Total Pageviews

Thursday, 21 April 2016

一个基于c脚本的tcp proxy(最好在linux桌面系统上使用)


This is a simple proxy daemon that allows you to forward TCP requests hitting a specified port on the localhost to a different port on another host. It can also forward data through external commands (for logging, filtering or copying network traffic). It is written in ANSI C so it takes a very little space and can be used on embedded devices.


On Linux compile the software using "make". On Windows use "make" from Cygwin ( MinGW will not work, as it does not support fork() and waitpid().
To build an executable for Tomato firmware ( you need to have the mipsel toolchain installed. Fetch it with git:
git clone git:// tomato
and follow instructions in the "tools/README.TXT" file.
Next, build proxy for Tomato with:
make tomato
For OpenWRT firmware ( you can find right toolchains in folders with corresponding firmware images. For example, the Backfire toolchain for Broadcom chipset can be found at in the OpenWrt-Toolchain-brcm47xx-for-mipsel-gcc-4.3.3+cs_uClibc- archive.
Make the software with:
make openwrt
when using Whiterussian and Kamikaze toolchains, or
make backfire
when using the Backfire toolchain.

Basic usage

Command line syntax goes as follows:
proxy -l local_port -h remote_host -p remote_port [-i "input parser"] [-o "output parser"] [-f (stay in foreground)]
Suppose you want to open port 8080 on a public host and forward all TCP packets to port 80 on machine in the local network. In this case you will install proxy on a public host and run it the following command:
proxy -l 8080 -h -p 80
Normally, proxy forks into the background. To make it stay in the foreground (for example for debugging purposes), use "-f" switch:
proxy -l 8080 -h -p 80 -f


Input parser and output parser are commands through which incoming and outgoing packets can be forwarded. For example to use a "tee" command to log all incoming http data to incoming.txt file you can start proxy with the following options:
proxy -l 8080 -h -p 80 -i "tee -a input.log" -o "tee -a output.log"
The parser command will receive data from socket to its standard input and should send parsed data to the standard output. It should also flush its output at a reasonable rate to not withhold network communication.
Important notice: Use read and write system calls instead of stdio functions like fgets or puts when designing a parser to avoid buffering problems:
char buf[BUF_SIZE];
int n;

while ((n = read(STDIN_FILENO, buf, BUF_SIZE)) > 0) {
    write(STDOUT_FILENO, buf, n);
You can read more on buffering issues at

Advanced usage

Using parsers to replicate network traffic

You can use input and output parsers to copy incoming / outgoing traffic to other hosts (e.g. for monitoring reasons). Just use "tee" command to replicate network packets to named pipes and then read from those pipes.
The following scenario assumes you set up the program on local port 8080 as a proxy to, and copy all outgoing requests to servers listening on ports 9000 and 9001 on localhost.
First, create the listeners (each one in separate terminal window):
while true; do nc -l 9000; done
while true; do nc -l 9001; done
Next, create named pipes "fifo0" and "fifo1":
mkfifo fifo0
mkfifo fifo1
Next, start reading data in loop from the pipes and forwarding it to the listeners (run these commands in separate terminals also):
while true; do cat fifo0 | nc localhost 9000; done
while true; do cat fifo1 | nc localhost 9001; done
Last, set up the proxy:
proxy -l 8080 -h -p 80 -o "tee fifo0 fifo1"
Now when you send a request through the proxy, you should see it on all terminals where you set up the listeners:
curl -i http://localhost:8080
Important notice: Make sure to read data from all the pipes. If you don't, tee will stuck on writing to the pipe which is not being read from, and so the proxy will be stuck also. Also if you restart a listener, netcat may not reconnect to it, which means that you will need to restart the appropriate forwarder script, too.

Local http proxy with traffic logging

Check ip address of the host you want to connect to:
Add the IP to static hosts list ("/etc/hosts" on Linux, "C:\Windows\System32\Drivers\etc\hosts" on Windows). Start the proxy pointing to the IP (don't use domain name to avoid request loop):
sudo proxy -l 80 -h -p 80 -i "tee input.log" -o "tee output.log"
Point your browser to and watch the contents of input.log and output.log files.