人生在世，看得透，又看得远者prevail everywhere.

gg.gg/13nbnz gg.gg/13p5tj gg.gg/13p9s5 gg.gg/13tljl gg.gg/13xudz gg.gg/13xy3p gg.gg/143tqc linux.die.net linux.it.net.cn ostechnix.com unix.com gg.gg/19yv96 gg.gg/1bv5v3 man.linuxde.net gg.gg/148erg bit.ly/2vsM34J bit.ly/2EzoUDo gg.gg/1c3of3 bit.ly/2v6jGJi bit.ly/2tW6eYT gg.gg/1bzayz gg.gg/1bzazg bit.ly/2X6vadl bit.ly/2viLpHU linuxprobe.com linuxtechi.com systutorials.com ghacks.net linuxopsys.com reurl.cc/8W1x3X reurl.cc/NpzMWe reurl.cc/WrgYdx reurl.cc/Yv4Yvo reurl.cc/Lmy90K reurl.cc/Rr5aeG

Monday 18 May 2020

UDP forwarder

UDP Proxy(Chains) with basic obfs feature. Helps to fuck GFW's deep-packet-inspection. Usually use with OVPN.

A simple UNSAFE tool to encrypt / hide your UDP packets. Trying to trick The Great Firewall's deep learning VPN detection model. The packet can be easily decrypted if attacker checks the source code.

This tool is usually used with OpenVPN, to avoid being deep-learned by the GFW. OpenVPN already encrypted the packets, so I needn't do it again.

NOTE

DO NOT USE MASTER BRANCH. It's still under debugging. (the connection migration is not stable)

Design

Build

mkdir build && cd build
cmake .. && make
./udp_forwarder_ng [args ...]

Common Deployment

Common mistake

If you run OpenVPN and udp_forwarder on the same PC, you won't access the Internet successfully. If you did it, please think again and you'll realize how stupid you are.

Naive performance test

Note: the connection setup procedure maybe a little slow, but it doesn't matter.

Latency

with proxy: (encrypted OpenVPN + encrypted&obfs udp_forwarder_ng) 70.386ms

without proxy: 0.475ms + 68.578ms = 69.053ms

overhead (OpenVPN+Forwarder): 1.333ms

Known bug

Every UDP Forwarder, will drop the first client2server packet. (Doesn't matter).

Every UDP Forwarder, will drop

I assume that every connection has a unique port. search for comment tag 0427

from https://github.com/recolic/udp_forwarder_ng

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)