cover
Hello, everyone! I am A Zhuang, a passionate programmer. Today I would like to share with you an Intranet penetration tool, the software name is: FRP.
Official address of FRP:
https://github.com/fatedier/f…
For example, when we encounter third-party services such as WeChat/Alipay payment in our normal development process, we request the payment interface of WeChat/Alipay. The official of WeChat/Alipay needs to give us a response to indicate whether the payment is successful or not. At this time, we need to request the interface address exposed on the public network. We can use FRP as an Intranet penetration tool, so that we can locally receive WeChat or Alipay back to us requests, is still very practical.
Whole process I do some simple here, outside the first to buy a web service, the service deployment of FRP mountain, at the same time also open FRP service on your computer, transfer after, will WeChat/respond to the request of paypal address (usually the official will have option to allow the user to input request address) to our public server address, When WeChat or Alipay requests the server address, the server will forward the request to the machine. At this time, we can intercept it at the interrupt point of the machine. The general process is shown in Figure 1-1
FRP specific configuration
What is FRP?
FRP is a high-performance reverse proxy application focusing on Intranet penetration, supporting TCP, UDP, HTTP, HTTPS and other protocols. Intranet services can be exposed to the public network in a secure and convenient manner through transit with IP nodes on the public network.
Why use FRP?
By deploying the FRP server on a node with public IP, it is easy to penetrate Intranet services to the public network while providing many professional features, including:
- Client server communication supports TCP, KCP and WebSocket and other protocols.
- TCP connection flow multiplexing is adopted to load more requests between single connections and save the time of connection establishment.
- Load balancing between broker groups.
- Port multiplexing, where multiple services are exposed through the same server port.
- Multiple native-supported client plug-ins (static file viewing, HTTP, SOCK5 proxies, etc.) to facilitate the use of independent FRP clients to do some work.
- Highly expandable server plug-in system, convenient for function expansion combined with their own needs.
- Server and client UI pages.
download
Website: https://gofrp.org/docs/setup/
use
After downloading the server and the local machine each put a copy.
The file directory is as follows:
Configure the server profile
[common]
bind_port = 7000Configure the client profile
[SSH] type = TCP // local_ip = 127.0.0.1 [SSH] type = TCP // local_ip = 127.0.0.1 [common] server_addr = X.X.X.X Remote_port = 80 // The port used by the server for forwardingAccess to port 80 on the server will lead to the local port 8088
Start the
Write a configuration file to start the server with./ frps-c./frps.ini, and then start the client with./ frpc-c./frpc.ini. If you need to run in the background for a long time, it is recommended to use it in conjunction with other tools, such as Systemd and Supervisor.
The log printed after successful server startup is as follows:
[root@VM-8-16-centos frp_0.36.2_linux_386]# ./frps -c ./frps.ini
2021/05/11 14:42:49 [I] [root.go:200] frps uses config file: ./frps.ini
2021/05/11 14:42:49 [I] [service.go:192] frps tcp listen on 0.0.0.0:7000
2021/05/11 14:42:49 [I] [root.go:209] frps started successfully
2021/05/11 14:45:15 [I] [service.go:449] [c1756581397dede4] client login info: ip [114.221.154.184:58609] version [0.36.2] hostname [] os [windows] arch [386]
2021/05/11 14:45:15 [I] [tcp.go:63] [c1756581397dede4] [ssh] tcp proxy listen port [0]
2021/05/11 14:45:15 [I] [control.go:446] [c1756581397dede4] new proxy [ssh] successI am a strong, a sentient programmer, share programming, software, technology, WeChat search: technology cat, get the first time update