[tor-bugs] #13171 [meek]: meek's reflector should forward the client's IP address/port to the bridge.
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Dec 15 22:11:21 UTC 2015
#13171: meek's reflector should forward the client's IP address/port to the bridge.
-------------------------+------------------------------
Reporter: yawning | Owner: dcf
Type: enhancement | Status: needs_review
Priority: Medium | Milestone:
Component: meek | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+------------------------------
Comment (by dcf):
I have had this branch running on the meek-azure bridge for about a day.
Here are the bridge stats. By both `dirreq-v3-reqs` and `bridge-ips`, us
comes first, followed by ru and cn. It's surprising that there are so many
meekers from the U.S.
{{{
@type bridge-extra-info 1.3
extra-info starman AA033EEB61601B2B7312D89B62AAA23DC3ED8A34
dirreq-stats-end 2015-12-15 11:08:49 (86400 s)
dirreq-v3-reqs
us=4392,ru=1688,cn=1632,de=1376,gb=936,fr=576,br=456,ca=344,mx=336,it=296,in=288,au=264,tr=264,nl=192,sa=192,ir=160,es=152,at=144,ch=144,ua=128,co=120,kr=120,my=120,za=120,id=112,fi=104,be=88,cl=80,ae=72,by=72,hk=72,kz=72,ph=72,se=72,cz=64,ie=64,pl=64,dk=56,jo=56,pe=56,pt=56,eg=48,no=48,sg=48,uz=48,bg=40,gt=40,il=40,ng=40,ro=40,ve=40,bd=32,dz=32,ec=32,hu=32,ke=32,kw=32,pr=32,ps=32,py=32,sk=32,sv=32,th=32,vn=32,ar=24,cr=24,do=24,fj=24,jp=24,tm=24,tn=24,aw=16,bf=16,bo=16,cy=16,ee=16,gr=16,hn=16,iq=16,lb=16,lu=16,lv=16,mu=16,mv=16,ni=16,nz=16,si=16,sn=16,tw=16,uy=16,ye=16,af=8,al=8,am=8,ao=8,bh=8,cd=8,ci=8,et=8,hr=8,la=8,ly=8,ma=8,mc=8,md=8,ml=8,om=8,pa=8,pk=8,sy=8,tt=8,ug=8
bridge-stats-end 2015-12-15 11:08:55 (86400 s)
bridge-ips
us=1696,ru=816,cn=656,de=552,gb=352,br=224,fr=160,in=128,it=128,es=104,id=104,ir=96,tr=96,au=88,mx=88,ca=80,nl=80,ua=72,at=64,co=64,my=64,ch=56,kr=56,sa=56,za=48,be=40,ie=40,pl=40,sk=40,cl=32,cz=32,jo=32,kz=32,ae=24,by=24,eg=24,fi=24,hk=24,il=24,ng=24,ro=24,se=24,ve=24,ar=16,bd=16,bf=16,cr=16,dk=16,dz=16,ec=16,gt=16,hu=16,jp=16,ke=16,no=16,pe=16,ph=16,pt=16,th=16,tn=16,ye=16,af=8,al=8,am=8,ao=8,aw=8,bg=8,bh=8,bo=8,cd=8,ci=8,cy=8,do=8,ee=8,et=8,fj=8,gh=8,gr=8,hn=8,hr=8,iq=8,kw=8,la=8,lb=8,lu=8,lv=8,ly=8,ma=8,mc=8,md=8,ml=8,mu=8,mv=8,ni=8,nz=8,om=8,pa=8,pk=8,pr=8,ps=8,py=8,qa=8,sg=8,si=8,sn=8,sv=8,sy=8,tm=8,tt=8,tw=8,ug=8,uy=8,uz=8,vn=8
}}}
Here are stats from before the patch. Note here the discrepancy between
`dirreq-v3-req` and `bridge-ips`. The reason that `bridge-ips` is so low
is that it deduplicates client IPs, and before the patch it appears that
all connections come from a small number of CDN IP addresses.
{{{
@type bridge-extra-info 1.3
extra-info starman AA033EEB61601B2B7312D89B62AAA23DC3ED8A34
dirreq-stats-end 2015-12-12 08:27:37 (86400 s)
dirreq-v3-reqs
us=13232,gb=1432,??=416,nl=400,at=384,au=304,kr=112,se=104,sg=88,fi=80,tw=40,be=8,ir=8
bridge-stats-end 2015-12-12 08:27:41 (86400 s)
bridge-ips
us=40,??=8,at=8,au=8,be=8,fi=8,gb=8,ir=8,kr=8,nl=8,se=8,sg=8,tw=8
}}}
For comparison, here are the stats for the other default bridges. meek-
google requests seem to come from a very small number of IP addresses,
less than 8.
{{{
@type bridge-extra-info 1.3
extra-info UtahMeekBridge 88F745840F47CE0C6A4FE61D827950B06F9E4534
dirreq-stats-end 2015-12-12 21:16:05 (86400 s)
dirreq-v3-reqs us=17416
bridge-stats-end 2015-12-12 21:16:10 (86400 s)
bridge-ips kr=8,ru=8,us=8
}}}
meek-amazon strangely has a high number (1720) for unique client IP
addresses. Maybe the Amazon CDN automatically rotates them or something?
{{{
@type bridge-extra-info 1.3
extra-info TorLandMeek F4AD82B2032EDEF6C02C5A529C42CFAFE516564D
dirreq-stats-end 2015-12-11 22:34:32 (86400 s)
dirreq-v3-reqs us=7768,dz=16,jp=8
bridge-stats-end 2015-12-11 22:34:35 (86400 s)
bridge-ips us=1720,dz=8,jp=8
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13171#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list