With the advent of WebSockets, it looks like TCP tunnels over HTTP/HTTPS are gaining more ground and I need to put some research time in them.
Some old to new links:
- Source: elia/corkscrew: Corkscrew mirror repo. Corkscrew is a tool for tunneling SSH through HTTP proxies. (which requires CONNECT)
- q3k/crowbar: Tunnel TCP over a plain HTTP session (does not require CONNECT: works with GET and POST requests)
- jpillora/chisel: A fast TCP tunnel over HTTP
CONNECT requests are not supported by many HTTP proxies, especially in larger organisations, so chisel and crowbar have a much bigger chance there.
However, that is a VPN solution which is much broader than just a single TCP tunnel. You can so similar things with OpenVPN, but over HTTP/HTTPS, also requires CONNECT:
- [WayBack] tls – VPN over HTTPs for a web service only – Information Security Stack Exchange
- [WayBack] Andreas Happe – How to hide OpenVPN behind HTTPS/SSL
- [WayBack] How to hide OpenVPN traffic – an introduction – BestVPN.com
- [WayBack] firewall – Can you run a VPN connection over HTTP? – Ask Ubuntu
SoftEtherVPN seems to be more versatile though. I blogged about that before, but back then didn’t have needs for it yet. VPN over HTTPS: Ultimate Powerful VPN Connectivity – SoftEther VPN Project.
–jeroen
via: [WayBack] VPN through only http – Server Fault answer by [WayBack] neutrinus
