<font style="font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);" color="#663333"><font size="2">This is an update of a message sent July 4th. A quick quote from the original message:<br><br></font></font><blockquote style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex; font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);" class="gmail_quote">
<font size="2">I'm trying to support some friends in China by setting
up a private relay as public relays have been compromised and blocked
by the Great Firewall.<br>
<br>I'm running TOR on an Intel Mac with OS 10.6.4<br><br>I went to
Settings->Sharing and selected Help censored users ...<br><br>Created
a Nickname<br>Entered Contact Info<br>Relay port 9001<br>Checked Mirror
the Relay Dir, Dir Port 9030<br>
Checked Auto config, test reports no U-PnP devices<br>A bridge access
line was created and I passed this to one of my friends in China</font></blockquote><div style="font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);"> </div><blockquote style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex; font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);" class="gmail_quote">
<font size="2">The host Mac is connected to my home LAN wirelessly
through an Apple Airport<br>I am also running Little Snitch which
controls outgoing communications, TOR is allowed any connection
(completely open), Vidalia is allowed connections via TOR</font></blockquote><div><br style="font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);"><span style="font-family: arial,helvetica,sans-serif; color: rgb(0, 0, 0);"> In response to this note </span>I received the following replies:<br>
<br><div style="margin-left: 40px;"><u><b>Gitano</b></u> Provided two ref links and suggested that I needed to do port forwarding. I read the links and see below for the ports.<br><br><u><b>Sustain-Ability</b></u> replied suggesting I avoid wireless, read the notes on TOR for windows, check that my Mac wasn't sleeping, and consider running on a dedicated machine.<br>
<br><b><u>Andrew</u> </b>Suggested checking port configuration and asked if Little Snitch needs to be configured for inbound comm. Little Snitch only controls outbound comm. See below for ports<br><br><u><b>Scott</b></u> asked if my router had an RDR to send packets to 10.0.1.3 (host machine) I equate RDR with port forwarding ... maybe that's not correct, anyway see below for ports<br>
</div><br>Thanks to all who responded. <br><br>The only change I made to the setup above is to uncheck Auto config because that didn't appear to work.<br><br><b>Here's what I did about ports:</b><br>- Opened Airport Utility->Advanced->Port Mapping<br>
- Using the Port Mapping Setup Assistant I set a configuration as follows:<br><div style="margin-left: 40px;">-- Public TCP ports 9001, 9030<br>-- Private IP address 10.0.1.3 (host machine)<br>-- Private TCP ports 9001, 9030<br>
</div>- I think we're talking TCP here so did not configure UDP<br>- The Setup Assistant also has a pulldown for "Choose a Service" the choices are Personal File Sharing, Windows Sharing, Personal Web Sharing, Remote Login - SSH, FTP Access, Apple Remote Desktop, Remote Apple Events, Printer Sharing, 5 flavors of email, Quick Time Streaming Server, and Jabber. None of the service choices seemed appropriate so I left this choice blank. This may have been a mistake but the configuration was accepted and loaded.<br>
<br>Still unsuccessful, now the log looks like this:<br><br>Jul 05 12:01:48.158 [Notice] Tor has successfully opened a circuit. Looks like client functionality is working.<br>Jul 05 12:01:48.159 [Notice] Bootstrapped 100%: Done.<br>
Jul 05 12:01:48.174 [Notice] Now checking whether ORPort <a href="http://10.0.1.3:9001">10.0.1.3:9001</a> and DirPort <a href="http://10.0.1.3:9030">10.0.1.3:9030</a> are reachable... (this may take up to 20 minutes -- look for log messages indicating success)<br>
Jul 05 12:01:48.175 [Notice] No Tor server allows exit to [scrubbed]:9030. Rejecting.<br>Jul 05 12:01:48.175 [Warning] Making tunnel to dirserver failed.<br>Jul 05 12:02:46.225 [Notice] No Tor server allows exit to [scrubbed]:9030. Rejecting.<br>
Jul 05 12:02:46.226 [Warning] Making tunnel to dirserver failed.<br>Jul 05 12:08:52.335 [Notice] No Tor server allows exit to [scrubbed]:9030. Rejecting.<br>Jul 05 12:08:52.337 [Warning] Making tunnel to dirserver failed.<br>
Jul 05 12:14:58.473 [Notice] No Tor server allows exit to [scrubbed]:9030. Rejecting.<br>Jul 05 12:14:58.475 [Warning] Making tunnel to dirserver failed.<br>Jul 05 12:21:04.642 [Notice] No Tor server allows exit to [scrubbed]:9030. Rejecting.<br>
Jul 05 12:21:04.644 [Warning] Making tunnel to dirserver failed.<br>Jul 05 12:21:45.662 [Warning] Your server (<a href="http://10.0.1.3:9001">10.0.1.3:9001</a>) has not managed to confirm that its ORPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.<br>
Jul 05 12:21:45.685 [Warning] Your server (<a href="http://10.0.1.3:9030">10.0.1.3:9030</a>) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.<br>
<br>Obviously I'm not a networking/router expert ... any further suggestions?<br><br>TIA<br>Jim<br></div>