Setting up transparent proxy through TOR

Itsamnaaj · 07-21-2012, 11:34 PM

Hello everyone,

I've been trying to transparently route all my traffic through TOR, as per the official guide: https://trac.torproject.org/projects...ansparentProxy (section "Transparently anonymizing traffic for a specific user"). However, the IPTables commands they provide always produce errors.

The following commands:

Code:

iptables -t nat -A OUTPUT ! -o lo -p tcp -m owner --uid-owner anonymous -m tcp -j REDIRECT --to-ports 9040
iptables -t nat -A OUTPUT ! -o lo -p udp -m owner --uid-owner anonymous -m udp --dport 53 -j REDIRECT --to-ports 53
iptables -t filter -A OUTPUT -p tcp -m owner --uid-owner anonymous -m tcp --dport 9040 -j ACCEPT
iptables -t filter -A OUTPUT -p udp -m owner --uid-owner anonymous -m udp --dport 53 -j ACCEPT
iptables -t filter -A OUTPUT ! -o lo -m owner --uid-owner anonymous -j DROP

all produce the error message "iptables: No chain/target/match by that name.", however, 'nat' is a valid target, 'OUTPUT' is a valid chain and there are no invalid matches. I am stumped, I can't get it to work.

Can someone explain to me how to do this correctly? I am on Gentoo and using IPTables version 1.4.13.

Thanks in advance,

Itzamna

ambrop7 · 07-22-2012, 04:06 AM

It's possible that you have parts of Netfilter disabled in the kernel configuration; see http://en.gentoo-wiki.com/wiki/Iptables .
Anyway, if you still can't get it to work, you can try my tun2socks software to forward via Tor. You may however have some problems if you try to do it all on one machine (as opposed to having a Tor-ified virtual machine).