I have a TOR relay behind a Tomato router on an ADSL line. I activated the vpn client to route all traffic through privateinternetaccess.com.
Because a TOR relay does not work behind NAT without port forwarding, I'm looking for a way how to route tor traffic directly to my internet provider. I can add static routes, but I don't now the IPs in advance. Maybe there is no problem to route outgoing traffic through the vpn tunnel, but how can I make my relay publish my WAN IP instead of the tunnel IP? My WAN IP is changing every day, so I cannot configure it as static.
On Sun, Oct 20, 2013 at 08:40:12AM +0200, Jochen wrote:
I have a TOR relay behind a Tomato router on an ADSL line. I activated the vpn client to route all traffic through privateinternetaccess.com.
What's the rationale for this, if you have access to Tor?
Unless you're generating a lot of traffic to the detriment of the network Tor will offer you superior privacy than a commercial VPN.
Because a TOR relay does not work behind NAT without port forwarding, I'm looking for a way how to route tor traffic directly to my internet provider. I can add static routes, but I don't now the IPs in advance.
What kind of VPN is this, OpenVPN? Can you still have DMZ and the VPN route co-exist?
Maybe there is no problem to route outgoing traffic through the vpn tunnel, but how can I make my relay publish my WAN IP instead of the tunnel IP? My WAN IP is changing every day, so I cannot configure it as static.
Tor attempts to auto-discover your WAN IP address, if it's not given.
Am 20.10.2013 10:43, schrieb Eugen Leitl:
What's the rationale for this, if you have access to Tor?
Speed!
What kind of VPN is this, OpenVPN?
Yes.
Can you still have DMZ and the VPN route co-exist?
I have to try that.
Tor attempts to auto-discover your WAN IP address, if it's not given.
Yes, but that returns the IP of the VPN Provider, not the WAN IP.
Hi Jochen,
I believe that your bandwidth is limited by your ISP through which you connect to the internet with your ADSL-line. Therefore, running Tor over a VPN-connection will not increase the bandwidth of your relay, only obfuscate your IP address. Correct me if I am wrong.
Regards, Viktor
2013/10/20 Jochen jf@fahrner.name
Am 20.10.2013 10:43, schrieb Eugen Leitl:
What's the rationale for this, if you have access to Tor?
Speed!
What kind of VPN is this, OpenVPN?
Yes.
Can you still have DMZ and the VPN route co-exist?
I have to try that.
Tor attempts to auto-discover your WAN IP address, if it's not given.
Yes, but that returns the IP of the VPN Provider, not the WAN IP.
-- Mit besten Grüßen Jochen Fahrner _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Hi Viktor,
Am 20.10.2013 12:47, schrieb Viktor Haaksman:
I believe that your bandwidth is limited by your ISP through which you connect to the internet with your ADSL-line. Therefore, running Tor over a VPN-connection will not increase the bandwidth of your relay, only obfuscate your IP address. Correct me if I am wrong.
you misunderstood. The question was, why I use VPN and not TOR. TOR is too slow for some applications. Try watching a youtube video through tor, this is often stuttering.
Another reason why I prefer vpn: only apps capable of socks5 can use TOR. With a vpn client on my router I can anonymize ALL traffic, even those of tablets, smartphones, smart tv, game consoles etc.
Hi Jochen,
Ah, I understand. I believe services like AirVPN allow clients to forward traffic to them on certain ports. For example, if you configure the VPN-provider to forward all the incoming traffic on port 9001 to your router as the client, you are able to run a relay from behind your router (you still have to forward the traffic from your router to the relay in your home network). This topic https://airvpn.org/topic/9967-torport-forwarding/suggests this is a working configuration.
I don't know if privateinternetaccess.com allows clients to forward ports, though.
Regards,
Viktor
2013/10/20 Jochen jf@fahrner.name
Hi Viktor,
Am 20.10.2013 12:47, schrieb Viktor Haaksman:
I believe that your bandwidth is limited by your ISP through which you connect to the internet with your ADSL-line. Therefore, running Tor over a VPN-connection will not increase the bandwidth of your relay, only obfuscate your IP address. Correct me if I am wrong.
you misunderstood. The question was, why I use VPN and not TOR. TOR is too slow for some applications. Try watching a youtube video through tor, this is often stuttering.
Another reason why I prefer vpn: only apps capable of socks5 can use TOR. With a vpn client on my router I can anonymize ALL traffic, even those of tablets, smartphones, smart tv, game consoles etc.
-- Mit besten Grüßen Jochen Fahrner _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
tor-relays@lists.torproject.org
-
Eugen Leitl -
Jochen -
Viktor Haaksman