-
Notifications
You must be signed in to change notification settings - Fork 44
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Mitmproxy TCP Interception #7
Comments
I'm going to actually close this as a dupe, as this is essentially a different version of #2. Re: the raw option you tried, kubetap uses |
1.
This should work since there are the same codebase. 2.Traffic capturing is something different I am currently writing my master thesis about this topic. |
Ah, I actually did not know that mitmproxy offered this feature in the web UI. I am going to close #2 in favor of this. The issue you reference in the OP has a comment that references modes: https://docs.mitmproxy.org/stable/concepts-modes/ Kubetap currently only uses the kubetap/cmd/kubectl-tap/mitmproxy.go Line 181 in 836da3b
Perhaps try commenting out these errors and adding the configuration line for a compatible mode. Happy to accept a PR if you find a solution! |
So I fiddled around and read some more of the documentation and issues from tcpraw is in a experimental state (https://docs.mitmproxy.org/stable/concepts-options/#available-options search for rawtcp option) I tested locally cause its faster and came to the same conclusion as the for Reference here are the commands i used. # Terminal 1. Starting proxy listen on port 8887 proxying to localhost 8888 enable rawtcp and allow all tcp hosts
mitmweb -p 8887 --mode reverse:localhost:8888 --tcp-hosts '.*' --rawtcp
# Terminal 2. netcat listen on 8888 for segments
nc -lv 8888
# Terminal 3. connect to the proxy on port 8887
nc -v localhost 8887 Connecting is working but Segments never arrive at the destination. @Eriner reverse mode is basically the only option here. We do want to proxy all traffic to a server (pod) |
@Syndlex Let me know if you're able to get this to work or find a good alternative! |
Description
I tried the Tcp Raw option of mitmproyx and its not working.
I don't know if this should be a feature request or a bug report.
Kubectl commands to create reproducable environment / deployment
I enabled rawtcp in the option menu of mitmweb.
and added ".*" to tcp_hosts
According to mitmproxy/mitmproxy#2595 this should work.
Do you have a idea to get rawtcp mode working?
The
Screenshots or other information
This are the deployments and the service I use:
The text was updated successfully, but these errors were encountered: