Hi Matt,
thanks for Your hints. To build my BSD relay, I used some of the available in the internet BSD tutorials. It seems that I have copied some parameters without understanding what for they are.
I would like to run non-exit tor relay. Which parameters should I commented out ?
Documentation, in did I have to read it, but it would be much easier (much faster) to have some example which user can copy with some small modifications.
Cheers Dlugasny
Sent with ProtonMail Secure Email.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Thursday, October 25, 2018 5:11 PM, Matt Traudt pastly@torproject.org wrote:
On 10/25/18 13:05, dlugasny@protonmail.com wrote:
Hi, few weeks ago ( more than 4) I have installed Freebsd with Tor relay service. System is connected to Tor network since more than one month but I see only 1-2 connections per day. I had Tor relay service on my Debian server for many years and I havent got any problems. With Freebsd its pain, nothing is working as expected. Any how I would like to build more BSD instances in few different countries, but first I need to know why its not working. Does any one could help me to do some troubleshooting ? Maybe some of the parameters in the torrc are blocking traffic ? My torrc without Hashedpassword, Nickname: ########################### SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 # what port to advertise for directory connections ExitPolicy reject : # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours ServerTransportPlugin obfs2,obfs3 exec /usr/local/bin/obfsproxy managed ServerTransportPlugin obfs4 exec /usr/local/bin/obfsproxy managed ExtORPort auto ############################ Thanks in advance for any support
This is a very confused torrc. What are you trying to accomplish with it?
There's lines indicating you want to run a bridge (ServerTransportPlugin, ExtORPort)
There's a line indicating you don't want your bridge to be one distrubted via BridgeDB (PublishServerDescriptor 0), yet you wonder why no one is using your bride/relay.
Please read
https://trac.torproject.org/projects/tor/wiki/TorRelayGuide
And don't set any options that it doesn't tell you to set. And don't set options you don't understand. `man tor` can help you understand what you're setting
Matt
dlugasny@protonmail.com:
Hi Matt,
thanks for Your hints. To build my BSD relay, I used some of the available in the internet BSD tutorials. It seems that I have copied some parameters without understanding what for they are.
I would like to run non-exit tor relay. Which parameters should I commented out ?
Matt pointed you already to the guide, which contains simple step by step instructions with the entire torrc file that you can simply copy from there.
https://trac.torproject.org/projects/tor/wiki/TorRelayGuide/FreeBSD
In did, I have to read more carefully attached documentation. After small changes torrc looks like this:
Does any one of You see any wrong parameters ?
########################## SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 HashedControlPassword (for nyx) ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 # what port to advertise for directory connections ExitRelay 0 ExitPolicy reject *:* # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours DisableDebuggerAttachment 0
Sent with ProtonMail Secure Email.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Thursday, October 25, 2018 5:34 PM, nusenu nusenu-lists@riseup.net wrote:
dlugasny@protonmail.com:
Hi Matt, thanks for Your hints. To build my BSD relay, I used some of the available in the internet BSD tutorials. It seems that I have copied some parameters without understanding what for they are. I would like to run non-exit tor relay. Which parameters should I commented out ?
Matt pointed you already to the guide, which contains simple step by step instructions with the entire torrc file that you can simply copy from there.
https://trac.torproject.org/projects/tor/wiki/TorRelayGuide/FreeBSD
On Thu, 25 Oct 2018 17:48:09 +0000 dlugasny@protonmail.com wrote:
In did, I have to read more carefully attached documentation. After small changes torrc looks like this:
Does any one of You see any wrong parameters ?
########################## SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 HashedControlPassword (for nyx) ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 # what port to advertise for directory connections ExitRelay 0 ExitPolicy reject *:* # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours DisableDebuggerAttachment 0
These are enough to run a relay:
SocksPort 0 ORPort 9001 RelayBandwidthRate 400 KBytes RelayBandwidthBurst 600 KBytes Log notice file /var/log/tor/notices.log ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 MyFamily "fingerprints go here" ExitRelay 0 ExitPolicy reject *:*
MyFamily should contain comma separated list of fingerprints of all your guard, middle, exit relays if you have any. Each fingerprint should be prefixed with '$' symbol. It shouldn't contain fingerprints of your bridges.
If you want to use Nyx then you can enable: ControlPort 9051 HashedControlPassword
Option DisableDebuggerAttachment 0 is for debugging and should be set to 1 during normal operation. Yes, it allows to snoop on Tor circuits in Nyx, but is that really needed?
BTW you can use bits in bandwidth settings, e.g. "RelayBandwidthRate 4 Mbits"
Other options are optional and should be evaluated each separately. For example I don't know why you don't want to publish server descriptor, what is the point of unpublished middle relay? Why avoid disk writes? Modern hardware won't be worn out just by Tor relay disc activity. Why WarnPlaintextPorts? It's a relay, not a client, as SocksPort is 0.
In general it's better to start with software defaults and alter the settings only if you need them altered.
Hello,
You seam to have quite some config here. There is one obvious mistake that jumped in my eyes without even reading clearly. How do you expect it to receive traffic if you set PublishServerDescriptor 0 in the torrc config file? This means that the relay is not known to the directory authorities, thus not in the consensus which clients use to pick relays and connect to them, so it can't possibly work, if would have been a bug if it worked ;)
PublishServerDescriptor 0 is when you want to test stuff, etc.
I hope you understand all those other parameters in the config file and that you need them as stated.
dlugasny@protonmail.com wrote:
In did, I have to read more carefully attached documentation. After small changes torrc looks like this:
Does any one of You see any wrong parameters ?
########################## SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 HashedControlPassword (for nyx) ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 # what port to advertise for directory connections ExitRelay 0 ExitPolicy reject *:* # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours DisableDebuggerAttachment 0
HI,
thanks for Your hint. In did... "Publish... 0". I just commented it out. I hope that now it will work.
I will wait for some traffic now :).
Greetings to all and thanks for Your help.
Cheers
Dlugasny
Sent with ProtonMail Secure Email.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Friday, October 26, 2018 12:21 AM, s7r s7r@sky-ip.org wrote:
Hello,
You seam to have quite some config here. There is one obvious mistake that jumped in my eyes without even reading clearly. How do you expect it to receive traffic if you set PublishServerDescriptor 0 in the torrc config file? This means that the relay is not known to the directory authorities, thus not in the consensus which clients use to pick relays and connect to them, so it can't possibly work, if would have been a bug if it worked ;)
PublishServerDescriptor 0 is when you want to test stuff, etc.
I hope you understand all those other parameters in the config file and that you need them as stated.
dlugasny@protonmail.com wrote:
In did, I have to read more carefully attached documentation. After small changes torrc looks like this: Does any one of You see any wrong parameters ? ########################## SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 HashedControlPassword (for nyx) ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny <dlugasny AT protonmail dot com> DirPort 9030 # what port to advertise for directory connections ExitRelay 0 ExitPolicy reject : # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours DisableDebuggerAttachment 0
tor-relays@lists.torproject.org
-
dlugasny@protonmail.com -
Dmitrii Tcvetkov -
nusenu -
s7r