[tor-relays] debugging unbound on 'torexit' failing DNS queries (solved)
nusenu
nusenu-lists at riseup.net
Sun Jan 21 22:06:00 UTC 2018
Quintin:
> Ah, thats it. My conntrack entries are full and temporarily increasing it
> resolves the problem.
I'm glad we found the problem and the solution.
Your exit appears to be offline since 2018-01-20 20:00, expected downtime?
https://atlas.torproject.org/#details/92E3764D5485DC4AC01178271FB5A8A2D90DA9FF
> What would be a reasonable conntrack limit for a tor exit?
The amount of states depend on your consensus weight (and probably exit policy),
do you require a stateful packet filter?
--
https://mastodon.social/@nusenu
twitter: @nusenu_
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20180121/64e9ca25/attachment.sig>
More information about the tor-relays
mailing list