Closed yawnbox closed 1 year ago
https://github.com/toralf/torutils/tree/experimental should address the "auto-generates torrc files" behavior.
But currently only an ORPort is considered by the script. Handling the DirPort will take a little bit more effort. Will do it.
Update: Pls see below.
Commit 2e9da64 of https://github.com/toralf/torutils/tree/experimental should address the "auto-generates torrc files" behavior.
But currently only the ORPort are considered by my scripts. Handling the DirPort will take a little bit more effort. Will do it.
I didn't think the Dir port was required anymore? https://blog.torproject.org/new-stable-security-releases-03515-0449-0459-0465/
I didn't think the Dir port was required anymore? https://blog.torproject.org/new-stable-security-releases-03515-0449-0459-0465/
Yes, but maybe the Tor exit notice still use it ? Even then that page should be served rather by eg. nginx than by Tor.
@yawnbox Why do you still have the DirPort configured ?
I tend to not handle DirPort, because it is deprecated for non-authority relays.
To serve the DirPortFrontPage just run accordingly to README.md something like:
export ADD_LOCAL_SERVICES="23.129.64.130/25:80"
export ADD_LOCAL_SERVICES6="[2620:18c:0:192::169/113]:80"
before the script itself.
perhaps we should turn it off :-) the web page notice is probably not important.
Great, so pls let me know, if the latest version in the experimental branch works for the "Ansible-relayor auto-generates torrc files ".
I tend to not handle DirPort, because it is deprecated for non-authority relays. +1
Quote from Roger:
Relays use IPv4 DirPorts and IPv4 ORPorts. There is no reason to configure an IPv6 DirPort.
If you configure IP + IPv6 DirPort you will find something like that in the syslog:
tor [warn] Can't advertise more than one DirPort.
I always have it like that when Tor should display the DirPage:
Address 185.220.101.32
Address [2a0b:f4c2:2::32]
OutboundBindAddress 185.220.101.32
OutboundBindAddress [2a0b:f4c2:2::32]
ORPort 185.220.101.32:10032
ORPort [2a0b:f4c2:2::32]:10032
DirPort 185.220.101.32:80
ToDo @ me, configure nginx!
Hello,
Our (@emeraldonion) Tor relays use 20 IPv4 and 20 IPv6 addresses on a single bare-metal Ubuntu server using Netplan. @Enkidu-6 kindly wrote a rough script (https://github.com/Enkidu-6/tor-ddos/tree/main/multiple) for us to try but I'm hoping it can be matured to automatically detect all IPs on a system, or, perhaps, utilize a single /25 or /64 subnets, instead of manually having to put in individual IPs.
Below is one of our Netplan configs, for reference:
Ansible-relayor auto-generates torrc files based on random IPs from netplan. We end up with 20 individual torrc files on a single server. Here is one of our torrc files, for reference:
Cheers, yawnbox