Change default IP range settings for network sharing

When use network sharing along with k8s things could go wrong. Ubuntu uses 10.42.0.1/24 which interferes with k8s routing table. It has a larger metric value so the network will be shadowed.

To fix it you do not use ip route or ip addr. You use nmcli.

1
2
3

nmcli # check all connections
nmcli device modify <shared_device> ipv4.addr <non_conflict_ip_range>

Remember to unplug and replug the cable from client side.

It is not advised to do so with dual WiFi connections, which is a pain in the ass in daily usage (only one of them will be used at a time).

Ethernet and WiFi dual connections seem fine with firejail but failed with dante.

Use firejail

1
2

sudo firejail --net=wlan0 --ip=dhcp --noprofile <program cmd>

Use dante and proxychains-ng

1
2

sudo apt install dante-server proxychains-ng

Now edit the dante config file at /etc/dante.conf:

1
2
3
4
5
6
7
8
9
10
11
12
13

internal: eth0 port = 1080
external: wlan0
socksmethod: username
user.privileged: root
user.unprivileged: nobody
user.libwrap: nobody
client pass {
from: 0/0 to: 0/0
}
socks pass {
from: 0/0 to: 0/0
}

Run the daemon by:

1
2

danted

Find the [ProxyList] section and add the following line in /etc/proxychains.conf:

1
2

socks5 127.0.0.1 1080 root <root_password>

Run the program with proxychains-ng:

1
2

proxychains <program cmd>

You can test your configuration like:

1
2

curl -x socks5://root:root@127.0.0.1:1080 https://www.baidu.com

If you run danted like systemctl start danted, you can configure a separate user for authentication. You have to change /etc/danted.conf and /etc/proxychains.conf accordingly.

1
2
3

sudo useradd -r -s /bin/false your_dante_user
sudo passwd your_dante_user