Problems Continue while trying to set up a TOR Private Relay

Mon Jul 5 20:04:38 UTC 2010

This is an update of a message sent July 4th.  A quick quote from the
original message:

I'm trying to support some friends in China by setting up a private relay as
> public relays have been compromised and blocked by the Great Firewall.
>
> I'm running TOR on an Intel Mac with OS 10.6.4
>
> I went to Settings->Sharing and selected Help censored users ...
>
> Created a Nickname
> Entered Contact Info
> Relay port 9001
> Checked Mirror the Relay Dir, Dir Port 9030
> Checked Auto config, test reports no U-PnP devices
> A bridge access line was created and I passed this to one of my friends in
> China

> The host Mac is connected to my home LAN wirelessly through an Apple
> Airport
> I am also running Little Snitch which controls outgoing communications, TOR
> is allowed any connection (completely open), Vidalia is allowed connections
> via TOR

 In response to this note I received the following replies:

*Gitano* Provided two ref links and suggested that I needed to do port
forwarding.  I read the links and see below for the ports.

*Sustain-Ability* replied suggesting I avoid wireless, read the notes on TOR
for windows, check that my Mac wasn't sleeping, and consider running on a
dedicated machine.

*Andrew *Suggested checking port configuration and asked if Little Snitch
needs to be configured for inbound comm.  Little Snitch only controls
outbound comm.  See below for ports

*Scott* asked if my router had an RDR to send packets to 10.0.1.3 (host
machine)  I equate RDR with port forwarding ... maybe that's not correct,
anyway see below for ports

Thanks to all who responded.

The only change I made to the setup above is to uncheck Auto config because
that didn't appear to work.

*Here's what I did about ports:*
- Opened Airport Utility->Advanced->Port Mapping
- Using the Port Mapping Setup Assistant I set a configuration as follows:
-- Public TCP ports 9001, 9030
-- Private IP address 10.0.1.3 (host machine)
-- Private TCP ports 9001, 9030
- I think we're talking TCP here so did not configure UDP
- The Setup Assistant also has a pulldown for "Choose a Service" the choices
are Personal File Sharing, Windows Sharing, Personal Web Sharing, Remote
Login - SSH, FTP Access, Apple Remote Desktop, Remote Apple Events, Printer
Sharing, 5 flavors of email, Quick Time Streaming Server, and Jabber.  None
of the service choices seemed appropriate so I left this choice blank.  This
may have been a mistake but the configuration was accepted and loaded.

Still unsuccessful, now the log looks like this:

Jul 05 12:01:48.158 [Notice] Tor has successfully opened a circuit. Looks
like client functionality is working.
Jul 05 12:01:48.159 [Notice] Bootstrapped 100%: Done.
Jul 05 12:01:48.174 [Notice] Now checking whether ORPort 10.0.1.3:9001 and
DirPort 10.0.1.3:9030 are reachable... (this may take up to 20 minutes --
look for log messages indicating success)
Jul 05 12:01:48.175 [Notice] No Tor server allows exit to [scrubbed]:9030.
Rejecting.
Jul 05 12:01:48.175 [Warning] Making tunnel to dirserver failed.
Jul 05 12:02:46.225 [Notice] No Tor server allows exit to [scrubbed]:9030.
Rejecting.
Jul 05 12:02:46.226 [Warning] Making tunnel to dirserver failed.
Jul 05 12:08:52.335 [Notice] No Tor server allows exit to [scrubbed]:9030.
Rejecting.
Jul 05 12:08:52.337 [Warning] Making tunnel to dirserver failed.
Jul 05 12:14:58.473 [Notice] No Tor server allows exit to [scrubbed]:9030.
Rejecting.
Jul 05 12:14:58.475 [Warning] Making tunnel to dirserver failed.
Jul 05 12:21:04.642 [Notice] No Tor server allows exit to [scrubbed]:9030.
Rejecting.
Jul 05 12:21:04.644 [Warning] Making tunnel to dirserver failed.
Jul 05 12:21:45.662 [Warning] Your server (10.0.1.3:9001) has not managed to
confirm that its ORPort is reachable. Please check your firewalls, ports,
address, /etc/hosts file, etc.
Jul 05 12:21:45.685 [Warning] Your server (10.0.1.3:9030) has not managed to
confirm that its DirPort is reachable. Please check your firewalls, ports,
address, /etc/hosts file, etc.

Obviously I'm not a networking/router expert ... any further suggestions?

TIA
Jim
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20100705/a3838015/attachment.htm>