[tor-relays] "ORPort auto" versus "ORPort 9001" for a bridge
teor
teor at riseup.net
Mon Oct 15 21:49:04 UTC 2018
> On 16 Oct 2018, at 03:58, Toralf Förster <toralf.foerster at gmx.de> wrote:
>
> I do wonder if the advice [1] is ok or wrong.
>
> [1] https://tor.stackexchange.com/questions/6370/how-to-run-an-obfs4-bridge
The post contains conflicting advice.
> But diversity of obfs4 ports is actually really important, so I'd argue against any instructions that will lead people to using the same port. – Roger Dingledine Apr 4 '15 at 19:50
This advice is correct.
> Leave your ExtORPort set to auto for diversity reasons. I have a firewall enabled on my Debian bridge with very restrictive port settings. I had to make port forwards for the given obfs ports in iptables (easy with gufw) as well as in my hardware (internet-)firewall to make things work. So I am not so sure that the ExORPort is for local connections only as mentioned by Rodger (please let me know if I am wrong here).
This advice confuses ExtORPort (which is local) and
ServerTransportListenAddr (which is used for obfs4).
T
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20181016/2cb22398/attachment.html>
More information about the tor-relays
mailing list