[tor-relays] Declining Relay Usage
George Hartley
hartley_george at proton.me
Mon Dec 18 10:03:01 UTC 2023
Hello Likogan (you did not specify a name, so I just took your domain name).
First, lets look at issue number one:
If your Tor Exit is using ~50% of the entire CPU (VM or dedicated server?) while only routing 6 Mbps, then you are likely not using hardware AES acceleration (aesni).
For example, my Tor Exit node only uses 15-25% of a single core while easily routing 10 to 12 Megabytes per second.
All on the following CPU:
Intel(R) Xeon(R) CPU E5-2650L v3 @ 1.80GHz
with a maximum boost clock of 2.50 GHz.
Try the following command:
lscpu | grep aes
If the command returns nothing, sadly your CPU does not support hardware AES acceleration, or if you run your OS in a VM, then the VM operator likely did not set "host" as CPU model.
If however the command does output a list of flags, with aes highlighted in red (depends on SSH client), then you can safely add the following line to your nodes configuration file:
> HardwareAccel 1
General specs about your server, including the full output from lscpu would also be nice, if you are on a 10GbE link, then I assume it is a dedicated server, and a relatively new one (hardware wise) at that.
Now lets look at your traffic provider, or it's AS number:
https://metrics.torproject.org/rs.html#search/as:AS53667
We can see right away that this host is very congested with Tor nodes already (around 230 nodes in their datacenters right now), and thus the Tor authorities might route less traffic through it in general - decentralization is ALWAYS better!
I actually don't know if the Tor authorities act that way, maybe someone with more knowledge can chime in.
So yes, here is a too long, didn't read for you:
Check for aesni support as explained above, if it exists, please add the mentioned config entry, and just to make sure, the NumCPUs variable with the amount of your logical CPU cores.
Also, even if Tor's code base is mostly single-threaded, there are a few tasks that can be offloaded to different cores, such as onionskin decryption, zlib compression, etc.
If you have some spare CPU cores, please let Tor offload as much work as possible by, as said above, adding the
> NumCPUs <LogicalCores>
variable to your nodes configuration.
This generally is not necessary as Tor will try to detect the amount of cores automatically, but in a locked down environment, such as mine, it wouldn't work :)
Hope this helps you or others,
George
P.S: My e-mail web-client always auto-attaches my PGP public key, so if you (or others) want to talk to me privately, that option exists too, however it shouldn't be needed in this case.
All the best and thank you so much for hosting an exit relay!
> My exit relay has seen steadily decreasing traffic from 8MBps to 6MBps
> over the span of three weeks. It averages a load of ~50% CPU usage and
> ~65% RAM usage. It's rated network capacity is 17Mbps on a 10GB link.
> Why would traffic decrease if I have plenty of spare resources? Are
> there ways I can configure my server to boost traffic?
>
> https://metrics.torproject.org/rs.html#details/292FCACE773DC259B799914A23BE65A6A6178E8F
>
>
>
> _______________________________________________
> tor-relays mailing list
> tor-relays at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
-------------- next part --------------
A non-text attachment was scrubbed...
Name: publickey - hartley_george at proton.me - 0xAEE8E00F.asc
Type: application/pgp-keys
Size: 657 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20231218/4b7252eb/attachment.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20231218/4b7252eb/attachment.sig>
More information about the tor-relays
mailing list