examples:
  glider -config glider.conf
    -run glider with specified config file.

  glider -config glider.conf -rulefile office.rule -rulefile home.rule
    -run glider with specified global config file and rule config files.

  glider -listen :8443
    -listen on :8443, serve as http/socks5 proxy on the same port.

  glider -listen ss://AEAD_CHACHA20_POLY1305:pass@:8443
    -listen on 0.0.0.0:8443 as a ss server.

  glider -listen socks5://:1080 -verbose
    -listen on :1080 as a socks5 proxy server, in verbose mode.

  glider -listen http://:8080 -forward socks5://127.0.0.1:1080
    -listen on :8080 as a http proxy server, forward all requests via socks5 server.

  glider -listen redir://:1081 -forward ss://method:pass@1.1.1.1:443
    -listen on :1081 as a transparent redirect server, forward all requests via remote ss server.

  glider -listen tcptun://:80=2.2.2.2:80 -forward ss://method:pass@1.1.1.1:443
    -listen on :80 and forward all requests to 2.2.2.2:80 via remote ss server.

  glider -listen socks5://:1080 -listen http://:8080 -forward ss://method:pass@1.1.1.1:443
    -listen on :1080 as socks5 server, :8080 as http proxy server, forward all requests via remote ss server.

  glider -listen redir://:1081 -listen dnstun://:53=8.8.8.8:53 -forward ss://method:pass@server1:port1,ss://method:pass@server2:port2
    -listen on :1081 as transparent redirect server, :53 as dns server, use forward chain: server1 -> server2.

  glider -listen socks5://:1080 -forward ss://method:pass@server1:port1 -forward ss://method:pass@server2:port2 -strategy rr
    -listen on :1080 as socks5 server, forward requests via server1 and server2 in roundrbin mode.

Config File

Command:

glider -config glider.conf

Config file, just use the command line flag name as the key name:

### glider config file

# verbose mode, print logs
verbose

# listen on 8443, serve as http/socks5 proxy on the same port.
listen=:8443

# listen on udp port 53, forward dns requests via tcp protocol
listen=dnstun://:53=8.8.8.8:53

# upstream forward proxy
forward=socks5://192.168.1.10:1080

# upstream forward proxy
forward=ss://method:pass@1.1.1.1:443

# upstream forward proxy (forward chain)
forward=http://1.1.1.1:8080,socks5://2.2.2.2:1080

# multiple upstream proxies forwad strategy
strategy=rr

# check address (to check whether a host is reachable via forward proxy)
checkhost=www.apple.com:443

# check duration
checkduration=30

# RULE FILES
rulefile=office.rule
rulefile=home.rule

See:

Rule File

Rule file, same as the config file but specify forwarders based on destinations:

# YOU CAN USE ALL KEYS IN THE GLOBAL CONFIG FILE EXCEPT "listen", "rulefile"
forward=socks5://192.168.1.10:1080
forward=ss://method:pass@1.1.1.1:443
forward=http://192.168.2.1:8080,socks5://192.168.2.2:1080
strategy=rr
checkwebsite=www.apple.com:443
checkduration=30

# YOU CAN SPECIFY DESTINATIONS TO USE THE ABOVE FORWARDERS
# matches abc.com and *.abc.com
domain=abc.com

# matches 1.1.1.1
ip=1.1.1.1

# matches 192.168.100.0/24
cidr=192.168.100.0/24

See:

Service

Links

  • go-ss2: the core ss protocol support
  • gost: ideas and inspirations
  • conflag: command line and config file parse support
  • ArchLinux: a great linux distribution with glider pre-built package