[tor-relays] IPv6 to IPv4 tor exit relays would fix many daily tor-problems

teor teor2345 at gmail.com
Fri Jun 30 01:02:01 UTC 2017 

> On 29 Jun 2017, at 23:55, Fof582 <fof582 at protonmail.com> wrote:
> 
> I have access to a fast internet connection. This connection only have
> ipv6 IP and i can access the IPv4 network over the ISPs 6to4 bridge.
> 
> So there are already many users using one single IPv4 address at this ISP.

It is not a good idea to run a Tor Exit on a shared IP address: many
websites block Tor Exits.

> Sadly its technical as far as i understood at the moment not possible to
> run a IPv6-only exit node.

It is not possible to run any Tor relay on an IPv6-only connection.
This includes Exit nodes and Bridges.

For Bridges, we need to fix this bug:
https://trac.torproject.org/projects/tor/ticket/4847

For public relays (including Exits), we need more research to be done.
We don't know how to give users good anonymity when some relays can't
connect to other relays. This would happen if we allowed IPv4-only relays
and IPv6-only relays in the same network.

> If i could run such, the people on the world
> that could access IPv6-adresses also would be able to connect to my IPv6
> exit node.

That's not how Tor works:

Clients can access a Tor Entry node through IPv4 or IPv6.
(IPv4 is the default, IPv6 needs a config option, because there aren't
enough IPv6 entry nodes yet. But recent versions of Tor Browser ship
with some IPv6 default bridges that are used automatically.)

Then they build a circuit to a Tor Exit Node through IPv4.

Then they access the Internet through IPv4 or IPv6.

> Then they can finally access over IPv4 all the webpages that
> normally block tor users, bother them with captchas, ...
> Such tor-users could also finally access freenode irc again.
> 
> I would like to give such service-blocked tor users again access to all
> websites of the internet by providing such a 6to4-tor exit node.

Many Exit operators already enable IPv6Exit.
Most Tor clients automatically Exit through IPv6 when it is available.
(It is the default in recent versions of Tor.)

> Is there any progress at this?

Yes! See above.

T
--
Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B
ricochet:ekmygaiu4rzgsk6n
xmpp: teor at torproject dot org
------------------------------------------------------------------------

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20170630/182f07fe/attachment-0001.sig>

More information about the tor-relays mailing list