Setuping up a proxy/relay server at home to bypass proxy server at work?

[Hector13]

Anyone know if it is possible to setup some sort of relay web server on my PC at home (connected to cable model 24/7) that I can use to surf webpages from work (where many sites, like here and mail.yahoo.com are blocked)?

Basically, I am trying to setup something like www.freechina.com. I know I can use something like VNC, but i'd like other people at work to also be able to use it.

Thanks

 

[kalster]

lol

hehe
same sites are blocked on my office intranet too

i am surpsised AT isnt blocked

 

[martind1]

you coudl set up a VPN to do te trick i believe. read up on them

 

[bozo1]

Topics discussing circumventing firewalls, network security, etc., are generally frowned upon here. Many of us are Network Admins. :|

 

[martind1]

Originally posted by: bozo1
Topics discussing circumventing firewalls, network security, etc., are generally frowned upon here. Many of us are Network Admins. :|

that is true. usually there are these limitations for a reason. maybe you coudl talk to a net admin for the reasons that these are blocked.

 

[Garion]

If you were at my company, I *am* the guy that you'd talk to about this kind of thing. Let me explain a few things to you..

The reason that organizations block this kind of thing isn't just to be cruel. It's because there are company policies that require them to do so. There are often legal or regulatory restrictions that require them to block the things they do.

In my organization, we terminate about a person a month for trying to bypass policies or downloading unauthroized content. There's very little mercy for people who knowingly break the policies. Some things we let slide with a warning, but not many.

If your company runs a proxy, they can see nearly everything they do. If the admins are on the ball, they will catch you bypassing the system and things will rapidly go south from there.

Sure, there's a lot of ways that you can do it, but it's a really bad idea that could ultimately cost you your job.

- G

 

[kalster]

i know
1 guy in my company got fired for watching p0rn

 

[Halz]

You can/should use SSH to forward a local port to your remote machine, where a proxy server is setup.

There are dozens of howtos with a few google searches of 'ssh tunneling' or 'ssh port forwarding'

 

[Iron Woode]

I use Freesco as a router at home, but it can also act as a proxy server through dial up. I can dial into it and surf the internet with my cable modem from a different location.

 

[Soybomb]

Thats an excellent way to get fired, I would either go through the official channels to get the sites you want to surf that are fine allowed, or rethink how much you like being employed there.

 

[Confused]

Not good to try to get through the firewall at work.

Luckily, me being the IT department here, and my boss being a very cool guy, lets me use the 512/256k ADSL connection for the teleradiology machines with a proxy server rather than the 64k leased line for the rest of the organisation (i know it's very slow, but apparantly leased lines here are bloody expensive still)...which therefore bypasses the firewall. However, the only sites i go to are really AT and Ebay (looking for an old Mark 2 Escort, and my boss knows I am too) and they're not blocked on the firewall.

It's much nicer using a 512/256 line almost all to myself rather than a 64k line shared between 150 PCs!


Confused

 

[mboy]

Yup, u gonna get fired. Even if you figured out how to do it, the admins would know ( I certainly would on my network).
If I find someone knowingly circumventing my security policies. I reco immediate termination. By you doing something stupid like bypassing filtering/firewall/security policies, you put your company at risk of being taken down and loosing a lot of $$$$. Since this is my responsibility as an admin and my a$$ is on the line if something happens, I would make sure you would pay to open my network to vulnerabilitites.

 

[Halz]

How could an admin decrypt traffic going to a certain IP?

What argument would be used to convict the offender?

 

[bozo1]

How could an admin decrypt traffic going to a certain IP?

Any and all traffic on my network, whether internal or going to the Internet, is tracked. I can easily tell what is happening on my network and who is going where. Same goes for any well run corporate network.

Even trying to circumvent corporate standards will result in immediate termination, no exceptions.

 

[mboy]

Originally posted by: Halz
How could an admin decrypt traffic going to a certain IP?

What argument would be used to convict the offender?

With a tremendous # of tools. The only stuff you wouldnt be able to see is encrypted stuff (you couldn't read the raw packets).
We can even read your emails when we want to.

 

[dmcowen674]

Originally posted by: mboy

Originally posted by: Halz
How could an admin decrypt traffic going to a certain IP?

What argument would be used to convict the offender?

With a tremendous # of tools. The only stuff you wouldnt be able to see is encrypted stuff (you couldn't read the raw packets).
We can even read your emails when we want to.

Yeah, that's something to be proud of Orwell

 

[mboy]

Originally posted by: dmcowen674

Originally posted by: mboy

Originally posted by: Halz
How could an admin decrypt traffic going to a certain IP?

What argument would be used to convict the offender?

With a tremendous # of tools. The only stuff you wouldnt be able to see is encrypted stuff (you couldn't read the raw packets).
We can even read your emails when we want to.

Yeah, that's something to be proud of Orwell

I guess it is better then trying to circumvent your Companies security policies and getting yourself fired for it.
I don't read my users email, I and most admins don't have the time and could care less, but don't think when you are on a company owned PC that they can't do these types of things.