[tor-relays] port 9001 udp

Tschador tschador at posteo.de
Sun Oct 20 09:52:31 UTC 2013 

On 2013-10-20 10:35, zwiebel at quantentunnel.de wrote:

> Oct 20 07:32:08.290 [Notice] Now checking whether ORPort x.x.x.102:9001 is 
> reachable... (this may take up to 20 minutes -- look for log messages indicating 
> success)
> ...
> Oct 20 07:52:07.025 [Warning] Your server (x.x.x.x:9001) has not managed to 
> confirm that its ORPort is reachable. Please check your firewalls, ports, 
> address, /etc/hosts file, etc.
> Oct 20 08:12:07.639 [Warning] Your server (x.x.x.x:9001) has not managed to 
> confirm that its ORPort is reachable. Please check your firewalls, ports, 
> address, /etc/hosts file, etc.
> ...
> Now I open 9001 udp at the DSL router
> ...
> Oct 20 08:31:04.223 [Notice] Our directory information is no longer up-to-date 
> enough to build circuits: We have no usable consensus.
> Oct 20 08:31:04.400 [Notice] Tor has successfully opened a circuit. Looks like 
> client functionality is working.
> Oct 20 08:31:04.424 [Notice] Now checking whether ORPort x.x.x.x:9001 is 
> reachable... (this may take up to 20 minutes -- look for log messages indicating 
> success)
> Oct 20 08:31:07.088 [Notice] We now have enough directory information to build 
> circuits.
> :)

Your client is working, but you still miss the following:

'Self-testing indicates your ORPort is reachable from the outside.
Excellent.'

> In the past I tried several things and found someone else did the following (! 
> start page !)
> He tells to use 9001 udp for his PI so I try it for  Tails and it works. I 
> expected to not need udp. Question is why?

There is definitely no need to enable port 9001 UDP for Tor!

> Interesting is we both use a german well known Fritz!Box DSL router.
> German site 
> [http://www.webstimme.de/2013/08/23/raspberry-pi-als-tor-relay-betreiben-howto]
> Ports der Router-Firewall öffnen:
> 1. Sie müssen folgende Ports für TOR auf ihrem Router öffnen (jeweils TCP und UDP):
> Standard: ORPort 9001
> Standard: DirPort 9030

Only TCP is required! Fritz!Box DSL router works well with Tor but if
Tor has many circuits open, you have to reboot the box every week or so.

Can you print your 'torrc' and the output of '/sbin/iptables -L -nv'?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 230 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20131020/5b126dca/attachment-0001.sig>

More information about the tor-relays mailing list