On 16 Oct 2018, at 03:58, Toralf Förster toralf.foerster@gmx.de wrote:
I do wonder if the advice [1] is ok or wrong.
[1] https://tor.stackexchange.com/questions/6370/how-to-run-an-obfs4-bridge
The post contains conflicting advice.
But diversity of obfs4 ports is actually really important, so I'd argue against any instructions that will lead people to using the same port. – Roger Dingledine Apr 4 '15 at 19:50
This advice is correct.
Leave your ExtORPort set to auto for diversity reasons. I have a firewall enabled on my Debian bridge with very restrictive port settings. I had to make port forwards for the given obfs ports in iptables (easy with gufw) as well as in my hardware (internet-)firewall to make things work. So I am not so sure that the ExORPort is for local connections only as mentioned by Rodger (please let me know if I am wrong here).
This advice confuses ExtORPort (which is local) and ServerTransportListenAddr (which is used for obfs4).
T