• BarbecueCowboy@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    5 months ago

    So, I have a pretty alright VPN provider, but I’ve been looking for a self-hosted solution to allow me to say “Hey, if you’re trying to hit www.domain.com, go through this VPN tunnel instead” but still run everything else straight through. Lots of options exist, I have one that would be perfect that we utilize at my company, but I haven’t found a good solution that doesn’t utilize enterprise level pricing.

    Anyone got any tips on that front?

    • masterofn001@lemmy.ca
      link
      fedilink
      arrow-up
      5
      ·
      edit-2
      5 months ago

      Tinyproxy

      https://github.com/tinyproxy/tinyproxy/releases

      Free Open source Upstream Http/s, socks4/5, direct redirection per site/URL/domain with regex. Can set default upstream proxy for everything else.

      Invisible proxy Reverse proxy

      Command line / simple text config

      It’s in your distros repo

      It’s available in termux.

      It works.

    • RazorsLedge@lemmy.world
      link
      fedilink
      arrow-up
      5
      ·
      5 months ago

      You can use foxyproxy (browser extension) with SOCKS5 proxies to ssh tunnels to various hosts based on the URL pattern. Maybe too kludgey for your use case.

      • BarbecueCowboy@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        1
        ·
        edit-2
        5 months ago

        Yeah, I’ve seen that one, but I’m looking for something at the router level or something I can run on linux and just have everything run through. I have CLI-based options that are super janky… I’m probably just being too picky.

        • RazorsLedge@lemmy.world
          link
          fedilink
          arrow-up
          3
          arrow-down
          1
          ·
          5 months ago

          I think it needs to be on the client app (web browser) before it gets sent thru the VPN. Your router won’t be able to read the http header to see what the URL is (to decide which VPN to use).

          • BarbecueCowboy@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            5 months ago

            I know it’s doable in general because I’ve done it in an enterprise environment, just seems to be a real pain in the ass at the consumer level which is not surprising, it’s a weird use case.

            Where I work we have a system that kind of combines a proxy and a solution that approximates the same functionality as a VPN, and it’s all in one cohesive package. I know my first stop will have to be some sort of proxy, but my ideal is basically just a friendlier UI to manage it and for whatever proxy or proxy-like solution to include tunneling options out of the box.

            It’s a complicated ask, but I feel like it’s becoming more useful. Supposedly, Squid can do it with a few extra pieces and that might end up being the solution.

    • MehBlah@lemmy.world
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      5 months ago

      Get a cheap vps. Set up wire guard. Set up routes that pass through wire guard. In this case porn hubs IP’s go through the vps. Be aware that some vps providers IP blocks are often blocked by cloudflare and other similar services. So it pays to check out the IP rep of the vps provider before you choose.