how can I redirect all computer traffic through the TOR, and not just through the browser? There is information on the Internet only about old versions of the TOR.
Best way to do this would be on your gateway device. That’s usually your router.
The simple answer would probably be using either Tails or Whonix.
Neither one of those met my requirements, and after reading the Whonix documentation, I designed a scaled-out approximation of Whonix using the following:
Linux Mint
Tor (not Tor Browser) including Tor DNS Resolver
Privoxy
pfSense
Arkenfox (hardened Firefox)
It is not simple, but the basic steps are the following:
- Install Tor as a client and DNS Resolver, and configure “torrc” to allow proxying for all of the computers on your home network. This satisfies applications that require a SOCKS5 Proxy.
- Install Privoxy, and configure it to proxy traffic from HTTP Proxy to Tor’s SOCKS5. This satisfies applications that require an HTTP Proxy.
- Install pfSense in its default configuration allowing its firewall to pass all traffic from LAN to WAN. Configure pfSense’s Unbound DNS to point to Tor DNS Resolver.
- Configure all the necessary applications (for example, Arkenfox, Thunderbird, Linux Mint’s Update Manager, etcetera) to use the appropriate proxies. Some of these will work with Linux Mint’s system proxy, but some will require their own custom configuration.
- Reconfigure the pfSense firewall with two new egress rules, the first to allow Tor traffic, and the second to block all other traffic. This will block all traffic except Tor that attempts to go from LAN to WAN.
- Test applications to make certain that they are being passed through Tor correctly instead of being dropped at the firewall.
NOTE: To simplify the firewall egress rules, please note that I have a QEMU-KVM guest running only Tor and Privoxy.
If you have specific questions, I will try to answer them.
1 Like