Man Linux: Main Page and Category List


       afclient.conf - Configuration File for afclient


       Afclient  supports  several mechanisms to supply configuration and run-
       time parameters: command line  options,  afclient.conf  and  hard-coded
       defaults.  When  the same information is supplied in more than one way,
       the highest precedence mechanism is used. When  configuration  file  is
       used   (option:  -f  FILE)  command  line  options  like  --reverseudp,
       --udpmode,  --remoteadmin,  --load,  --Load  and  --pass  are  ignored.
       Options  from  configuration  file are taken before values from command
       line (with  the  exception  of  --keyfile,  --storefile,  --dateformat,
       --ignorepkeys  and  the  options  connected  with  http proxy and auto-
       reconnect support). When something is not declared,  hard-coded  values
       are used.


       Afclient uses configuration file, which name is supplied by the -f FILE
       option. The afclient.conf file is the set of command-line like options,
       which can be written in any order.


       servername NAME
         name of the host, where afserver is running

       manageport PORT
         manage port number - server must be listening on it (default: 50126)

       hostname NAME
         the  name  of  this  host/remote  host - the final destination of the
       packets (default: the name returned by hostname function)

       portnum PORT
         the port we are forwarding connection to

       localname NAME
         local machine name for connection with afserver (used to bind  socket
       to different interfaces)

       localport NAME
         local  port name for connection with afserver (used to bind socket to
       different addressees)

       localdesname NAME
         local machine name for connections with destination application (used
       to bind socket to different interfaces)

       id STRING
         sends the id string to afserver

       pass PASSWORD
         set   the  password  used  for  client  identification  (default:  no

         ignore invalid server’s public keys

       keyfile FILE
         the name of the file with RSA key (default: client.rsa)

       cerfile FILE
         the name of the file with certificate (default: no certificate used)

       storefile FILE
         the name of the file with stored public keys (default: known_hosts)

       dateformat FORMAT
         format of the date printed in logs (see ’man strftime’  for  details)
       (default:  %d.%m.%Y  %H:%M:%S).  Format  string is trimmed. In order to
       include white characters into format string, use dots to mark beginning
       and  end  of  the  text.  If  the  dot is first or last character, it’s
       removed. Only one character from the beginning and one from the end can
       be removed.

       keep-alive N
         send  keepalive  packets every N seconds (default: not send keepalive

         enable auto-reconnection when afserver  is  not  reachable  on  start
       (default: disabled)

         enable   auto-reconnection   after  normal  afserver  quit  (default:

         disable auto-reconnection after  premature  afserver  quit  (default:

       ar-tries N
         try N times to reconnect (default: unlimited)

       ar-delay N
         wait N seconds between reconnect tries (default: 5)

         udp  mode  -  client  will  use  udp protocol to communicate with the

         reverse  udp  forwarding.  Udp  packets  will   be   forwarded   from
       hostname:portnum to the server name:manageport

         remote  administration  mode. (using ’-p PORT’ will force afclient to
       use port rather than stdin-stdout)

       log LOGCMD
         log choosen information to file/socket

         use ipv4 only

         use ipv6 only

       load FILE
         load a module for user’s packets filtering

       Load FILE
         load a module for service’s packets filtering

         use https proxy instead of http proxy

       proxyname NAME
         the name of the machine with proxy server

       proxyport PORT
         the port used by proxy server (default: 8080)

       pa-cred U:P
         the user (U) and password (P) used in proxy authorization

         the Basic type of proxy authorization (default)


       afserver.conf(5), afclient(1), afserver(1)


       Jeremian <jeremian [at]>


       Alex  Dyatlov  <alex  [at]>,   Simon   <scastro   [at]>,  Ilia  Perevezentsev  <iliaper  [at]>, Marco
       Solari <marco.solari [at]>,  and  Joshua  Judson  Rosen
       <rozzin [at]>


       Active Port Forwarder is distributed under the terms of the GNU General
       Public License v2.0 and is copyright (C) 2003-2007  jeremian  <jeremian
       [at]>. See the file COPYING for details.