dockerfiles/obfsproxy/README.md

OpenVPN over Obfsproxy
======================

Obfsproxy is a pluggable transport proxy written in python.  
We can transport OpenVPN over Obfsproxy, so that firewall cannot detect it.  

Obfsproxy provides several obfuscation method. I consider `scramblesuit` the best.  
I will update this image if there's better one.

To use the example bellow, you should run `kylemanna/openvpn` container first.  
Don't forget to edit `/etc/openvpn/openvpn.conf` to use `proto tcp`.

## docker-compose.yml

```
data:
  image: busybox:latest
  volumes:
    - /etc/openvpn

server:
  image: kylemanna/openvpn:latest
  ports:
    - "1194:1194/tcp"
  volumes_from:
    - data
  cap_add:
    - NET_ADMIN
  restart: always

obfsproxy:
  image: vimagick/obfsproxy:latest
  ports:
    - "4911:4911"
  links:
    - server:openvpn
  environment:
    - PASSWORD=J23TNHPJPAOQJLTCPLFD4CQYVFY6MEVP
    - DEST_HOST=openvpn
    - DEST_PORT=1194
    - LISTEN_ADDR=0.0.0.0
    - LISTEN_PORT=4911
  restart: always
```

To link a existing `openvpn` container, please use `external_links` instead of `links`.

```
obfsproxy:
  image: vimagick/obfsproxy:latest
  ports:
    - "4911:4911"
  external_links:
    - openvpn_server_1:openvpn
  environment:
    - PASSWORD=J23TNHPJPAOQJLTCPLFD4CQYVFY6MEVP
    - DEST_HOST=openvpn
    - DEST_PORT=1194
    - LISTEN_ADDR=0.0.0.0
    - LISTEN_PORT=4911
  restart: always
```

The password should be encoded by Base32 with fixed length.  
You can generate one via this command:

```
python -c 'import base64, os; print base64.b32encode(os.urandom(20))'
```
add README 2015-04-30 10:08:49 +00:00			`OpenVPN over Obfsproxy`
			`======================`

fix doc 2015-04-30 10:32:52 +00:00			`Obfsproxy is a pluggable transport proxy written in python.`
			`We can transport OpenVPN over Obfsproxy, so that firewall cannot detect it.`

fix doc 2015-04-30 11:39:20 +00:00			Obfsproxy provides several obfuscation method. I consider `scramblesuit` the best.
			`I will update this image if there's better one.`

			To use the example bellow, you should run `kylemanna/openvpn` container first.
			Don't forget to edit `/etc/openvpn/openvpn.conf` to use `proto tcp`.
fix doc 2015-04-30 10:32:52 +00:00
add README 2015-04-30 10:08:49 +00:00			`## docker-compose.yml`

			```
fix doc 2015-04-30 11:39:20 +00:00			`data:`
			`image: busybox:latest`
			`volumes:`
fix doc 2015-04-30 11:50:32 +00:00			`- /etc/openvpn`
fix doc 2015-04-30 11:39:20 +00:00
			`server:`
			`image: kylemanna/openvpn:latest`
			`ports:`
fix doc 2015-04-30 11:50:32 +00:00			`- "1194:1194/tcp"`
fix doc 2015-04-30 11:39:20 +00:00			`volumes_from:`
fix doc 2015-04-30 11:50:32 +00:00			`- data`
fix doc 2015-04-30 11:39:20 +00:00			`cap_add:`
fix doc 2015-04-30 11:50:32 +00:00			`- NET_ADMIN`
fix doc 2015-04-30 11:39:20 +00:00			`restart: always`

add README 2015-04-30 10:08:49 +00:00			`obfsproxy:`
			`image: vimagick/obfsproxy:latest`
			`ports:`
			`- "4911:4911"`
			`links:`
fix doc 2015-04-30 11:39:20 +00:00			`- server:openvpn`
			`environment:`
			`- PASSWORD=J23TNHPJPAOQJLTCPLFD4CQYVFY6MEVP`
			`- DEST_HOST=openvpn`
			`- DEST_PORT=1194`
			`- LISTEN_ADDR=0.0.0.0`
			`- LISTEN_PORT=4911`
			`restart: always`
			```

			To link a existing `openvpn` container, please use `external_links` instead of `links`.

fix doc 2015-04-30 11:46:33 +00:00			```
fix doc 2015-04-30 11:39:20 +00:00			`obfsproxy:`
			`image: vimagick/obfsproxy:latest`
			`ports:`
			`- "4911:4911"`
			`external_links:`
add README 2015-04-30 10:08:49 +00:00			`- openvpn_server_1:openvpn`
			`environment:`
			`- PASSWORD=J23TNHPJPAOQJLTCPLFD4CQYVFY6MEVP`
			`- DEST_HOST=openvpn`
			`- DEST_PORT=1194`
			`- LISTEN_ADDR=0.0.0.0`
			`- LISTEN_PORT=4911`
			`restart: always`
			```

fix doc 2015-04-30 11:39:20 +00:00			`The password should be encoded by Base32 with fixed length.`
			`You can generate one via this command:`

fix doc 2015-04-30 11:46:33 +00:00			```
fix doc 2015-04-30 11:39:20 +00:00			`python -c 'import base64, os; print base64.b32encode(os.urandom(20))'`
			```