Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/eyedeekay/basic-tunnel-tutorial

A detailed walkthrough of tunnel configuration for an http server, run over i2p
https://github.com/eyedeekay/basic-tunnel-tutorial

http-tunnel i2p server-tunnel tunnel-tutorial tunnel-wizard

Last synced: about 2 months ago
JSON representation

A detailed walkthrough of tunnel configuration for an http server, run over i2p

Host: GitHub
URL: https://github.com/eyedeekay/basic-tunnel-tutorial
Owner: eyedeekay
Created: 2018-09-22T05:55:43.000Z (almost 6 years ago)
Default Branch: master
Last Pushed: 2019-04-10T00:35:25.000Z (over 5 years ago)
Last Synced: 2024-07-09T01:20:26.440Z (2 months ago)
Topics: http-tunnel, i2p, server-tunnel, tunnel-tutorial, tunnel-wizard
Language: HTML
Size: 664 KB
Stars: 4
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        Basic i2p Tunnels Tutorial with Pictures

========================================

Although the Java i2p router comes pre-configured with a static web server,

jetty, to provide the user's first eepSite, many require more sophisticated

functionality from their web server and would rather create an eepSite with a

different server. This is of course possible, and actually is really easy once

you've done it one time.

Although it is easy to do, there are a few things you should consider before

doing it. You will want to remove identifying characteristics from your web

server, like potentially identifying headers and default error pages that

report the server/distro type. More information about threats to anonymity

posed by improperly configured applications see:

[Riseup here:](https://riseup.net/en/security/network-security/tor/onionservices-best-practices),

[Whonix Here:](https://www.whonix.org/wiki/Onion_Services),

[This blog article for some opsec fails:](https://blog.0day.rocks/securing-a-web-hidden-service-89d935ba1c1d),

[and the i2p applications page here](https://geti2p.net/en/docs/applications/supported).

Although much of this information is expressed for Tor Onion Services, the same

procedures and principles apply to hosting applications over i2p.

Step One: Open the Tunnel Wizard

--------------------------------

Go to the i2p web interface at 127.0.0.1:7657 and open the

[Hidden Services Manager](http://127.0.0.1:7657/i2ptunnelmgr)(links to

localhost). Click the button that says "Tunnel Wizard" to begin.

![Step One: Open the Tunnel Wizard](00-wizard.png)

Step Two: Select a Server Tunnel

--------------------------------

The tunnel wizard is very simple. Since we're setting up an http *server*, all

we need to do is select a *server* tunnel.

![Step Two: Select a Server Tunnel](01-select.png)

Step Three: Select an HTTP Tunnel

---------------------------------

Now I may be wrong, but I'm pretty sure that the only difference between http

server tunnels and regular server tunnels is that http server tunnels add in

the X-I2P-DEST* header's using the repliable address of the client visiting the

site. If you don't make use of X-I2P-DEST, you could just use a server tunnel.

Nonetheless, select the HTTP tunnel for now.

![Step Three: Select an HTTP Tunnel](02-http.png)

Step Four: Give it a name and a description

-------------------------------------------

For your own benefit and ability to remeber and distinguish the what you are

using the tunnel for, give it a good nickname and description. If you need to

come back and do more management later, then this is how you will identify the

tunnel in the hidden services manager.

![Step Four: Give it a name and a description](03-name.png)

Step Five: Configure the Host and Port

--------------------------------------

In this step, you point the web server at the TCP port where your web server is

listening. Since most web servers listen on port 80 or port 8080, the example

shows that. If you use alternate ports or virtual machines or containers to

isolate your web services, you may need to adjust the host, port, or both.

![Step Five: Configure the Host and Port](04-port.png)

Step Six: Decide whether to start it automatically

---------------------------------------------------

I cannot think of a way to elaborate on this step.

![Step Six: Decide whether to start it automatically](05-auto.png)

Step Seven: Review your settings

------------------------------

Finally, take a look at the settings you have selected. If you approve, save

them. If you did not choose to start the tunnel automatically, go to the hidden

services manager and start it manually when you wish to make your service

available.

![Step Six: Review your settings](06-finish.png)

Appendix: HTTP Server Customization Options

-------------------------------------------

i2p provides a detailed panel for configuring the http server tunnel in custom

ways. I'll finish this tutorial by walking through all of them. Eventually.

![Options page](07-finished.png)

![Options page](08-finished.png)

![Options page](09-finished.png)

![Options page](10-finished.png)