[tor-relays] Pool of IP Addresses

Iain Learmonth irl at torproject.org
Sat May 4 22:41:19 UTC 2019


On 04/05/2019 23:32, amytain wrote:
> So I could possibly use a firewall/ip-asa rule to go through the ips and just specify one in the torrc then

Exactly. I'm not sure about ASA specifically, but I know Cisco IOS
supports "pools" for NATs.

One issue that might happen here though is if this is distributing per
connection then users might find they get logged out of services with
different IP addresses showing up at the server.

It is not uncommon that a login session is tied to an IP address, so not
having a fixed exit IP address is probably a bad idea now that I think
more about it (or at least not without tor handling how exit IPs are used).


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20190504/6d089482/attachment.sig>

More information about the tor-relays mailing list