On 7/29/2021 7:57 AM, Marco Predicatori wrote:
Hi, my Tor node is inside a local network protected by a firewall. Only port 9001 is NATted towards the Tor server. Moreover, I have iptables active on the Tor server itself. The outer firewall blocks any incoming packet except for packets on port 9001 and returning packets from established connections.
My iptables blocks several packets which were allowed through by the outer firewall, where I assume they are recognized as returning packets from established connections. Then my local iptables drops them. I can't understand why.
You can find here an extract from my Tor node "iptables -L -n" and a typical day's log of dropped packets on the Tor node: https://easyupload.io/m/48if5l
Many packets coming from other Tor nodes where dropped. The Tor log doesn't mention any problem. What may be wrong?
--
Not that it helps any, but I see exactly the same scenario on my system as well. It averages about 200 dropped packets per day.
Cheers.