vm-to-tor/rc.conf.complex.sample at master · yurivict/vm-to-tor · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
#!/bin/sh

#
# Complex configuration file:
# (1) connects 4 virtual machines (tap0 tap1 tap2 tap3) to TOR
# (2) allows TOR routers administration (with vm-ctrl command)
# (3) allows machines tap0 and tap1 to mount NFS disks on NFS server 192.168.1.2
# (4) limits machine tap1 to use exit nodes in Germany and France only
# (5) hosts hidden services /hidden/svc1 and /hidden/svc2 on tap0, and service /hidden/svc3 on tap1
#
# You probably need to adjust this configuration, depending on which features
# you need, and which ones you don't need.
#

# add this line to /etc/rc.conf:
# . /usr/local/etc/rc.conf.complex

firewall_enable="YES"
firewall_type="open"
vm_to_tor_enable="YES"
vm_to_tor_vm_type="vbox"
# (1) define which machines to support
vm_to_tor_ifaces="tap0 tap1 tap2 tap3"
# (2) allows TOR routers administration
vm_to_tor_control_socket="YES"
vm_to_tor_allow_cookie_auth="YES"
# (3) allow NFS
vm_to_tor_tap0_fw_allow_nfs="192.168.1.2"
vm_to_tor_tap1_fw_allow_nfs="192.168.1.2"
# (4) limit exit nodes
vm_to_tor_tap1_tor_options="ExitNodes {de},{fr}"
# (5) hidden services
vm_to_tor_hs="${vm_to_tor_hs}|tap0 /hidden/svc1 80    8080"
vm_to_tor_hs="${vm_to_tor_hs}|tap0 /hidden/svc2 80    8080"
vm_to_tor_hs="${vm_to_tor_hs}|tap1 /hidden/svc3 443   10443"