On 2013-10-20 10:35, zwiebel@quantentunnel.de wrote:
Oct 20 07:32:08.290 [Notice] Now checking whether ORPort x.x.x.102:9001 is reachable... (this may take up to 20 minutes -- look for log messages indicating success) ... Oct 20 07:52:07.025 [Warning] Your server (x.x.x.x:9001) has not managed to confirm that its ORPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc. Oct 20 08:12:07.639 [Warning] Your server (x.x.x.x:9001) has not managed to confirm that its ORPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc. ... Now I open 9001 udp at the DSL router ... Oct 20 08:31:04.223 [Notice] Our directory information is no longer up-to-date enough to build circuits: We have no usable consensus. Oct 20 08:31:04.400 [Notice] Tor has successfully opened a circuit. Looks like client functionality is working. Oct 20 08:31:04.424 [Notice] Now checking whether ORPort x.x.x.x:9001 is reachable... (this may take up to 20 minutes -- look for log messages indicating success) Oct 20 08:31:07.088 [Notice] We now have enough directory information to build circuits. :)
Your client is working, but you still miss the following:
'Self-testing indicates your ORPort is reachable from the outside. Excellent.'
In the past I tried several things and found someone else did the following (! start page !) He tells to use 9001 udp for his PI so I try it for Tails and it works. I expected to not need udp. Question is why?
There is definitely no need to enable port 9001 UDP for Tor!
Interesting is we both use a german well known Fritz!Box DSL router. German site [http://www.webstimme.de/2013/08/23/raspberry-pi-als-tor-relay-betreiben-howt...] Ports der Router-Firewall öffnen:
- Sie müssen folgende Ports für TOR auf ihrem Router öffnen (jeweils TCP und UDP):
Standard: ORPort 9001 Standard: DirPort 9030
Only TCP is required! Fritz!Box DSL router works well with Tor but if Tor has many circuits open, you have to reboot the box every week or so.
Can you print your 'torrc' and the output of '/sbin/iptables -L -nv'?