afclient.conf(5) Configuration File for afclient

INTRODUCTION

Afclient supports several mechanisms to supply configuration and run-time parameters: command line options, afclient.conf and hard-coded defaults. When the same information is supplied in more than one way, the highest precedence mechanism is used. When configuration file is used (option: -f FILE) command line options like --reverseudp, --udpmode, --remoteadmin, --load, --Load and --pass are ignored. Options from configuration file are taken before values from command line (with the exception of --keyfile, --storefile, --dateformat, --ignorepkeys and the options connected with http proxy and auto-reconnect support). When something is not declared, hard-coded values are used.

DESCRIPTION

Afclient uses configuration file, which name is supplied by the -f FILE option. The afclient.conf file is the set of command-line like options, which can be written in any order.

OPTIONS

servername NAME
  name of the host, where afserver is running

manageport PORT
  manage port number - server must be listening on it (default: 50126)

hostname NAME
  the name of this host/remote host - the final destination of the packets (default: the name returned by hostname function)

portnum PORT
  the port we are forwarding connection to

localname NAME
  local machine name for connection with afserver (used to bind socket to different interfaces)

localport NAME
  local port name for connection with afserver (used to bind socket to different addressees)

localdesname NAME
  local machine name for connections with destination application (used to bind socket to different interfaces)

id STRING
  sends the id string to afserver

pass PASSWORD
  set the password used for client identification (default: no password)

ignorepkeys
  ignore invalid server's public keys

keyfile FILE
  the name of the file with RSA key (default: client.rsa)

cerfile FILE
  the name of the file with certificate (default: no certificate used)

storefile FILE
  the name of the file with stored public keys (default: known_hosts)

dateformat FORMAT
  format of the date printed in logs (see 'man strftime' for details) (default: %d.%m.%Y %H:%M:%S). Format string is trimmed. In order to include white characters into format string, use dots to mark beginning and end of the text. If the dot is first or last character, it's removed. Only one character from the beginning and one from the end can be removed.

keep-alive N
  send keepalive packets every N seconds (default: not send keepalive packets)

ar-start
  enable auto-reconnection when afserver is not reachable on start (default: disabled)

ar-quit
  enable auto-reconnection after normal afserver quit (default: disabled)

noar
  disable auto-reconnection after premature afserver quit (default: enabled)

ar-tries N
  try N times to reconnect (default: unlimited)

ar-delay N
  wait N seconds between reconnect tries (default: 5)

udpmode
  udp mode - client will use udp protocol to communicate with the hostname:portnum

reverseudp
  reverse udp forwarding. Udp packets will be forwarded from hostname:portnum to the server name:manageport

remoteadmin
  remote administration mode. (using '-p PORT' will force afclient to use port rather than stdin-stdout)

log LOGCMD
  log choosen information to file/socket

ipv4
  use ipv4 only

ipv6
  use ipv6 only

load FILE
  load a module for user's packets filtering

Load FILE
  load a module for service's packets filtering

use-https
  use https proxy instead of http proxy

proxyname NAME
  the name of the machine with proxy server

proxyport PORT
  the port used by proxy server (default: 8080)

pa-cred U:P
  the user (U) and password (P) used in proxy authorization

pa-t-basic
  the Basic type of proxy authorization (default)

AUTHOR

Jeremian <jeremian [at] poczta.fm>

CONTRIBUTIONS

Alex Dyatlov <alex [at] gray-world.net>, Simon <scastro [at] entreelibre.com>, Ilia Perevezentsev <iliaper [at] mail.ru>, Marco Solari <marco.solari [at] koinesistemi.it>, and Joshua Judson Rosen <rozzin [at] geekspace.com>

LICENSE

Active Port Forwarder is distributed under the terms of the GNU General Public License v2.0 and is copyright (C) 2003-2007 jeremian <jeremian [at] poczta.fm>. See the file COPYING for details.