Advantage in more exits in the same /8?
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA384 Hey everyone, I run some relays and an exit in a university setting. The nodes are in the same /8 block and are physically close to one another as well. Is there any advantage in turning one of the relays into another exit? This is something that my ISP would be agreeable to, but I'm also pondering the effects on the Tor network as a whole. It seems to me that too many nodes under the same ISP is problematic because it concentrates too much traffic in the same AS, but on the other hand, Tor could use more exits. More importantly, how many is too many nodes in the same /8, or in the same /16? Where would you draw the line? - -- Jesse V. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQF8BAEBCQBmBQJT/JACXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQxMjgyMjhENjEyODQ1OTU1NzBCMjgwRkFB RDk3MzY0RkMyMEJFQzgwAAoJEK2XNk/CC+yAc30H/itZHxdCndyXrynjhCI9N3Y/ jtdQ4V2UVWGe0YdsHBrSibexvZxj9EGtNHAuBNuf9ZPrTV5BXV4/Q0RXRZSp+AZ7 NVCp0/7wv/R/n+1qJqWfD2F0D27pyQoaHTMHSJKWXeVN71F5uM4+ScG5qyGsgsG7 Op9s3K5tYTr4m2WcPoAQke4Gj7Bn4nBIbJP8djPZeQ5ACKIDfBJjlgy6Q7fJE+E7 62GYvRknYVHjWAM6gsYSuHnoBCGPAcYkSWMOyPBf+rt8+J0HCMBja/yvzBMwMiNu jEGK/pFka6j+CKYZuEXIbfBV4MLnbZqaah5e58640rUvwqz5eFvf2pliONpVGY4= =aTsa -----END PGP SIGNATURE-----
Hi Jesse, On 08/26/2014 03:47 PM, Jesse Victors wrote:
Very good question. Ideally, the Tor client would be AS-aware, and you would not have to worry about it. For the interested reader, see for example [1]. Until then, my thinking is that I compare to other locations. https://compass.torproject.org/ is very helpful for that: For example, if you group by AS, the largest AS right now (i3d, NL) in regards to exit capacity has 11%, and OVH tops the overall network at 10% consensus weight. As a rough rule, I'd avoid to push more than 1-2Gbit/s of traffic at one ISP. On the plus side, as long as you don't top the list, you're weighing down other locations. And universities are a preferred location. Make sure to use the MyFamily statement correctly: Unless relays are on the same /16, Tor might pick multiple of them for a circuit. Also, if you want to push more than ~100 Mbit/s on a single machine, you need AES-NI or run multiple relays, for more than 400 Mbit/s you need to run multiple relays in any case. The multi-relay initscript can be quite helpful for that. [1] http://freehaven.net/anonbib/#ccs2013-usersrouted [2] https://www.torservers.net/wiki/setup/server#multiple_tor_processes -- Moritz Bartl https://www.torservers.net/
On Tue, Aug 26, 2014 at 3:47 PM, Jesse Victors <jvictors@jessevictors.com> wrote:
I run some relays and an exit in a university setting. The nodes are in the same /8 block and are physically close to one another as well. Is there any advantage in turning one of the relays into another exit? This is something that my ISP would be agreeable to, but I'm also pondering the effects on the Tor network as a whole.
Just want to be clear here: Do you really mean /8 and not /24? There's only one university I can find with a /8 block.
participants (3)
-
Anders Andersson -
Jesse Victors -
Moritz Bartl