Skip to content
/ frp-double-tunnel Public

Connect to an external service from inside a very strict firewall.

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bsantraigi/frp-double-tunnel

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
local_frp
local_frp
 
 
remote_frp
remote_frp
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

frp Double Tunnel

Use Case

In this repository, we provide a simple solution to access a service running on a remote server, from behind a firewall. Say, we're trying to access this service running on the remote server: 10.0.0.107:9090. After doing this full setup, you will be able to access this service on the local server (and LAN) on 127.0.0.1:69090 or [local-server-lan-ip]:69090.

This solution is particularly useful when the local area network (LAN) is behind a strong firewall that blocks specific ports and protocols through deep packet inspection. By utilizing frp, you can bypass these restrictions and access a service running on a remote server within the LAN.

How does it work?

The local server runs frpc as a client, connecting to the remote frps server. This connection allows the local frpc to forward its frps port to the remote server. Similarly, the remote server runs frpc as a client, connecting to the local frps server. This connection enables the remote frpc to forward the main service port 9090 from the remote server to the local server. Through these connections, the service running on the remote server becomes accessible on the local server, bypassing firewall restrictions within the LAN.

Instructions

Step 0: Setup frp (on both remote and local servers)

  1. Download and extract the latest release of frp from here.
  2. Configure frp by editing the configuration (.ini) files on both servers based on the examples provided in this repository.

Step 1: Start Server (Remote server)

sudo ./frps -c frps.ini

Step 2: Start Server (Local server)

sudo ./frps -c frps.ini

Step 3: Start Client (Local server)

./frpc -c frpc.ini

Step 4: Start Client (Remote server)

./frpc -c frpc.ini

Frequently Asked Questions

Q: How can I allow frp ports on the remote server?

Solution from: #2905

Sometimes, you may encounter the following error: [W] [service.go:128] login to server failed: dial tcp [$IP]:7000: i/o timeout. I also encountered this problem on Oracle Cloud VMs. If you face this issue, follow these steps to resolve it:

  1. Check the firewall status on the server using the command: firewall-cmd --zone=public --list-ports.
  2. Add the firewall rules to open ports for the TCP protocol on ports 7000-7009 using the command: firewall-cmd --zone=public --add-port=7000-7009/tcp --permanent.
  3. Update the firewall configuration using the command: firewall-cmd --reload.
  4. You may also need to allow these ports through the cloud platforms web console.

Contributions

Contributions are welcome! If you have any suggestions, ideas, or enhancements for this project, please feel free to open an issue or submit a pull request.

About

Connect to an external service from inside a very strict firewall.

Topics

go tunnel proxy firewall nat p2p http-proxy reverse-proxy expose frp

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published