[anti-censorship-team] configure router NAT for snowflake proxy
meskio
meskio at torproject.org
Mon Oct 25 17:27:38 UTC 2021
Hello,
I thought I could host a snowflake standalone proxy in my home fiber. Following
the instructions[0] it says that is "especially recommended":
> A full-cone NAT (you can use this NAT behaviour tool to test what type of NAT
> you have. The properties you are looking for are address-independent mapping
> and either address-independent or address-dependent filtering)
Using the "NAT behaviour tool" I get:
* NAT mapping behavior: endpoint independent (good)
* NAT filtering behavior: address and port dependent (bad)
My home router is an openwrt on which I have total control, it gets the public
IP from my ISP and provides NAT to my home network. I tried playing a bit with
the NAT Rules and the firewall settings, but all that is magic for me. Any tips
how to fix the NAT filtering in openwrt or what do I need to look into iptables
for it?
Thanks.
[0] https://community.torproject.org/relay/setup/snowflake/standalone/
--
meskio | https://meskio.net/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
My contact info: https://meskio.net/crypto.txt
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Nos vamos a Croatan.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://lists.torproject.org/pipermail/anti-censorship-team/attachments/20211025/d3c515d2/attachment.sig>
More information about the anti-censorship-team
mailing list