Our application can connect to Internet only directly or via SOCKS proxy. Unfortunately we can only access the Internet via HTTP proxy protected by NTLM authentication. Is there any SOCKS server that chains outgoing connections via HTTP proxy? NTLM authentication support is mandatory.
We've checked antinat but found nothing about NTLM there.
Other solution could be to use SSH acting as SOCKS proxy chained to Proxytunnel, but this requires to have an additional server out of our network to act as SSH tunneling endpoint.
Best Answer
SOCKS is a TCP/UDP proxy, which means that it can't be arbitrarily passed through an HTTP proxy. ntlmaps and cntlm are HTTP proxies which do NTLM authentication. I think your only bet is to try use iptables to transparently proxy traffic via ntlmaps/cntlm (I don't know if they support being used in transparent mode; if not you may need to add Squid into the mix as well).