PiAware connection to flightware through a proxy?


#1

Is it possible to setup PiAware to connect through a proxy to FlightAware?
It looks like outgoing connections are on TCP port 1200, but this is being blocked by my corporate firewall. Ideally, I would like to send outgoing ADS data via ports 80 or 443.

piaware.out shows:
08/28/2015 02:01:35 connecting to FlightAware eyes.flightaware.com/1200
08/28/2015 02:03:42 got ‘couldn’t open socket: connection timed out’ to adept server at eyes.flightaware.com/1200, will try again soon…
08/28/2015 02:03:42 connecting to FlightAware 70.42.6.203/1200
08/28/2015 02:05:49 got ‘couldn’t open socket: connection timed out’ to adept server at 70.42.6.203/1200, will try again soon…
08/28/2015 02:05:49 7888 msgs recv’d from dump1090 (31 in last 9m); 0 msgs sent to FlightAware

tcpdump shows:
pi@piaware ~ $ sudo tcpdump -n -i any icmp or tcp port 1200
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 65535 bytes
02:20:46.137054 IP 10.210.185.16.49506 > 70.42.6.203.1200: Flags [S], seq 1522666089, win 29200, options [mss 1460,sackOK,TS val 9003808 ecr 0,nop,wscale 7], length 0
02:20:47.131838 IP 10.210.185.16.49506 > 70.42.6.203.1200: Flags [S], seq 1522666089, win 29200, options [mss 1460,sackOK,TS val 9003908 ecr 0,nop,wscale 7], length 0

I have setup HTTP proxy settings through /etc/apt/apt.conf.d to get apt-get working through the proxy.

Thanks!


#2

Our network admins would go into hysterics (and be supported by management) if we connected a ‘foreign device’ to their network - good luck with the Pi.


#3

Haha! I work at a school and this is an extension activity for an IT course. Our school admin are fine, but our internet access is through a centralised proxy server and gateway far removed from our own needs and inclinations…


#4

There’s no mechanism to do this; you must be able to talk TLS (with no MITM going on; piaware checks the certificate chain fairly carefully) to port 1200.

If your proxy allows CONNECT to port 1200 you might be able to insert your own proxy that translates raw TCP to a CONNECT (e.g. socat’s PROXY mode). There are some command line args to piaware that let you point it at a different host/port. But the connection must eventually reach piaware.flightaware.com:1200


#5

i have same problem…where school you work ??