|
|
@@ -12,78 +12,86 @@ Please read doc/html/index.html and man pages.
|
|
|
|
|
|
Features:
|
|
|
1. General
|
|
|
+ + IPv6 support for incoming and outgoing connection,
|
|
|
+ can be used as a proxy between IPv4 and IPv6 networks
|
|
|
+ in either direction.
|
|
|
+ HTTP/1.1 Proxy with keep-alive client and server support,
|
|
|
transparent proxy support.
|
|
|
- + Anonymous and random client emulation HTTP proxy mode
|
|
|
+ + HTTPS (CONNECT) proxy (compatible with HTTP/2 / SPDY)
|
|
|
+ + Anonymous and random client IP emulation for HTTP proxy mode
|
|
|
+ FTP over HTTP support.
|
|
|
+ DNS caching with built-in resolver
|
|
|
- + HTTPS (CONNECT) proxy
|
|
|
+ + DNS proxy
|
|
|
+ + DNS over TCP support, redirecting DNS traffic via parent
|
|
|
+ proxy
|
|
|
+ SOCKSv4/4.5 Proxy
|
|
|
+ SOCKSv5 Proxy
|
|
|
- + UDP and bind support for SOCKSv5 (fully compatible with
|
|
|
+ + SOCKSv5 UDP and BIND support (fully compatible with
|
|
|
SocksCAP/FreeCAP for UDP)
|
|
|
+ Transparent SOCKS redirection for HTTP, POP3, FTP, SMTP, ICQ
|
|
|
+ POP3 Proxy
|
|
|
+ FTP proxy
|
|
|
- + DNS proxy
|
|
|
- + TCP port mapper
|
|
|
- + UDP port mapper
|
|
|
+ + TCP port mapper (port forwarding)
|
|
|
+ + UDP port mapper (port forwarding)
|
|
|
+ SMTP proxy
|
|
|
+ ICQ/AOL proxy
|
|
|
+ Threaded application (no child process).
|
|
|
+ Web administration and statistics
|
|
|
+ Plugins for functionality extension
|
|
|
- + Native 64 bit application for 64 bit OS, including 64-bit editions of
|
|
|
- Windows.
|
|
|
- + IPv6 support
|
|
|
+ + Native 64 bit application
|
|
|
2. Proxy chaining and network connections
|
|
|
+ + Can be used as a bridge between client and different proxy type
|
|
|
+ (e.g. convert incoming HTTP proxy request from client to SOCKSv5
|
|
|
+ request to parent server).
|
|
|
+ Connect back proxy support to bypass firewalls
|
|
|
+ Parent proxy support for any type of incoming connection
|
|
|
+ Username/password authentication for parent proxy(s).
|
|
|
- + HTTPS/SOCKS4/SOCKS5 and redirection parent support
|
|
|
+ + HTTPS/SOCKS4/SOCKS5 and ip/port redirection parent support
|
|
|
+ Random parent selection
|
|
|
+ Chain building (multihop proxing)
|
|
|
+ Load balancing between few network connections by choosing network
|
|
|
interface
|
|
|
3. Logging
|
|
|
- + turnable log format compatible with any log parser
|
|
|
+ + tuneable log format compatible with any log parser
|
|
|
+ stdout logging
|
|
|
+ file logging
|
|
|
+ syslog logging (Unix)
|
|
|
+ ODBC logging
|
|
|
+ + RADIUS accounting
|
|
|
+ log file rotation (hourly, daily, weekly, monthly)
|
|
|
+ automatic log file comperssion with external archiver (for files)
|
|
|
+ automatic removal of older log files
|
|
|
+ Character filtering for log files
|
|
|
+ different log files for different servces are supported
|
|
|
4. Access control
|
|
|
+ + ACL-driven Access control by username, source IP,
|
|
|
+ destination IP/hostname, destination port and destination action
|
|
|
+ (POST, PUT, GET, etc), weekday and daytime.
|
|
|
+ ACL-driven (user/source/destination/protocol/weekday/daytime or
|
|
|
combined) bandwith limitation for incoming and (!)outgoing trafic.
|
|
|
+ ACL-driven (user/source/destination/protocol/weekday/daytime or
|
|
|
combined) traffic limitation per day, week or month for incoming and
|
|
|
- (!) outgoing traffic
|
|
|
- + User authentication by DNS hostname
|
|
|
+ outgoing traffic
|
|
|
+ User authentication by username / password
|
|
|
- + Access control by username, source IP, destination IP, destination
|
|
|
- port and destination action (POST, PUT, GET, etc), weekday and daytime.
|
|
|
+ + RADIUS Authentication and Authorization
|
|
|
+ + User authentication by DNS hostname
|
|
|
+ Access control by username/password for SOCKSv5 and HTTP/HTTPS/FTP
|
|
|
+ Cleartext or encrypted (crypt/MD5 or NT) passwords.
|
|
|
+ Connection redirection
|
|
|
+ Access control by requested action (CONNECT/BIND,
|
|
|
HTTP GET/POST/PUT/HEAD/OTHER).
|
|
|
- + NTLM (v1 only) authentication for HTTP proxy access
|
|
|
+ All access control entries now support weekday and time limitations
|
|
|
+ Hostnames and * templates are supported instead of IP address
|
|
|
5. Extensions
|
|
|
+ Regular expression filtering (with PCRE) via PCREPlugin
|
|
|
- currently HTTP traffic only for URLs, HTTP headers and HTTP data.
|
|
|
- + Authentication with Windows username/password (cleartext only!)
|
|
|
+ + Authentication with Windows username/password (cleartext only)
|
|
|
+ SSL/TLS decryptions with certificate spoofing
|
|
|
- + NAT support under Linux
|
|
|
+ + Transparent redirection support for Linux and *BSD
|
|
|
6. Configuration
|
|
|
+ support for configuration files
|
|
|
+ support for includes in configuration files
|
|
|
+ interface binding
|
|
|
+ + socket options
|
|
|
+ running as daemon process
|
|
|
+ utility for automated networks list building
|
|
|
+ configuration reload on any file change
|
|
|
@@ -91,7 +99,7 @@ Please read doc/html/index.html and man pages.
|
|
|
+ support for chroot
|
|
|
+ support for setgid
|
|
|
+ support for setuid
|
|
|
- + support for signals
|
|
|
+ + support for signals (SIGUSR1 to reload configuration)
|
|
|
Windows
|
|
|
+ support --install as service
|
|
|
+ support --remove as service
|
|
|
@@ -103,6 +111,7 @@ Please read doc/html/index.html and man pages.
|
|
|
+ support --remove as service
|
|
|
6. Compilation
|
|
|
+ MSVC (static)
|
|
|
+ + OpenWatcom (static)
|
|
|
+ Intel Windows Compiler (msvcrt.dll)
|
|
|
+ Windows/gcc (msvcrt.dll)
|
|
|
+ Cygwin/gcc (cygwin.dll)
|
z3APA3A