[tor-relays] ORPort // DirPort

teor teor at riseup.net
Mon Aug 5 00:19:02 UTC 2019 

Hi,

You must not forward your control port to the internet.
If you accidentally disable control authentication, then
anyone on the internet can control your relay.

> On 3 Aug 2019, at 21:10, Fabio De Sicot <jolek78 at tutanota.com> wrote:
> 
> Hello everyone
> I have a problem I wasn't able to fix until now. Could you help me whit this? 
> 
> ------------------------
> - when I start tor I receive this error: 
> 
> [...........]
> Aug 03 09:48:29.000 [notice] Have tried resolving or connecting to address '[scrubbed]' at 3 different places. Giving up.
> Aug 03 09:48:40.000 [notice] Have tried resolving or connecting to address '[scrubbed]' at 3 different places. Giving up.
> [...........]
> Aug 03 10:07:09.000 [warn] Your server () has not managed to confirm that its ORPort is reachable. Relays do not publish descriptors until their ORPort and DirPort are reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
> Aug 03 10:07:09.000 [warn] Your server () has not managed to confirm that its DirPort is reachable. Relays do not publish descriptors until their ORPort and DirPort are reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
> 
> - I verified, and ports 9051, 9001 and 9030 were not filtered
> 
>> - I checked my torrc file
> 
> # cat /usr/local/etc/tor/torrc
> Nickname xxxxxx
> ORPort 9001 <<<<
> ControlPort 9051 <<<<
> DirPort 9030 <<<<
> #
> #
> RunAsDaemon 0
> ExitRelay 0
> CookieAuthentication 1
> ContactInfo xxxxxxx
> 
> - I verified the internal ip 
> 
> # ifconfig eth0
> eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
>         inet 192.168.0.8  netmask 255.255.255.0  broadcast 192.168.0.255
>         inet6 fe80::1874:3d84:ac42:fa97  prefixlen 64  scopeid 0x20<link>
>         ether b8:27:eb:90:a2:b8  txqueuelen 1000  (Ethernet)
>         RX packets 1118761  bytes 398404534 (379.9 MiB)
>         RX errors 0  dropped 0  overruns 0  frame 0
>         TX packets 1095304  bytes 428598871 (408.7 MiB)
>         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
> 
> - and I verified that on my router the port forwarding was active
> 
> #
> Port Forwarding
> Name   Port Range  Protocol  IP Address  Enable 
> TOR	9051	TCP&UDP	192.168.0.8  x
> ORPORT	9001	TCP&UDP	192.168.0.8  x
> DIRPORT	9030	TCP&UDP	192.168.0.8 x
> ------------------------

Maybe tor isn't guessing your external address correctly.
(It's hard to tell, because you deleted the addresses in your logs,
and deleted the log lines where tor guesses your address.)

Try following these instructions to set Address, NoListen, and
NoAdvertise:
https://lists.torproject.org/pipermail/tor-relays/2019-June/017401.html

T



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20190805/be0683ae/attachment.html>

More information about the tor-relays mailing list